+- LCKB (https://lckb.dev/forum)
+-- Forum: ** OLD LCKB DATABASE ** (https://lckb.dev/forum/forumdisplay.php?fid=109)
+--- Forum: Off-Topic (The Outer World) (https://lckb.dev/forum/forumdisplay.php?fid=198)
+---- Forum: General Discussion (https://lckb.dev/forum/forumdisplay.php?fid=147)
+---- Thread: Fixing 140 Loop Bug Issue (/showthread.php?tid=279)
- BashVendetta - 10-18-2011
Hi all,
I am wondering what I am doing wrong?
Old code to fix upto 140 was:
004DF6F5 8C00 MOV WORD PTR DS:[EAX],ES
I am assuming the 8c00 is 140 as 8c in hex is 140 so I change to ff00 as shown:
004DF6F5 FF00 INC DWORD PTR DS:[EAX]
Still not working though, anyone have any idea what the problem is? Or have I missed anything?
- someone - 10-18-2011
aSH' date=' post: 11478"']Hi all,
I am wondering what I am doing wrong?
Old code to fix upto 140 was:
I am assuming the 8c00 is 140 as 8c in hex is 140 so I change to ff00 as shown:
Still not working though, anyone have any idea what the problem is? Or have I missed anything?
Those values are OP code for the mov instruction,changing the value will change the instruction.
2
MOV Eb Gb 88 dw r gen datamov Move
MOV Evqp Gvqp 89 dW r gen datamov Move
MOV Gb Eb 8A Dw r gen datamov Move
MOV Gvqp Evqp 8B Dw r gen datamov Move
MOV Mw Sw 8C d r gen datamov Move
MOV Rvqp Sw
MOV Sw Ew 8E D r gen datamov Move
MOV AL Ob A0 w gen datamov Move
MOV rAX Ovqp A1 W gen datamov Move
MOV Ob AL A2 w gen datamov Move
MOV Ovqp rAX A3 W gen datamov Move
MOV Zb Ib B0 +r gen datamov Move
MOV Zvqp Ivqp B8 +r gen datamov Move
MOV Eb Ib C6 w 0 gen datamov Move
MOV Evqp Ivds C7 W 0 gen datamov Move
MOV Rd Cd 0F 20 r 03+ D26 0 system o..szapc o..szapc Move to/from Control Registers
MOV Hd Cd 0F 20 r 03+ U27 0 system o..szapc o..szapc Move to/from Control Registers
MOV Rq Cq 0F 20 r P4+ E 0 system o..szapc o..szapc Move to/from Control Registers
MOV Hq Cq 0F 20 r P4+ U27 E 0 system o..szapc o..szapc Move to/from Control Registers
MOV Rd Dd 0F 21 r 03+ 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Hd Dd 0F 21 r 03+ U27 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Rq Dq 0F 21 r 03+ E 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Hq Dq 0F 21 r 03+ U27 E 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Cd Rd 0F 22 r 03+ D26 0 system o..szapc o..szapc Move to/from Control Registers
MOV Cd Hd 0F 22 r 03+ U27 0 system o..szapc o..szapc Move to/from Control Registers
MOV Cq Rq 0F 22 r P4+ E 0 system o..szapc o..szapc Move to/from Control Registers
MOV Cq Hq 0F 22 r P4+ U27 E 0 system o..szapc o..szapc Move to/from Control Registers
MOV Dd Rd 0F 23 r 03+ 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Dq Hq 0F 23 r 03+ U27 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Dq Rq 0F 23 r 03+ E 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Dq Hq 0F 23 r 03+ U27 E 0 system o..szapc o..szapc Move to/from Debug Registers
MOV Rd Td 0F 24 r 03-04 0 system o..szapc o..szapc Move to/from Test Registers
MOV Hd Td 0F 24 r 03-04 U27 0 system o..szapc o..szapc Move to/from Test Registers
MOV Td Rd 0F 26 r 03-04 0 system o..szapc o..szapc Move to/from Test Registers
MOV Td Hd 0F 26 r 03-04 U27 0 system o..szapc o..szapc Move to/from Test Registers
That code code copies the valie from somewhere to EAX, follow dump, of the eax, or that other registry or you can change the value of the EAX from a location you want.
- BashVendetta - 10-18-2011
So I go to origin? I am a little confused, I understand EAX will be calling the value.
- blankname - 10-18-2011
here is the new lvl up loop bug fix. it completely fixes the levelup loop bug and prevent players from going past the max level
0x000FC7F6 B4
0x000FC80D 9D
- BashVendetta - 10-18-2011
here is the new lvl up loop bug fix. it completely fixes the levelup loop bug and prevent players from going past the max level
0x000FC7F6 B4
0x000FC80D 9D
What did you edit to get the above?
I use ollydb and have never seen adresses like this.
- someone - 10-18-2011
aSH' date=' post: 11510"']What did you edit to get the above?
I use ollydb and have never seen adresses like this.
He used Hex Editor, and those are File offsets, not virtual offsets(virtual offsets are shown in ollydbg).
If you want to edit with ollydbg goto 0x004FC7F6, 0x004FC80D
- BashVendetta - 10-18-2011
Ya I figured, just people using so many different methods its becoming very confusing >.>
- BashVendetta - 10-18-2011
I just done this and it is still not working.....
- someone - 10-18-2011
ash' date=' post: 11515"']i just done this and it is still not working.....
004fc5b1 |. 8178 20 8c0000>cmp dword ptr ds:[eax+20],8c
- BashVendetta - 10-18-2011
Im assuming the above I change to: 004fc5b1 |. 8178 20 8c0000>cmp dword ptr ds:[eax+45],8c or am I wrong lol?