魔兽世界 怀旧服 WowClassic.exe 明文包
#include "stdafx.h"
//修理所有装备 luaregCAll
//修理所有装备 luaregcall
//WowClassic.exe+EBC870 - 48 89 5C 24 08 - mov ,rbx
//WowClassic.exe+EBC875 - 57 - push rdi
//WowClassic.exe+EBC876 - 48 81 EC 80000000 - sub rsp,00000080
//WowClassic.exe+EBC87D - 41 B9 88000000 - mov r9d,00000088
//WowClassic.exe+EBC883 - 4C 8D 05 669BE100 - lea r8, : ["d:\buildserver\wow\1\work\shared-checkout\branches\wow-classic-1_13_4-branch-fastpatch-2\wow\source\ui\merchantframe.cpp"]
//WowClassic.exe+EBC88A - 48 8B F9 - mov rdi,rcx
//WowClassic.exe+EBC88D - 48 8D 0D E4B56F01 - lea rcx, :
//WowClassic.exe+EBC894 - 41 8D 51 98 - lea edx,
//WowClassic.exe+EBC898 - E8 038FCAFF - call WowClassic.exe+B657A0
//WowClassic.exe+EBC89D - 48 85 C0 - test rax,rax
//WowClassic.exe+EBC8A0 - 0F84 AF000000 - je WowClassic.exe+EBC955
//WowClassic.exe+EBC8A6 - 48 8B 80 88010000 - mov rax,
//WowClassic.exe+EBC8AD - 8B 90 D0010000 - mov edx,
//WowClassic.exe+EBC8B3 - C1 EA 0C - shr edx,0C
//WowClassic.exe+EBC8B6 - F6 C2 01 - test dl,01
//WowClassic.exe+EBC8B9 - 0F84 96000000 - je WowClassic.exe+EBC955
//WowClassic.exe+EBC8BF - E8 7C8E2BFF - call WowClassic.exe+175740
//WowClassic.exe+EBC8C4 - 48 8B D8 - mov rbx,rax
//WowClassic.exe+EBC8C7 - 48 85 C0 - test rax,rax
//WowClassic.exe+EBC8CA - 0F84 85000000 - je WowClassic.exe+EBC955
//WowClassic.exe+EBC8D0 - BA 01000000 - mov edx,00000001
//WowClassic.exe+EBC8D5 - 48 8B CF - mov rcx,rdi
//WowClassic.exe+EBC8D8 - E8 E3327900 - call WowClassic.exe+164FBC0
//WowClassic.exe+EBC8DD - 8B F8 - mov edi,eax
//WowClassic.exe+EBC8DF - 85 C0 - test eax,eax
//WowClassic.exe+EBC8E1 - 75 35 - jne WowClassic.exe+EBC918
//WowClassic.exe+EBC8E3 - 48 8B 8B 90B10000 - mov rcx,
//WowClassic.exe+EBC8EA - 48 8B 99 20080000 - mov rbx,
//WowClassic.exe+EBC8F1 - E8 5A1F0000 - call WowClassic.exe+EBE850
//WowClassic.exe+EBC8F6 - 8B C8 - mov ecx,eax
//WowClassic.exe+EBC8F8 - 48 3B CB - cmp rcx,rbx
//WowClassic.exe+EBC8FB - 76 1B - jna WowClassic.exe+EBC918
//WowClassic.exe+EBC8FD - 8D 4F 29 - lea ecx,
//WowClassic.exe+EBC900 - E8 0B49EAFF - call WowClassic.exe+D61210
//WowClassic.exe+EBC905 - 33 C0 - xor eax,eax
//WowClassic.exe+EBC907 - 48 8B 9C 24 90000000- mov rbx,
//WowClassic.exe+EBC90F - 48 81 C4 80000000 - add rsp,00000080
//WowClassic.exe+EBC916 - 5F - pop rdi
//WowClassic.exe+EBC917 - C3 - ret
//WowClassic.exe+EBC918 - 48 8D 4C 24 30 - lea rcx,
//WowClassic.exe+EBC91D - E8 CEB1B800 - call WowClassic.exe+1A47AF0g_CALL1修理所有装备
//WowClassic.exe+EBC922 - 0F10 05 4FB56F01 - movups xmm0,
//WowClassic.exe+EBC929 - 33 C0 - xor eax,eax
//WowClassic.exe+EBC92B - 48 8D 4C 24 30 - lea rcx,
//WowClassic.exe+EBC930 - 48 89 44 24 20 - mov ,rax
//WowClassic.exe+EBC935 - 85 FF - test edi,edi
//WowClassic.exe+EBC937 - 0F29 44 24 50 - movaps ,xmm0
//WowClassic.exe+EBC93C - 48 89 44 24 28 - mov ,rax
//WowClassic.exe+EBC941 - 0F95 44 24 70 - setne
//WowClassic.exe+EBC946 - 0F10 44 24 20 - movups xmm0,
//WowClassic.exe+EBC94B - 0F29 44 24 60 - movaps ,xmm0
//WowClassic.exe+EBC950 - E8 5B254600 - call WowClassic.exe+131EEB0 mwsend
//WowClassic.exe+EBC955 - 48 8B 9C 24 90000000- mov rbx,
//WowClassic.exe+EBC95D - 33 C0 - xor eax,eax
//WowClassic.exe+EBC95F - 48 81 C4 80000000 - add rsp,00000080
//WowClassic.exe+EBC966 - 5F - pop rdi
//WowClassic.exe+EBC967 - C3 - ret
//static const UINT_PTR g_CALL修理所有装备 =0xEBC918;
//push rdi
//sub rsp,0x80
//jmpWowClassic.exe+1A47AF0
//修理所有装备 luaregCAll
//WowClassic.exe+EBC918 - 48 8D 4C 24 30 - lea rcx,
//WowClassic.exe+EBC91D - E8 CEB1B800 - call WowClassic.exe+1A47AF0 g_CALL1修理所有装备
//WowClassic.exe+EBC922 - 0F10 05 4FB56F01 - movups xmm0, g_打开NPC ID1 ID2
//WowClassic.exe+EBC929 - 33 C0 - xor eax,eax// 33 C0 48 8D 4C 24 30 48 89 44 24 20 85 FF
//WowClassic.exe+EBC92B - 48 8D 4C 24 30 - lea rcx,
//WowClassic.exe+EBC930 - 48 89 44 24 20 - mov ,rax
//WowClassic.exe+EBC935 - 85 FF - test edi,edi
//WowClassic.exe+EBC937 - 0F29 44 24 50 - movaps ,xmm0 //npc id1,id2
//WowClassic.exe+EBC93C - 48 89 44 24 28 - mov ,rax
//WowClassic.exe+EBC941 - 0F95 44 24 70 - setne
//WowClassic.exe+EBC946 - 0F10 44 24 20 - movups xmm0,
//WowClassic.exe+EBC94B - 0F29 44 24 60 - movaps ,xmm0
//WowClassic.exe+EBC950 - E8 5B254600 - call WowClassic.exe+131EEB0g_CALL2修理所有装备 mwsd 明文发包
//WowClassic.exe+EBC955 - 48 8B 9C 24 90000000- mov rbx,
//WowClassic.exe+EBC95D - 33 C0 - xor eax,eax
//WowClassic.exe+EBC95F - 48 81 C4 80000000 - add rsp,00000080
//WowClassic.exe+EBC966 - 5F - pop rdi
//WowClassic.exe+EBC967 - C3 - ret
//也可以尝试 遍历NPC 获取 NPC的ID1 ID2
void TCALL::修理所有装备()
{
UINT64 nrcx={0};
UINT64 pcall1=TBASE::GetExeBase()+g_CALL1修理所有装备;
call2_sendx64(pcall1,(UINT64)nrcx,0);
UINT64 NPCID=(UINT64)(TBASE::GetExeBase()+g_打开NPCID);
nrcx=R8(NPCID+0x00);//NPCID;
nrcx=R8(NPCID+0x08);//NPCID;
UINT64 pcall2=TBASE::GetExeBase()+g_CALL2修理所有装备;//g_CALL修理所有装备;
call2_sendx64(pcall2,(UINT64)nrcx,0);
};
页:
[1]