Unmask admin_wall

[abedfa]

I have done few searches around but I didn't find a basic tutorial for me, well look at this one:
http://forum.ragezone.com/f497/tut-unmasking-598724/

This was posted by Nobody666, first I used to edit the stuff in /admin_wall section, then I recognized it was for 07 runnable (correct me if I'm wrong).

I scrolled down to the 08 runnable section, I opened the damn spoiler BUT I couldn't find how to unmask "admin_wall", I tried the damn "// Unknown" codes but It was already unmasked on my runnable.


by the way the runnable I'm using is by Phoenix from his repack 3 of client 2008,
Clan + Quest runnable and server files, so I'm not going to request some runnable which can display the admin name in "admin_wall".
I need help to know how to solve this.

So the second search was this post:
http://forum.ragezone.com/f245/admin...client-694273/

By Cekuro

I edited the exact things in
"Modified(binary edits will be highlighted in red)"

but the client crashes right away when I type /wall [messege]
(I modified the admin commands)

I also have no idea what is the "codecave" thing

!!!!!!!!Help!!!!!!!!Please!!!!!!!!Help!!!!!!!!
x x x x x x
!!!!!!!!Help!!!!!!!!Please!!!!!!!!Help!!!!!!!!


EDIT: Please notice that this is 2008 Runnable
http://forum.ragezone.com/f245/gunz-...client-701737/

Runnable 3 - Features:

• Basic features that I posted above.
• For QUEST + Clan Server (Quest mode in menu automatically shows up). It's not for MatchServer.
• Filelist Disabled.
• Serial Key Enabled.

I'm waiting some support

EDIT#2:

Okay, I've been working on this for a day, and I feel the only thing I'm missing from this equation are the updated offsets for the '08 client. Mind you, I have no experience with coding, I'm just very observant and somewhat open-ended with practical direct editing. This is based off Nobody666/Wizkid's post about making a new code cave. I have no idea how to find offsets but I do know that it's obviously different because it's a different compiled version. Anyway, here is my edit

Code:

CPU Disasm
Address   Hex dump          Command                                  Comments
0042E1BF  |.  8B88 A0010000 MOV ECX,DWORD PTR DS:[EAX+1A0]
0042E1C5  |.  898D F4FEFFFF MOV DWORD PTR SS:[LOCAL.67],ECX
0042E1CB  |.  8B90 A4010000 MOV EDX,DWORD PTR DS:[EAX+1A4]
0042E1D1  |.  6A 00         PUSH 0
0042E1D3  |.  E9 68311F00   JMP 00621340
0042E1D8  |>  8D8D F4FEFFFF LEA ECX,[LOCAL.67]                       ; |
0042E1DE  |.  51            PUSH ECX                                 ; |Arg1 => OFFSET LOCAL.67
0042E1DF  |.  8995 F8FEFFFF MOV DWORD PTR SS:[LOCAL.66],EDX          ; |
0042E1E5  |.  E8 76F6FFFF   CALL 0042D860                            ; \theduelv125e.0042D860
0042E1EA  |.  8B4D FC       MOV ECX,DWORD PTR SS:[LOCAL.1]
0042E1ED  |.  83C4 0C       ADD ESP,0C
0042E1F0  |.  E8 F9911400   CALL 005773EE
0042E1F5  |.  89EC          MOV ESP,EBP
0042E1F7  |.  5D            POP EBP
0042E1F8  \.  C3            RETN

My codecave, I'll bold the offsets that need to be changed.

Code:

CPU Disasm
Address   Hex dump          Command                                  Comments
00621340  /> \50            PUSH EAX
00621341  |.  53            PUSH EBX
00621342  |.  51            PUSH ECX
00621343  |.  52            PUSH EDX
00621344  |.  57            PUSH EDI
00621345  |.  BF 3CC76600   MOV EDI,OFFSET 0066C73C
0062134A  |.  BA 00006F00   MOV EDX,OFFSET 006F0000
0062134F  |.  29C9          SUB ECX,ECX
00621351  |>  8A040F        /MOV AL,BYTE PTR DS:[ECX+EDI]
00621354  |.  3C 00         |CMP AL,0
00621356  |.  74 06         |JE SHORT 0062135E
00621358  |.  88040A        |MOV BYTE PTR DS:[ECX+EDX],AL
0062135B  |.  41            |INC ECX
0062135C  |.^ EB F3         \JMP SHORT 00621351
0062135E  |>  B0 20         MOV AL,20
00621360  |.  88040A        MOV BYTE PTR DS:[ECX+EDX],AL
00621363  |.  41            INC ECX
00621364  |.  B0 3A         MOV AL,3A
00621366  |.  88040A        MOV BYTE PTR DS:[ECX+EDX],AL
00621369  |.  41            INC ECX
0062136A  |.  B0 20         MOV AL,20
0062136C  |.  88040A        MOV BYTE PTR DS:[ECX+EDX],AL
0062136F  |.  41            INC ECX
00621370  |.  01CA          ADD EDX,ECX
00621372  |.  29C9          SUB ECX,ECX
00621374  |.  89E7          MOV EDI,ESP
00621376  |.  83C7 20       ADD EDI,20
00621379  |>  8A040F        /MOV AL,BYTE PTR DS:[ECX+EDI]
0062137C  |.  3C 00         |CMP AL,0
0062137E  |.  74 06         |JE SHORT 00621386
00621380  |.  88040A        |MOV BYTE PTR DS:[ECX+EDX],AL
00621383  |.  41            |INC ECX
00621384  |.^ EB F3         \JMP SHORT 00621379
00621386  |>  88040A        MOV BYTE PTR DS:[ECX+EDX],AL
00621389  |.  66:C705 FEFF6 MOV WORD PTR DS:[6EFFFE],325E
00621392  |.  5F            POP EDI
00621393  |.  5A            POP EDX
00621394  |.  59            POP ECX
00621395  |.  5B            POP EBX
00621396  |.  58            POP EAX
00621397  |.  68 FEFF6E00   PUSH OFFSET 006EFFFE
0062139C  \.^ E9 37CEE0FF   JMP 0042E1D8

I believe that's the last piece of the puzzle and we can get the admin wall unmasked for the 08 client. If I'm wrong, please correct me, for I am just a beginner in stuff like this, regardless of how easy this is for you veterans.

Hey I just done the following but it didn't work with me I just keep getting weird stuff, and my name didn't appear next to [Staff Team](Administrator).
I also changed in message.xml, [Staff Team] - $2: $1
Screenshot:

Spoiler:

[MentaL]

[abedfa]

god dammit no replies

[Shadowevil]

A codecave, is a jump from one section, to add more ASM code in an empty section. So you aren't confined to the limited space. Reason being, you need more space.

[abedfa]

A codecave, is a jump from one section, to add more ASM code in an empty section. So you aren't confined to the limited space. Reason being, you need more space.

I still didn't get the reason why unmasking my admin_wall didn't work, also I didn't get what the codecave is for..
I said that I'm new with Ollydbg, I don't even know the whole basic thing..

Any deep explanation and suggestions please?

[abedfa]

what's the ASM codes anyway
why so dead people, I need help !!

[Vusion]

what's the ASM codes anyway
why so dead people, I need help !!

That's cause there's a search button and people still won't understand that. Oh, and cause we already answered that question tons of times already.

[abedfa]

That's cause there's a search button and people still won't understand that. Oh, and cause we already answered that question tons of times already.

I wouldn't have posted this shit before using that shitty button. Oh, and I posted 2 links that I found in the search.

[Vusion]

I wouldn't have posted this shit before using that shitty button. Oh, and I posted 2 links that I found in the search.

Learn to read from others's mistakes, look into other help threads.

[abedfa]

Learn to read from others's mistakes, look into other help threads.

I'm sure I did try, and I found several people which had the exact same problem but, I don't know somehow no any resolve that posted by others worked with me ;/
I found out what's the codecave is for, please check the Edit#2 above.
Cekuro said "My codecave, I'll bold the offsets that need to be changed."
the codes he was bold it, I couldn't use them somehow, I mean like - I went to 00621345 and double clicked to add the code MOV EDI,OFFSET 0066C73C but I can't add this code I don't remember what message I get that moment.

another example, look at this code

Code:

00621379  |>  8A040F        /MOV AL,BYTE PTR DS:[ECX+EDI]

I can't write that code with that slash / so I had to remove it..

sorry I said that I'm beginner please any suggestions is appreciated.

[abedfa]

up?
sry for double post