返回
鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))

鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))

ID:12436856

大小:24.76 KB

页数:19页

时间:2018-07-17

鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))_第1页
鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))_第2页
鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))_第3页
鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))_第4页
鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))_第5页
资源描述:

《鼠标钩子回调函数反汇编代码(左键单击处理过程)(mouse hook callback function disassembly code (left click processing))》由会员上传分享,免费在线阅读,更多相关内容在教育资源-天天文库

1、鼠标钩子回调函数反汇编代码(左键单击处理过程)(Mousehookcallbackfunctiondisassemblycode(leftclickprocessing))CrystalLianliankanV1.2HOOKmousehookcallbackfunction,disassemblycodeinterpretation;004033F0.6AFFPUSH-1;mouseclickmessageresponsefunction004033F2.6878984200PUSHcrystalrepeatedly.0

2、0429878;gang%c;SEprocessingprograminstallation004033F7.64:A10000000>MOVEAX,DWORDPTRFS:[0];SS:0012FCAC->0012FD2CpointertothenextSEHrecord004033FD.50PUSHEAX004033FE.64:892500000>MOVDWORDPTRFS:[0],ESP;equivalenttoMOVEBP,ESP00403405.83EC14SUBESP,14403408.53PUSHEBX403

3、409.56PUSHESI0040340A.8BF1MOVESI,ECX0040340C.56PUSHESI0040340D.8D4C240CLEAECX,DWORDPTRSS:[ESP+C]403411E869040200CALLcrystalrepeatedly.0042387F;HOOKmousehookcallbackfunctioncall41F88100403416.8B8630150000MOVEAX,DWORDPTRDS:[ESI+1530]0040341C.BB01000000MOVEBX,100403

4、421.3BC3CMPEAX,EBX;judgewhether[ESI+1530]is1403423C7442424000>MOVDWORDPTRSS:[ESP+24],00040342B.0F8494020000JEcrystal.004036C5;ifitis:jumptotheend403431.55PUSHEBP00403432.8B6C2434MOVEBP,DWORDPTRSS:[ESP+34];currentmousepointXcoordinates403436.57PUSHEDI00403437.8B7C

5、243CMOVEDI,DWORDPTRSS:[ESP+3C];currentmousepointYcoordinates0040343B.57PUSHEDI;/Point.Y0040343C.55PUSHEBP;

6、Point.X0040343D.8D86B0000000LEAEAX,DWORDPTRDS:[ESI+B0];ESI+B0[x:60

7、outrectangularstructure,y:102,cx:732,cy:543]pictures403443.50PUSHEAX;

8、pRect403444FF15B8B4

9、4200CALLDWORDPTRDS:[<&USER32.PtInRect>];"ifapointisinarectangle,call[42B4B8]0040344A.85C0TESTEAX,EAX;ifin:returns1,notin:returns0;0040344C.0F8410020000JEcrystalrepeatedly.00403662;ifnot,skiptothecheckmenuarea00403452.8D4DC4LEAECX,DWORDPTRSS:[EBP-3C];

10、Xcoordinate

11、=Xcoordinate-60(distancefrompicturetoleftborder)403455B8310CC330MOVEAX,30C30C31

12、;0040345A.F7E9IMULECX

13、;0040345C.C1FA03SAREDX,3;

14、0040345F8bcamovecx,edx;

15、00403461.c1e9shrecx1f,1f;

16、这几条是利用x坐标计算数组[j]的值00403464.03caaddecx,edx;

17、[j]=x坐标/42;图片长为4200403466.8d579aleoedx,dwo

18、rdptrds:[edi-66])y坐标=y坐标-102(图片到上边框距离)00403469.b8abaaaa2amoveax,2aaaaaab;040346e.f7eaimuledx;0403470.c1fasaredxseries,3.)00403473.8bc2moveax,edx;0403475.

当前文档最多预览五页,下载文档查看全文

此文档下载收益归作者所有

当前文档最多预览五页,下载文档查看全文
温馨提示:
1. 部分包含数学公式或PPT动画的文件,查看预览时可能会显示错乱或异常,文件下载后无此问题,请放心下载。
2. 本文档由用户上传,版权归属用户,天天文库负责整理代发布。如果您对本文档版权有争议请及时联系客服。
3. 下载前请仔细阅读文档内容,确认文档内容符合您的需求后进行下载,若出现内容与标题不符可向本站投诉处理。
4. 下载文档时可能由于网络波动等原因无法下载或下载错误,付费完成后未能成功下载的用户请联系客服处理。