Name: HackShield CRC Check Bypassing CE Assembly Script.
loadlibrary(DLL.dll)
//Name: HackShield CRC Check Bypassing CE Assembly Script.
//Version: 1.0 for HackShield 5.2.17.993+
//Author: nimo1993
//Thanks: 大可
//Date: November 9, 2009
alloc(NimoHSCRCBypass,256)
label(BackToOP)
//如果有錯誤,請把Memory View的功能表 View -> Kernelmode symbol打勾
OpenProcess:
jmp NimoHSCRCBypass
NimoHSCRCBypass:
mov eax, fs:
cmp eax,
jne BackToOP
mov fs:, 57
xor eax, eax
ret 000c
BackToOP:
mov edi, edi
push ebp
mov ebp, esp
jmp OpenProcess+5
OpenProcess:
mov edi, edi
push ebp
mov ebp, esp
dealloc(NimoHSCRCBypass)
頁:
[1]