View previous topic :: View next topic |
How many of you have h0zed a NFS-MW save game, in the name of haxX0ring? |
Frequently |
|
33% |
[ 1 ] |
A few, but not many... |
|
0% |
[ 0 ] |
This one time... At Band Camp... |
|
0% |
[ 0 ] |
What's an NFS-MW save game? |
|
0% |
[ 0 ] |
Do you have wall hakus!? I NEED WALLLLL HCKUSSS |
|
66% |
[ 2 ] |
|
Total Votes : 3 |
|
Author |
Message |
Zhoul Master Cheater Reputation: 1
Joined: 19 Sep 2005 Posts: 394
|
Posted: Fri Jan 27, 2006 7:30 pm Post subject: |
|
|
cparty wrote: | "umm, I hope you didn't "waste" too much time in figuring out which codes represent which marker" |
Damnit all to hell Only spent about 15 minutes figuring out which was which, and I thought I remembered you posting something along these lines, but after a quick search, I didn't find it. O well at least the auto assemble script was gen'd in the process.
cparty wrote: | I also try to pin down where the number of races done is stored (the number to reach to challenge the BL racers), but EA seem to have hidden this one very well, looks also like it depends on several values. I don't mean the "lock" and "done" symbols on the races, those start at 0B57AADF, but their values aren't intuitive. I use a 0% and 100% save to see how to switch them on/off.
This could be used to unlock all races (probably usefull for the challenges). |
Here's the solution I've come up with for Races/Milestones. It will set your current race wins and milestones to 20 when you go to the blacklist screen. At this point, you still can't challenge racer, until you resume free roam and receive the text message stating they are ready to race. What you might want to do, is use this code to set race/milestones to 20, scan for a zero, then resume free roam and scan for 1, then filter off the rest of the results with "not changed" scans, to find the 'is ready to race' value.
// Code - Set Milestones/Race Wins to 20 when read.
// Repalces: 005DD1C0 - Set Milestones/Race Wins to 20 when read (Orig: 0FB74118C3CCCCCCCCCCCCCC New: C74118140014000FB74118C3 )
[ENABLE]
005DD1C0:
db C7 41 18 14 00 14 00 0F B7 41 18 C3
[DISABLE]
005DD1C0:
db 0F B7 41 18 C3 CC CC CC CC CC CC CC
One thing I noticed about scanning for certain values in this game:
When I was scanning for the race wins, I would scan for (current number of won races) - then race , and when the race was over, search for "Increased by 1". This proved not so successful. I found later, I actually had to save my game, before scanning for "Increased by 1".
- Zhoul
*EDIT* - v0.7.0-D , Released at 6:00am (Saturday)
http://www.reefermagnets.com/trainers/prog/nfsmw/NFSMW_Trnv070-D.zip
Changes/Additions:
Scripts:
- Give 1 of each marker to player.
- Semi-Blind cops is back once again, this time in a single script.
- *All* settings should now save and load properly for all forms.
Form: Auto Assemble
- Right-Click menu addition "Convert Selected Text"
-- Converts Hex/Floats/Longs between eachother.
-- Reverse Bytes - If the selected text were 0102 , the result would be 0201
-- Space Each Byte - If the selected text were 1111, the result would be 11 11
- Ability to set Foreground/Background color of Auto-Assemble window.
Form: Map
- Ability to right-click the text "Height Map Color" or the actual color number, for a menu that will set Lowest/Highest acceptible color.
- Magnifying glass code revised. Should now be damn near pin-point perfect.
At this point in the project, I'm really looking tword the Auto Assemble Scripts window, as I'm starting to add features to it that make script editing pretty quick and easy.
Also, if any of you have any Auto Assemble scripts that you'd like to contribute, or see a feature missing in the script-lineup so far, let me know.
- Zhoul
|
|
Back to top |
|
|
Zhoul Master Cheater Reputation: 1
Joined: 19 Sep 2005 Posts: 394
|
Posted: Sun Jan 29, 2006 7:52 pm Post subject: |
|
|
// Code - Unlock Challenges
// Enable this option to remove the padlock from all Challenges in the Challenges menu.
// Note: This script alone does not 'open up' any hidden challenges, i.e. The Burger King Challenge.
// Script by: cparty
[enable]
005765CD:
jmp 005765d1
[disable]
005765CD:
je 005765d1
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Thu Feb 09, 2006 3:59 am Post subject: |
|
|
I was playing around with cop-parts lately:
Though the only Problem when using foreign car-parts is that they aren't visible or only for a short amount of time, I suppose due to caching issues.
And they will not work together with the cop-lights trainer, looks like I forgot to wire the power properly
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Sat Feb 11, 2006 4:08 am Post subject: |
|
|
*Update*
// Code - Unlock Challenges / QuickRaces
// For NFS-MW Black Edition v1.3 English/US
// Enable this option to remove the padlock from the Challenges / QuickRaces menu.
// Note: This script alone does not 'open up' any hidden challenges, i.e. The Burger King Challenge.
// This remove the lock from the Challenge series / Quick races
[enable]
005765CD:
jmp 005765d1
005766B4:
jmp 005766ce
[disable]
005765CD:
je 005765d1
005766B4:
je 005766ce
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Sun Feb 19, 2006 5:42 am Post subject: |
|
|
Fixed Coplight Code:
-- Version1 to be used in CE ------------------------
[ENABLE]
alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)
007564F7:
jmp newmem
nop
returnhere:
newmem:
or edx, 7000
originalcode:
mov [ebx+00001620],edx
exit:
jmp returnhere
[DISABLE]
007564F7:
mov [ebx+00001620],edx
dealloc(newmem)
---------------------------------------------------------
However, it doesn't seem to work with alloc and the autoassembler lib, so I made a version using hardcoded codecaves.. lets hope the region is never used
-- Version2 to be used in Trainer -------------------
// Code - Cop Lights
// For NFS-MW Black Edition v1.3 English/US
// Toggles "Cop Like" lights on, for almost every car.
[ENABLE]
// create Codecave with CoplightCode and original code
0099AFFE:
int 3
int 3
or edx, 7000
mov [ebx+00001620],edx
ret
int 3
int 3
//create jump to Codecave
007564F7:
call 0099B000
nop
[DISABLE]
//reset to the old instruction
007564F7:
mov [ebx+00001620],edx
----------------------------------------------------
*Edit* hope the cave is fixed now
Last edited by cparty on Sun Apr 23, 2006 10:54 am; edited 2 times in total |
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Sun Feb 19, 2006 7:01 am Post subject: |
|
|
Talking about positions, velocities, directions etc. this is what I got for v1.3
009386C8 kind of an angle to the X/Y-axis
009386CC positive Y-axis
009386d0 kind of an angle to the Y/X-axis
009386D4 negative Y-axis
Note: Zhoul has already found that 009386CC and 009386D4 will give you kind of a direction. They do, but its not like the usual way for using with the unit orbit where you have X and Y with X^2 + Y^2 = 1. They still add to 1 though. So (0;1) is facing west, (1;0) is facing east, (sqrt(2)/2;sqrt(2)/2) facing south and (-sqrt(2)/2;sqrt(2)/2) facing north. They values multiplied with -1 are exatcly the same, the only difference is that the angle will be negative for 009386C8 and 009386D4... but forget about those values, there are betters
009386D8 Y-Coordinate - Position of the Car in World Coordinates
009386DC Z-Coordinate - Position of the Car in World Coordinates
009386E0 X-Coordinate - Position of the Car in World Coordinates
009386E8 Y-Velocity - Velocity of the Car in Car Coordinates
009386EC Z-Velocity - Velocity of the Car in Car Coordinates
009386F0 X-Velocity - Velocity of the Car in Car Coordinates
009386F8 Y-Spin - Car Spin around Car Y-axis (postive = clockwise, negative = counterclockwise)
009386FC Z-Spin - Car Spin around Car Z-axis
00938700 X-Spin - Car Spin around Car X-axis
00938758 Y-DirectionVector - Car Direction in World Coordinates
0093875C Z-DirectionVector - Car Direction in World Coordinates
00938760 X-DirectionVector - Car Direction in World Coordinates
Those are the values we can use to determine the direction of the car
|
|
Back to top |
|
|
Zhoul Master Cheater Reputation: 1
Joined: 19 Sep 2005 Posts: 394
|
Posted: Fri Feb 24, 2006 1:55 pm Post subject: |
|
|
wow cparty - you been busy!
I'm just now moving my stuff in today and I'll be back on the project here in a day or two! keep on kickin azz
- Zhoul
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Sat Mar 18, 2006 5:35 am Post subject: |
|
|
work is keeping me busy
But here's something small.
The current CarSlot Number for Career:
[[0091Cf90] + 10] + A8
The current CarSlot Number for QuickRace/LAN/Online:
[0091Cf90] + 44
Of course for v1.3
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Sun Apr 23, 2006 6:52 am Post subject: |
|
|
Did this one on request:
Description: Remove the Buy only 10 Cars from Carlot Limit.
Address: 007C1A75
Length: 3 Bytes
old Bytes: 83 F8 0A
new Bytes: 83 F8 19
Note: The Game will let you buy another Car after you already have 25 (if you have won some pinkslips), but as there are only 25 Slots for Career you actually don't buy the Car.
*Edit* I think I fixed the Cave from the Coplight AAS, though there is still a small problem If you smash your light they will keep flashing which looks kinda funny
|
|
Back to top |
|
|
Zhoul Master Cheater Reputation: 1
Joined: 19 Sep 2005 Posts: 394
|
Posted: Mon Apr 24, 2006 12:20 am Post subject: |
|
|
Nice finds. I'll update the scripts in the trainer so they're ready for the next release.
- Z
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Mon Apr 24, 2006 7:53 am Post subject: |
|
|
I'm extremely sorry about the .ini stuff I told you I would do since weeks, I hope I can do it this week or at the begin of june... so we can finally move to Oblivion
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Sun Apr 30, 2006 5:48 am Post subject: |
|
|
Here's a hotifx to the Unlock Cars to Buy:
What's the difference? The old version added all cars from all categories, now its limited to adding only the special cars (cat code 20), because the others were'nt buyable or if bought just went stock.
Code: | [Enable]
//Open up cars to buy - Career and My Cars
0056F19F:
cmp dl, 01
jne 0056F19A
cmp byte ptr [ecx+0c], 20
jne 0056F19A
jmp 0056F195
[DISABLE]
//Open up cars to buy - Career/My Cars
0056F19F:
ret 0004
int 3
int 3
int 3
int 3
int 3
int 3
int 3
int 3
int 3
int 3 |
|
|
Back to top |
|
|
Xblade Of Heaven Master Cheater Reputation: 0
Joined: 16 Oct 2005 Posts: 394 Location: DEAD
|
Posted: Sun Apr 30, 2006 9:34 am Post subject: |
|
|
que pena que nadie hable español aqui para poder explicar como se hacen esas maravillas, ya que yo personalmente aportaria bastante si entendiese como funciona bien el cheat engine
_________________
Welcome to the Hell.
|
|
Back to top |
|
|
cparty Expert Cheater Reputation: 0
Joined: 01 Dec 2005 Posts: 219
|
Posted: Sun Apr 30, 2006 12:16 pm Post subject: |
|
|
Hi Xblade,
Google could only translate part of what you wrote and I don't speak any spanish myself, so if you can try in english please.
If you have a question about any of the posts in this thread please be specific enough as there is too much to talk about it in general.
Greets
cparty
|
|
Back to top |
|
|
|