有 Soft-ICE 在内存中可不大好玩,以下指令是检测 Soft-ICE 的,不要问为什么,这些都是 Soft-ICE 自己检测自己用的。
汇编编程示例:
CODE SEGMENT
ASSUME CS:CODE,DS:CODE
ORG 100H
START:
MOV AX,0911H ;exit command
MOV DX,OFFSET D_EXIT
MOV SI,4647H
MOV DI,4A4DH
INT 3
XOR AX,AX ;check s-ice
MOV SI,4746H
MOV DI,4A4DH
INT 3
CMP SI,4647H
JZ FOUND_SICE
XOR AX,AX ;check s-ice
MOV SI,4647H
MOV DI,4A4DH
INT 3
CMP SI,4647H
JNZ FOUND_SICE
MOV AH,9
MOV DX,OFFSET D_OK
INT 21H
INT 20H
FOUND_SICE:
MOV AH,9
MOV DX,OFFSET D_SICE
INT 21H
INT 20H
D_OK DB 'OK, passed...',0DH,0AH,24H
D_SICE DB 'I found S-ICE in memory, so Bye-bye !',0DH,0AH,24H
D_EXIT DB 'exit',0DH,0
CODE ENDS
END START