冰楓論壇
標題:
TwMS v202.1_ICS_完全無敵+走怪跟隨+跳怪跟隨+怪物掉落
[打印本頁]
作者:
btb
時間:
2017-10-18 13:44
標題:
TwMS v202.1_ICS_完全無敵+走怪跟隨+跳怪跟隨+怪物掉落
// TwMS v202.1_ICS_完全無敵+走怪跟隨+跳怪跟隨+怪物掉落
// 完全無敵原創: Inndy
// 其他原創未知
[Enable]
Registersymbol(MyLR)
RegisterSymbol(MobFalls_OnOff)
RegisterSymbol(God_OnOff)
RegisterSymbol(WalkMob_OnOff)
RegisterSymbol(JmpMob_OnOff)
Alloc(MobFalls_OnOff, 04)
Alloc(WalkMob_OnOff, 04)
Alloc(God_OnOff, 04)
Alloc(JmpMob_OnOff, 04)
Alloc(MyLR,4096)
Alloc(rx,4)
Alloc(FakeDump,1024)
Alloc(CRCBypass,4)
Label(MyLRend)
Label(mob1)
Label(mobR)
Label(mobj)
Label(God)
Label(WalkMob)
Label(GoLR)
Label(GoLRback)
Label(GoLR2)
Label(GoLR5)
Label(JmpMob)
Label(JmpLR)
Label(JmpLRback)
Label(MSmemcpy)
MobFalls_OnOff:
DD 01
God_OnOff:
DD 01
WalkMob_OnOff:
DD 01
JmpMob_OnOff:
DD 01
//================================
MyLR:
cmp [CRCBypass],0
je MSmemcpy
cmp [esp+18],0085e564
je mob1
cmp [esp+18],01BCF8FF
je God
cmp [esp+18],01DBB50C
je WalkMob
cmp [esp+18],01DBBD1B
je JmpMob
jmp MyLRend
MyLRend:
jmp 012818D0
//================================
mob1:
cmp [CRCBypass],0
je MyLRend
cmp [MobFalls_OnOff],0
je MyLRend
mov [esp+18],mobR
jmp MyLRend
God:
cmp [God_OnOff],0
je MyLRend
mov [esp+18],01BD392E
jmp MyLRend
WalkMob:
cmp [WalkMob_OnOff],0
je MyLRend
mov [esp+18],GoLR
jmp MyLRend
JmpMob:
cmp [JmpMob_OnOff],0
je MyLRend
mov [esp+18],JmpLR
jmp MyLRend
//================================
mobR:
cmp [edi],02bc2db0
jne 0085e564
mov [edi+000003b8],eax
mov ecx,eax
xor eax,baadf00d
xor ecx,esi
ror ecx,05
ror eax,05
add eax,ecx
mov [edi+000003bc],ecx
mov [edi+000003c0],eax
mov eax,FakeDump
mov [edi],eax
mov ecx,edi
mov eax,[edi]
push ebx
call dword ptr [eax+2c]
mov [edi],02bc2db0
jmp 0085e58f
mobj:
push ebp
mov ebp,esp
sub esp,14
push ebx
mov ebx,[0306a1a8]
push esi
mov esi,ecx
mov [ebp-08],eax
push edi
cmp dword ptr [esi+00000408],02
jmp 01db968c
MSmemcpy:
pushad
mov edi,FakeDump
mov esi,02bc2db0
mov ecx,0000080
repe movsd
mov edi,FakeDump
mov [edi+08],00858190
mov eax,mobj
mov [edi+0c],eax
mov [CRCBypass],1
popad
jmp MyLR
//================================
GoLR:
mov esi,eax
mov [edi+000004C0],00000001
mov eax,AAAAAAAB
mov [edi+000004B8],esi
mul esi
shr edx,1
lea ecx,[edx+edx*2]
sub esi,ecx
mov ecx,[edi+000007B8]
dec esi
push esi
inc esi
mov eax,[03069704]
mov eax,[eax+00012F30]
cmp esi, 1
je GoLR5
jg GoLR2
cmp eax,[edi+80C]
mov eax,5
jl GoLRback
mov eax,1
jmp GoLRback
//--
GoLR2:
cmp eax,[edi+80C]
mov eax,5
jg GoLRback
mov eax,1
jmp GoLRback
GoLR5:
mov eax,1
GoLRback:
mov ecx,[edi+000007BC]
push eax
call 004788E0
mov ecx,[edi+000007B8]
jmp 01DBB534
//================================
//================================
JmpLR:
mov eax,[03069704]
mov eax,[eax+00012F30]
cmp eax,[edi+80C]
mov eax,2
jg JmpLRback
mov eax,3
JmpLRback:
jmp 01DBBD1B
//================================
0303DDF4:
DD MyLR
[disable]
0303DDF4:
DD 012818D0
DeAlloc(MobFalls_OnOff)
DeAlloc(WalkMob_OnOff)
DeAlloc(God_OnOff)
DeAlloc(JmpMob_OnOff)
DeAlloc(MyLR)
DeAlloc(rx)
DeAlloc(FakeDump)
DeAlloc(CRCBypass)
UnRegistersymbol(MyLR)
UnRegistersymbol(MobFalls_OnOff)
UnRegistersymbol(God_OnOff)
UnRegistersymbol(WalkMob_OnOff)
UnRegistersymbol(JmpMob_OnOff)
歡迎光臨 冰楓論壇 (https://bingfong.com/)
Powered by 冰楓