冰楓論壇

標題: TwMS v228.1 ICS Item Filter [打印本頁]

---

作者: 麗麗    時間: 2020-9-21 15:06
標題: TwMS v228.1 ICS Item Filter

1. // TwMS v228.1 ICS Item Filter
   
2. 
   
3. [ENABLE]
   
4. Alloc(ItemFilter_CheckESP,1024)
   
5. Alloc(ItemList,10240)
   
6. Alloc(Mesos,4)
   
7. Alloc(Mode,4)
   
8. Alloc(ItemFilterSW,4)
   
9. RegisterSymbol(ItemFilterSW)
   
10. Label(ItemFilter_Hook)
    
11. Label(ItemFilter)
    
12. Label(End)
    
13. Label(FilterMesos)
    
14. Label(RejectOrAccept)
    
15. Label(AcceptFilter)
    
16. Label(RejectFilter)
    
17. Label(Ignore)
    
18. 
    
19. ItemFilterSW:
    
20. DD 1
    
21. 
    
22. Mesos:
    
23. DD 0 // Minimum meso
    
24. 
    
25. Mode:
    
26. DD 1 // 0 = Accept 1 = Reject
    
27. 
    
28. ItemList:
    
29. //Add filter like below
    
30. //dd ItemID
    
31. DD #2000006//活力神水
    
32. 
    
33. 
    
34. DD 00 // End of list
    
35. 
    
36. 
    
37. ItemFilter_CheckESP:
    
38. cmp [esp+10],0150017E
    
39. jne GetLastError
    
40. mov [esp+10],ItemFilter_Hook
    
41. jmp GetLastError
    
42. 
    
43. ItemFilter_Hook:
    
44. cmp [ItemFilterSW],1
    
45. jne 0150017E
    
46. mov ecx,[ebx+48]
    
47. mov [ecx+04],al
    
48. mov ecx,00009A65
    
49. mov edi,[ebx+48]
    
50. mov al,[edi+04]
    
51. test al,al
    
52. mov [edi+08],cx
    
53. movzx ebx,al
    
54. mov ecx,0000002A
    
55. cmove ebx,ecx
    
56. mov al,bl
    
57. xor al,[ebp-34]
    
58. mov [edi],al
    
59. add al,cl
    
60. add bl,al
    
61. mov eax,[ebp-20]
    
62. mov esi,[eax+48]
    
63. movzx eax,bl
    
64. movzx ecx,word ptr [esi+08]
    
65. mov dx,cx
    
66. shr dx,0D
    
67. add dx,ax
    
68. lea eax,[ecx*8+00000000]
    
69. mov ecx,0000002A
    
70. or dx,ax
    
71. test bl,bl
    
72. mov [esi+08],dx
    
73. movzx eax,bl
    
74. cmovne ecx,eax
    
75. mov al,cl
    
76. add cl,2A
    
77. xor al,[ebp-33]
    
78. mov [edi+01],al
    
79. lea ebx,[ecx+eax]
    
80. mov eax,[ebp-20]
    
81. mov esi,[eax+48]
    
82. movzx eax,bl
    
83. movzx ecx,word ptr [esi+08]
    
84. mov dx,cx
    
85. shr dx,0D
    
86. add dx,ax
    
87. lea eax,[ecx*8+00000000]
    
88. mov ecx,0000002A
    
89. or dx,ax
    
90. test bl,bl
    
91. movzx eax,bl
    
92. cmovne ecx,eax
    
93. mov [esi+08],dx
    
94. mov al,cl
    
95. add cl,2A
    
96. xor al,[ebp-32]
    
97. mov [edi+02],al
    
98. lea ebx,[ecx+eax]
    
99. mov eax,[ebp-20]
    
100. mov esi,[eax+48]
     
101. movzx eax,bl
     
102. movzx ecx,word ptr [esi+08]
     
103. mov dx,cx
     
104. shr dx,0D
     
105. add dx,ax
     
106. lea eax,[ecx*8+00000000]
     
107. mov ecx,0000002A
     
108. or dx,ax
     
109. movzx eax,bl
     
110. test bl,bl
     
111. mov [esi+08],dx
     
112. mov ebx,[ebp-20]
     
113. cmovne ecx,eax
     
114. mov al,cl
     
115. add cl,2A
     
116. xor al,[ebp-31]
     
117. mov [edi+03],al
     
118. add al,cl
     
119. mov esi,[ebx+48]
     
120. movzx eax,al
     
121. movzx ecx,word ptr [esi+08]
     
122. mov dx,cx
     
123. shr dx,0D
     
124. add dx,ax
     
125. lea eax,[ecx*8+00000000]
     
126. or dx,ax
     
127. mov [esi+08],dx
     
128. mov esi,[ebp+08]
     
129. mov ecx,esi
     
130. call 0088FAB0
     
131. mov ecx,esi
     
132. mov [ebx+000000F4],eax
     
133. call 0088FAB0
     
134. mov ecx,esi
     
135. mov [ebx+000000F8],eax
     
136. call 0088FAB0
     
137. mov ecx,esi
     
138. movd xmm0,eax
     
139. cvtdq2ps xmm0,xmm0
     
140. divss xmm0,[03A0395C]
     
141. movss [ebx+00000110],xmm0
     
142. call 0088FAB0
     
143. mov ecx,[044E9100]
     
144. jmp ItemFilter
     
145. 
     
146. ItemFilter:
     
147. push edx
     
148. mov edx,[Mesos]
     
149. cmp eax,edx
     
150. jle FilterMesos
     
151. mov edx,ItemList
     
152. jmp RejectOrAccept
     
153. 
     
154. FilterMesos:
     
155. mov eax,0
     
156. jmp End
     
157. 
     
158. RejectOrAccept:
     
159. cmp byte ptr [Mode],0
     
160. je AcceptFilter
     
161. cmp byte ptr [Mode],1
     
162. je RejectFilter
     
163. 
     
164. AcceptFilter:
     
165. cmp eax,[edx](Mesos)
     
166. je End
     
167. cmp dword ptr [edx],0
     
168. je Ignore
     
169. add edx,4
     
170. jmp AcceptFilter
     
171. 
     
172. RejectFilter:
     
173. cmp eax,[edx]
     
174. je Ignore
     
175. cmp dword ptr [edx],0
     
176. je End
     
177. add edx,4
     
178. jmp RejectFilter
     
179. 
     
180. Ignore:
     
181. cmp eax,3E8 // Added this code otherwise mesos is dropped but not shown in accept mode
     
182. jle End
     
183. mov eax,0
     
184. 
     
185. End:
     
186. pop edx
     
187. mov [ebp-34],eax        // Original Opcode
     
188. inc ecx                // Original Opcode
     
189. mov eax,939A85C5        // Original Opcode
     
190. jmp 015002E0
     
191. 
     
192. 039FE1C4:
     
193. DD ItemFilter_CheckESP
     
194. 
     
195. [DISABLE]
     
196. 039FE1C4:
     
197. DD GetLastError
     
198. 
     
199. DeAlloc(ItemFilter_CheckESP)
     
200. DeAlloc(ItemList)
     
201. DeAlloc(Mesos)
     
202. DeAlloc(Mode)
     
203. DeAlloc(ItemFilterSW)
     
204. UnRegisterSymbol(ItemFilterSW)

複製代碼

---

作者: 麗麗    時間: 2020-9-21 15:09
由於過濾清單太長，請自行添加。
附件是我常用的過濾清單。

ItemList.txt

2020-9-21 15:07 上傳

點擊文件名下載附件

48.61 KB, 下載次數: 16

---

作者: ke90927    時間: 2020-10-3 22:25
XD，这个物品过滤可以缩减的，缩减后顶多就是和原样CRC数据一样，还是ICS只不过会多出一行代码。
mov

---

作者: 麗麗    時間: 2020-10-4 10:00

ke90927 發表於 2020-10-3 22:25
XD，这个物品过滤可以缩减的，缩减后顶多就是和原样CRC数据一样，还是ICS只不过会多出一行代码。
mov ...

多謝~

精簡版:

1. // TwMS v228.1 ICS Item Filter
   
2. 
   
3. [ENABLE]
   
4. Alloc(ItemFilter_CheckESP,1024)
   
5. Alloc(ItemList,10240)
   
6. Alloc(Mesos,4)
   
7. Alloc(Mode,4)
   
8. Alloc(ItemFilterSW,4)
   
9. RegisterSymbol(ItemFilterSW)
   
10. Label(ItemFilter_Hook)
    
11. Label(ItemFilter)
    
12. Label(End)
    
13. Label(FilterMesos)
    
14. Label(RejectOrAccept)
    
15. Label(AcceptFilter)
    
16. Label(RejectFilter)
    
17. Label(Ignore)
    
18. 
    
19. ItemFilterSW:
    
20. DD 1
    
21. 
    
22. Mesos:
    
23. DD 0 // Minimum meso
    
24. 
    
25. Mode:
    
26. DD 1 // 0 = Accept 1 = Reject
    
27. 
    
28. ItemList:
    
29. //Add filter like below
    
30. //dd ItemID
    
31. DD #2000006//活力神水
    
32. 
    
33. 
    
34. DD 00 // End of list
    
35. 
    
36. 
    
37. ItemFilter_CheckESP:
    
38. cmp [esp+10],0150017E
    
39. jne GetLastError
    
40. cmp [ItemFilterSW],1
    
41. jne GetLastError
    
42. mov [esp+10],ItemFilter_Hook
    
43. jmp GetLastError
    
44. 
    
45. ItemFilter_Hook:
    
46. mov ecx,[044E9100]
    
47. jmp ItemFilter
    
48. 
    
49. ItemFilter:
    
50. push edx
    
51. mov edx,[Mesos]
    
52. cmp eax,edx
    
53. jle FilterMesos
    
54. mov edx,ItemList
    
55. jmp RejectOrAccept
    
56. 
    
57. FilterMesos:
    
58. mov eax,0
    
59. jmp End
    
60. 
    
61. RejectOrAccept:
    
62. cmp byte ptr [Mode],0
    
63. je AcceptFilter
    
64. cmp byte ptr [Mode],1
    
65. je RejectFilter
    
66. 
    
67. AcceptFilter:
    
68. cmp eax,[edx](Mesos)
    
69. je End
    
70. cmp dword ptr [edx],0
    
71. je Ignore
    
72. add edx,4
    
73. jmp AcceptFilter
    
74. 
    
75. RejectFilter:
    
76. cmp eax,[edx]
    
77. je Ignore
    
78. cmp dword ptr [edx],0
    
79. je End
    
80. add edx,4
    
81. jmp RejectFilter
    
82. 
    
83. Ignore:
    
84. cmp eax,3E8 // Added this code otherwise mesos is dropped but not shown in accept mode
    
85. jle End
    
86. mov eax,0
    
87. 
    
88. End:
    
89. pop edx
    
90. mov [ebp-34],eax        // Original Opcode
    
91. inc ecx                // Original Opcode
    
92. mov eax,939A85C5        // Original Opcode
    
93. jmp 015002E0
    
94. 
    
95. 039FE1C4:
    
96. DD ItemFilter_CheckESP
    
97. 
    
98. [DISABLE]
    
99. 039FE1C4:
    
100. DD GetLastError
     
101. 
     
102. DeAlloc(ItemFilter_CheckESP)
     
103. DeAlloc(ItemList)
     
104. DeAlloc(Mesos)
     
105. DeAlloc(Mode)
     
106. DeAlloc(ItemFilterSW)
     
107. UnRegisterSymbol(ItemFilterSW)

複製代碼

---

作者: rhg59321    時間: 2020-10-13 20:30

麗麗 發表於 2020-10-4 10:00
多謝~

精簡版:

代碼如果這樣精簡
似乎會把所有東西都過濾掉

---

作者: btb    時間: 2020-10-13 21:54

麗麗 發表於 2020-10-4 10:00
多謝~

精簡版:

movd xmm0,eax
cvtdq2ps xmm0,xmm0
divss xmm0,[03A0395C]
movss [ebx+00000110],xmm0
這邊很重要不能簡略

---

作者: huanghy_gz    時間: 2020-10-13 23:30

btb 發表於 2020-10-13 21:54
movd xmm0,eax
cvtdq2ps xmm0,xmm0
divss xmm0,[03A0395C]

这段代码执行后eax也不是物品ID， 必须要调用下面的call后，eax才有物品id。要不就是所有东西都屏蔽了。。

---

歡迎光臨 冰楓論壇 (https://bingfong.com/)

Powered by 冰楓