::  ::  ::  ::  :: 管理

魔兽争霸3 地图全开的源代码

Posted on 2008-06-15 12:33 nt05 阅读(1480) 评论(0)  编辑 收藏 引用 所属分类: cpp
#include < windows . h >
#include < winbase . h >
 int main ()
{
     //Find wc3 windows
     HWND hwar3 =:: FindWindow ( NULL , "Warcraft III" );

     HANDLE hcurrent = GetCurrentProcess ();
     HANDLE hToken ;

     BOOL bret = OpenProcessToken ( hcurrent , 40 ,& hToken );

     LUID luid ;

     bret = LookupPrivilegeValue ( NULL , "SeDebugPrivilege" ,& luid );

     TOKEN_PRIVILEGES NewState , PreviousState ;
     DWORD ReturnLength ;

     NewState . PrivilegeCount = 1 ;
     NewState . Privileges [ 0 ]. Luid = luid ;
     NewState . Privileges [ 0 ]. Attributes = 2 ;

     bret = AdjustTokenPrivileges ( hToken , FALSE ,& NewState , 28 ,& PreviousState ,& ReturnLength );

     DWORD PID , TID ;
     TID = :: GetWindowThreadProcessId ( hwar3 , & PID );
     //Open wc3 process
     HANDLE hopen = OpenProcess ( PROCESS_ALL_ACCESS | PROCESS_TERMINATE | PROCESS_VM_OPERATION | PROCESS_VM_READ | PROCESS_VM_WRITE , FALSE , PID );


     //Write memory
     DWORD data = 0x74 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F4069F0 ,& data , 1 , 0 );
     data = 0x8B ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F406A0E ,& data , 1 , 0 );
     data = 0x09 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F406A0F ,& data , 1 , 0 );
     data = 0x90 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F406A10 ,& data , 1 , 0 );
     data = 0x8B ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F406A13 ,& data , 1 , 0 );
     data = 0x09 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F406A14 ,& data , 1 , 0 );
     data = 0x90 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F406A15 ,& data , 1 , 0 );
     data = 0x90 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F29FE20 ,& data , 1 , 0 );
     data = 0x90 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F29FE21 ,& data , 1 , 0 );
     data = 0x00 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F149198 ,& data , 1 , 0 );
     data = 0x40 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F2A0803 ,& data , 1 , 0 );
     data = 0x33 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F2A0804 ,& data , 1 , 0 );
     data = 0xC0 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F2A0805 ,& data , 1 , 0 );
     data = 0x42 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F2A0806 ,& data , 1 , 0 );
     data = 0x33 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F2A0807 ,& data , 1 , 0 );
     data = 0xD2 ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F2A0808 ,& data , 1 , 0 );
     data = 0xEB ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F14A0B4 ,& data , 1 , 0 );
     data = 0xEB ;
     bret = WriteProcessMemory ( hopen ,( LPVOID ) 0x6F2A0703 ,& data , 1 , 0 );

     //Close handle
     bret = CloseHandle ( hopen );  
     return 0 ;
}