Code:
Code:
void Unlock()
{
__try
{
WriteMemory((LPVOID)((DWORD)SFModule + 0x3D3A0C), (LPVOID)"\x73\x89", 2); //
}
__except (EXCEPTION_EXECUTE_HANDLER) {}
}
Assembly:
Code:
005139E3 68 60278600 PUSH SpecialF.00862760 ; ASCII "Item id is 0 or below 0"
005139E8 6A 00 PUSH 0x0
005139EA E8 E1CD2D05 CALL 057F07D0
005139EF 90 NOP
005139F0 8B4E 58 MOV ECX,DWORD PTR DS:[ESI+0x58] ; SpecialF.00310037
005139F3 8B46 60 MOV EAX,DWORD PTR DS:[ESI+0x60] ; SpecialF.00350035
005139F6 8B56 5C MOV EDX,DWORD PTR DS:[ESI+0x5C] ; SpecialF.00350032
005139F9 898C24 8C010000 MOV DWORD PTR SS:[ESP+0x18C],ECX
00513A00 8B0E MOV ECX,DWORD PTR DS:[ESI]
00513A02 898424 AC010000 MOV DWORD PTR SS:[ESP+0x1AC],EAX
00513A09 0FBE46 74 MOVSX EAX,BYTE PTR DS:[ESI+0x74]
00513A0D 898C24 94010000 MOV DWORD PTR SS:[ESP+0x194],ECX
00513A14 0FB64E 54 MOVZX ECX,BYTE PTR DS:[ESI+0x54]
00513A18 899424 90010000 MOV DWORD PTR SS:[ESP+0x190],EDX
00513A1F 8B56 30 MOV EDX,DWORD PTR DS:[ESI+0x30] ; SpecialF.0036002D
00513A22 898424 9C010000 MOV DWORD PTR SS:[ESP+0x19C],EAX
00513A29 899424 98010000 MOV DWORD PTR SS:[ESP+0x198],EDX
00513A30 8B56 64 MOV EDX,DWORD PTR DS:[ESI+0x64] ; SpecialF.00440032
00513A33 8D8424 8C010000 LEA EAX,DWORD PTR SS:[ESP+0x18C]
00513A3A 898C24 A0010000 MOV DWORD PTR SS:[ESP+0x1A0],ECX
00513A41 50 PUSH EAX
00513A42 8D8C24 70010000 LEA ECX,DWORD PTR SS:[ESP+0x170]
00513A49 899424 A8010000 MOV DWORD PTR SS:[ESP+0x1A8],EDX
00513A50 C78424 AC010000 00000000 MOV DWORD PTR SS:[ESP+0x1AC],0x0
00513A5B E8 D0AEF5FF CALL SpecialF.0046E930
SFModule ?
Code:
Global: DWORD SFModule;
then:
do
{
SFModule = (DWORD)GetModuleHandle("SpecialForce.exe");
Sleep(50);
} while (!SFModule);
Have fun unlocking ^^ greets aSia