冰楓論壇

標題: TwMS 190.3_ICS_ItemFilter 感謝Boyue!! [打印本頁]

作者: zxc0114zxc 時間: 2016-7-14 20:32
標題: TwMS 190.3_ICS_ItemFilter 感謝Boyue!!
乂Boyue乂:
//TwMS 190.3_ICS_ItemFilter
//更新時間:2016-07-07
//更新: Boyue
//原創:未知有知道的麻煩私信將改正
[Enable]
Alloc(ItemFilter, 512)
Alloc(ItemList, 1024)
Label(Fake)
Label(Jmp1)
Label(Jmp2)
Label(Jmp3)
Label(Jmp4)
Label(Filter)
Label(End)
Label(Skip)

ItemList:
// 以下為欲過濾物品

DD 1F6EE0 //箭矢
DD 1F72C8 //弩箭矢
DD 1F95F4 //梅之鏢
DD 1F95F9 //木製陀螺
DD 1E8480 // 紅色藥水
DD 1E8481 // 橘色藥水
DD 1E8482 // 白色藥水
DD 1E8483 // 藍色藥水
DD 1E8486 // 活力藥水

// 以上為欲過濾物品
DD 00

ItemFilter:
cmp [esp+C8], 0067D2DE
jne 00B48B0F
mov [esp+C8], Fake
jmp 00B48B0F

Fake:
//0067D2DE
pop ecx
push eax
lea ecx,[ebp-24] //複檢
call 00676DAB
mov ecx,edi
mov [ebp-04],ebx
call 00404326
movzx eax,al
mov ecx,edi
mov [ebp+14],eax
call 00404391
mov [ebp+1c],eax
lea eax,[ebp-24] //複撿
push eax
lea eax,[ebp+1c]
push eax
lea ecx,[esi+08]
call 0067749E
test eax,eax
je Jmp1
cmp dword ptr [ebp+14],01
je Jmp2
cmp dword ptr [ebp+14],02
jne 0067F1A6

Jmp1:
//0067D33B
mov eax,[ebp+14]
mov esi,[ebp-20] //複檢
mov [esi+30],al
cmp eax,01
je Jmp3
cmp eax,02
je Jmp3
xor al,al
jmp Jmp4

Jmp2:
//0067D326
mov eax,[ebp-20] //複檢
cmp [eax+31],bl
jne 0067F1A6
mov byte ptr [eax+31],01
jmp 0067F1A6

Jmp3:
//0067D352
mov al,01

Jmp4:
//0067D354
mov [esi+31],al
mov eax,[ebp+1c]
mov ecx,edi
mov [esi+34],eax
call 00404326
movzx eax,al
mov ecx,edi
//xor eax, eax //取消註解=金錢過濾
mov [esi+44],eax
call 00404391
mov ecx,edi
mov [esi+000000C4],eax
call 00404391
mov ecx,edi
mov [esi+000000C8],eax
call 00404391
mov [ebp+50],eax
fild dword ptr [ebp+50]
mov ecx,edi
fdiv qword ptr [01702880]
fstp dword ptr [esi+000000DC]
call 00404391
push esi
mov esi,ItemList

Filter:
cmp eax, C350
jle End
cmp dword ptr ds:[esi], 0
je End
cmp dword ptr ds:[esi], eax
je Skip
add esi, 4
jmp Filter

Skip:
xor eax, eax

End:
pop esi
mov ecx, edi
mov [esi+48],eax
jmp 0067D3A9

01BA8ADC:
DD ItemFilter

[Disable]
01BA8ADC:
DD 00B48B0F

歡迎光臨冰楓論壇 (https://bingfong.com/)