TwMS v149_ICS_物品定位


//TwMS v149_ICS_物品定位
//Update: Jer?
//效果: 當物品在空中時即可撿取

[Enable]
Alloc(ICSHook, 64)
Label(ItemHack)
Label(FakeJmp1)
Label(FakeJmp2)
Label(FakeJmp3)
Label(FakeJmp4)
00C18F98:
DD ICSHook
ICSHook:
Cmp [Esp+10], 004EB5A2
Jne 006F3386
Mov [Esp+10], ItemHack
Jmp 006F3386
ItemHack:
test eax,eax
je FakeJmp1
sub dword ptr [ebp-34],14
add dword ptr [ebp-2c],14

FakeJmp1:
call 0094F978
mov [ebp+08],eax
mov eax,[esi+2C]
mov [ebp-10],eax
test eax,eax
je 004EB6D5
lea eax,[ebp-10]
push eax
call 004EA3BB
pop ecx
push eax
lea ecx,[ebp-1C]
call 004EA98B
mov esi,[ebp-18]
and dword ptr [ebp-04],00
cmp dword ptr [esi+30],00

jne FakeJmp2 //004EA8FA
push [esi+34]
mov ecx,[00E0BC04]
call 00589D98
test eax,eax
jne 004EB68A

FakeJmp2:
mov eax,[ebp+08]
sub eax,[esi+40]
cmp eax,00003A98

jnl FakeJmp3 //004EA92F
cmp dword ptr [esi+28],00
je FakeJmp3 //004E92F
mov ecx,[esi+2c]
test ecx,ecx
jne FakeJmp4 //004EA91F
mov eax,[edi+000020D8]
cmp [esi+24],eax
jne 004EB68A

FakeJmp4:
mov eax,[edi+0000429C]
cmp [esi+24],eax
jne 004EB68A
FakeJmp3:
cmp byte ptr [esi+1D],00
je 004EB68A
cmp dword ptr [esi+48],03

Jmp 004EB66B
[Disable]
00C18F98:
DD 006F3386
DeAlloc(ICSHook)

留言

本月最夯