冰楓論壇

標題: 定點吸飛天怪物 [打印本頁]

---

作者: xxx9638527410    時間: 2015-6-24 17:10
標題: 定點吸飛天怪物
//TWMS V1.81.1_ICS_定點吸飛天怪物
//原創:C227545123
//更新:XXX9638527410

[Enable]
Alloc(VacFly, 128)
Label(Vacum)
Label(FakeCall)

VacFly:
Cmp [Esp],00FD6406
Jne 00FD6DBF
Mov [Esp],Vacum
Jmp 00FD6DBF

Vacum:
fld qword ptr [ebp-24]
sub esp,20
fstp qword ptr [esp+18]
lea eax,[ebp-34]
fld qword ptr [ebp-3c]
fstp qword ptr [esp+10]
fld qword ptr [ebp-2c]
fstp qword ptr [esp+08]
fld qword ptr [ebp-44]
fstp qword ptr [esp]
push eax
call 00FD2A82
fld qword ptr [ebp-24]
mov eax,[esi+000001A0]
add esp,24
sub esp,20
mov [ebp+08],eax
fstp qword ptr [esp+18]

lea eax,[ebp-34]

fld qword ptr [ebp-3c]
fstp qword ptr [esp+10]
fld qword ptr [ebp-2c]
fstp qword ptr [esp+08]
fild dword ptr [ebp+08]
fmul qword ptr [01521458]
fmul qword ptr [ebp-4c]
fmul qword ptr [ebp-14]
fstp qword ptr [esp]
push eax
call FakeCall
jmp 00FD648B

FakeCall:
push ebp
mov ebp,esp
fldz
fld qword ptr [ebp-1c]
DB D8 D1 //st(0),st(1)
fnstsw ax

mov ecx,[ebp+08]
fxch st(1)
fcom qword ptr [ebp-1C]
fcom qword ptr [ebp-1C]
fnstsw ax

fcom qword ptr [ecx]
fnstsw ax

Jmp 00FD2A42

0152149C:
DD VacFly
[Disable]
0152149C:
DD 00FD6DBF
DeAlloc(VacFly)

015216BC
015218BC
01521AC4
01521CC4
01521EDC
01522124
0152232C
0152252C
0152272C
01522954
01522B7C
01522D7C


//TWMS V1.45.1_ICS_定點吸飛天怪物
//原創:C227545123
//更新:Onion
//ICS:Onion
//因為改的點不好所以會變成一排~"~

[Enable]
Alloc(VacFly, 128)
Label(Vacum)
Label(FakeCall)

VacFly:
Cmp [Esp],008E17A3
Jne 008E05EB
Mov [Esp],Vacum
Jmp 008E05EB

Vacum:
fld qword ptr [ebp-24]
sub esp,20
fstp qword ptr [esp+18]
lea eax,[ebp-34]
fld qword ptr [ebp-3c]
fstp qword ptr [esp+10]
fld qword ptr [ebp-2c]
fstp qword ptr [esp+08]
fld qword ptr [ebp-44]
fstp qword ptr [esp]
push eax
call 008dec8d
fld qword ptr [ebp-24]
mov eax,[esi+000000fc]
add esp,24
sub esp,20
mov [ebp+08],eax
fstp qword ptr [esp+18]

lea eax,[ebp-34]

fld qword ptr [ebp-3c]
fstp qword ptr [esp+10]
fld qword ptr [ebp-2c]
fstp qword ptr [esp+08]
fild dword ptr [ebp+08]
fmul qword ptr [00bb5360]
fmul qword ptr [ebp-4c]
fmul qword ptr [ebp-14]
fstp qword ptr [esp]
push eax
call FakeCall
jmp 008e1828

FakeCall:
push ebp
mov ebp,esp
fldz
fld qword ptr [ebp+1c]
DB D8 D1 //st(0),st(1)
fnstsw ax

mov ecx,[ebp+08]
fxch st(1)
fcomp qword ptr [ebp+0c]
fnstsw ax

fcom qword ptr [ecx]
fnstsw ax

Jmp 008DEC4D

00BB5A78:
DD VacFly
[Disable]
00BB5A78:
DD 008E05EB
DeAlloc(VacFly)

---

作者: 萌萌連連    時間: 2015-6-24 18:29
請問這一串東西是神麼
我也想要研究看看 CALL碼?

---

歡迎光臨 冰楓論壇 (https://bingfong.com/)

Powered by 冰楓