|
|
发表于 2023-12-3 22:02:58
|
查看: 1475 |
回复: 0
$-A9 0 | 51 | push ecx |
$-A8 0 | 8B4424 08 | mov eax, dword ptr ss:[esp+8] |
$-A4 0 | 56 | push esi |
$-A3 0 | 57 | push edi |
$-A2 0 | 6A 01 | push 1 |
$-A0 0 | 50 | push eax |
$-9F 0 | E8 01A54100 | call qqsg.A51920 |
$-9A 0 | 83C4 08 | add esp, 8 |
$-97 0 | E8 45936A00 | call <JMP.&_ftol> |
$-92 0 | 8B0D 90982E01 | mov ecx, dword ptr ds:[12E9890] | 012E9890:"P$W$"
$-8C 0 | 8BF8 | mov edi, eax |
$-8A 0 | E8 4C2F3C00 | call <qqsg.[[基址]+14]> |
$-85 0 | 8BB0 98000000 | mov esi, dword ptr ds:[eax+98] |
$-7F 0 | 33C9 | xor ecx, ecx |
$-7D 0 | 3BF1 | cmp esi, ecx |
$-7B 0 | 75 06 | jne qqsg.637446 |
$-79 0 | 5F | pop edi |
$-78 0 | 33C0 | xor eax, eax |
$-76 0 | 5E | pop esi |
$-75 0 | 59 | pop ecx |
$ ==> 0 | 64:A1 00000000 | mov eax, dword ptr fs:[0] |
$+6 0 | 6A FF | push FFFFFFFF |
$+8 0 | 68 6B42CF00 | push qqsg.CF426B
$+D 0 | 50 | push eax
$+E 0 | 64:8925 00000000 | mov dword ptr fs:[0], esp
$+15 0 | 81EC 90000000 | sub esp, 90
$+1B 0 | 53 | push ebx
$+1C 0 | 8BD9 | mov ebx, ecx
$+1E 0 | 55 | push ebp
$+1F 0 | 56 | push esi
$+20 0 | 8B03 | mov eax, dword ptr ds:[ebx]
$+22 0 | 57 | push edi
$+23 0 | FF90 B0010000 | call dword ptr ds:[eax+1B0]
$+29 0 | 83F8 04 | cmp eax, 4
$+2C 0 | 0F84 E2020000 | je qqsg.4D7964
$+32 0 | 8B13 | mov edx, dword ptr ds:[ebx]
$+34 0 | 8BCB | mov ecx, ebx
$+36 0 | FF92 B0010000 | call dword ptr ds:[edx+1B0]
$+3C 0 | 83F8 10 | cmp eax, 10
$+3F 0 | 0F84 CF020000 | je qqsg.4D7964
$+45 0 | 8B0D 90982E01 | mov ecx, dword ptr ds:[12E9890]
$+4B 0 | E8 002D5200 | call qqsg.9FA3A0
$+50 0 | 8BAC24 B0000000 | mov ebp, dword ptr ss:[esp+B0]
$+57 0 | 8B0D 90982E01 | mov ecx, dword ptr ds:[12E9890]
$+5D 0 | 8BB0 38010000 | mov esi, dword ptr ds:[eax+138]
$+63 0 | 55 | push ebp
$+64 0 | E8 E72C5200 | call qqsg.9FA3A0 |
$+69 0 | 8BC8 | mov ecx, eax |
$+6B 0 | E8 D0D17400 | call qqsg.C24890 |
$+70 0 | 84C0 | test al, al |
$+72 0 | 75 0C | jne qqsg.4D76D0 |
$+74 0 | 6A 04 | push 4 |
$+76 0 | 68 B429E500 | push qqsg.E529B4 | E529B4:"/C25当前地图不能自动寻路!"
$+7B 0 | E9 8A020000 | jmp qqsg.4D795A |
$+80 0 | 8B8424 B4000000 | mov eax, dword ptr ss:[esp+B4] |
$+87 0 | 85C0 | test eax, eax |
$+89 0 | 0F8C 74020000 | jl qqsg.4D7953 |
$+8F 0 | 8BBC24 B8000000 | mov edi, dword ptr ss:[esp+B8] |
$+96 0 | 85FF | test edi, edi |
$+98 0 | 0F8C 65020000 | jl qqsg.4D7953 |
$+9E 0 | 3BF5 | cmp esi, ebp |
$+A0 0 | 89AB 38940000 | mov dword ptr ds:[ebx+9438], ebp |
$+A6 0 | 8983 4C940000 | mov dword ptr ds:[ebx+944C], eax |
$+AC 0 | 89BB 50940000 | mov dword ptr ds:[ebx+9450], edi |
$+B2 0 | 0F85 C2000000 | jne qqsg.4D77CA |
$+B8 0 | 8B0D E0382F01 | mov ecx, dword ptr ds:[12F38E0] |
$+BE 0 | 85C9 | test ecx, ecx
$+C0 0 | 74 18 | je qqsg.4D772A
$+C2 0 | 68 0000803F | push 3F800000
$+C7 0 | 6A 01 | push 1
$+C9 0 | 68 E8070000 | push 7E8
$+CE 0 | E8 8D1B5900 | call qqsg.A692B0
$+D3 0 | 8B8424 B4000000 | mov eax, dword ptr ss:[esp+B4]
$+DA 0 | 8B13 | mov edx, dword ptr ds:[ebx]
$+DC 0 | 6A 00 | push 0
$+DE 0 | 57 | push edi
$+DF 0 | 50 | push eax
$+E0 0 | 56 | push esi
$+E1 0 | 8BCB | mov ecx, ebx
$+E3 0 | FF92 F80F0000 | call dword ptr ds:[edx+FF8]
$+E9 0 | 84C0 | test al, al
$+EB 0 | 0F84 23020000 | je qqsg.4D7964
$+F1 0 | 8B13 | mov edx, dword ptr ds:[ebx]
$+F3 0 | 8BCB | mov ecx, ebx
$+F5 0 | FF52 74 | call dword ptr ds:[edx+74] |
$+F8 0 | 83F8 01 | cmp eax, 1 |
$+FB 0 | 0F84 13020000 | je qqsg.4D7964 |
$+101 0 | 8B0D 90982E01 | mov ecx, dword ptr ds:[12E9890] | 012E9890:"P$W$"
$+107 0 | 55 | push ebp |
$+108 0 | E8 432C5200 | call qqsg.9FA3A0 |
$+10D 0 | 8BC8 | mov ecx, eax |
$+10F 0 | E8 4CCC7400 | call qqsg.C243B0 |
$+114 0 | 8BF0 | mov esi, eax |
$+116 0 | B9 20000000 | mov ecx, 20 | 20:' '
$+11B 0 | 33C0 | xor eax, eax
$+11D 0 | 8D7C24 20 | lea edi, dword ptr ss:[esp+20]
$+121 0 | F3:AB | rep stosd
$+123 0 | B8 1F85EB51 | mov eax, 51EB851F
$+128 0 | F7AC24 B8000000 | imul dword ptr ss:[esp+B8]
$+12F 0 | C1FA 05 | sar edx, 5
$+132 0 | 8BC2 | mov eax, edx
$+134 0 | C1E8 1F | shr eax, 1F
$+137 0 | 03D0 | add edx, eax
$+139 0 | B8 1F85EB51 | mov eax, 51EB851F
$+13E 0 | 52 | push edx
$+13F 0 | F7AC24 B8000000 | imul dword ptr ss:[esp+B8]
$+146 0 | C1FA 05 | sar edx, 5
$+149 0 | 8BCA | mov ecx, edx
$+14B 0 | C1E9 1F | shr ecx, 1F
$+14E 0 | 03D1 | add edx, ecx
$+150 0 | 52 | push edx
$+151 0 | 56 | push esi |
$+152 0 | 68 8C29E500 | push qqsg.E5298C | E5298C:"启动自动寻路,目标地图:%s,坐标(%d,%d)."
$+157 0 | 8D5424 30 | lea edx, dword ptr ss:[esp+30] |
$+15B 0 | 6A 7F | push 7F |
$+15D 0 | 52 | push edx | edx:&"V嬹梃\x03"
$+15E 0 | FF15 30B8D200 | call dword ptr ds:[<&_snprintf>] |
$+164 0 | 8D4424 38 | lea eax, dword ptr ss:[esp+38] |
$+168 0 | 6A 04 | push 4 |
$+16A 0 | 50 | push eax |
$+16B 0 | 6A 01 | push 1 |
$+16D 0 | E8 1E905200 | call qqsg.A007E0 |
$+172 0 | 83C4 24 | add esp, 24 |
$+175 0 | E9 9A010000 | jmp qqsg.4D7964 |
$+17A 0 | 8B0D 90982E01 | mov ecx, dword ptr ds:[12E9890] | 012E9890:"P$W$"
$+180 0 | 55 | push ebp |
$+181 0 | 8D4424 14 | lea eax, dword ptr ss:[esp+14] |
$+185 0 | 56 | push esi |
$+186 0 | 50 | push eax |
$+187 0 | E8 C42B5200 | call qqsg.9FA3A0 |
$+18C 0 | 8BC8 | mov ecx, eax |
$+18E 0 | E8 9D010000 | call qqsg.4D7980 |
$+193 0 | 8BF8 | mov edi, eax |
$+195 0 | 8DB3 3C940000 | lea esi, dword ptr ds:[ebx+943C] |
$+19B 0 | C78424 A8000000 00000 | mov dword ptr ss:[esp+A8], 0
$+1A6 0 | 3BF7 | cmp esi, edi
$+1A8 0 | 0F84 06010000 | je qqsg.4D7904
$+1AE 0 | 8B6F 04 | mov ebp, dword ptr ds:[edi+4]
$+1B1 0 | 85ED | test ebp, ebp
$+1B3 0 | 75 04 | jne qqsg.4D7809
$+1B5 0 | 33D2 | xor edx, edx
$+1B7 0 | EB 08 | jmp qqsg.4D7811
$+1B9 0 | 8B57 08 | mov edx, dword ptr ds:[edi+8]
$+1BC 0 | 2BD5 | sub edx, ebp
$+1BE 0 | C1FA 02 | sar edx, 2
$+1C1 0 | 8B4E 04 | mov ecx, dword ptr ds:[esi+4]
$+1C4 0 | 85C9 | test ecx, ecx
$+1C6 0 | 75 04 | jne qqsg.4D781C
$+1C8 0 | 33C0 | xor eax, eax
$+1CA 0 | EB 08 | jmp qqsg.4D7824
$+1CC 0 | 8B46 08 | mov eax, dword ptr ds:[esi+8]
$+1CF 0 | 2BC1 | sub eax, ecx
$+1D1 0 | C1F8 02 | sar eax, 2
$+1D4 0 | 3BD0 | cmp edx, eax
$+1D6 0 | 77 2F | ja qqsg.4D7857
$+1D8 0 | 8B47 08 | mov eax, dword ptr ds:[edi+8]
$+1DB 0 | 51 | push ecx
$+1DC 0 | 50 | push eax |
$+1DD 0 | 55 | push ebp |
$+1DE 0 | E8 ED430200 | call qqsg.4FBC20 |
$+1E3 0 | 8B4E 08 | mov ecx, dword ptr ds:[esi+8] |
$+1E6 0 | 83C4 0C | add esp, C |
$+1E9 0 | 51 | push ecx |
$+1EA 0 | 50 | push eax |
$+1EB 0 | 8BCE | mov ecx, esi |
$+1ED 0 | E8 3EA9F3FF | call qqsg.412180 |
$+1F2 0 | 8BCF | mov ecx, edi |
$+1F4 0 | E8 07A7F3FF | call qqsg.411F50 |
$+1F9 0 | 8B56 04 | mov edx, dword ptr ds:[esi+4] |
$+1FC 0 | 8D0482 | lea eax, dword ptr ds:[edx+eax*4] |
$+1FF 0 | 8946 08 | mov dword ptr ds:[esi+8], eax |
$+202 0 | E9 A6000000 | jmp qqsg.4D78FD |
$+207 0 | 8BCF | mov ecx, edi |
$+209 0 | E8 F2A6F3FF | call qqsg.411F50 |
$+20E 0 | 8BCE | mov ecx, esi |
$+210 0 | 8BE8 | mov ebp, eax |
$+212 0 | E8 49F80100 | call qqsg.4F70B0 |
$+217 0 | 3BE8 | cmp ebp, eax |
$+219 0 | 77 41 | ja qqsg.4D78AC |
$+21B 0 | 8B6F 04 | mov ebp, dword ptr ds:[edi+4] |
$+21E 0 | 8BCE | mov ecx, esi |
$+220 0 | E8 DBA6F3FF | call qqsg.411F50 |
$+225 0 | 8B4E 04 | mov ecx, dword ptr ds:[esi+4] |
$+228 0 | 8D6C85 00 | lea ebp, dword ptr ss:[ebp+eax*4] |
$+22C 0 | 8B47 04 | mov eax, dword ptr ds:[edi+4] |
$+22F 0 | 51 | push ecx |
$+230 0 | 55 | push ebp |
$+231 0 | 50 | push eax |
$+232 0 | E8 99430200 | call qqsg.4FBC20 |
$+237 0 | 8B56 08 | mov edx, dword ptr ds:[esi+8] |
$+23A 0 | 8B47 08 | mov eax, dword ptr ds:[edi+8] |
$+23D 0 | 83C4 0C | add esp, C |
$+240 0 | 8BCE | mov ecx, esi |
$+242 0 | 52 | push edx |
$+243 0 | 50 | push eax |
$+244 0 | 55 | push ebp |
$+245 0 | E8 F6A8F3FF | call qqsg.412190 |
$+24A 0 | 8BCF | mov ecx, edi |
$+24C 0 | E8 AFA6F3FF | call qqsg.411F50 |
$+251 0 | 8B4E 04 | mov ecx, dword ptr ds:[esi+4] |
$+254 0 | 8D1481 | lea edx, dword ptr ds:[ecx+eax*4] |
$+257 0 | 8956 08 | mov dword ptr ds:[esi+8], edx |
$+25A 0 | EB 51 | jmp qqsg.4D78FD |
$+25C 0 | 8B46 08 | mov eax, dword ptr ds:[esi+8] |
$+25F 0 | 8B4E 04 | mov ecx, dword ptr ds:[esi+4] |
$+262 0 | 50 | push eax |
$+263 0 | 51 | push ecx |
$+264 0 | 8BCE | mov ecx, esi |
$+266 0 | E8 C5A8F3FF | call qqsg.412180 |
$+26B 0 | 8B46 04 | mov eax, dword ptr ds:[esi+4] |
$+26E 0 | 50 | push eax |
$+26F 0 | E8 8A8E8000 | call <JMP.&??3@YAXPAX@Z> |
$+274 0 | 83C4 04 | add esp, 4 |
$+277 0 | 8BCF | mov ecx, edi |
$+279 0 | E8 82A6F3FF | call qqsg.411F50 |
$+27E 0 | 85C0 | test eax, eax |
$+280 0 | 7D 02 | jge qqsg.4D78D4 |
$+282 0 | 33C0 | xor eax, eax |
$+284 0 | 8D1485 00000000 | lea edx, dword ptr ds:[eax*4] |
$+28B 0 | 52 | push edx |
$+28C 0 | E8 918E8000 | call <JMP.&??2@YAPAXI@Z> |
$+291 0 | 83C4 04 | add esp, 4 |
$+294 0 | 8946 04 | mov dword ptr ds:[esi+4], eax |
$+297 0 | 8B4F 08 | mov ecx, dword ptr ds:[edi+8] |
$+29A 0 | 8B7F 04 | mov edi, dword ptr ds:[edi+4] |
$+29D 0 | 50 | push eax |
$+29E 0 | 51 | push ecx |
$+29F 0 | 57 | push edi |
$+2A0 0 | 8BCE | mov ecx, esi |
$+2A2 0 | E8 99A8F3FF | call qqsg.412190 |
$+2A7 0 | 8946 08 | mov dword ptr ds:[esi+8], eax |
$+2AA 0 | 8946 0C | mov dword ptr ds:[esi+C], eax |
$+2AD 0 | 8BAC24 B0000000 | mov ebp, dword ptr ss:[esp+B0] |
$+2B4 0 | 8B4424 14 | mov eax, dword ptr ss:[esp+14] |
$+2B8 0 | C78424 A8000000 FFFFF | mov dword ptr ss:[esp+A8], FFFFFFFF |
$+2C3 0 | 50 | push eax |
$+2C4 0 | E8 358E8000 | call <JMP.&??3@YAXPAX@Z> |
$+2C9 0 | 8B46 04 | mov eax, dword ptr ds:[esi+4] |
$+2CC 0 | 83C4 04 | add esp, 4 |
$+2CF 0 | 85C0 | test eax, eax |
$+2D1 0 | 74 27 | je qqsg.4D794A |
$+2D3 0 | 8B4E 08 | mov ecx, dword ptr ds:[esi+8] |
$+2D6 0 | 2BC8 | sub ecx, eax |
$+2D8 0 | F7C1 FCFFFFFF | test ecx, FFFFFFFC |
$+2DE 0 | 74 1A | je qqsg.4D794A |
$+2E0 0 | 8B93 44940000 | mov edx, dword ptr ds:[ebx+9444]
$+2E6 0 | 396A FC | cmp dword ptr ds:[edx-4], ebp |
$+2E9 0 | 75 0F | jne qqsg.4D794A |
$+2EB 0 | 8B03 | mov eax, dword ptr ds:[ebx] |
$+2ED 0 | 8BCB | mov ecx, ebx |
$+2EF 0 | FF90 F40F0000 | call dword ptr ds:[eax+FF4] |
$+2F5 0 | E9 EFFDFFFF | jmp qqsg.4D7739 |
$+2FA 0 | 6A 04 | push 4 |
$+2FC 0 | 68 7429E500 | push qqsg.E52974 | E52974:"/C25地图间没有可达路径!"
$+301 0 | EB 07 | jmp qqsg.4D795A |
$+303 0 | 6A 04 | push 4 |
$+305 0 | 68 5C29E500 | push qqsg.E5295C | E5295C:"/C25目标坐标值不合法!"
$+30A 0 | 6A 01 | push 1 |
$+30C 0 | E8 7F8E5200 | call qqsg.A007E0 |
$+311 0 | 83C4 0C | add esp, C |
$+314 0 | 8B8C24 A0000000 | mov ecx, dword ptr ss:[esp+A0] |
$+31B 0 | 5F | pop edi |
$+31C 0 | 5E | pop esi
$+31D 0 | 5D | pop ebp
$+31E 0 | 5B | pop ebx
$+31F 0 | 64:890D 00000000 | mov dword ptr fs:[0], ecx
$+326 0 | 81C4 9C000000 | add esp, 9C
$+32C 0 | C2 0C00 | ret C
$+32F 0 | 90 | nop
$+330 0 | 6A FF | push FFFFFFFF
$+332 0 | 68 A742CF00 | push qqsg.CF42A7
$+337 0 | 64:A1 00000000 | mov eax, dword ptr fs:[0]
$+33D 0 | 50 | push eax
$+33E 0 | 64:8925 00000000 | mov dword ptr fs:[0], esp
$+345 0 | 83EC 24 | sub esp, 24
$+348 0 | 8A4424 3C | mov al, byte ptr ss:[esp+3C]
$+34C 0 | 53 | push ebx
$+34D 0 | 56 | push esi
$+34E 0 | 33DB | xor ebx, ebx
$+350 0 | 57 | push edi
$+351 0 | 8BF9 | mov edi, ecx
$+353 0 | 895C24 0C | mov dword ptr ss:[esp+C], ebx
$+357 0 | 884424 10 | mov byte ptr ss:[esp+10], al
$+35B 0 | 895C24 14 | mov dword ptr ss:[esp+14], ebx
$+35F 0 | 895C24 18 | mov dword ptr ss:[esp+18], ebx
$+363 0 | 895C24 1C | mov dword ptr ss:[esp+1C], ebx
$+367 0 | 8B4C24 48 | mov ecx, dword ptr ss:[esp+48]
$+36B 0 | 8B5424 44 | mov edx, dword ptr ss:[esp+44]
$+36F 0 | 51 | push ecx
$+370 0 | 8D4424 24 | lea eax, dword ptr ss:[esp+24]
$+374 0 | 52 | push edx
$+375 0 | 50 | push eax
$+376 0 | 8D8F 78010000 | lea ecx, dword ptr ds:[edi+178]
$+37C 0 | C74424 44 01000000 | mov dword ptr ss:[esp+44], 1
$+384 0 | E8 B7000000 | call qqsg.4D7A90
$+389 0 | 50 | push eax
$+38A 0 | 8D4C24 14 | lea ecx, dword ptr ss:[esp+14]
$+38E 0 | C64424 3C 02 | mov byte ptr ss:[esp+3C], 2
$+393 0 | E8 1854F4FF | call qqsg.41CE00
$+398 0 | 8B4C24 28 | mov ecx, dword ptr ss:[esp+28]
$+39C 0 | 8B5424 24 | mov edx, dword ptr ss:[esp+24]
$+3A0 0 | 51 | push ecx
$+3A1 0 | 52 | push edx
$+3A2 0 | 8D4C24 28 | lea ecx, dword ptr ss:[esp+28]
$+3A6 0 | C64424 40 01 | mov byte ptr ss:[esp+40], 1
$+3AB 0 | E8 80A7F3FF | call qqsg.412180
$+3B0 0 | 8B4424 24 | mov eax, dword ptr ss:[esp+24]
$+3B4 0 | 50 | push eax
$+3B5 0 | E8 448D8000 | call <JMP.&??3@YAXPAX@Z>
$+3BA 0 | 8B7424 18 | mov esi, dword ptr ss:[esp+18]
$+3BE 0 | 8B4424 1C | mov eax, dword ptr ss:[esp+1C]
$+3C2 0 | 83C4 04 | add esp, 4
$+3C5 0 | 3BF0 | cmp esi, eax
$+3C7 0 | 74 2E | je qqsg.4D7A47
$+3C9 0 | 8B0E | mov ecx, dword ptr ds:[esi]
$+3CB 0 | 51 | push ecx
$+3CC 0 | 8BCF | mov ecx, edi
$+3CE 0 | E8 CDCE7400 | call qqsg.C248F0
$+3D3 0 | 84C0 | test al, al
$+3D5 0 | 74 0D | je qqsg.4D7A34
$+3D7 0 | 8B4424 18 | mov eax, dword ptr ss:[esp+18]
$+3DB 0 | 83C6 04 | add esi, 4
$+3DE 0 | 3BF0 | cmp esi, eax
$+3E0 0 | 75 E7 | jne qqsg.4D7A19
$+3E2 0 | EB 13 | jmp qqsg.4D7A47
$+3E4 0 | 8B5424 18 | mov edx, dword ptr ss:[esp+18]
$+3E8 0 | 8B4424 14 | mov eax, dword ptr ss:[esp+14]
$+3EC 0 | 52 | push edx
$+3ED 0 | 50 | push eax
$+3EE 0 | 8D4C24 18 | lea ecx, dword ptr ss:[esp+18]
$+3F2 0 | E8 49D6F5FF | call qqsg.435090 |
$+3F7 0 | 8B7424 40 | mov esi, dword ptr ss:[esp+40] |
$+3FB 0 | 8D4C24 10 | lea ecx, dword ptr ss:[esp+10] |
$+3FF 0 | 51 | push ecx |
$+400 0 | 8BCE | mov ecx, esi |
$+402 0 | E8 6995F9FF | call qqsg.470FC0 |
$+407 0 | C74424 0C 01000000 | mov dword ptr ss:[esp+C], 1 |
$+40F 0 | 8D4C24 10 | lea ecx, dword ptr ss:[esp+10] |
$+413 0 | 885C24 38 | mov byte ptr ss:[esp+38], bl |
$+417 0 | E8 B4A4F3FF | call qqsg.411F20 |
$+41C 0 | 8B4C24 30 | mov ecx, dword ptr ss:[esp+30] |
$+420 0 | 8BC6 | mov eax, esi |
$+422 0 | 5F | pop edi |
$+423 0 | 5E | pop esi |
$+424 0 | 5B | pop ebx |
$+425 0 | 64:890D 00000000 | mov dword ptr fs:[0], ecx |
$+42C 0 | 83C4 30 | add esp, 30 |
$+42F 0 | C2 0C00 | ret C |
$+432 0 | 90 | nop |
|
|
游戏安全课程 学员办理咨询联系QQ150330575 手机 139 9636 2600 免费课程 在 www.bilibili.com 搜 郁金香灬老师
|
|
