奇迹mu单机修改教程(奇迹mu游戏服务端灵魂和生命GS不掉宝石修改方法)
奇迹mu单机修改教程(奇迹mu游戏服务端灵魂和生命GS不掉宝石修改方法)文件中偏移地址为 内存偏移地址-00400000,都是16进制这里是越小成功率越高内存偏移地址数据0047A378 837D FC 3232是生命失败率的百分数十六进制表示,即成功率(100-50)%
我是艾西,今天的内容对于懂技术的朋友可以作为参考
提高灵魂和生命的成功率
均在vzGS中:
生命成功率:
内存偏移地址数据
0047A378 837D FC 32
32是生命失败率的百分数十六进制表示,即成功率(100-50)%
这里是越小成功率越高
文件中偏移地址为 内存偏移地址-00400000,都是16进制
对这些不是很了解的朋友可以用下面的办法:
搜索以下16进制串:
837DFC32
修改红色数字即可
灵魂幸运成功率:
00479C8A 837D FC 46
46是灵魂幸运成功率的百分数十六进制表示,70%,越大成功率越高
对这些不是很了解的朋友可以用下面的办法:
搜索以下16进制串:
837DFC46
修改红色数字即可
灵魂不幸运的成功率:
00479D69 837D FC 37
37是灵魂不幸运失败率的百分数十六进制表示,成功率即(100-55=45)%,
越小成功率越高
837DFC37
修改红色数字即可
这些数字串搜索得到的结果都只有一个,但不保证你修改数字以后还是唯一的,最好是
根据偏移地址修改,不容易出错
解决你的GS不掉祝福宝石/灵魂宝石/玛雅之石/洛克之羽的问题
00416C3B 99 CDQ
00416C3C B9 32000000 MOV ECX 32 ; 1/50%
00416C41 F7F9 IDIV ECX
00416C43 83FA 01 CMP EDX 1
00416C46 75 04 JNZ SHORT 00416C4C
00416C48 6A 0E PUSH 0E ; 祝福宝石
00416C4A EB 2E JMP SHORT 00416C7A
00416C4C E8 41FB1000 CALL 00526792
00416C51 99 CDQ
00416C52 B9 50000000 MOV ECX 50 ; 1/80%
00416C57 F7F9 IDIV ECX
00416C59 83FA 01 CMP EDX 1
00416C5C 75 04 JNZ SHORT 00416C62
00416C5E 6A 0D PUSH 0D ; 灵魂宝石
00416C60 EB 18 JMP SHORT 00416C7A
00416C62 E8 2BFB1000 CALL 00526792
00416C67 99 CDQ
00416C68 B9 78000000 MOV ECX 78 ; 1/120%
00416C6D F7F9 IDIV ECX
00416C6F 83FA 01 CMP EDX 1
00416C72 75 7D JNZ SHORT 00416CF1
00416C74 6A 0F PUSH 0F ; 玛雅之石
00416C76 6A 0C PUSH 0C
00416C78 EB 02 JMP SHORT 00416C7C
00416C7A 6A 0E PUSH 0E
00416C7C E8 09DDFEFF CALL 0040498A
00416C81 83C4 08 ADD ESP 8
00416C84 8945 F0 MOV [EBP-10] EAX
00416C87 C745 E0 00000000 MOV DWORD PTR [EBP-20] 0
00416C8E 8B45 08 MOV EAX [EBP 8]
00416C91 0FBF88 FC000000 MOVSX ECX WORD PTR [EAX FC]
00416C98 894D E8 MOV [EBP-18] ECX
00416C9B 8B55 08 MOV EDX [EBP 8]
00416C9E 0FBF82 FE000000 MOVSX EAX WORD PTR [EDX FE]
00416CA5 8945 E4 MOV [EBP-1C] EAX
00416CA8 C745 EC 00000000 MOV DWORD PTR [EBP-14] 0 ; 0
00416CAF 6A 00 PUSH 0
00416CB1 6A 00 PUSH 0
00416CB3 6A FF PUSH -1
00416CB5 6A 00 PUSH 0
00416CB7 6A 00 PUSH 0
00416CB9 6A 00 PUSH 0
00416CBB D945 E0 FLD DWORD PTR [EBP-20]
00416CBE E8 F5001100 CALL 00526DB8
00416CC3 50 PUSH EAX
00416CC4 8A4D EC MOV CL [EBP-14]
00416CC7 51 PUSH ECX
00416CC8 8B55 F0 MOV EDX [EBP-10]
00416CCB 52 PUSH EDX
00416CCC 8A45 E4 MOV AL [EBP-1C]
00416CCF 50 PUSH EAX
00416CD0 8A4D E8 MOV CL [EBP-18]
00416CD3 51 PUSH ECX
00416CD4 8B55 08 MOV EDX [EBP 8]
00416CD7 8A82 01010000 MOV AL [EDX 101]
00416CDD 50 PUSH EAX
00416CDE 8B4D 08 MOV ECX [EBP 8]
00416CE1 8B11 MOV EDX [ECX]
00416CE3 52 PUSH EDX
00416CE4 E8 AFC9FEFF CALL 00403698
00416CE9 83C4 34 ADD ESP 34
00416CEC E8 03C3FEFF CALL 00402FF4
00416CF1 5F POP EDI
00416CF2 5E POP ESI
00416CF3 5B POP EBX
00416CF4 8BE5 MOV ESP EBP
00416CF6 5D POP EBP
00416CF7 C3 RETN
00416CF8 CC INT3
00416CF9 33C0 XOR EAX EAX
00416CFB A1 E8756200 MOV EAX [6275E8]
00416D00 8985 5CFFFFFF MOV [EBP-A4] EAX
00416D06 33C0 XOR EAX EAX
00416D08 A1 EC756200 MOV EAX [6275EC]
00416D0D 8985 58FFFFFF MOV [EBP-A8] EAX
00416D13 ^ E9 77FAFFFF JMP 0041678F
00416D18 CC INT3
00416D19 33C0 XOR EAX EAX
00416D1B A1 F0756200 MOV EAX [6275F0]
00416D20 8985 5CFFFFFF MOV [EBP-A4] EAX
00416D26 33C0 XOR EAX EAX
00416D28 A1 F4756200 MOV EAX [6275F4]
00416D2D 8985 58FFFFFF MOV [EBP-A8] EAX
00416D33 ^ E9 B0FAFFFF JMP 004167E8
00416D38 CC INT3
00416D39 E8 54FA1000 CALL 00526792
00416D3E 99 CDQ
00416D3F B9 C8000000 MOV ECX 0C8 ; 1/200%
00416D44 F7F9 IDIV ECX
00416D46 83FA 01 CMP EDX 1
00416D49 ^ 75 A6 JNZ SHORT 00416CF1
00416D4B 6A 0E PUSH 0E ; 洛克之羽
00416D4D 6A 0D PUSH 0D
00416D4F ^ E9 28FFFFFF JMP 00416C7C
00416D54 CC INT3
00416D55 CC INT3
解决你的GS不掉生命宝石修改法
00416D39 8B4D 08 MOV ECX [EBP 8]
00416D3C 33D2 XOR EDX EDX
00416D3E 66:8B91 9800000>MOV DX [ECX 98]
00416D45 83FA 57 CMP EDX 57
00416D48 7C 1D JL SHORT 00416D67
00416D4A E8 43FA1000 CALL 00526792
00416D4F 99 CDQ
00416D50 B9 2C010000 MOV ECX 12C
00416D55 F7F9 IDIV ECX
00416D57 83FA 01 CMP EDX 1
00416D5A 75 0B JNZ SHORT 00416D67
00416D5C 6A 0E PUSH 0E
00416D5E 6A 0D PUSH 0D
00416D60 ^ E9 17FFFFFF JMP 00416C7C
00416D65 EB 1B JMP SHORT 00416D82
00416D67 E8 26FA1000 CALL 00526792
00416D6C 99 CDQ
00416D6D B9 78000000 MOV ECX 78
00416D72 F7F9 IDIV ECX
00416D74 83FA 01 CMP EDX 1
00416D77 75 09 JNZ SHORT 00416D82
00416D79 6A 10 PUSH 10 生命
00416D7B 6A 0E PUSH 0E 索引
00416D7D ^ E9 FAFEFFFF JMP 00416C7C
00416D82 5F POP EDI
00416D83 5E POP ESI
00416D84 5B POP EBX
00416D85 8BE5 MOV ESP EBP
00416D87 5D POP EBP
00416D88 C3 RETN
解决挂GS的
0047B2F0 /> \55 PUSH EBP
0047B2F1 |. 8BEC MOV EBP ESP
0047B2F3 |. 83EC 74 SUB ESP 74
0047B2F6 |. 53 PUSH EBX
0047B2F7 |. 56 PUSH ESI
0047B2F8 |. 57 PUSH EDI
0047B2F9 |. 894D FC MOV [LOCAL.1] ECX
0047B2FC |. 8B45 0C MOV EAX [ARG.2]
0047B2FF |. 50 PUSH EAX
0047B300 |. 8B4D 08 MOV ECX [ARG.1]
0047B303 |. 51 PUSH ECX
0047B304 |. E8 A379F8FF CALL 00402CAC
0047B309 |. 83C4 08 ADD ESP 8
0047B30C |. 8945 F8 MOV [LOCAL.2] EAX
0047B30F |. 8B55 10 MOV EDX [ARG.3]
0047B312 |. 2B55 08 SUB EDX [ARG.1]
0047B315 |. 8955 DC MOV [LOCAL.9] EDX
0047B318 |. 8B45 14 MOV EAX [ARG.4]
0047B31B |. 2B45 0C SUB EAX [ARG.2]
0047B31E |. 8945 D8 MOV [LOCAL.10] EAX
0047B321 |. 837D DC 00 CMP [LOCAL.9] 0
0047B325 |. 7D 11 JGE SHORT 0047B338
0047B327 |. 8B4D DC MOV ECX [LOCAL.9]
0047B32A |. F7D9 NEG ECX
0047B32C |. 894D DC MOV [LOCAL.9] ECX
0047B32F |. C745 F4 FFFFFFFF MOV [LOCAL.3] -1
0047B336 |. EB 07 JMP SHORT 0047B33F
0047B338 |> C745 F4 01000000 MOV [LOCAL.3] 1
0047B33F |> 837D D8 00 CMP [LOCAL.10] 0
0047B343 |. 7D 11 JGE SHORT 0047B356
0047B345 |. 8B55 D8 MOV EDX [LOCAL.10]
0047B348 |. F7DA NEG EDX
0047B34A |. 8955 D8 MOV [LOCAL.10] EDX
0047B34D |. C745 F0 00FFFFFF MOV [LOCAL.4] -100
0047B354 |. EB 07 JMP SHORT 0047B35D
0047B356 |> C745 F0 00010000 MOV [LOCAL.4] 100
0047B35D |> 8B45 DC MOV EAX [LOCAL.9]
0047B360 |. 3B45 D8 CMP EAX [LOCAL.10]
0047B363 |. 7E 1A JLE SHORT 0047B37F
0047B365 |. 8B4D DC MOV ECX [LOCAL.9]
0047B368 |. 894D E4 MOV [LOCAL.7] ECX
0047B36B |. 8B55 D8 MOV EDX [LOCAL.10]
0047B36E |. 8955 E0 MOV [LOCAL.8] EDX
0047B371 |. 8B45 F0 MOV EAX [LOCAL.4]
0047B374 |. 8945 EC MOV [LOCAL.5] EAX
0047B377 |. 8B4D F4 MOV ECX [LOCAL.3]
0047B37A |. 894D E8 MOV [LOCAL.6] ECX
0047B37D |. EB 18 JMP SHORT 0047B397
0047B37F |> 8B55 D8 MOV EDX [LOCAL.10]
0047B382 |. 8955 E4 MOV [LOCAL.7] EDX
0047B385 |. 8B45 DC MOV EAX [LOCAL.9]
0047B388 |. 8945 E0 MOV [LOCAL.8] EAX
0047B38B |. 8B4D F4 MOV ECX [LOCAL.3]
0047B38E |. 894D EC MOV [LOCAL.5] ECX
0047B391 |. 8B55 F0 MOV EDX [LOCAL.4]
0047B394 |. 8955 E8 MOV [LOCAL.6] EDX
0047B397 |> C745 D4 00000000 MOV [LOCAL.11] 0
0047B39E |. C745 D0 00000000 MOV [LOCAL.12] 0
0047B3A5 |. C745 CC 00000000 MOV [LOCAL.13] 0
0047B3AC |> 8B45 FC /MOV EAX [LOCAL.1]
0047B3AF |. 8B48 10 |MOV ECX [EAX 10]
test ecx ecx
jz 0047B40D
0047B3B2 |. 8B55 F8 |MOV EDX [LOCAL.2]
0047B3B5 |. 33C0 |XOR EAX EAX
0047B3B7 |. 8A0411 |MOV AL [ECX EDX] 这里引起的挂GS
0047B3BA |. 83E0 04 |AND EAX 4
0047B3BD |. 83F8 04 |CMP EAX 4
0047B3C0 |. 75 04 |JNZ SHORT 0047B3C6
0047B3C2 |. 33C0 |XOR EAX EAX
0047B3C4 |. EB 47 |JMP SHORT 0047B40D
0047B3C6 |> 8B4D D4 |MOV ECX [LOCAL.11]
0047B3C9 |. 034D E0 |ADD ECX [LOCAL.8]
0047B3CC |. 894D D4 |MOV [LOCAL.11] ECX
0047B3CF |. 8B45 E4 |MOV EAX [LOCAL.7]
0047B3D2 |. 99 |CDQ
0047B3D3 |. 2BC2 |SUB EAX EDX
0047B3D5 |. D1F8 |SAR EAX 1
0047B3D7 |. 3945 D4 |CMP [LOCAL.11] EAX
0047B3DA |. 7E 12 |JLE SHORT 0047B3EE
0047B3DC |. 8B55 F8 |MOV EDX [LOCAL.2]
0047B3DF |. 0355 EC |ADD EDX [LOCAL.5]
0047B3E2 |. 8955 F8 |MOV [LOCAL.2] EDX
0047B3E5 |. 8B45 D4 |MOV EAX [LOCAL.11]
0047B3E8 |. 2B45 E4 |SUB EAX [LOCAL.7]
0047B3EB |. 8945 D4 |MOV [LOCAL.11] EAX
0047B3EE |> 8B4D F8 |MOV ECX [LOCAL.2]
0047B3F1 |. 034D E8 |ADD ECX [LOCAL.6]
0047B3F4 |. 894D F8 |MOV [LOCAL.2] ECX
0047B3F7 |. 8B55 D0 |MOV EDX [LOCAL.12]
0047B3FA |. 83C2 01 |ADD EDX 1
0047B3FD |. 8955 D0 |MOV [LOCAL.12] EDX
0047B400 |. 8B45 D0 |MOV EAX [LOCAL.12]
0047B403 |. 3B45 E4 |CMP EAX [LOCAL.7]
0047B406 |.^ 7E A4 \JLE SHORT 0047B3AC
0047B408 |. B8 01000000 MOV EAX 1
0047B40D |> 5F POP EDI
0047B40E |. 5E POP ESI
0047B40F |. 5B POP EBX
0047B410 |. 8BE5 MOV ESP EBP
0047B412 |. 5D POP EBP
0047B413 \. C2 1000 RETN 10