module1.bas

能显示人物信息武林外传VB,初初学者可以看懂

Attribute VB_Name = "Module1"
Option Explicit
'---------------声明函数-----------------------
'得到窗体句柄的函数,FindWindow函数用来返回符合指定的类名( ClassName )和窗口名( WindowTitle )的窗口句柄
Public Declare Function FindWindow Lib "user32" Alias "FindWindowA" (ByVal lpClassName As String, ByVal lpWindowName As String) As Long
'得到窗体控件句柄的函数
Public Declare Function FindWindowEx Lib "user32" Alias "FindWindowExA" (ByVal hWnd1 As Long, ByVal hWnd2 As Long, ByVal lpsz1 As String, ByVal lpsz2 As String) As Long
'得到进程标识符的函数
Public Declare Function GetWindowThreadProcessId Lib "user32" (ByVal hWnd As Long, lpdwProcessId As Long) As Long
'得到目标进程句柄的函数
Public Declare Function OpenProcess Lib "kernel32" (ByVal dwDesiredAccess As Long, ByVal bInheritHandle As Long, ByVal dwProcessId As Long) As Long
'关闭句柄的函数
Public Declare Function CloseHandle Lib "kernel32" (ByVal hObject As Long) As Long
'读取进程内存的函数
Public Declare Function ReadProcessMemory Lib "kernel32.dll" (ByVal hProcess As Long, ByVal lpBaseAddress As Long, ByRef lpBuffer As Any, ByVal nSize As Long, ByRef lpNumberOfBytesWritten As Long) As Long
'发送信息的函数
Public Declare Function SendMessage Lib "user32" Alias "SendMessageA" (ByVal hWnd As Long, ByVal wMsg As Long, ByVal wParam As Long, lParam As Any) As Long
Public Declare Function PostMessage Lib "user32" Alias "PostMessageA" (ByVal hWnd As Long, ByVal wMsg As Long, ByVal wParam As Long, ByVal lParam As Long) As Long
'延迟函数
Public Declare Sub Sleep Lib "kernel32" (ByVal dwMilliseconds As Long)
Public Declare Sub keybd_event Lib "user32" (ByVal bVk As Byte, ByVal bScan As Byte, ByVal dwFlags As Long, ByVal dwExtraInfo As Long)
''参数决定了对进程的存储权限，使用完全控制
Public Const PROCESS_ALL_ACCESS = &H1F0FFF



'---------下----------发送按键部分---------------------
Declare Function MapPhysToLin Lib "WinIo.dll" (ByVal PhysAddr As Long, ByVal PhysSize As Long, ByRef PhysMemHandle) As Long
Declare Function UnmapPhysicalMemory Lib "WinIo.dll" (ByVal PhysMemHandle, ByVal LinAddr) As Boolean
Declare Function GetPhysLong Lib "WinIo.dll" (ByVal PhysAddr As Long, ByRef PhysVal As Long) As Boolean
Declare Function SetPhysLong Lib "WinIo.dll" (ByVal PhysAddr As Long, ByVal PhysVal As Long) As Boolean
Declare Function GetPortVal Lib "WinIo.dll" (ByVal PortAddr As Integer, ByRef PortVal As Long, ByVal bSize As Byte) As Boolean
Declare Function SetPortVal Lib "WinIo.dll" (ByVal PortAddr As Integer, ByVal PortVal As Long, ByVal bSize As Byte) As Boolean
Declare Function InitializeWinIo Lib "WinIo.dll" () As Boolean
Declare Function ShutdownWinIo Lib "WinIo.dll" () As Boolean
Declare Function InstallWinIoDriver Lib "WinIo.dll" (ByVal DriverPath As String, ByVal Mode As Integer) As Boolean
Declare Function RemoveWinIoDriver Lib "WinIo.dll" () As Boolean

Declare Function MapVirtualKey Lib "user32" Alias "MapVirtualKeyA" (ByVal wCode As Long, ByVal wMapType As Long) As Long

Public Const KBC_KEY_CMD = &H64    '键盘命令端口
Public Const KBC_KEY_DATA = &H60   '键盘数据端口

Public Const KEYEVENTF_KEYUP = &H2
Public Const VK_0 = &H30
Public Const VK_1 = &H31
Public Const VK_2 = &H32
Public Const VK_3 = &H33
Public Const VK_4 = &H34
Public Const VK_5 = &H35
Public Const VK_6 = &H36
Public Const VK_7 = &H37
Public Const VK_8 = &H38
Public Const VK_9 = &H39
Public Const VK_F1 = &H70
Public Const VK_F2 = &H71
Public Const VK_F3 = &H72
Public Const VK_F4 = &H73
Public Const VK_F5 = &H74
Public Const VK_F6 = &H75
Public Const VK_F7 = &H76
Public Const VK_F8 = &H77
Public Const VK_OEM_MINUS = &HBD    ' -
Public Const VK_OEM_PLUS = &HBB     ' =
Public Const VK_TAB = &H9           ' TAB

Public Const VK_SPACE = &H20


'----------------------------------------------
Public buffer_1 As Long
Public buffer_2 As Long
Public buffer_3 As Long
Public hp As Single
Public mp As Single
Public exp As Long
Public level As Integer
Public hpmax As Single
Public mpmax As Single
Public guaiwu As Long
Public money_bag As Long
Public fuzhu As Long
Public gwid As Long
Public gwmaxhp As Long
Public gwhp As Long
Public lpAddress As Long


'自定义函数
'读取内存函数
Public Function ncnr(lpAddress As Long) As Long

Dim hWnd As Long ' 储存 FindWindow 函数返回的句柄
Dim pHandle As Long ' 储存进程句柄
Dim pid As Long
hWnd = FindWindow("QElementClient Window", "Element Client")
'取得进程标识符,双开的话最好把"Element Client"用变量代替,这样方便更改窗体后直接用
GetWindowThreadProcessId hWnd, pid
'使用进程标识符取得进程句柄,完整权限
pHandle = OpenProcess(PROCESS_ALL_ACCESS, False, pid)
'在内存地址中读取数据
ReadProcessMemory pHandle, lpAddress, ByVal VarPtr(ncnr), 4, 0&
' 关闭进程句柄
CloseHandle pHandle
End Function



Sub KBCWait4IBE()   '等待键盘缓冲区为空
  Dim dwVal As Long
  Do
    GetPortVal &H64, dwVal, 1
  Loop While (dwVal And &H2)
End Sub

Sub MyKeyDown(ByVal vKeyCoad As Long)  '模拟按下键，vKeyCoad传入按键的虚拟码
  Dim btScancode As Long
  btScancode = MapVirtualKey(vKeyCoad, 0)
  
  KBCWait4IBE   '发送数据前应该先等待键盘缓冲区为空
  SetPortVal KBC_KEY_CMD, &HD2, 1     '发送键盘写入命令
  KBCWait4IBE
  SetPortVal KBC_KEY_DATA, btScancode, 1  '写入按键信息,按下键
End Sub

Sub MyKeyUp(ByVal vKeyCoad As Long)  '模拟释放键，vKeyCoad传入按键的虚拟码
  Dim btScancode As Long
  btScancode = MapVirtualKey(vKeyCoad, 0)
  
  KBCWait4IBE   '等待键盘缓冲区为空
  SetPortVal KBC_KEY_CMD, &HD2, 1  '发送键盘写入命令
  KBCWait4IBE
  SetPortVal KBC_KEY_DATA, (btScancode Or &H80), 1  '写入按键信息，释放键
End Sub