all i got so far are these

- full god mode / auto poting (never die)

go to 01203CAC and change the value to what ever hp u want - works


i have unlimited money and unlimeted lvl and sp poins but im not gonna watse my time to release them cuz even though it changes it doesnt effect u and u cant use it ,

http://www.mpcforum.com/forumdisplay.php?f=22

i belive this thread should be in that section.

i dont understand the first post
how do you get full god mode or unlimited money?

address didnt work

auto potting? thats not even possible.

link to your other thread - http://www.mpcforum.com/showthread.php?t=147423&highlight=trickster

comment w1sh2hack
from I'd like to ask you a question djccr. Do you even have any hacks for trickster? Or are you just trying to get more people to go so you can get hacks?

Ehhh cut djccr some slack :P.

Trickster is a great game so far. I'm not saying that its any better or any worse than Maplestory, but since its so new the hacking possibilities could be endless. I've been trying different things (Though I suck at hacking... lol) and it seems like a lot of it is Server side like Maplestory is. A couple guys figured out how to open up the "MyCamp" section of the game that wasn't suposed to be released. They told me what the address was and it was quite fun. They patched the game since then so it doesnt work anymore. lol...

If your bored you should check it out. Its new, no game guard... what you got to lose? :P

client sided... sorry, better luck next time

PROOOF *****S!! NEEED TO LEARN HOW TO HACK LIKE ME!!!!! look at my hp *****

http://img236.imageshack.us/img236/2889/screenshot0001up5.jpg (http://imageshack.us)

nd since my hp is frozen @ 1k every time i get hit it subtracts but then changes it back to 1k because its frozen an changed bak to 1k ... um there was a new patch so that address might not be lagit anymore ill find the new address and post..
- this goes out to all those who thought diffrent

Nice..now to try to remember the programs needed to hack like how I did it with MS ><

lol djccr i got my hp and mp like that but it doesnt work... It only looks like u have that much hp but u really have normal hp..

mine works i jes used a normle uce

it probably dont work try running into monsters and see if u die.. ur just changing the numbers on ur screen but its not actually like that. i did that with my mana but my mana ran out lol
I also tried 2 duplicate gold and items but it just shows numbers but u cant use them

how do you guys even find the right andys to change?

Hmm, can you test your character by going into hard monsters that damage lot? And see if you still live?

I already did and i died lol

No i am using jes a normal serbio engine. and i jes went in scan the number for my exact hp got hit, searched for changed value and kept on goin and then u find one then change the value and freeze. it works for me i dont know about u guys

djccr maybe you could provide a screenshot of you getting hit by a monster and still living?

dunno if you realized this, mechazawa, your account isn't safe anymore. Might as well start over.

And this is for everyone: the HP hack doesn't work. Freezing it won't work. Your hp is server side (duh) and you will die even though your hp says 1000.

yea it dont work it makes an illus that u have godmode but u will still die

any1 know if anything isnt server sided? cuz i think everything is lol

heres a fun client side one, 00FC3BE4 2 byte, current animation of character.
freeze at different values and it sets your character into all different states, but only client side =(

man how do u search for a code? program?

-_-" u hav 2 change register in MV 4 server side hax i think. we need some1 like sunbeam 2 help us..

i would say like 95% of this game is server side, there are a few things that can be hacked, i saw on gzp someone say shared exp % can be hacked, and i *think* casting speed for mages and that cool down time, but its just a matter of performing the searches fast enough and with the right search method.. i spent a few hours on this and came up empty handed..

0068383A godmode i found tick ZF
freezes your exp and level tho =(

it still showed the level animation after training with this on forawhile but my level didnt go up o.O

lol Dont work just freezed the number but i still died.

yeah i jsut noticed that lol, posted too soon...hp went down too slow killing hula octopusses so i didnt notice :p

Items are server side.
HP is server side.
MP is server side.
XP is server side.
Money is server side.
Reminds me of Ragnarok, how everything is server side.
There are things you can exploit though, like Delay and what not.
:)

dragon casting time

012C4E88
012C50A0

both 4 byte. for dragon: 0 when casts cure, but 1500 while casting mana arrow, when casting arrow, yellow cast bar is automatically full, but still takes 1500 milliseconds to cast, working on tracing what reads/writes the addresses as we speak.

*EDIT*

ok, for no cooldown time, this worked for me (lag pending, it may not really work):
add 01af20dc, 4 byte, to code list, set value to 0.
in memory view, go to address 00471c3c, right click the addy
and change register, tick EIP, and enter 00471c3f
(make sure the 01af20dc address is showing 0), and voila, no cooldown!

*edit* *edit*

nope. doesnt work. my bad. these are the values tho, seems the delays cant be hacked either, server side knows when you cast the spell, server checks to make sure delay is reached (1500 or 2000). anyone else got any bright ideas? i cant find anything client side.. im trying to figure out how to attack monsters from across the map, taht seems like it would be a client side value, the attack command will get sent if the client side distance from monster check passes.. but then again it could be server sided too..

I was thinking a little about the drilling. To me it seems like WHEN you are drilling that is client side (when your clicking to keep the bar in the scope)... Because sometimes my game will lag 2 seconds after i start, and when it stops lagging it automaticaly finishes... Sorry, my explination sucks... I wouldn't know how to search for it because if you let go of the mouse the bar just goes back to zero... And I'm not that advanced at hacking yet. lol

drilling seems like a very plausible client side value, the value of the bar, finding that address will be difficult, but simply freezing it on correct value( right above the lower limit of the particular drill your using) you should do very well drilling..

*EDIT* GUESS WHAT KIDDIES?!
..thats right!

DRILL HACK
________________________
DEVELOPED BY UGOTWORMS
-=-=-=-=-=-=-=-=-=-=-=-=
If it works (only if it works) please post to confirm.

Ok, first, this hack is set up for Blender drill, theres one value (hopefully just one) that needs to be changed according to the drill, that much im positive, havent tried other drills yet just wanted to release this. You will begin drilling and click the mouse once, it will do the rest for you.

fire up CE
attach to trickster.bin
add these addresses manually, as one byte:
(address:value)
//00FC8347:0
//00FC8348:254 <-- these // ones are unecessary
//00FC8349:191
00FC834A:50
00FC834B:67

freeze them all.
00FC834A contains the value you probably will be changing to suit your drill.

happy drilling!

dude, if you had this with a bot? damn, thats decent xp over night xD

p.s when i add the addys i get ?? for the value ><

also another little thing.. if you edit the .eff files in data/effect/mapbgeffect you can remove nighttime blindness, they are simple xml open in notepad..

wait so u dont need the top 3? and how would this work with basic drill cuz its not working 4 me

no you dont, but if it doesnt work with the bottom two, put the top three as well

yeah i tried 2 change 00FC8348 to 254 and 00FC8349 to 191 but it goes to -2 and -65..

ok... so i open my .eff files with notepad.. what do i change to get rid of night time?

umm wat version of CE u using i cant seem to freeze the value or change them

the addresses are static for me, i restarted trickster and it was the same, if your having trouble, open ce and attach trickster, set to exact value, byte, 0, then go to trickster, hit D to start drilling and leave it, then go to ce and search for that 0, set CE hotkey for Next value- increased value, go back to trickster, start drilling and keep clicking so the yellow bar is below the first line, while u hit the hotkey and let it search, keep clicking till the search is done. then stop clicking and let the yellow bar go back down, go to ce, and search 0 again. repeat as needed.. the two addresses would be one line apart, see 4A and 4B... hopefully this is enough of a guide..

ok... so i open my .eff files with notepad.. what do i change to get rid of night time?
if u can read u can figure it out.. open the night ones.. look at values of minimums and maximum.. percents.. increase start and ending values.. its plain english.. just look..

umm wat version of CE u using i cant seem to freeze the value or change them
ce 5.2... not a uce or anything special

thank you ugotworms, truly awesome work. blows my stupid tries clean away.

edit: i have gotten the bar to freeze where i want it, (using the search, your addresses are unique to you) but i still cannot get it to work right. The bar works but it drills normally, I just can't see the bar anymore. I don't know how to figure out the values you froze it at. Could you autohack it for us?

hehe. ty. check this funny one out: 0041C87B tick ZF, then drill loloolol

thank you ugotworms, truly awesome work. blows my stupid tries clean away.

edit: i have gotten the bar to freeze where i want it, (using the search, your addresses are unique to you) but i still cannot get it to work right. The bar works but it drills normally, I just can't see the bar anymore. I don't know how to figure out the values you froze it at. Could you autohack it for us?

the 67 remains that, the other value , the 50, i just found out you can set to 18000,19000, 20000 range and narrow it down a bit.. once you make that first click to start drilling the bar should start jumping between two extremes, sometimes lag screws it up tho

ahh i cant get it 2 work... i tried ur adresses didnt work and then i searched 4 them myself and i found 1 address that looked like that bar and when i froze it i could see the yellow blinking to the spot i froze it at but it didnt drill. i still worked like normal lol..

Is there a way to get the effect of the sixth sense skill for any class? I think it just shows items underground so you know where to drill. It doesn't create items, just shows you where they are. Seems hackable, is it?

o boy.. heres what you want serket! THIS HACK WILL ONLY LET YOU DRILL WHERE THERE IS AN ITEM!

00419F0C - Tick ZF

another hack brought to you by Ugotworms.

ugotworms, when i try to put those addresses in all i get are ?? as value and cant freeze them nor change them. can you send me your table or something. email is smartparts27@hotmail.com

U have to open memory view, dont add them with add address.

fire up CE
attach to trickster.bin
add these addresses manually, as one byte:
(address:value)
//00FC8347:0
//00FC8348:254 <-- these // ones are unecessary
//00FC8349:191
00FC834A:50
00FC834B:67

freeze them all.
00FC834A contains the value you probably will be changing to suit your drill.

Those? if so then what do you tick as the value.... i beleive ur wronge.

No, I thought he was talking about the hack that only lets you drill where the item is...

are u attaching to trickster.bin? u shouldnt get the ??... can anyone else please confirm this code for me, its working here fine ive been drilling all day

for the 1-click drilling: (byte), not 2 byte, not 4 byte, byte.

00FC834A set value to 50 and freeze, this value you will prob change 45-60 range to suit the drill.
00FC834B set value to 67 and freeze

disregard the other addresses. as for the always tells where an item is, go to memory view address
00419F0C, right click, change register, Tick the first ZF box.

the one where you go into memory view works for me but the one where you add it manually does not work for me. Probably because of my drill not too sure.

o boy.. heres what you want serket! THIS HACK WILL ONLY LET YOU DRILL WHERE THERE IS AN ITEM!

00419F0C - Tick ZF

another hack brought to you by Ugotworms.

Not working for me.. I found it in the memory list and checked the ZF box and nothing happened.

EDIT: Oh I see now. The only way I can get it to work is to keep checking and unchecking the ZF box to keep it going. For the first time I check the ZF box it tells me if an item isn't there. If I keep the box checked and keep drilling, it won't give me the prompt anymore, but if I recheck it it'll keep me updated. It's very annoying though, is there a hotkey to do it or something? Or any way to keep it working?

This Worked for me:
00419f0c - 74 69 - je 00419f77
00419f0e - 39 9e 70 4b 00 00 - cmp [esi+00004b70],ebx
00419f14 - 0f 8e da 01 00 00 - jng 0041a0f4
00419f1a - 8b 15 28 03 93 00 - mov edx,[00930328]
00419f20 - 8b 8a 6c 05 00 00 - mov ecx,[edx+0000056c]
00419f26 - 68 e8 44 7c 00 - push 7c44e8
00419f2b - 68 d8 44 7c 00 - push 7c44d8
00419f30 - e8 2b da 0c 00 - call 004e7960
00419f35 - 8b 4e 60 - mov ecx,[esi+60]
00419f38 - 8b 89 6c 05 00 00 - mov ecx,[ecx+0000056c]
00419f3e - 53 - push ebx
00419f3f - 68 d0 07 00 00 - push 07d0
00419f44 - 50 - push eax
00419f45 - 56 - push esi
00419f46 - e8 d5 d9 0c 00 - call 004e7920
00419f4b - 8b 56 60 - mov edx,[esi+60]
00419f4e - 8b 8a 6c 05 00 00 - mov ecx,[edx+0000056c]

but i cant found the other 1 .:disappointed:

This Worked for me:
00419f0c - 74 69 - je 00419f77
00419f0e - 39 9e 70 4b 00 00 - cmp [esi+00004b70],ebx
00419f14 - 0f 8e da 01 00 00 - jng 0041a0f4
00419f1a - 8b 15 28 03 93 00 - mov edx,[00930328]
00419f20 - 8b 8a 6c 05 00 00 - mov ecx,[edx+0000056c]
00419f26 - 68 e8 44 7c 00 - push 7c44e8
00419f2b - 68 d8 44 7c 00 - push 7c44d8
00419f30 - e8 2b da 0c 00 - call 004e7960
00419f35 - 8b 4e 60 - mov ecx,[esi+60]
00419f38 - 8b 89 6c 05 00 00 - mov ecx,[ecx+0000056c]
00419f3e - 53 - push ebx
00419f3f - 68 d0 07 00 00 - push 07d0
00419f44 - 50 - push eax
00419f45 - 56 - push esi
00419f46 - e8 d5 d9 0c 00 - call 004e7920
00419f4b - 8b 56 60 - mov edx,[esi+60]
00419f4e - 8b 8a 6c 05 00 00 - mov ecx,[edx+0000056c]

but i cant found the other 1 .:disappointed:


00419f0c - 74 69 - je 00419f77 that line yes, that JE tick the ZF, then leave memory view open that could be why it stopped working, but after doing that, if you try to drill where there isnt an item, it wont let you drill, so u dont waste a drill use... meaning this hack guarantees 1 item for each drill use! (when the drill needs only 1 use, like basic drill)

Ok I got it working now. Yeah I was closing the memory view window. I didn't think it mattered. This is awesome, thanks. :)

i mean 1 click drill didnt work and i dont found it.
i found the damm number when it drill but it dont do anything if i change.
i did just how u wrote.

I guess have to use my IDA to look for the code.

ummm wat is ce u jes and the codes and stuff? can some be kind enough to show me how to use it personaly? :D cuz i play trickster - 26 buffalo and yeah i cant stand lvling anymore T_T

NOTICE: running trickster right now, the 1 click drilling address changed. i found it to be 00FC8312 and 00FC8313, respectively. this means you have to find it on your own. start drilling someplace but dont click anywhere, set your search for byte, and range 0040000 to 00FFFFFF, then search for 0, go into trickster and start drilling but keep clicking so the line stays below the drill line, and press your CE hotkey to search Next -Increase Value. then stop clicking after it finishes searching, and search Exact Value, for 0 again. You should get a small list, watch the list as you drill, the value that becomes 66 or 67 is the second address, the first is the one right above it on the list. freeze that second value at 67 and the one before it freeze at something like 45 50 55 or 60 whichever works best for you.

Not to beg or anything but umm.. does anyone know how to change the rate of how fast your gun reloads? anyone know how to find it?

still i dont find it...
nvm

do u know how to make multiclient?

it wont let me edit values or freeze o_O help

Ok to add onto the drill item thing, I think there's a skill that makes a grid and lets you see if there's something on that tile or not. Is there a way to get it through some editing?

it wont let me edit values or freeze o_O help

Ok to add onto the drill item thing, I think there's a skill that makes a grid and lets you see if there's something on that tile or not. Is there a way to get it through some editing?

omg what i found isnt good enough? its almost the same exact thing, doesnt waste any drill uses.. u just gotta try spots instead..

UG wanna help me XD

anyone want to help me on the gun reload time. i want to edit it so i wouldnt need to reload or anything close to that. any hints would be nice

it wont let me edit values or freeze o_O help

Since this is server sided, I used WPE PRO. So far, what I did is only using galder coupons without clicking it >.<. yeah I know it sucks. Why dont you guys use WPE PRO instead of CE since its server sided.

Well first of all I'd like to thanks ugotworms for his modest contributions to the community.

As of right now I'm having a bit difficulty searching for the values for the drill. I've ran the search multiple times now, and I can't seem to get consistent results. I get a consistent number when I first run the search for the initial value when the drill is at zero, but beyond that I've gotten results ranging from 100 to 400 values. As I continue doing the search, it appears that I'm not getting any values that are anywhere near 66-67. Maybe I'm doing something wrong? Although I have to mention of how I sometimes get a lag spike for a few seconds when performing the second search.

Besides that issue, the other values seem to be working perfectly. If you don't mind, could you help me (aka I'm requesting something >.<) with one issue that's been bugging me? Is there a way to prevent the animation that comes along when it displays "Item is not here"? I find it frustrating to have to wait a few seconds before trying the next possible spot.

EDIT: Hmm, after rereading for the third time, I'll try again before I jump to other conclusions...

EDIT:: I just noticed, is the search range from 0040000 to 0FFFFFFF, or 00400000 to 0FFFFFFF?

---------------------------------------------------------------------------

@Toybox: Could you care to elaborate on your problem? If your having trouble changing the value, make sure that you FREEZE the value and then change it. Otherwise it'll just keep reverting back to its original state. To change values, simply double click on the value o.o

@krazyevil: From his previous attempt to work with the delay rates of Dragon spell delay rates, it seems that they are server-sided, or at least the server preforms checks on the values to make sure they are correct. This is my opinion however, and I could be mistaken.

What about night/day? I'm pretty sure that's client-side, tried searching to make it bright all the time, but I couldn't do it.

its also server side...I think...Everytime I use WPE PRO and Im in a town, I always get 1 packet every second. So, I think it is server-side. BTW, theres no one around >.<.

I heard that there was a Critical hack/glitch. This is the clip on Youtube showing how the lion kept on doing critical of 323 every hit. does anyone have any clue on how it works?

His Youtube:
http://www.youtube.com/watch?v=wrDLYrYrOOs

it's pretty insane... i don't think it has anything to do with Luk in his case... glitch?? or hack??

u can cahnge day and night on all maps just take a look to the files of the client(is a plain xml script)
And why dont we use wpe,because paket r encripted,so what we need to use is use a debugger to modify the paket from the client and not when they r sended just before.
Just modify client.....

i hate noobs hacking

Ollydbg is the one...lol.

i hate noobs hacking
stfu.. everyone starts somewhere.

anyway back on topic. I just found addresses for gun loading. Changed the value to 125 and the gun instantly reloads. :laugh: . Been looking for Crit address but no look yet.

"I just found addresses for gun loading. Changed the value to 125 and the gun instantly reloads." - Guii

Do you happen to know the addresses for the gun loading? since the value like u said is 125.

As for the crit. doesn't work for most people (referring to the clip from youtube)

Besides that issue, the other values seem to be working perfectly. If you don't mind, could you help me (aka I'm requesting something >.<) with one issue that's been bugging me? Is there a way to prevent the animation that comes along when it displays "Item is not here"? I find it frustrating to have to wait a few seconds before trying the next possible spot.

*edit* incorrect.. animation of character dynamic
00FC3BE4 2 byte, current animation of character, i havent tried it but maybe freeze it at something between 0-50 ithink were the drilling animations.. play with that..


EDIT:: I just noticed, is the search range from 0040000 to 0FFFFFFF, or 00400000 to 0FFFFFFF?


yes my bad, 0040 0000, to 00FF FFFF , i screwed up both of em lol. this should significantly reduce search time, especially when searching with CE hotkey while clicking the drill


anyway back on topic. I just found addresses for gun loading. Changed the value to 125 and the gun instantly reloads. :laugh: . Been looking for Crit address but no look yet.

1) why dont u share the address
2) im a dragon anyway, but does the gun reload time show on the weapon details like casting time and cooldown, as something like 1.25 seconds? if so the values are stored in milliseconds for those, so 1250..
3)try using the hack really fast, sometimes lag makes it look like the hack works (why i thought i had stopped cool-down time)

Ollydbg is the one...lol.
opened trickster in olly, executable modules->trickster.bin, CTRL+N for names, saw this:


WININET dll used in trickster, functions for internet connections (http handlers, and wininet.internetwritefile...hmm.. *edit* WS2_32 is used for the connection. silly me remeber in WPE pro had to check off the winsock capture too because it wasnt working duhh

advapi32 dll used in trickster, functions include cryptcreatehash, crypthashdata, and cryptaquirecontextA, could this be what encrypts packets? i see no other signs of cryptography imports unless its the first set..

yes notice the first set of dll imports do not have names associated, just numbers like ODBC32.#11, is this obfuscated code or what? ODBC functions are important here because they interact with the sql that trickster runs on (if you look in the program files, see libmySQL.dll, and in data folder libconfig_eng.idx is a SQL server replication snapshot index script), plus they run asp.net and use XML for everything!

*EDIT*: found in names if you hit enter you can find out the references and thus the function name, for instance ODBC32.#43, hit enter:shows 2 lines:
004d5fe7 - calls odbc # 43,
then we see odbc #43 is ODBC32.SQLGetData

theres only 14 functions used from odbc32.dll.. so i will try and set a few breakpoints, and look up these odbc items because they seem like the most plausible areas to search.. ill try and keep u guys posted, please do the same!

Well let me elaborate.. when i try to click freeze it aint checking, i cant double click on value are my settings wrong when are u suppose to connect with trickster.bin

Well let me elaborate.. when i try to click freeze it aint checking, i cant double click on value are my settings wrong when are u suppose to connect with trickster.bin

attach after you start playing.

after.. maybe thats why.. let me try again thx ugotworms XD i owe u... umm wat bypass u guys using lmfao im useing cheat engine 5.2 and disk drove

...bypass? we dont need no stinking bypass.

right now im tracing 004D5817 - MOV EBP,DWORD PTR DS:[7C04CC] | WS2_32.send
hopefully it can retrace me back to the encrpytion routine..

yeah lmfao =/ not working this is what i did...

went to www.tricksteronline.com
logged in
started game
opened disk drove..cheat engine
connected with trickster bin
put this code 00FC8347 for ugotworms drilling
wouldnt let me check the freezing or double click value grrr

My Setting*

EXTRA TAB
--------------
I Have The First Four Checked

SCAN SETTINGS
--------------------
Enable Hyperscan When Possible
Mem_Private
Mem_Image

File Association
-----------------
Nothing

Code Finder
--------------
Use Debug Registers
Try To Prevent Detection of Debugger

Assembler
------------
Everything But
Use Int3 Instructions

Extra
------
Open Process
Use Knerlemode Debugger
Stealth Mode[Kernelmode]>Prevent All Modules

---------------------------------------------------------------------------------------------

If this helps when i use that code to only drill where items are.. it working so memory view works =/

...bypass? we dont need no stinking bypass.

right now im tracing 004D5817 - MOV EBP,DWORD PTR DS:[7C04CC] | WS2_32.send
hopefully it can retrace me back to the encrpytion routine..


well u can use cheat engine right =/

i have all default settings, i dont even have try to prevent detection boxes checked! reinstall ce maybe.. you shouldnt have that kind of problem..

okie dokie thx XD

-_- woah didnt work o well i tried... thx for ur help XD i think cuz i didnt do process thing right or sumthing but memory view works .. odd o well thx alot

ALSO>>>

when i do add 00FC8347 its ??... Problem?

ALSO>>>

when i do add 00FC8347 its ??... Problem?

the 1 click drilling addresses are dynamic, so it turns out, thats why. re-ready my CE search method.. yours will differ but they will both be together wherever they are, the last digit of the address will be increased by 1 hex

ahh is see thx ill do it in a second and thx for sharing most ppl wont

wondering if the closing of the connection after enabling speedhack is client sided.. LIBMYSQL.dll contains a function max_allowed_packet.. could that by any chance raise the exception that closes the client when we speedhack?

packet u think that would work.. =/ umm ugotworms plz quote that post cant find it or write it out again lmfao

Since this is server sided, I used WPE PRO. So far, what I did is only using galder coupons without clicking it >.<. yeah I know it sucks. Why dont you guys use WPE PRO instead of CE since its server sided.

How did you get WPE to send packets to the server. I've tried countless of times and it doesn't let me send anything to the server.

if anyone has the crit hack addresses please pm them to me, ive spent too long tryin to figure that one out =(

is there an item that changes your crit rate? something a dragon can use? that would allow me to find the value..

omg what i found isnt good enough? its almost the same exact thing, doesnt waste any drill uses.. u just gotta try spots instead..

You'd be surprised how long it takes with the animation delays to go through an entire zone.

Ugotworms i cant find the post =/ post it again plz

NOTICE: running trickster right now, the 1 click drilling address changed. i found it to be 00FC8312 and 00FC8313, respectively. this means you have to find it on your own. start drilling someplace but dont click anywhere, set your search for byte, and range 0040000 to 00FFFFFF, then search for 0, go into trickster and start drilling but keep clicking so the line stays below the drill line, and press your CE hotkey to search Next -Increase Value. then stop clicking after it finishes searching, and search Exact Value, for 0 again. You should get a small list, watch the list as you drill, the value that becomes 66 or 67 is the second address, the first is the one right above it on the list. freeze that second value at 67 and the one before it freeze at something like 45 50 55 or 60 whichever works best for you.

here. saw ur posts on ce forum, u said u had address, gotta gimme credit man! xD

thanks.. yeah im annoying lmfao..

yeah im not pro hacker lol i know how to search but im n00b at it.. so im gunna w8 will someone makes like a video or a topic with pics.. thx Worms

O_o I didnt give credit =/ well i gave it to my friend i said who it was from.. i told him a friend gave it on MPC.. but i didnt post the adress

aahh it was ur address ill give credit =/ my mistake

Still trying to figure out the gun reload, but no luck :[. any help would be nice. ( looking at Guii) :)

Yeah I'd like to know the gun reload too (I'm a lion). Or the crit exploit. :D

So lets see, according to everyones post the hacks that are possible so far are
Drill hacks in general
Gun reload
(Maybe) Crit exploit
Shared party xp for 1 person (2.5x exp)
With the card game, I know you can win special prizes and stuff by using certain sets of cards that are related, so im thinking maybe we can use the unrandomizer to get certain card prizes
MAYBE some of the quest can be hacked quest in most games are clientsided
Speed (Movement of the charecter) and attack speed (Will probably disconnect due to to many packets being sent at once) It could or couldnt work
(Could someone try using the built in speed editor on CE for this? Im downloading the game on my other computer since my original one isnt avaible right now)
Thats about all I can think of right now

Oh also maybe the sit/laydown hp regen could be edited to be on all the time (ex: while standing and attacking it could be active) that im not sure if it would work or not

I found how to crit, but it works only for gun, I don't think it should be posted up, it'll ruin the game :/

so send me a PM how you did it =P


i tried do everything using CE and only changes the screen =/

using wpe pro when i try to send packets i got disconnected =/

whos have a new working address? :wank:
Dill give xp.. Whos have address to dill is work on 1 sec?

I found how to crit, but it works only for gun, I don't think it should be posted up, it'll ruin the game :/

Hacking Anygame Ruins It.. THats THe Fun Part

well, atleast we know it is possible and isnt just a chance video

im just waiting for private hacking trickster forums to come out

Rocketman wanna start one? :)

Still trying to figure out the gun reload, but no luck :[. any help would be nice. ( looking at Guii)
The gun reload hack address changes and I can't seem to make it reload as fast deebee (if you've seen the video, he shoots every .1 ms xD). If someone wanna share the 1 person 2.5x exp party hack . I'll be glad to post a guide. But mean while try to figure it out yourself.. it's actually really easy.

Well if we do start one, it probably wont be posted here due ot the fact that for every 1 usefull post theres 1000 leachers, I use to only come here becuase the old forums I was a part of for maplestory didnt have a jms section and now this is the only place ive seen that people are acctually trying to find things out for trickster, im not saying private forums, just keeping the # of leachers down

Ok since people are being conservative about releasing the addresses to some of these things.. can someone post a guide on how to find them so I can get them myself?

What about night/day? I'm pretty sure that's client-side, tried searching to make it bright all the time, but I couldn't do it.
i was speed hacking it and the night/day went by really fast so its definately clientside(dc'd 5seconds later cuz of abnormal connection everytime tho)
-edit- i used speederXP and diskdroves speedhack both dc you, so the client definately detects something moving too fast..dunno what though

Verifying yaybacon's post.

Speedhack in CE 5.2 will D/C you shortly after you use it. Abnormal Connection Error.

I didnt get to search much since I found out this computer gets the "Exceptional Error" and right now im running a virus scan along iwth cleaning up my computer trying to find the problem

HOPEFULLY it'll be fixed soon

To those who saw the clip on youtube about multishot and unlimited crit. The critical most people says is only from one certain gun that will work. Not sure which gun it is but from that quality i can bearly tell just by looking at it. The gun looks like one of those small guns "wooden gun?" or higher lvl gun possible around lvl 50? 40? doesn't look like a musket (Gun Type 2) to me

no one have really been able to get full crit. on all char. yet

As for the speed of the shot. i'm stumped as well.. his speed is insane He can shoot like 5x in a mere second

for those who don't know which link i'm talking about: http://www.youtube.com/watch?v=wrDLYrYrOOs

once i get back to my dads where trickster acctually works I plan on finding out how to do this

I didnt get to search much since I found out this computer gets the "Exceptional Error" and right now im running a virus scan along iwth cleaning up my computer trying to find the problem

HOPEFULLY it'll be fixed soon

The exceptional error seems to only be related to one island. I got it on pearl but when I switched to ruby it went away.

well i found that drill stuff and my add r:

010282C9 whatever
010282CA whatever
010282CB 66

i was speed hacking it and the night/day went by really fast so its definately clientside(dc'd 5seconds later cuz of abnormal connection everytime tho)
-edit- i used speederXP and diskdroves speedhack both dc you, so the client definately detects something moving too fast..dunno what though

...Yeah, I already figured that out, you can set it to daytime all the time, so dungeons and stuff can be bright all the time. You can modify the drill speed so it's almost instant too.

Well i cant start finding adresses and expermienting till tommarow but so far all you guys have made a lot of work, Once I see how the almost instant drilling works, Im gonna set up a macro to automatically switch drills after a certain # of uses and when you think about it, .1 exp every 2 - 5 seconds (depending on fast i set it) and a full iventory of drills, thats a few free levels overnight, its as good as botting but you can do it in a relaly far away spot or in a really public area and since they dont even have antihack protection yet, im sure theres no macro protection

thats deebee. the one on the video. he used ollydbg. You need to learn x86 processor and ASM.

i cant find any addresses that are changed with criticals, i tried searching 1 when i did a crit and 0 when i didnt, tried the opposite, tried finding the damage numbers, i couldnt find anything i could trace the assembly back to.. even finding something determining hit/miss would probably have a je near it to determine next if its a crit or not.. could use a tip from deebee..

Finnaly I can start finding stuff, on a computer that trickster actually works with, never found out how to get around that (tried switching servers, reinstalling, etc etc)
it really is such an annoying error to play for 2 minutes then get cancled out

Shop + breakpoint + packet analyzing = !?

Items can be duplicated with packets too. This game needs more security.

How do you duplicate items? I tried packets but it keeps disconnecting.....I heard you have to decrypt the packet but how do you do that and what do you do next?

Hey guys, I have new info that may help with the 100% gun crit hack. It's how gun crits work; they're different from regular crits, which are based on percent. Maybe that's how gun crits are hackable. Here's how to do it normally:

After your first shot hits a monster, wait for the red damage/miss text to disappear and immediately shoot the monster again. Providing that your gun is reloaded in the time that the text disappears you'll get a crit if you timed it right. Works 100% of the time when it should. Of course lag messes this up and etc., which is why 100% crit all the time would still be amazing.

Not sure if any of the experienced people here have a level 15+ sense type with a gun, but can you tell me how I'd go about finding out how to get this hack working? What to search for and whatnot? My aim is Siveus if any of you need to reach me.

I am:

50% sure that deebee used Ollydebugger for the crit.

AND

ANOTHER 50% sure that this is a special feature of trickster online...which is NOT, for me, any good at all.

I am:

50% sure that deebee used Ollydebugger for the crit.

AND

ANOTHER 50% sure that this is a special feature of trickster online...which is NOT, for me, any good at all.

he has confirmed that hes used olly for crit

Anyone know anything about the gun reload adress?

Like would it be better if I searched for 0 when it's full?Or just shoot some and press hotkey?

what lines in the text do i change to make it 24/7 day and light in dungons

what is the hotkey to tell ce to search why i am tapping to keep my drill at the right level?
i know this is a stupid question but i have looked on the offical forums and used the help file that comes with it

BUT I CANNOT FIND IT!!

Ok I have a lead on the gun reloading address. 01158A3C

I was doing 0 while reloading and 1 while fully loaded. It's 2 bytes and freezing the value at -1 seems to get very weird results. I can occasionally get machine gun-like bursts of damage but it's not consistent at all. Sometimes the bar loads halfway after shooting, sometimes none at all. Someone else care to help me out? This is my first time trying anything like this so I don't know anything about fine-tuning values.

ok im confused here, the only hack that worked for me 00419F0C then tick zf first box
the other didnt work can some1 plz help me with other hacks i woul greatly apreaciate it

am trying to work on miss hack and failing greatly - like most on this thread i'm a noob.. meh

I managed to change certain things within memory view concerning getting hit and healing (thanks to SliderMan on CE)...I can feel it.. it's getting closer!!!1.. hopefully

im just new around here.

can i ask you guys how to edit the trickster.bin

or would i say where can i put the numbers ur telling?

im totaly noob sorry...

thanks for the help

Awsome progress,I keep seeing about "ticking the zf first box" what the crap is that?

Do you mean the Freeze box?

BTW I tried the reload gun and nothing from me.I tried finding a value but it's very weird.Sometimes 2 values jump to 257 after I shot and sometimes they don't.I tried freezing them at 40,257 and 125 but nothing different.

note:I found something very interesting,after I froze like 10 adresses,the game won't let me equip things.It says "Mounting currently unavailable"when I try to equip and "Equipement cannot be removed in current status"when I try to desequip.Pretty useless but still.

if your here and not familiar with cheat engine, gtfo cuz ur worthless

zf is one of the registrars like eax,eip etc etc.... it's in memory view and no it doesnt mean freeze the box

ive got a private drill hack that you just hold the mouse down past the first line and let go, it moves up by itself, and past the boundaries too.. willing to trade for other verified hacks pm me.

I got the auto drill going too.Found 2 adresses,one that it's value is where the bar will start and other im not sure but all I have to do is start drill and hold mouse,it stays in the drill zone automatically.Right after I press D,the bar is already over middle.

This is like a no Brainer... but i found out that for those monster quest that have time limit You can take your time after you have killed the amount required. *Note* This will only work when you have killed the amount you are required to kill to complete the quest*
I am tired of killing the monsters and not have enough time to run back to the dam npc or when the game lag and the timer still countdown... BAKA...!!!

-After you have killed the required and it says something about complete quest, just simply log out of the char, and log back in, the timer should be gone but go back and talk to NPC. Take you time running back to the NPC. But you must kill the required amount before time runs out.

I have only tried this on one person monster quest mode, as for party and such, i havne't tried it yet. Also i'm not 100% sure if it works on all the monster quest but i've done a few that way and still finish the quest even though when i was finish killing the required monsters i only had 20 seconds left to run back. Hopefully they haven't fix this problem yet... ^.^
I hope this help. Please post if this problem have been fix.

Can anyone help me? i dont know how to use Ollydbg to hack trickster can anyone teach me? and how do you decrypt the packets to send them again and how do you find out the addresses?

AIM:bn199
MSN:b_n_1_9_9@hotmail.com

This is like a no Brainer... but i found out that for those monster quest that have time limit You can take your time after you have killed the amount required. *Note* This will only work when you have killed the amount you are required to kill to complete the quest*
I am tired of killing the monsters and not have enough time to run back to the dam npc or when the game lag and the timer still countdown... BAKA...!!!

-After you have killed the required and it says something about complete quest, just simply log out of the char, and log back in, the timer should be gone but go back and talk to NPC. Take you time running back to the NPC. But you must kill the required amount before time runs out.

I have only tried this on one person monster quest mode, as for party and such, i havne't tried it yet. Also i'm not 100% sure if it works on all the monster quest but i've done a few that way and still finish the quest even though when i was finish killing the required monsters i only had 20 seconds left to run back. Hopefully they haven't fix this problem yet... ^.^
I hope this help. Please post if this problem have been fix.

what you posted is out of no where you know that? well just to end this conversation. When you do a monster quest all you gotta do is finish the quest in the amount of time. you dont have to sign off and sign back on just to take your time. You can go back any time. as long as the quest is in the quest list and you finished it

auto drill is quite easy. im still having trouble with reload and crit.

0068383A godmode i found tick ZF
freezes your exp and level tho =(

it still showed the level animation after training with this on forawhile but my level didnt go up o.O
HEY UR HACK WORKS EVERY time i get hit its 0

you sure your not letting monsters hit you that are below your level somewhat? doesnt work for me and healths mainly 3 addresses so

what you posted is out of no where you know that? well just to end this conversation. When you do a monster quest all you gotta do is finish the quest in the amount of time. you dont have to sign off and sign back on just to take your time. You can go back any time. as long as the quest is in the quest list and you finished it
I wasnt tlking about missions im tlking about ollydbg and decrypting packets... how do you do that? how do you find addresses to tick ZF lol and how do you make hacks out of runnables?

Gonna try with t search ollydbg and trainer maker..get back on u guys later =/

i had managed to freeze the monster quest timer, but turns out its only the visible timer, the server knows when you start the quest (duh) so not hackable.. also with the numbers of monsters killed, not hackable..

yeah there one of the first things ive tried - the monster count, if you put it on the finishing number or close it the view count goes blank. Pritty useless =/.. back to miss hack i go

hack ideas ive thought up, spent roughly 5 minutes on each looking for quick answer, found nothing simple:
walk through walls (since i know you cant move your position by changing its value, if you can potentially walk past barriers it will give the straight line movement required)
displaying different windows than whats given (there are skill and growth reset windows!)
keeping the shop open anywhere
find out the depth of the item below you (ie on a 20-50 map, only dig where theres an item, and depth=50, thus better chance at good item.
/Time, tried to find the values using that, could not find, im sure that time only affects the day/night, so freeze that, freeze daytime, but doesnt help for dungeons.
get into nora sewers without giving a key, i mean come on, the portal is a few feet below you.
*if you move your position variables to near an npc u can click on them, but you really are still far away, thus that distance variable is client side, making me believe the distance from monster variable is also client side, if attacking from across the map is possible, would the monsters still chase after you? if not, sweet idea.
map value, freeze it at a value and go through a portal, get sent to that map

UG, got 1 question. How did you get the values for the "drill-only-when-there-is-an-item"? Is it the same as the one you scan? lets say the health is 0125846. Is it the same in the memory view?

i think what i did was clicked an area to drill when it showed me there was an item, and searched 1, then kept checking spots till it did that thing where it told me there wsnt anything there, and searched 0, then repeat.. i dont quite remeber cuz i was totally stoned at the time. i might just have searched 1 when it found an item and 0 when it said nothing, but NONE of the times in the search process did i actually DRILL, just put the drill on the ground

Perhaps another good hack would be one that could set the monster count in a quest to full. That way, the whole concept of training would theoretically be thrown out the door. Is this even possible though?

Perhaps another good hack would be one that could set the monster count in a quest to full. That way, the whole concept of training would theoretically be thrown out the door. Is this even possible though?


You should read the thru the posts before posting this has been tried already

I got the auto drill going too.Found 2 adresses,one that it's value is where the bar will start and other im not sure but all I have to do is start drill and hold mouse,it stays in the drill zone automatically.Right after I press D,the bar is already over middle.

doesnt sound to hard to do, just freeze the addresses once you change them to say 70 and 70 cuase the bar only goes up to 100 or 200, all thats left to do is find the 2 address's (which is acctually a good idea right now since im just sitting in my room watching tv)

is there a god-mode or a hack that lets mages hit crit...or lots of times or not use mp?

Rocketman-actually the value is kind of weird,it's in the 17000's.Changing it to 18000 makes the bar go throught the drilling window.All you have to do is add/remove like 10~30 to adjust.

Also,the other adress I was talking about is worthless,I tested the above adress alone and works fine.

ahah I kind of expected it,but changing the amount of ammo loaded in your gun doesnt do anything.When I was at 2 ammo,I changed the value to 40 but after I shot twice,it was stuck at Loading.Oh well,had to test it :P

WOOOOOOOOOOOOO GUYS..I GOT THE MULTI SHOT WORKING FOR THE GUN..but no crits yet

A little Proof of wat i juz did :D

http://img297.imageshack.us/img297/4373/22ig4.jpg (http://imageshack.us)

yea i found the drill adress, that was easy, I was trying to find a way to make it instant so it just automatically goes to 10, but I cant find the adress that controls it x.x (when teh numbers acctually start counting 1 - 10) and the number you use is 17165

Ive mainly been trying to think of hacks you could do, like miss hack in which I thought I had the adress, but it seems each monster has the chance, so you'd have to keep finding the adress for whatever monster your gonna fight, and by the time you did that, it'd either be A.Dead or B. You'd be dead

Oh also, your name is on that ss, Just an fyi ^^ mister number

lol u got no idea how happy i am..i spent over 10 hours reading guides from here n in gamerzplanet and trying non stop.. and i'm consider a noobish in this kinda things.. - _-

PS:i cant pm 'The u know who' ..i dun have 15 post lol

How do I set the hotkey because everytime i search I dont find anytyhing or it take too long.

WOOOOOOOOOOOOO GUYS..I GOT THE MULTI SHOT WORKING FOR THE GUN..but no crits yet

A little Proof of wat i juz did :D

http://img297.imageshack.us/img297/4373/22ig4.jpg (http://imageshack.us)
Im a lion can you tell me the code?

what do i change to make dugons light all the time

WOOOOOOOOOOOOO GUYS..I GOT THE MULTI SHOT WORKING FOR THE GUN..but no crits yet

A little Proof of wat i juz did :D

http://img297.imageshack.us/img297/4373/22ig4.jpg (http://imageshack.us)

Nice ! :O ive been trying to find it,but I always get over 300k results :(.

Could you give us some hints on how to find it?What did you search?2 bytes?4 bytes?

Nice ! :O ive been trying to find it,but I always get over 300k results :(.

Could you give us some hints on how to find it?What did you search?2 bytes?4 bytes?


after 2 hours of trying i found out how but if i tell everyone it'll be ruined, only problem i have is that not having invincible reload it goes down after getting hit. Reload bar goes up really fast tho


Edit: Getting hit doesnt matter cause of reload speed

Alright.Can you just give out if its 2/4 bytes?Would help out alot :ninja:

Alright.Can you just give out if its 2/4 bytes?Would help out alot :ninja:


It's Under "Byte".......PS, trying to see if it's possible to do while moving without skill

Do I search 0 when the reload bar is full? o_O
'Cause I got a bunch of different addresses, when I shoot like 5 of them changes.

I got an adress that changes to 1 when my load is full and 0 when it's empty.Don't think it's that one thought,freezing it at 1 doesnt get it.

I also used pause game while scanning dont know if it helped tho.

So you would pause it when it's not reloaded? o_O

So you would pause it when it's not reloaded? o_O


I clicked pause while scanning then fired 1 shot ran away, while running i alt out and scan while bar is at 0

lol last time I tried pause while scanning it took so long,I got disconnected from trickster.

I clicked pause while scanning then fired 1 shot ran away, while running i alt out and scan while bar is at 0

I don't think thats possible for me unless we can unequip skills o_O

<- has Quick Reload T_T

I don't think thats possible for me unless we can unequip skills o_O

<- has Quick Reload T_T

I said nothing about a skill.....

I think he means that he has the moving reload skill,so your method won't work for him since when he runs his bar loads.

Well I did multiples scan and so far im at 105008422 found adresses...

It takes like 2 minutes each scan too =/

I think he means that he has the moving reload skill,so your method won't work for him since when he runs his bar loads.


Oh i'll post the cheat engine file in a bit dont know if it'll work for everyone tho....

Here it is i dont know it it'll work with everyone, open it with Cheat engine 5.2, scan if you want.16909


Extract to anywhere, open cheat engine attach to trickster, open file Quickload.CT WITH Cheat engine, Click frozen and you're done



Also this thing is a real bullet burner be ready to buy alot of ammo

Here it is i dont know it it'll work with everyone, open it with Cheat engine 5.2, scan if you want.Quickload.rar


Extract to anywhere, open cheat engine attach to trickster, open file Quickload.CT WITH Cheat engine, Click frozen and you're done



Also this thing is a real bullet burner be ready to buy alot of ammo

Hmm, this is what I get when I open that table up with trickster open.. http://img131.imageshack.us/img131/5083/screenshot461db6.jpg

Only the last 3 values can be frozen.

Edit: Yeah can you just say how you got the first 4 values so we can get our own to make it work for different people? :P I kept searching for byte with a value of 1 when loaded, shot a bullet and ran around (so the gauge was 0) then searched for 0, rinse and repeat. I kept coming up with the address that I posted earlier but could never do much with it. What did you do differently?

Same thing.
Best would be to tell us the original values the adresses you freeze were,so we just have to search for those.

screw lions!!! i need god mode n multi hit for a MAGE:smoker:

While moving they all go to 0 while fully loaded it's


Default Value while standing load bar full
01548470 173
01548471 42
01548472 73
01548473 67
01548476 72
01FD87D6 200
01FD87D7 66
7FFDE728 2

Also i dont know if it changes but it was with "gun type 1"


Good luck, i'll be back tomorrow

Edit: Yeah can you just say how you got the first 4 values so we can get our own to make it work for different people? I kept searching for byte with a value of 1 when loaded, shot a bullet and ran around (so the gauge was 0) then searched for 0, rinse and repeat. I kept coming up with the address that I posted earlier but could never do much with it. What did you do differently?


What i did was run, scan for exact 0, stand still wait for gun to load scan increase value repeat.

While moving they all go to 0 while fully loaded it's


Default Value while standing load bar full
01548470 173
01548471 42
01548472 73
01548473 67
01548476 72
01FD87D6 200
01FD87D7 66
7FFDE728 2

Also i dont know if it changes but it was with "gun type 1"


Good luck, i'll be back tomorrow




What i did was run, scan for exact 0, stand still wait for gun to load scan increase value repeat.

Thanks for all the info man,you rock :squareeyed:

I finally found something interesting-two adresses get to 200 when bar is full and 0 when its empty,im so close.If I freeze em the bar glitches kinda but still no multihit.I have to find the adress that tells the game im "loading" a bullet :/.

Yeahhhhhhh.I got two adresses ,value 66 and 67,they went down to 0 went I shot.I froze them and the bar loads completely fast.

I dont shoot super fast,but satisfies me :D

i will be posting more detail in morning and maybe a picture guide

ahaha I got it to shoot super fast,it seems if the monster moves,you cant shoot lightning fast.But if they stop or something,man its insane.Plus I have a super fast clicking script,so I just press a button when my mouse is over a monster and it shoots uber fast.I pwned a bad anemone in like 5 seconds(im lvl 20) in the face of a racoon and he was all confused lmao.

hey guys to those who pm me..sori i cant reply as i dun have 15 post..i dun have AIM either..=.=

Hint:btw i did not use CE to find out bout the multishot hack :) (in this case CE seems complicated to me,i'm noobish)

Hint:And Warlover's code is very near..meaning bit more to success

Hope u guys understand not i dun wanna share..i spent over 10 hours reading guides and trying non stop..the pain in my head.. =/

Got warlover's working. Awesome stuff.

Sorry, I must be missing something simple. I understand the concept, I think I'm just missing some option or a step. First time I'm tring CE. I'm trying the simple drillhack from ugotworms.

Using CE 5.2, all default settings. I'm using ~ (#192) for 'Next Scan-Increased Value' in Configure Hotkeys.

CE is attached to Trickster.bin.

I start the drill process. All bars empty and zero. New Scan, Value: 0 (Not Hex), Scan type:Exact Value, Value Type: Byte (Not 2/4/8 bytes as mentioned by above posts). Memory Scan Options: 0040 0000 to 00FF FFFF. Only Hyper Scan option is checked. Scan is fast. Under 1/2 sec even.

Found ~750k. Next I alt-tab back to game and start drilling. I keep the bar below the line and hit my tilda(~) key for 'Next Scan-Increased Value'. Again, very very fast scan. Now I'm down to ~80 Found. Simple.

3rd Scan, Same value as above. Value:0, Exact Value and hit Next Scan. Results with 30 Found. But here's the thing. All the values are continuously being updated. Not a single value stays at 0. At this point shouldn't one(or more) points stay at 0? I'm not drilling at all. The drill bar is empty. So am I'm missing something stupid?

war do you happen to have aim or msn?

Well bad news for some of us, the recent server check changed the addresses. Does anybody remember the array for the drill auto-detect address?

EDIT: I refound the drill auto-detect address. I looked through the entire thread before I found the answer on how to find it again =)

Now if I could just get the arrays for full-reload...

screw lions!!! i need god mode n multi hit for a MAGE:smoker:
then go find it yoruself ya leach

hmm the address changed =/

the adress changed for everything cause of patch just look for the adresses agen

Could somebody please tell me how the ZFing-for-an-item-every-time address was found? I've tried searching for array of bytes, 74 69, but can't really find anything. =/ Thank you in advance.

Items are server side -.-

YEA!!!!! I found the address for multishot again after a few tries !!

This time i use 4bytes to get it though ..not the usual 2 bytes

Loveless can u help me find em?

Items are server side -.-
You mean they changed it? So all we have now is one-click drill (which is fairly useless, unlike the item-every-time one) and multi-shot? D:

For finding the multihit addresses again, do we search for the same values as before? If so then it wouldn't be a problem at all because warlover already posted that. Can you post your findings anyway loveless? Would like to see what you did differently.

yea sure ^^

anyway i dun use CE like i said.. this time i tried 2 bytes..but i cant find them like i said earlier on

so i tried 4 bytes..and this time it works

i did the usual thing.. search for 1 when my gun is reloaded

and then i go into game and hit 2 mob..so they are constantly attacking me that means my gun cant be reloaded

then i search for 0 and keep repeating til i got 10 or lesser address then i slowly tried all of them :)

hope that helps

are they all static adresses so if they are can u post the adress so i can try them cause i cant seem to find them

i just started and the adresses are different for me so....

here are my "drill bar hack" adresses:

Drill Hack Starting: 00FC833A 50
Drill Hack Max: 00FC833B 67

still looking for the "1 item 1 drill hack so that i get the message that there is an item of not
i didnt figure that one out yet, i have 5 adresses left but dunno what to fill in :P


lol my 1st post here

yea sure ^^

anyway i dun use CE like i said.. this time i tried 2 bytes..but i cant find them like i said earlier on

so i tried 4 bytes..and this time it works

i did the usual thing.. search for 1 when my gun is reloaded

and then i go into game and hit 2 mob..so they are constantly attacking me that means my gun cant be reloaded

then i search for 0 and keep repeating til i got 10 or lesser address then i slowly tried all of them :)

hope that helps

I can't do that =/ cause I got the 2 skills that makes me reload when moving and reload when getting hit.

Is there an alternative way for me to do it?

I dont use Aim or msn, just pm me.

I can't do that =/ cause I got the 2 skills that makes me reload when moving and reload when getting hit.

Is there an alternative way for me to do it?


yes there is i'll post how in a bit

Edit there are 4 addresses i found that apply to reload, useless ones were removed
Good thing is all the values are within range of each other so you only need to find first one
Adress for me is


01548473 Defalut value 67
01548476 Default value 72


these value seem to stay same with any gun.
If you have load while moving/invincible reload heres how
"adding in a bit have to upload pics"

sori not an expert on this..warlover to the rescue :D

the 2.5 exp hack can be done by joining a party move to another area where you have 1.0 exp rate then zone into the other area to get 1.3 / 1.4 / 2.0 / 2.5 X , repeat that again and again (while searching for those values in CE .. ?

is it this simple or is that ust crap what i told?

how come i keep getting disconnected when i try to send packets?

Well here goes, " QUICK GUN RELOAD/FAST ATK " or whatever you wanna call it,

When your gun is fully loaded, Search for 2 Bytes, 17225
When the bar is at 0 (after you have shot,) Search for 0
Rince and repeat. after you have find it, freeze it at 17225..
Happy hunting.

I dont use Aim or msn, just pm me.




yes there is i'll post how in a bit

Edit there are 4 addresses i found that apply to reload, useless ones were removed
Good thing is all the values are within range of each other so you only need to find first one
Adress for me is


01548473 Defalut value 67
01548476 Default value 72


these value seem to stay same with any gun.
If you have load while moving/invincible reload heres how
"adding in a bit have to upload pics"


Ok here it is.

First fire up trickster and cheat engine, attach go on your lion and with cheat engine do this
http://img130.imageshack.us/img130/716/step1mp6.jpg

Next go to setting and
http://img150.imageshack.us/img150/5041/step2dm8.jpg

Now time for your first scan not moving with reload bar full search for this

http://img148.imageshack.us/img148/9052/step3wt8.jpg


This is the kinda tricky part, you start drilling after you finish drill WHILE the reload is going up Press DOWN SPACE like you should have binded earlier
http://img148.imageshack.us/img148/5135/step4kd6.jpg

Now repeat this between if you still have a long list or start over but you may get it as first adress.
http://img45.imageshack.us/img45/7358/finaloz8.jpg

Repeat step 3 and 4 with 2nd value of "72" and you should get it after some tries

Good luck


Seems Runner01 find works also, if you apply his search options to what i posted you'll only need to find 1 address

quote: Anyone find out how to regen life walking at same speed as sleeping/sitting?

better yet try finding out how to make it go really fast "regen" while walking/fighting
that would be like almost godmode :P

Ok here it is.

First fire up trickster and cheat engine, attach go on your lion and with cheat engine do this
http://img130.imageshack.us/img130/716/step1mp6.jpg

Next go to setting and
http://img150.imageshack.us/img150/5041/step2dm8.jpg

Now time for your first scan not moving with reload bar full search for this

http://img148.imageshack.us/img148/9052/step3wt8.jpg


This is the kinda tricky part, you start drilling after you finish drill WHILE the reload is going up Press DOWN SPACE like you should have binded earlier
http://img148.imageshack.us/img148/5135/step4kd6.jpg

Now repeat this between if you still have a long list or start over but you may get it as first adress.
http://img45.imageshack.us/img45/7358/finaloz8.jpg

Repeat step 3 and 4 with 2nd value of "72" and you should get it after some tries

Good luck


Seems Runner01 find works also, if you apply his search options to what i posted you'll only need to find 1 address


WOW if they need a guide for this, then there hopeless v.v

and for teh walking hp regain thing, im preety sure all it would do is change the animation to you standing but i doubt you could walk, ill try to find it though n see if I can get it working :\

Wow thanks to you guys helping so much,I found it in like 5 minutes.Took so much time before.

BTW both the 17225 and 67/72 adresses seem to affect the gun,I froze all three lol.

I'd really appreciate it if somebody could help me find the new address for getting the item-found or item-not-found message every time while drilling. Please? o:

what im trying to say is see what changes "after" the sit animation

is it me, or there's no static points... basically ALL address are the same, everything seems to be static..

can someone verify?
010D83C2 - 2 bytes - freeze at 17225
See if fast atk/unlimited reload works for you guys.
and feedback please

Runner01-I had an adress with the same value and it worked.I use it with the 67 and 72 from Warlover too.

Also if you dont have invincible reload or moving reload,it might not always shoot fast since when the monster will attack it will reload again.

i got runner01's method to work:

my process:

go to settings/configure hotkeys.

my hotkeys=

next scan-increased value > up arrow
next scan-decreased value > down arrow


now, search 17225

now, go ingame, and shoot, then run, so it stays allll the way at 0 (unfilled?)

then press down arrow.

then reload, press up arrow,

then shoot and run again,

press down arrow when its empty.

keep doing this until u get 1 or 2 addresses.

if ur motivation to hack is from watching deebee's video, then this isnt for you...

its quick reload but its not rapid like deebees.

i like it tho! =]




ps: all credits go to runner01 and warlover. i took runners' numbers and some of warlover's methods.

i hope this helped u all

Is it possible to change melee attack speed? Similar to what to do with reload would it be possible to find attack "charge" by scanning for a lower value after you attack? Only problem is knowing where to start

i got runn01's method to work:

my process:

go to settings/configure hotkeys.

my hotkeys=

next scan-increased value > up arrow
next scan-decreased value > down arrow


now, search 17225

now, go ingame, and shoot, then run, so it stays allll the way at 0 (unfilled?)

then press down arrow.

then reload, press up arrow,

then shoot and run again,

press down arrow when its empty.

keep doing this until u get 1 or 2 addresses.

if ur motivation to hack is from watching deebee's video, then this isnt for you...

its quick reload but its not rapid like deebees.

i like it tho! =]


Use a program that allowing you to hold mouse down and it would make rapid clicks

Dont know if it works but http://www.aldostools.com/clickalot.html
Always scan before you open

one more thing, from my mapling days, i know auto clicker works with anything.

u could use autoclicker if u want easy attacking.

im gonna go get comfortable with my speed hack =]


actually, i take back what i said...

i think this might be as fast as deebee's provided you have ac

Well it probably will once I get invincible reload and moving reload.Whenever monsters attack me it slows down.

I dont think you can reduce melee attack speed,since stats(dex) are server-side.You could change the value of dex,but it would only show fake values in your screen,wont really affect anything.

Maybe with packets..

I'm not 100% sure it's server-side also, but I think I got the Standing/Attacking with Sleep-like Regen. I just kept searching(byte form) for changed values while sleeping/sitting/standing. Once I got down to like 10 addresses I took out a few that were constantly changing, then when through and froze one at a time.
I got 10FCB224 frozen at 242. It seems like I'm regening very quickly.


Edit: Nevermind, isn't working

Walking/Running looks to be client side. When you are over 90% you can't run. That probably all client side. Can try looking for that value so you stay running even over 90%.

im a noob hacker, but i like to figure out methods for finding things.

i want to try and get crit next..

in order to do so, i need a start. i think the only thing keeping me from actually hacking things for myself, is like:

how did you find "17225"

i can use it i just cant find it...

but if someone gives me numbers for crit, i would like to try and do it.



NOTICE TO EVERYONE ATTEMPTING SPEED ATTACK WITH GUN:
make sure u have money for bullets. i only have 20k left.

no bullets = no speed

invincible reload won't help much. anyone have any ideas on how to stop the loading message?

The exp thing doesnt work, i found the adress but it changes to ?? as you leave map. I'll still try to see if there's another way

i dont think it will work, but im gonna try galden (or whatever the money is) hack. using coupons and such should make it easier.

i dont think it will work, but im gonna try galden (or whatever the money is) hack. using coupons and such should make it easier.

Dont bother, all items/money is server side

o rly? i just made 40k by doing nothing.


i just discovered how to "create money"

i will make a new thread for it.

o rly? i just made 40k by doing nothing.


i just discovered how to "create money"

i will make a new thread for it.


you can make money on your screen but the "SERVER" knows how much you really have


PS new thread will be locked i think all post go here until Trickster gets own board

Runner01-I had an adress with the same value and it worked.I use it with the 67 and 72 from Warlover too.

Also if you dont have invincible reload or moving reload,it might not always shoot fast since when the monster will attack it will reload again.

maybe you misunderstood me, i'm trying to figure out if this address are dymanic or static.. another words, if my address is the same as yours..

seems like when using the gun-reload hack, i lag when im using booster, well its not really 'lag' its more like...freeze when im trying to walk. But when im not using booster, the hack works fine, anyone having this problem as well?

nvm it doesnt work lol



i want to try and tackle crit next, because i know its possible.

i know you cant change your stats, but..

there must be some formula for crits.

like every time u hit, a dice is rolled. everytime it lands on 6, you crit.

we need to freeze it on 6...

my analogy sucks, but im wondering if people have any thoughts on this, items that add crit, anything.

nvm it doesnt work lol



i want to try and tackle crit next, because i know its possible.

i know you cant change your stats, but..

there must be some formula for crits.

like every time u hit, a dice is rolled. everytime it lands on 6, you crit.

we need to freeze it on 6...

my analogy sucks, but im wondering if people have any thoughts on this, items that add crit, anything.


search for value 6 (exact value) -- when you first crit hit an enemy (if it IS a crit you know that when you dont crit the next value will be decreased (assign hotkey to it)
as soon as you crit again next scan for a increased value (hotkey it) ..
after doing that time after time you should get the correct adress very soon ..

maybe that it works.. i really dont know i havent tried it but thats my thought on it

atm im working on a "get always an item while digging" -- im at a point that 3 adresses are showing me before the end of the dig if its a good drill or not
(when i have found something it shows 1 and 2 before i dig , if i dont find anything it says 0)

sidenote: the digging is what it looks like a timebased value .. mmm im to noob at this :P

i like your toughts on crit, but are u seriously about 6 lol? i was just using it as an example.

if someone has a % or formula regarding crits, i believe something can be worked out.

unless this involves packets, which i know nothing about.

ive heard of ollydbg and packet sending or whatever, and niether of them make sense to me.

personally, im very happy that, no matter how many times they update, as long as i have a bypass of some sort, i will ALWAYS have fast reload.

it would only be greater to have crit




i just need like, the value of crit, and i can figure out the rest.




ahhh but i do have a solid idea.

shoot an enemy (or hit it ), and search the value. then when u crit, search for higher value.

please leave your thoughts on this.



no luck, i didnt think it would work.

im kinda bored, so im gonna learn me some ollydbg!

its used frequently and i guess its helpful to know it.

if i get success with some sort of crit addy ill let u guys know.

Just hopping by

if your here and not familiar with cheat engine, gtfo cuz ur worthless

Easy there. You made me dig up my login details ;)

*edit* incorrect.. animation of character dynamic
00FC3BE4 2 byte, current animation of character, i havent tried it but maybe freeze it at something between 0-50 ithink were the drilling animations.. play with that..



yes my bad, 0040 0000, to 00FF FFFF , i screwed up both of em lol. this should significantly reduce search time, especially when searching with CE hotkey while clicking the drill



1) why dont u share the address
2) im a dragon anyway, but does the gun reload time show on the weapon details like casting time and cooldown, as something like 1.25 seconds? if so the values are stored in milliseconds for those, so 1250..
3)try using the hack really fast, sometimes lag makes it look like the hack works (why i thought i had stopped cool-down time)


opened trickster in olly, executable modules->trickster.bin, CTRL+N for names, saw this:


WININET dll used in trickster, functions for internet connections (http handlers, and wininet.internetwritefile...hmm.. *edit* WS2_32 is used for the connection. silly me remeber in WPE pro had to check off the winsock capture too because it wasnt working duhh

advapi32 dll used in trickster, functions include cryptcreatehash, crypthashdata, and cryptaquirecontextA, could this be what encrypts packets? i see no other signs of cryptography imports unless its the first set..

yes notice the first set of dll imports do not have names associated, just numbers like ODBC32.#11, is this obfuscated code or what? ODBC functions are important here because they interact with the sql that trickster runs on (if you look in the program files, see libmySQL.dll, and in data folder libconfig_eng.idx is a SQL server replication snapshot index script), plus they run asp.net and use XML for everything!

*EDIT*: found in names if you hit enter you can find out the references and thus the function name, for instance ODBC32.#43, hit enter:shows 2 lines:
004d5fe7 - calls odbc # 43,
then we see odbc #43 is ODBC32.SQLGetData

theres only 14 functions used from odbc32.dll.. so i will try and set a few breakpoints, and look up these odbc items because they seem like the most plausible areas to search.. ill try and keep u guys posted, please do the same!
First, Wininet is a library which provides a 'wrapper' API around sockets - providing, as you already figured, several functions for network related tasks, e.g. performing a HTTP request. Winsock however is used for 'lower-level' TCP communication (e.a., including 'raw' sockets) as utilized by trickster. recv() is imported by trickster, send() however - if I remember well - is not in the IAT, the adress is obtained in a different way (GetProcAddress?) maybe in an attempt to obfuscate the code. I haven't checked it further, as I prefer hitting ALT + F1 for the command line plugin in Olly, which sets its breakpoints 'in' the functions instead of on the calls made to them. Hence it still breaks fine.

Regarding the crypto - The fact that MS has a few crypto functions in the w32 API makes it possible for you to see them imported - it does however not mean that these are used for packet encryption ;) You shouldn't expect calls to cryptographic functions to be imported. As far as I'm aware Trickster uses custom encryption routines. Both the packet header and body are encrypted, yet it's not extremely difficult to reverse, some not-too-fancy shifting and xorring plus a substitution box. You could as well trace the send call back to the crypto call, it seems you've found Olly, look up how function calls work, and you should be able to find the crypto call. On a sidenote, bping send confirms the theory of drilling sending only two packets ;)

Your statement about *.idx, libMySQL and their webserver software makes no sense. You do realize that even if *.idx was ANYTHING belonging to MSSQL, libMySQL (client MySQL lib, pointless for the trickster client) would make no sense.

urgh.... ollydbg is quite scary...

unless someone creates a trickster specific tutorial, im not going to touch it.

Anyone have the new address for drill until gets item hack the one with the light bulb and stuff

Cone Zone-Maybe that could help but,there is a timed crit function for lions,when the last shot's message(damage/miss) dissapears,shooting can result in a crit.This crit isnt the full damage thought,only +20%.

You could maybe try doing that and then search for 1 after timing a crit...

Just an idea

i cant figure out how to do that lol... and plus speed hack makes it hard i think? i have no idea...

i just think it looks cool to crit, i dont really NEED it...


i cant figure those out.

deebee used ollydbg, and he said its easy if u know asm.

i dont know asm...


oooooo one more thing.

i dont really know what the "unrandomizer" is,

but i read in another post in this thread that it can unrandomize card prizes?

could this also unrandomize crit chance?

just a thought im gonna tinker with it. i dont even have a crit address or any leads


alright, so i dont know what unrandomizer is doing, but i came across something unusual.

im using a sword, because i dont know how to do time crit =3

but anyway, everytime it crits, theres a big white line, almost like a lightning bolt, that shoots across the screen. its not a graphic issue, so i must have touched SOMEthing on crit....



argh, im just not sure anymore.

deebee said that using ollydbg, you can replace normal shots with crit shots.

so like, if u do a time crit in this setup, i think it would do a normal attack?

im never going to figure out asm...

can anyone teach me how to set up short cut keys? ex: i want to use "pgup" for short cut key to "next search" on cheat engine. any help is greatly appreciated.

I found out something while using my lion today, I equiped a sword and attacked the enemy and missed and when the miss word dissapeared i click and I hit a crit like that evertime. So I guess it also works with swords. I also tried autoclick with trickster but its not working for me, only reason i need it cuz my fingers get tired of clicking all the time.

@ cone zone :

about the "6" value no (didnt figured out how you got the 6 :P )
maybe it it like this:

0 value = miss
1 value = normal
2 value = crit

anyway i dont know if the 0/1/2 value is given before the actual hit or after the hit, if its given after the hit you can search for higher/lower values (dont know if you follow me on that on)
if the hit value is given before you actually hit then it will be alot harder to search for it because you dont know if you have to press the increased or decreased hotkey

if the hit value is given before you actually hit then it will be alot harder to search for it because you dont know if you have to press the increased or decreased hotkey
If you are able to do the disappearing red text crit, that would work. BTW, I'm able to hit that crit over 90% of my shots BUT only using the level 20 wooden gun. As soon as I use the 25 gun, I'm lucky if I'm able to hit 1 crit outta 10 shots. I know people say there's no difference in timing the 'red text' crits on whichever gun you use but I sure as hell can't get crits outta the 25 one. Especially since I can crit 9 outta 10 shot from the 20 wooden gun.

As for that above problem, just use the undo scan feature if you miss-read it. =D

Been trying to search for the auto-reload addresses, but there's a problem. When I search for values, it returns over 100000 addresses, and my CE only allows up to 32000 to be displayed.

EDIT: OMG never mind... seems that even though the search returned like a million addresses, it still keeps track when you do "next scan" or something like that.

Also, I cannot use this cheat with the drill auto-detect hack. Seems that the two are mutually exclusive.

Also, I cannot use this cheat with the drill auto-detect hack. Seems that the two are mutually exclusive.

Absolutely not true. I'm currently running the 'quick reload' and 'drill item detection' at the same time right now. Both works perfectly, together. No reason why they would cancel each other out anyways.

I have another suggestion for the high level people tho. If anyone willing to try. The level 35 sense skill Basic Detection when cast shows Xs on the screen of where there are items. (As mentioned elsewhere). This is leading me to believe that your client already knows this information. As the 'drilling detection' seems to confirm that theory.

The problem is, that spell is only active for 1 sec. Perhaps a way for someone to 'freeze' that value/timer so it stays active? Or if nothing else; if frozen, you can just walk to areas where there are items and dig there. Just a thought.

Honestly, it's not that big of a deal, just the normal detection when you start drilling works fine. But it will save a few secs from that animation if it's not too hard. I would much rather users spend time figuring out 'always crit' =)

I know it's still fully possible. I saw a low level with a gun using an 'always crit' and 'quick reload' tonite killing shit in the newbie areas.

Does anyone know the 'drill item detection' address? The update changed it and i cant find it

Guys i will make it more easy...
use a debugger(Ollydbg da best)


4BA0D1 nop <-------when i shoot the bar dont decrease so i think is multishot.


4B8F4F nop <------- this when u drill the bar dont auto decrease
4B8E0A nop

in olly atach to the process of the game (Trickster.bin),after u attach to the process it will pause the game so press the play button.
Now to get to the adress press ctrl+g put the address and it will take u there.
Just assamble the line with nop and thats done have fun.

I Found the critical too but i will realease only if u guys keep tryng.

Guys i will make it more easy...
use a debugger(Ollydbg da best)


4BA0D1 nop <-------when i shoot the bar dont decrease so i think is multishot.


4B8F4F nop <------- this when u drill the bar dont auto decrease
4B8E0A nop

in olly atach to the process of the game (Trickster.bin),after u attach to the process it will pause the game so press the play button.
Now to get to the adress press ctrl+g put the address and it will take u there.
Just assamble the line with nop and thats done have fun.

I Found the critical too but i will realease only if u guys keep tryng.
lol good for u in finding the crits..tried using ollydbg.. too complicated

Oh ya last thing..any hints on the crits stuff..juz some hints..dun have to give the answer..i wanna learn how to do it lol..i tried several times before but fail

the new adress for auto detection is 00419FBC tick zf [X][ ]

Leisure thanx for the simple instructions for olly dbug the multi shot is faster
and i also heard that guns only crit after u miss so does finding the crit have to do with missing?

edit: for multishot what gun you use cause when i try it with gun type 1 it doesnt work

Mmm i used gun 2.

Let me chek is difer the gun

leisures i see why it only works when u stnading still if u get hit u cant keep shooting

You need invincible reload.
I'll try the olly reload to see if it's better.

Not working at all :/.Everytime I change the 4BA0D1 to nop then go in-game and shoot a monster,olly gets stupid and pauses the game.Even if I press play it keeps pausing...

I'll stick with CE...

please release the crit address =[

ive been looking since thread #13


i too cant figure out ollydbg, i go to the address, right click and go to assemble, i dont know what else.

4B8F4F nop <------- this when u drill the bar dont auto decrease
Thanks a lot that works great. I'm going to try to make a macro to drill now with ACtools. Also, you can set nops in CE too you dont need olly just to let the rest of you know. (Right click, replace with code that does nothing)

edit: for multishot what gun you use cause when i try it with gun type 1 it doesnt work
yea i notice after i change guns i need to refind the address O.O but i already master how to find multishot address.. gave up on crits- _-

I scanned for 17225 when I was fully reloaded. Shot/drilled and pressed down for decreased, and then pressed up for increase and I got like 2 addresses. Froze them both and nothing happened =/. ATM I'm using a level 40 gun and I got the 2 reloading skills o_o