另外把之前写的ceaa复制过来:
另外,秉着共享的精神(其实是因为紫肥过于恶心),我干脆分享一个ceaa,你们可以如果谁在玩新版本的私服的话,可以考虑用这个脚本屏蔽掉紫肥,当然最好是你用od或者ida直接编译到dll里,当然工程量不大,你直接用notpead++改也可以,这样的话就不用每次启动还开ce
下面ceaa(理论上可以用于2.4以后任意版本),你自己去导入,严禁用于官服:
[ENABLE]
aobscanmodule(aobLouisMa,mp.dll,33 C0 8B 0D * * * * BE 01 00 00 00 )
registersymbol(aobLouisMa)
aobLouisMa-E:
db 90 E9
[DISABLE]
aobLouisMa-E:
db 0F 86
unregistersymbol(aobLouisMa)
{
// ORIGINAL CODE - INJECTION POINT: mp.dll+6C5AD8
mp.dll+6C5AA1: 83 F8 0F - cmp eax,0F
mp.dll+6C5AA4: 0F 85 AE 02 00 00 - jne mp.dll+6C5D58
mp.dll+6C5AAA: A1 D8 7B 59 41 - mov eax,[mp.dll+1627BD8]
mp.dll+6C5AAF: 80 B8 2C 02 00 00 00 - cmp byte ptr [eax+0000022C],00
mp.dll+6C5AB6: 0F 84 9C 02 00 00 - je mp.dll+6C5D58
mp.dll+6C5ABC: F3 0F 10 87 14 01 00 00 - movss xmm0,[edi+00000114]
mp.dll+6C5AC4: A1 64 7A 59 41 - mov eax,[mp.dll+1627A64]
mp.dll+6C5AC9: F3 0F 58 05 18 DD 2C 41 - addss xmm0,[mp.dll+135DD18]
mp.dll+6C5AD1: F3 0F 10 08 - movss xmm1,[eax]
mp.dll+6C5AD5: 0F 2F C8 - comiss xmm1,xmm0
mp.dll+6C5AD8: 0F 86 7A 02 00 00 - jbe mp.dll+6C5D58//将这一句改成jmp
mp.dll+6C5ADE: F3 0F 11 8F 14 01 00 00 - movss [edi+00000114],xmm1
// ---------- INJECTING HERE ----------//检索的特征码
mp.dll+6C5AE6: 33 C0 - xor eax,eax
mp.dll+6C5AE8: 8B 0D 64 7A 59 41 - mov ecx,[mp.dll+1627A64]
mp.dll+6C5AEE: BE 01 00 00 00 - mov esi,00000001
// ---------- DONE INJECTING ----------
mp.dll+6C5AF3: 89 45 FC - mov [ebp-04],eax
mp.dll+6C5AF6: 39 B1 90 00 00 00 - cmp [ecx+00000090],esi
mp.dll+6C5AFC: 7C 49 - jl mp.dll+6C5B47
mp.dll+6C5AFE: 33 FF - xor edi,edi
mp.dll+6C5B00: 56 - push esi
mp.dll+6C5B01: E8 B7 09 96 FF - call mp.cronoboteffect+1E
}