adress 0.11 [Archive]

View Full Version : adress 0.11

CondorX

6th September 2006, 05:14

Full God Mode (Tick ZF)
5C5659

Fly (Tick ZF)
5FDEE9

Super Tubi (Tick Both ZF)
469B89

Melee God (Tick ZF)
5D00D6

DupeX
600551

Unrandomizer (Modify EAX)
6460DD

Pointer hacks:
Same As V0.9

Unlimited Attack
6DD2B4 - Offset: D70

No Breath
Pointer: 6DD2B4 - Offset: 230

Charachter X
Pointer: 6DD2F0 - Offset: 564

Charachter Y
Pointer: 6DD2F0 - Offset: 568

Left Wall
Pointer: 6DC950 - Offset: 4

Right Wall
Pointer: 6DC950 - Offset: C

Top Wall
Pointer: 6DC950 - Offset: 8

Bottom Wall
Pointer: 6DC950 - Offset: 10

Item X
Pointer: 6DD2B4 - Offset: 344

Item Y
Pointer: 6DD2B4 - Offset: 348

DUPEX SCRIPT:
//DupeXVac Assembly script\\

alloc(FindCharacterAddress, 1024)
alloc(ListOffset, 4)
alloc(ESIList, 1024)
alloc(DupeXVac, 1024)
alloc(EDIValue, 4)
label(EndSearch)
label(CompareOffset)
label(StoreESI)
label(DoNormal)
label(LeaveMe)

FindCharacterAddress:
mov [esi+114],edi
push eax
push ebx
push ecx
push edx
mov eax,0
mov ebx,ListOffset
mov ecx,ESIList
mov edx,EDIValue

CompareOffset:
cmp eax,[ebx]
je StoreESI
cmp esi,[ecx+eax*4]
je EndSearch
inc eax
jmp CompareOffset

StoreESI:
mov [ecx+eax*4],esi
inc eax
mov [ebx],eax
mov [edx],edi

EndSearch:
pop edx
jmp LeaveMe

DupeXVac:
push eax
push ebx
push ecx
mov ebx,[ListOffset]
dec ebx
mov ecx,ESIList
mov eax,[ecx+ebx*4]
cmp esi,eax
je DoNormal
mov edi,[eax+114]

DoNormal:
mov [esi+114],edi

LeaveMe:
pop eax
pop ebx
pop ecx
jmp 600557

//DupeXMonster Assembly script\\

alloc(FindCharacterAddress, 1024)
alloc(ListOffset, 4)
alloc(ESIList, 1024)
alloc(DupeXVac, 1024)
alloc(EDIValue, 4)
label(EndSearch)
label(CompareOffset)
label(StoreESI)
label(DoNormal)
label(LeaveMe)

FindCharacterAddress:
mov [esi+114],edi
push eax
push ebx
push ecx
push edx
mov eax,0
mov ebx,ListOffset
mov ecx,ESIList
mov edx,EDIValue

CompareOffset:
cmp eax,[ebx]
je StoreESI
cmp esi,[ecx+eax*4]
je EndSearch
inc eax
jmp CompareOffset

StoreESI:
mov [ecx+eax*4],esi
inc eax
mov [ebx],eax
mov [edx],edi

EndSearch:
pop edx
jmp LeaveMe

DupeXVac:
push eax
push ebx
push ecx
mov ebx,[ListOffset]
dec ebx
mov ecx,ESIList
mov eax,[ecx+ebx*4]
cmp esi,eax
je DoNormal
mov edi,[EDIValue]

DoNormal:
mov [esi+114],edi

LeaveMe:
pop eax
pop ebx
pop ecx
jmp 600557

Are same 0.10 ;)

XxAaPxX

6th September 2006, 16:11

the dupex is not working for me :(

richan

6th September 2006, 16:12

Because they're wrong, they're for 0.10

XxAaPxX

6th September 2006, 16:21

u got the 1 for 0.11 and willing it to share??

richan

6th September 2006, 16:22

Credits go to the original discoverers

Memory View:

God Mode » 5C5630 | ZF [x][ ]
Super Tubi » 469D17 | ZF [x][x]
Slow Tubi » 469F6C | ZF [x][x]
DupeX » 6004CB | EIP
Speed Attack » 424396 or 424318 | EAX
Fly » 5FDE63 | ZF [x][ ]
Unrandomizer » 6460FD | EAX

Pointer hacks:

Unlimited Attack » 6DD2B4 - Offset: D70
No Breath » 6DD2B4 - Offset: 230
Charachter X » 6DD2F0 - Offset: 564
Charachter Y » 6DD2F0 - Offset: 568
Left Wall » 6DC950 - Offset: 10
Right Wall » 6DC950 - Offset: 8
Top Wall » 6DC950 - Offset: C
Bottom Wall » 6DC950 - Offset: 4
Item X » 6DD2B4 - Offset: 344
Item Y » 6DD2B4 - Offset: 348

DUPEX SCRIPTS:

DupeXVac (monsters follow you)

alloc(FindCharacterAddress, 1024)
alloc(ListOffset, 4)
alloc(ESIList, 1024)
alloc(DupeXVac, 1024)
alloc(EDIValue, 4)
label(EndSearch)
label(CompareOffset)
label(StoreESI)
label(DoNormal)
label(LeaveMe)

FindCharacterAddress:
mov [esi+114],edi
push eax
push ebx
push ecx
push edx
mov eax,0
mov ebx,ListOffset
mov ecx,ESIList
mov edx,EDIValue

CompareOffset:
cmp eax,[ebx]
je StoreESI
cmp esi,[ecx+eax*4]
je EndSearch
inc eax
jmp CompareOffset

StoreESI:
mov [ecx+eax*4],esi
inc eax
mov [ebx],eax
mov [edx],edi

EndSearch:
pop edx
jmp LeaveMe

DupeXVac:
push eax
push ebx
push ecx
mov ebx,[ListOffset]
dec ebx
mov ecx,ESIList
mov eax,[ecx+ebx*4]
cmp esi,eax
je DoNormal
mov edi,[eax+114]

DoNormal:
mov [esi+114],edi

LeaveMe:
pop eax
pop ebx
pop ecx
jmp 6004d1

DupeXMonster (monsters stay where you last touched the ground)

alloc(FindCharacterAddress, 1024)
alloc(ListOffset, 4)
alloc(ESIList, 1024)
alloc(DupeXVac, 1024)
alloc(EDIValue, 4)
label(EndSearch)
label(CompareOffset)
label(StoreESI)
label(DoNormal)
label(LeaveMe)

FindCharacterAddress:
mov [esi+114],edi
push eax
push ebx
push ecx
push edx
mov eax,0
mov ebx,ListOffset
mov ecx,ESIList
mov edx,EDIValue

CompareOffset:
cmp eax,[ebx]
je StoreESI
cmp esi,[ecx+eax*4]
je EndSearch
inc eax
jmp CompareOffset

StoreESI:
mov [ecx+eax*4],esi
inc eax
mov [ebx],eax
mov [edx],edi

EndSearch:
pop edx
jmp LeaveMe

DupeXVac:
push eax
push ebx
push ecx
mov ebx,[ListOffset]
dec ebx
mov ecx,ESIList
mov eax,[ecx+ebx*4]
cmp esi,eax
je DoNormal
mov edi,[EDIValue]

DoNormal:
mov [esi+114],edi

LeaveMe:
pop eax
pop ebx
pop ecx
jmp 6004d1

XxAaPxX

6th September 2006, 16:37

i use dual engine. when i put the code in EIP xxxx0000 ms closes how can i fix that?? someone????

DeathWish

7th September 2006, 22:00

change ur listoffset value to 0 ;)