冰楓論壇
標題:
TwMS 203.1 ICS 完全無敵+走怪跟隨+跳怪跟隨+怪物掉落+MISS無敵+人物損血不後退
[打印本頁]
作者:
btb
時間:
2017-12-1 13:20
標題:
TwMS 203.1 ICS 完全無敵+走怪跟隨+跳怪跟隨+怪物掉落+MISS無敵+人物損血不後退
// TwMS 203.1 ICS 完全無敵+走怪跟隨+跳怪跟隨+怪物掉落+MISS無敵+人物損血不後退
// 完全無敵原創: Inndy
// 其他原創未知
[Enable]
Registersymbol(MyLR)
RegisterSymbol(MobFalls_OnOff)
RegisterSymbol(God_OnOff)
RegisterSymbol(WalkMob_OnOff)
RegisterSymbol(JmpMob_OnOff)
RegisterSymbol(Hook_Main_OnOff)
RegisterSymbol(ICS_Hook_OnOff)
Alloc(MobFalls_OnOff, 06)
Alloc(WalkMob_OnOff, 06)
Alloc(God_OnOff, 06)
Alloc(JmpMob_OnOff, 06)
Alloc(Hook_Main_OnOff, 06)
Alloc(ICS_Hook_OnOff, 06)
Alloc(MyLR,4096)
Alloc(rx,6)
Alloc(FakeDump,1024)
Alloc(CRCBypass,6)
Alloc(Hook_Main,128)
Alloc(ICS_Hook, 128)
Label(NoBack)
Label(HookFun)
Label(MyLRend)
Label(mob1)
Label(mobR)
Label(mobj)
Label(God)
Label(WalkMob)
Label(GoLR)
Label(GoLRback)
Label(GoLR2)
Label(GoLR5)
Label(JmpMob)
Label(JmpLR)
Label(JmpLRback)
Label(MSmemcpy)
MobFalls_OnOff:
DD 01
God_OnOff:
DD 01
WalkMob_OnOff:
DD 01
JmpMob_OnOff:
DD 01
Hook_Main_OnOff:
DD 01
ICS_Hook_OnOff:
DD 01
//================================
MyLR:
cmp [CRCBypass],0
je MSmemcpy
cmp [esp+18],00861434
je mob1
cmp [esp+18],01BEDC9F
je God
cmp [esp+18],01DDA58C
je WalkMob
cmp [esp+18],01DDAD9B
je JmpMob
Cmp [Esp+18],01BEDC9F
je Hook_Main
cmp [esp+54],007E16EE
je ICS_Hook
jmp MyLRend
MyLRend:
jmp 01290000
//================================
mob1:
cmp [CRCBypass],0
je MyLRend
cmp [MobFalls_OnOff],0
je MyLRend
mov [esp+18],mobR
jmp MyLRend
God:
cmp [God_OnOff],0
je MyLRend
NOP
mov [esp+18],01BF1CCE
jmp MyLRend
WalkMob:
cmp [WalkMob_OnOff],0
je MyLRend
mov [esp+18],GoLR
jmp MyLRend
JmpMob:
cmp [JmpMob_OnOff],0
je MyLRend
mov [esp+18],JmpLR
jmp MyLRend
Hook_Main:
cmp [Hook_Main_OnOff],0
je MyLRend
mov [esp+18],HookFun
jmp MyLRend
ICS_Hook:
cmp [ICS_Hook_OnOff],0
je MyLRend
nop
mov [esp+54],NoBack
jmp MyLRend
mobR:
cmp [edi],02BE334C
jne 00861434
mov [edi+000003b8],eax
mov ecx,eax
xor eax,baadf00d
xor ecx,esi
ror ecx,05
ror eax,05
add eax,ecx
mov [edi+000003bc],ecx
mov [edi+000003c0],eax
mov eax,FakeDump
mov [edi],eax
mov ecx,edi
mov eax,[edi]
push ebx
call dword ptr [eax+2c]
mov [edi],02BE334C
jmp 0086145F
mobj:
push ebp
mov ebp,esp
sub esp,14
push ebx
mov ebx,[030881B8]
push esi
mov esi,ecx
mov [ebp-08],eax
push edi
cmp dword ptr [esi+00000408],02
jmp 01DD870C
MSmemcpy:
pushad
mov edi,FakeDump
mov esi,02BE334C
mov ecx,0000080
repe movsd
mov edi,FakeDump
mov [edi+08],0085B030
mov eax,mobj
mov [edi+0c],eax
//ret
mov [CRCBypass],1
popad
jmp MyLR
GoLR:
mov esi,eax
mov [edi+000004C0],00000001
mov eax,AAAAAAAB
mov [edi+000004B8],esi
mul esi
shr edx,1
lea ecx,[edx+edx*2]
sub esi,ecx
mov ecx,[edi+000007B8]
dec esi
push esi
inc esi
mov eax,[03087714]
mov eax,[eax+00012F30]
cmp esi, 1
je GoLR5
jg GoLR2
cmp eax,[edi+80C]
mov eax,5
jl GoLRback
mov eax,1
jmp GoLRback
//--
GoLR2:
cmp eax,[edi+80C]
mov eax,5
jg GoLRback
mov eax,1
jmp GoLRback
GoLR5:
mov eax,1
GoLRback:
mov ecx,[edi+000007BC]
push eax
call 00478980
mov ecx,[edi+000007B8]
jmp 01DDA5B4
JmpLR:
mov eax,[03087714]
mov eax,[eax+00012F30]
cmp eax,[edi+80C]
mov eax,2
jg JmpLRback
mov eax,3
JmpLRback:
jmp 01DDAD9B
HookFun:
mov [ebp+esi*4-48],eax
inc esi
cmp esi,08
jnge 01BEDC90
mov edi,[ebp-000000B4]
mov ecx,edi
mov [ebp-00000118],00000000
mov [ebp-00000104],00000000
mov [ebp-00000158],00000000
mov [ebp-00000130],00000000
mov [ebp-00000094],00000000
mov [ebp-000000CC],00000000
mov [ebp-000000B8],00000000
call 007EDF70
push eax
mov eax,[ebx]
mov ecx,ebx
call dword ptr [eax+70]
push eax
mov eax,[ebx]
mov ecx,ebx
call dword ptr [eax+6C]
push eax
call 00766A20
add esp,0C
mov [ebp-00000134],eax
xor eax,eax
mov [ebp-0000012C],00000000
lea ecx,[ebx+00000118]
mov [ebp-00000128],00000000
mov [ebp-00000144],eax
mov [ebp-00000108],eax
mov [ebp-00000160],eax
mov [ebp-000000EC],eax
mov [ebp-000000F8],eax
mov [ebp-00000150],eax
mov [ebp-000000D8],eax
mov [ebp-000000A4],eax
mov [ebp-00000170],eax
mov [ebp-000000F4],eax
mov [ebp-00000100],eax
mov [ebp-000000A8],eax
call 00A468A0
push eax
call 00480160
add esp,04
mov [ebp-000000D0],eax
lea ecx,[ebx+00000118]
call 00A468B0
push eax
call 00480160
add esp,04
mov [ebp-00000110],eax
cmp dword ptr [ebp-74],00
jne 01BEF985
NoBack:
xor ebx,ebx
add esp,0C
cmp [ebp-04],eax
db B3 01 90
jmp 007E16F9
0305BE2C:
DD MyLR
[disable]
0305BE2C:
DD 01290000
DeAlloc(MobFalls_OnOff)
DeAlloc(ICS_Hook_OnOff)
DeAlloc(WalkMob_OnOff)
DeAlloc(God_OnOff)
DeAlloc(JmpMob_OnOff)
DeAlloc(Hook_Main_OnOff)
DeAlloc(MyLR)
DeAlloc(rx)
DeAlloc(FakeDump)
DeAlloc(CRCBypass)
UnRegistersymbol(ICS_Hook_OnOff)
UnRegistersymbol(MyLR)
UnRegistersymbol(MobFalls_OnOff)
UnRegistersymbol(God_OnOff)
UnRegistersymbol(WalkMob_OnOff)
UnRegistersymbol(JmpMob_OnOff)
UnRegistersymbol(Hook_Main_OnOff)
作者:
prt
時間:
2017-12-1 14:41
奇怪我更新這麼噴了
作者:
郭鎮武
時間:
2018-1-7 11:35
請問一下喔我是剛接觸的新手 我剛剛試了直接關遊戲 然後是全部複製貼上嗎?
作者:
btb
時間:
2018-1-7 11:48
郭鎮武 發表於 2018-1-7 11:35
請問一下喔我是剛接觸的新手 我剛剛試了直接關遊戲 然後是全部複製貼上嗎? ...
是的全部複製貼上
歡迎光臨 冰楓論壇 (https://bingfong.com/)
Powered by 冰楓
