LOL无限视距最新od找法
本帖最后由 jwjw 于 2016-5-27 23:10 编辑搜索特征码:770D0F2FD176050F28C2EB030F28C10F2E8600AD7123 CC int3
00AD7124 CC int3
00AD7125 CC int3
00AD7126 CC int3
00AD7127 CC int3
00AD7128 CC int3
00AD7129 CC int3
00AD712A CC int3
00AD712B CC int3
00AD712C CC int3
00AD712D CC int3
00AD712E CC int3
00AD712F CC int3
00AD7130 6A FF push -0x1
00AD7132 68 EE132701 push 0x12713EE
00AD7137 64:A1 00000000mov eax,dword ptr fs:
00AD713D 50 push eax
00AD713E 51 push ecx
00AD713F 56 push esi
00AD7140 A1 40985D01 mov eax,dword ptr ds:
00AD7145 33C4 xor eax,esp
00AD7147 50 push eax
00AD7148 8D4424 0C lea eax,dword ptr ss:
00AD714C 64:A3 00000000mov dword ptr fs:,eax
00AD7152 8BF1 mov esi,ecx
00AD7154 A1 E0832803 mov eax,dword ptr ds:
00AD7159 A8 01 test al,0x1
00AD715B 75 33 jnz short 00AD7190
00AD715D 83C8 01 or eax,0x1
00AD7160 A3 E0832803 mov dword ptr ds:,eax
00AD7165 6A 00 push 0x0
00AD7167 6A 00 push 0x0
00AD7169 BA 28594201 mov edx,0x1425928 ; ASCII "CameraZoomToMinMaxEnable"
00AD716E C74424 1C 00000>mov dword ptr ss:,0x0
00AD7176 B9 98CD2E01 mov ecx,0x12ECD98 ; ASCII "Replay"
00AD717B E8 B0CE1800 call 00C64030
00AD7180 83C4 08 add esp,0x8
00AD7183 85C0 test eax,eax
00AD7185 0F95C1 setne cl
00AD7188 880D E4832803 mov byte ptr ds:,cl
00AD718E EB 06 jmp short 00AD7196
00AD7190 8A0D E4832803 mov cl,byte ptr ds:
00AD7196 8B4424 1C mov eax,dword ptr ss:
00AD719A F3:0F108E 24020>movss xmm1,dword ptr ds:
00AD71A2 8B40 4C mov eax,dword ptr ds:
00AD71A5 66:0F6EC0 movd mm0,eax
00AD71A9 0F5B ??? ; 未知命令
00AD71AB C0F3 0F sal bl,0xF
00AD71AE 5C pop esp ; 7761C976
00AD71AF C8 84C974 enter 0xC984,0x74
00AD71B3 1E push ds
00AD71B4 85C0 test eax,eax
00AD71B6 7E 0D jle short 00AD71C5
00AD71B8 8B86 A0020000 mov eax,dword ptr ds:
00AD71BE F3:0F1048 24 movss xmm1,dword ptr ds:
00AD71C3 EB 0D jmp short 00AD71D2
00AD71C5 79 0B jns short 00AD71D2
00AD71C7 8B86 A0020000 mov eax,dword ptr ds:
00AD71CD F3:0F1048 28 movss xmm1,dword ptr ds:
00AD71D2 80BE 29020000 0>cmp byte ptr ds:,0x0
00AD71D9 75 50 jnz short 00AD722B
00AD71DB 80BE 28020000 0>cmp byte ptr ds:,0x0
00AD71E2 75 0D jnz short 00AD71F1
00AD71E4 8B86 14020000 mov eax,dword ptr ds:
00AD71EA F3:0F1040 28 movss xmm0,dword ptr ds:
00AD71EF EB 08 jmp short 00AD71F9
00AD71F1 F3:0F1005 409C4>movss xmm0,dword ptr ds:
00AD71F9 0F2FC8 comiss xmm1,xmm0
00AD71FC 8B86 14020000 mov eax,dword ptr ds:
00AD7202 F3:0F1050 24 movss xmm2,dword ptr ds:
00AD7207 77 0D ja short 00AD7216 ; 无限视距基址
00AD7209 0F2FD1 comiss xmm2,xmm1
00AD720C 76 05 jbe short 00AD7213
00AD720E 0F28C2 movaps xmm0,xmm2
00AD7211 EB 03 jmp short 00AD7216
00AD7213 0F28C1 movaps xmm0,xmm1
00AD7216 0F2E86 24020000 ucomiss xmm0,dword ptr ds:
00AD721D 9F lahf
00AD721E F6C4 44 test ah,0x44
00AD7221 7B 08 jpo short 00AD722B
00AD7223 F3:0F1186 24020>movss dword ptr ds:,xmm0
00AD722B 8B4C24 0C mov ecx,dword ptr ss:
00AD722F 64:890D 0000000>mov dword ptr fs:,ecx
00AD7236 59 pop ecx ; 7761C976
00AD7237 5E pop esi ; 7761C976
00AD7238 83C4 10 add esp,0x10
这也算找法?呵呵了直接给出答案 下什么API断点F怎么跟到那?这些怎么不说有什么卵用 每次更新特征码都会变? 这不算教程..... 打开LOL OD就废了 你怎么附加? 醉了,兄弟,你是看我的特征码来找到的基址,然后复制下来的吧....还有你的特征码,也是666,770D0F2FD176050F28C2EB030F28C10F2E86,你觉得能用?懂汇编的都知道怎么分析特征码 https://www.52hb.com/forum.php?mod=viewthread&tid=23937&page=1#pid833527这个特征码能用 {:5_188:}何必搞的这么麻烦 ....我从6.3开始一直用一个dll视距。。到现在还能用 {:5_117:}求个特征码找法啊或者API断点位置 我从6.3开始一直用一个dll视距 涨知识了,谢谢楼主分享!!