使用iAutoUpdater 更新時會碰到的寫法
本帖最後由 btb 於 2021-7-1 11:15 編輯示範:
//addressbase
scan address aob A1 ?? ?? ?? ?? 85 c0 74 ?? 8d 88
var addressbase $address
add addressbase 1
read addressbase $addressbase
scan offset aob 8d 85 ?? ff ff ff 50 57 ff 15,1
add offset 2
#read offset $offset
load offset
or offset ffff0000
neg offset
result offset $offset value 4
scan addressoffset aob 8d 8b ?? ?? ?? ?? e8 ?? ?? ?? ?? 8d 45 ?? 50 ff 15
var addressoffset1 $addressoffset
add addressoffset1 2
read addressoffset2 $addressoffset1
var addressoffset3 $addressoffset
add addressoffset3 15
var addressoffset4 $addressoffset
add addressoffset4 11
read icsentry $addressoffset4
var ret $addressoffset3
scan qpgjzctz_call aob 55 8B EC 56 57 8D B9 ? ? 00 00 8D 4F ? E8 ? ? ? ? 8B 75 ? 8B CF 89 06 E8 ? ? ? ? 89 46 ? 8B C6 5F 5E 5D C2 04 00 CC CC CC CC CC CC 8B 01
scan qpgjzctz_call2 aob e8 ?? ?? ?? ?? 6a 00 6a 00 8b cf e8 ?? ?? ?? ?? 3d
add qpgjzctz_call2 1
getoffset qpgjzctz_call2
//TwMS v%version% ICS 全職全圖打
alloc(VariantInit_H,1024)
alloc(qpgjzctz_SW,4)
alloc(qpgjzctz,128)
registersymbol(qpgjzctz_SW)
label(qpgjzctz_)
qpgjzctz_SW:
dd 1
VariantInit_H:
cmp ,%ret%
je qpgjzctz_
db 90
jmp VariantInit
qpgjzctz_:
cmp ,0
je VariantInit
mov ,qpgjzctz
jmp VariantInit
qpgjzctz:
mov ecx,[%addressbase%]
add ecx,04
lea eax,
push eax
call %qpgjzctz_call%
push eax
lea ecx,
call %qpgjzctz_call2%
jmp %ret%
%icsentry%:
DD VariantInit_H
%icsentry%:
dd VariantInit
dealloc(VariantInit_H)
dealloc(qpgjzctz_SW)
dealloc(qpgjzctz)
unregistersymbol(qpgjzctz_SW)
輸出:
//TwMS v219.2 ICS 全職全圖打
alloc(VariantInit_H,1024)
alloc(qpgjzctz_SW,4)
alloc(qpgjzctz,128)
registersymbol(qpgjzctz_SW)
label(qpgjzctz_)
qpgjzctz_SW:
dd 1
VariantInit_H:
cmp ,01557156
je qpgjzctz_
db 90
jmp VariantInit
qpgjzctz_:
cmp ,0
je VariantInit
mov ,qpgjzctz
jmp VariantInit
qpgjzctz:
mov ecx,
add ecx,04
lea eax,
push eax
call 023688E0
push eax
lea ecx,
call 00CFED70
jmp 01557156
033C9438:
DD VariantInit_H
033C9438:
dd VariantInit
dealloc(VariantInit_H)
dealloc(qpgjzctz_SW)
dealloc(qpgjzctz)
unregistersymbol(qpgjzctz_SW)
:lol感谢大大, 这个是好东西,真是需要这个东西 楓幣負數 ~~ 要占下樓 大三大四的阿斯倒薩倒薩 撒旦法阿薩德發生的發撒旦法 來拿1楓幣 路過~~ 為什麼會提示該腳本是無效的啊
頁:
[1]