冰楓論壇

標題: TwMS v168.3_ICS_定點生怪 [打印本頁]
作者: abc123987    時間: 2014-3-12 20:00
標題: TwMS v168.3_ICS_定點生怪

  2. //TwMS v168.3_ICS_定點生怪
  3. //ISC:歐歐
  4. //Updata:尋風幽情
  5. //-----------------------------------------
  6. [ENABLE]
  7. RegisterSymbol(ReLifeVac)
  8. Alloc(ReLifeVac, 256)
  9. RegisterSymbol(RelifeXY)
  10. Alloc(RelifeXY,8)
  11. RegisterSymbol(RelifeSwitch)
  12. Alloc(RelifeSwitch, 4)
  13. Label(ReLifeVacXY)
  14. Label(DoRelife)
  15. Label(Return)
  16. //-----------------------------------------
  17. RelifeSwitch:
  18. DD 1
  19. //-----------------------------------------
  20. ReLifeVac:
  21. Cmp [RelifeSwitch],1
  22. Je  ReLifeVacXY
  23. Cmp [RelifeSwitch],2
  24. Je  DoRelife
  25. Jmp Return
  26. //-----------------------------------------
  27. ReLifeVacXY:
  28. Push Eax
  29. mov eax,[014A5DCC]
  30. Push [Eax+00001288]
  31. Pop  [RelifeXY]
  32. Push [Eax+0000128C]
  33. Pop  [RelifeXY+4]
  34. Pop  Eax
  35. Mov  [RelifeSwitch],2
  36. Jmp  Return
  37. //-----------------------------------------
  38. DoRelife:
  39. Cmp [Esp], 00781378
  40. Jne Return
  41. Cmp dword ptr [Esp+18],02
  42. Jne Return
  43. Push Ecx
  44. Mov  Eax,[RelifeXY]
  45. Mov  [Esp+0c], eax
  46. Mov  Eax,[RelifeXY+4]
  47. Mov  [Esp+10], eax
  48. Push Eax
  49. mov ecx,[0149E2E4]
  50. call 0048C409
  51. Mov  Ecx, eax
  52. Mov  [Esp+20], ecx
  53. Pop  Ecx
  54. Jmp  Return
  55. //-----------------------------------------
  56. Return:
  57. push ebp
  58. mov ebp,esp
  59. push ebx
  60. push esi
  61. Jmp 00D3FA21+5
  62. //-----------------------------------------

  64. 01228ED0:
  65. dd ReLifeVac

  67. [DISABLE]
  68. 01228ED0:
  69. dd 00D3FA21

  71. UnRegisterSymbol(ReLifeVac)
  72. DeAlloc(ReLifeVac)
  73. UnRegisterSymbol(RelifeXY)
  74. DeAlloc(RelifeXY)
  75. UnRegisterSymbol(RelifeSwitch)
  76. DeAlloc(RelifeSwitch)

複製代碼
作者: G88828    時間: 2014-3-17 19:54
來試試看 謝謝分享



歡迎光臨 冰楓論壇 (https://bingfong.com/) Powered by 冰楓