Map level access change

Hello any1 and bob :)) , any1 know how i can change map level accees , thanks :mellow:

Desert Mystic 1
Desert Mystic 2
Desert Mystic 3
Mystic Forest 1
Mystic Forest 2
Mystic Forest 3
Old Santuary 1
Old Santuary 2
Old Dungeon 1
Old Dungeon 2
Old Dungeon 3
Death Cave -
Battle Arena
Lost Labirint
Atlantis Town
Endles Tower 3
Cursed Temple 3

mov XXX, YYY

where XXX is address of lvl location, map 'space' start + 4728 (1278h) is address of map lvl and YYY is map lvl (lvl 100 = 64h etc.).

Hi there,

I dont know if you already fixed the level change, but this guide of Makloud helped me alot

http://forum.ragezone.com/f562/chang...1/#post5941581

If you mean the Map location, then consider this as not posted


Casper

thanks guys , but i can't find new maps ET3 m CT3 , FO1 FO2

http://img153.imageshack.us/img153/710/notfound.jpg

Uploaded with ImageShack.us[COLOR="Silver"]

You have to follow the field codes. You will find there a JMP to the new section. Just follow it and you will find it :)

Quote:

---

Originally Posted by tr1pl3x1

You have to follow the field codes. You will find there a JMP to the new section. Just follow it and you will find it :)

---

how to find and jump?

---------- Post added at 06:00 PM ---------- Previous post was at 04:16 PM ----------

i Found but i dont where i need change

http://img684.imageshack.us/img684/3047/13457029.jpg

Uploaded with ImageShack.us[COLOR="Silver"]

---------- Post added at 06:01 PM ---------- Previous post was at 06:00 PM ----------

Can I say RTFM politely?

We aren't here to teach how to use OllyDbg, you are supposed to know that (or be prepared to find it out) if you intend to perform tasks which require such knowledge.

I will help by providing a download of the OllyDbg v2 manual. (which Olleh himself often forgets to drop in the latest release archive)

Multiupload.com - upload your files to multiple file hosting sites!

There are also many guides and tutorials on using OllyDbg, but many are designed for specific versions of ODB, and you many see some variance. I don't recommend using some of the "hacked" varieties of OD, as they are designed to get past "copy protection" or "hacking prevention" and they usually consider anything that isn't EXACTLY Windows XP SP2 to be an anti-hacking aid and try to remove key components of your OS from system memory. (or, other silliness) XD

hey , i can open , but why i change and it not changet ....

I'm guessing you mean "How do I save the changes I made in Olly?" Again RTFM... It's also documented in many other guides here on making other changes in OllyDbg. -.-

BTW... @Casper:

Spoiler:

Thanks for posting the guide, but it would be nicer if your linked to the thread rather than verbatim quote. The reason being that you probably found that guide with the search tool, and if we constantly quote other peoples guides, it's the quotes that come up in the results, not the original guide. :$:

Shorter / easier ways to do this than "[url=pasted_from_permalink]This guide[/url]" is to look at the url... in this case http://forum.ragezone.com/f562/changing-level-map-697781/ and see the thread number 697781 and place "[thread=697781]This guide[/thread]" or if it's a specific post, then this is "http://forum.ragezone.com/f562/changing-level-map-697781/#post5941581" and you can encode a BB link as "[post=5941581]this post[/post]"

Bonus advantage is that if RZ changes the URL format (again) then the post and thread numbers should remain the same, even if the URLs are not. :wink:

That could almost do with being "stickied" in every sub-forum on RZ TBH. :lol:

Quote:

---

Originally Posted by bobsobol

I'm guessing you mean "How do I save the changes I made in Olly?" Again RTFM... It's also documented in many other guides here on making other changes in OllyDbg. -.-

BTW... @Casper: It would be nicer if your linked to the thread rather than verbatim quote. The reason being that you probably found that guide with the search tool, and if we constantly quote other peoples guides, it's the quotes that come up in the results, not the original guide. :$:

Shorter / easier ways to do this than "[url=pasted_from_permalink]This guide[/url]" is to look at the url... in this case http://forum.ragezone.com/f562/changing-level-map-697781/ and see the thread number 697781 and place "[thread=697781]This guide[/thread]" or if it's a specific post, then this is "http://forum.ragezone.com/f562/changing-level-map-697781/#post5941581" and you can encode a BB link as "[post=5941581]this post[/post]"

Bonus advantage is that if RZ changes the URL format (again) then the post and thread numbers should remain the same, even if the URLs are not. :wink:

---

hehe i didn't thought about that ;)

Changed topic

Bob , i can't find where i can change level access for ET3 , and old dun1-3 , for another maps i change

Fill with NOPS will help you to access with any levels :p Joking just use space to edit it ^^

No... well the guide assumes client version 1873 (which is still the normal base for most P-Servers) so in 1994 (for example) MOV DWord Ptr[Blah],64 in that client for level 100 limit on Greedy Lake is a MOV DWord Ptr[7DF890],EDI which can't be altered so easily in v 1994.

The code for Dun-1 to Dun-3 in 1994 is:-

Spoiler:

Code:

---

004339ED  push offset game.005CC858    ; /Arg2 = ASCII "dun-1"
004339F2  push offset game.005CC844    ; |Arg1 = ASCII "dungeon\\dun-1.ase"
004339F7  mov ecx,offset game.007C3644 ; |
004339FC  mov dword ptr [edx+7C244C],2 ; |
00433A06  call 00431B40                ; \game.00431B40
00433A0B  push ebx                    ; /Arg2
00433A0C  push offset game.005CC82C    ; |Arg1 = ASCII "dungeon\\dun-1-wheel.ase"
00433A11  mov ecx,offset game.007C3644 ; |
00433A16  mov dword ptr [7C3708],500  ; |
00433A20  mov [7C370C],ebx            ; |
00433A26  mov [7C3710],ebx            ; |
00433A2C  mov [7C3714],ebx            ; |
00433A32  mov [7C3718],ebp            ; |
00433A38  mov [7C4A64],esi            ; |
00433A3E  call 00431BE0                ; \game.00431BE0
00433A43  push FFFFA10A                ; /Arg2 = FFFFA10A
00433A48  push -3C18                  ; |Arg1 = -3C18
00433A4D  call 00431BC0                ; \game.00431BC0
00433A52  push 20                      ; /Arg5 = 20
00433A54  push 40                      ; |Arg4 = 40
00433A56  push 64                      ; |Arg3 = 64
00433A58  push FFFFA1F7                ; |Arg2 = FFFFA1F7
00433A5D  push -3C1C                  ; |Arg1 = -3C1C
00433A62  call 00431CE0                ; \game.00431CE0
00433A67  push 1F5                    ; /Arg4 = 1F5
00433A6C  push 3B86                    ; |Arg3 = 3B86
00433A71  push 4109                    ; |Arg2 = 4109
00433A76  push offset game.007BBB5C    ; |Arg1 = game.7BBB5C
00433A7B  call 00431DA0                ; \game.00431DA0
00433A80  push 20                      ; /Arg5 = 20
00433A82  push 40                      ; |Arg4 = 40
00433A84  push edi                    ; |Arg3
00433A85  push FFFF8F68                ; |Arg2 = FFFF8F68
00433A8A  push -3BC9                  ; |Arg1 = -3BC9
00433A8F  call 00431CE0                ; \game.00431CE0
00433A94  push 63                      ; /Arg4 = 63
00433A96  push FFFF96FF                ; |Arg3 = FFFF96FF
00433A9B  push -178B                  ; |Arg2 = -178B
00433AA0  push offset game.007C4AC0    ; |Arg1 = game.7C4AC0
00433AA5  call 00431DA0                ; \game.00431DA0
00433AAA  mov eax,[7C37E8]
00433AAF  mov ecx,[5FF0C8]
00433AB5  imul eax,eax,0E0
00433ABB  push ebx                    ; /Arg5
00433ABC  push 80                      ; |Arg4 = 80
00433AC1  push FFFF9E8B                ; |Arg3 = FFFF9E8B
00433AC6  mov [eax+7C38C4],ecx        ; |
00433ACC  push 64                      ; |Arg2 = 64
00433ACE  push -3C19                  ; |Arg1 = -3C19
00433AD3  mov ecx,offset game.007C3644 ; |
00433AD8  call 00431FC0                ; \game.00431FC0
00433ADD  push offset game.005CC824    ; /Arg2 = ASCII "dun-2"
00433AE2  push offset game.005CC810    ; |Arg1 = ASCII "dungeon\\dun-2.ase"
00433AE7  mov ecx,offset game.007C4AC0 ; |
00433AEC  call 00431B40                ; \game.00431B40
00433AF1  push FFFF9700                ; /Arg2 = FFFF9700
00433AF6  push -17DC                  ; |Arg1 = -17DC
00433AFB  mov ecx,offset game.007C4AC0 ; |
00433B00  mov dword ptr [7C4B84],500  ; |
00433B0A  mov [7C4B88],ebx            ; |
00433B10  mov [7C4B8C],ebx            ; |
00433B16  mov [7C4B90],ebx            ; |
00433B1C  mov [7C5EE0],esi            ; |
00433B22  mov [7C4B94],ebp            ; |
00433B28  call 00431BC0                ; \game.00431BC0
00433B2D  push 20                      ; /Arg5 = 20
00433B2F  push 40                      ; |Arg4 = 40
00433B31  push 88                      ; |Arg3 = 88
00433B36  push FFFF9702                ; |Arg2 = FFFF9702
00433B3B  push -1714                  ; |Arg1 = -1714
00433B40  call 00431CE0                ; \game.00431CE0
00433B45  push 3A                      ; /Arg4 = 3A
00433B47  push FFFF8FD2                ; |Arg3 = FFFF8FD2
00433B4C  push -3BD2                  ; |Arg2 = -3BD2
00433B51  push offset game.007C3644    ; |Arg1 = game.7C3644
00433B56  call 00431DA0                ; \game.00431DA0
00433B5B  push 20                      ; /Arg5 = 20
00433B5D  push 40                      ; |Arg4 = 40
00433B5F  push 15                      ; |Arg3 = 15
00433B61  push FFFF9B58                ; |Arg2 = FFFF9B58
00433B66  push -1F53                  ; |Arg1 = -1F53
00433B6B  call 00431CE0                ; \game.00431CE0
00433B70  push ebx                    ; /Arg4
00433B71  push FFFF8F7E                ; |Arg3 = FFFF8F7E
00433B76  push 712                    ; |Arg2 = 712
00433B7B  push offset game.007C5F3C    ; |Arg1 = game.7C5F3C
00433B80  call 00431DA0                ; \game.00431DA0
00433B85  mov edx,[7C4C64]
00433B8B  mov eax,[5FF0CC]
00433B90  imul edx,edx,0E0
00433B96  push 20                      ; /Arg5 = 20
00433B98  push 40                      ; |Arg4 = 40
00433B9A  push 15                      ; |Arg3 = 15
00433B9C  push FFFF92AC                ; |Arg2 = FFFF92AC
00433BA1  push -0F4E                  ; |Arg1 = -0F4E
00433BA6  mov [edx+7C4D40],eax        ; |
00433BAC  call 00431CE0                ; \game.00431CE0
00433BB1  push ebx                    ; /Arg4
00433BB2  push FFFF8F7E                ; |Arg3 = FFFF8F7E
00433BB7  push 712                    ; |Arg2 = 712
00433BBC  push offset game.007C5F3C    ; |Arg1 = game.7C5F3C
00433BC1  call 00431DA0                ; \game.00431DA0
00433BC6  mov ecx,[7C4C64]
00433BCC  mov edx,[5FF0CC]
00433BD2  imul ecx,ecx,0E0
00433BD8  push offset game.005CC808    ; /Arg2 = ASCII "dun-3"
00433BDD  mov [ecx+7C4D40],edx        ; |
00433BE3  push offset game.005CC7F4    ; |Arg1 = ASCII "dungeon\\dun-3.ase"
00433BE8  mov ecx,offset game.007C5F3C ; |
00433BED  call 00431B40                ; \game.00431B40
00433BF2  push FFFF9056                ; /Arg2 = FFFF9056
00433BF7  push 723                    ; |Arg1 = 723
00433BFC  mov ecx,offset game.007C5F3C ; |
00433C01  mov dword ptr [7C6000],500  ; |
00433C0B  mov [7C6004],ebx            ; |
00433C11  mov [7C6008],ebx            ; |
00433C17  mov [7C600C],ebx            ; |
00433C1D  mov [7C6010],ebp            ; |
00433C23  mov [7C735C],esi            ; |
00433C29  call 00431BC0                ; \game.00431BC0
00433C2E  push 20                      ; /Arg5 = 20
00433C30  push 40                      ; |Arg4 = 40
00433C32  push ebx                    ; |Arg3
00433C33  push FFFF8F04                ; |Arg2 = FFFF8F04
00433C38  push 712                    ; |Arg1 = 712
00433C3D  call 00431CE0                ; \game.00431CE0
00433C42  push 4D                      ; /Arg4 = 4D
00433C44  push FFFF9B51                ; |Arg3 = FFFF9B51
00433C49  push -1FF0                  ; |Arg2 = -1FF0
00433C4E  push offset game.007C4AC0    ; |Arg1 = game.7C4AC0
00433C53  call 00431DA0                ; \game.00431DA0
00433C58  push 49                      ; /Arg4 = 49
00433C5A  push FFFF92AA                ; |Arg3 = FFFF92AA
00433C5F  push -0E9A                  ; |Arg2 = -0E9A
00433C64  push offset game.007C4AC0    ; |Arg1 = game.7C4AC0
00433C69  call 00431DA0                ; \game.00431DA0

---

I don't know what you are working with, so my example could be as useless to you as the excellent description by Makloud. This just illustrates how different one client is from the another in this respect.

You'd have to know how to adapt his guide to your client, and we can't write guides for every singly client in existence.

I (personally) have no desire to change any of this code, except to remove it from the game entirely and replace it with a library I have the source code to. Vormav is working on that, so there's no sense in me attempting an alternative.

It isn't hard to add a level access. You have to know how to work with a calculator :p I think he wants to change the level access of MPT files.

---------- Post added at 03:10 PM ---------- Previous post was at 03:04 PM ----------

By using that

Code:

---

MOV DWORD PTR DS:[+1278],73 (73 in decimal = 115 as example)

---

That's the key to add a level req. for a map. You can use another way to add a lvl req. for other maps like Cursed Temple 1 & 2.

Good luck ^^

Here is codes for maps , what i need change


The code for Dun-1 to Dun-3 in 1994 is:-

Spoiler:

Code:

---

;
0445F3E3  0000            ADD BYTE PTR DS:[EAX],AL
0445F3E5  0000            ADD BYTE PTR DS:[EAX],AL
0445F3E7  0000            ADD BYTE PTR DS:[EAX],AL
0445F3E9  0000            ADD BYTE PTR DS:[EAX],AL
0445F3EB  68 05F34504      PUSH Ba.0445F305                        ; ASCII "ba2"
0445F3F0  68 09F34504      PUSH Ba.0445F309                        ; ASCII "Custom\ba2.ase"
0445F3F5  B9 70E87C00      MOV ECX,Ba.007CE870
0445F3FA  E8 111BFDFB      CALL Ba.00430F10
0445F3FF  68 E2FBFFFF      PUSH -41E
0445F404  BD 05000000      MOV EBP,5
0445F409  68 CEAFFFFF      PUSH FFFFAFCE
0445F40E  B9 70E87C00      MOV ECX,Ba.007CE870
0445F413  C705 34E97C00 00>MOV DWORD PTR DS:[7CE934],200
0445F41D  892D 38E97C00    MOV DWORD PTR DS:[7CE938],EBP
0445F423  8935 3CE97C00    MOV DWORD PTR DS:[7CE93C],ESI
0445F429  893D 40E97C00    MOV DWORD PTR DS:[7CE940],EDI
0445F42F  C705 44E97C00 04>MOV DWORD PTR DS:[7CE944],4
0445F439  893D 90FC7C00    MOV DWORD PTR DS:[7CFC90],EDI
0445F43F  E8 6C1BFDFB      CALL Ba.00430FB0
0445F444  68 E2FBFFFF      PUSH -41E
0445F449  68 CEAFFFFF      PUSH FFFFAFCE
0445F44E  E8 3D1BFDFB      CALL Ba.00430F90
0445F453  68 E2FBFFFF      PUSH -41E
0445F458  68 CEAFFFFF      PUSH FFFFAFCE
0445F45D  E8 AE21FDFB      CALL Ba.00431610
0445F462  53              PUSH EBX
0445F463  68 2BEDFFFF      PUSH -12D5
0445F468  68 9F98FFFF      PUSH FFFF989F
0445F46D  68 ECFC7C00      PUSH Ba.007CFCEC
0445F472  E8 B92CFDFB      CALL Ba.00432130
0445F477  53              PUSH EBX
0445F478  68 7FFCFFFF      PUSH -381
0445F47D  68 2FAFFFFF      PUSH FFFFAF2F
0445F482  68 F4D37C00      PUSH Ba.007CD3F4
0445F487  B9 70E87C00      MOV ECX,Ba.007CE870
0445F48C  E8 9F2CFDFB      CALL Ba.00432130
0445F491  68 19F34504      PUSH Ba.0445F319                        ; ASCII "ba3"
0445F496  68 1DF34504      PUSH Ba.0445F31D                        ; ASCII "Custom\ba3.ase"
0445F49B  B9 ECFC7C00      MOV ECX,Ba.007CFCEC
0445F4A0  E8 6B1AFDFB      CALL Ba.00430F10
0445F4A5  68 14D7FFFF      PUSH -28EC
0445F4AA  68 15AEFFFF      PUSH FFFFAE15
0445F4AF  B9 ECFC7C00      MOV ECX,Ba.007CFCEC
0445F4B4  C705 B0FD7C00 00>MOV DWORD PTR DS:[7CFDB0],300
0445F4BE  C705 B4FD7C00 04>MOV DWORD PTR DS:[7CFDB4],4
0445F4C8  892D B8FD7C00    MOV DWORD PTR DS:[7CFDB8],EBP
0445F4CE  C705 BCFD7C00 06>MOV DWORD PTR DS:[7CFDBC],6
0445F4D8  C705 C0FD7C00 0A>MOV DWORD PTR DS:[7CFDC0],0A
0445F4E2  893D 0C117D00    MOV DWORD PTR DS:[7D110C],EDI
0445F4E8  E8 C31AFDFB      CALL Ba.00430FB0
0445F4ED  68 14D7FFFF      PUSH -28EC
0445F4F2  68 15ADFFFF      PUSH FFFFAD15
0445F4F7  E8 941AFDFB      CALL Ba.00430F90
0445F4FC  68 14D7FFFF      PUSH -28EC
0445F501  68 15AEFFFF      PUSH FFFFAE15
0445F506  E9 04070000      JMP Ba.0445FC0F
0445F50B  68 2DF34504      PUSH Ba.0445F32D                        ; ASCII "ad1"
0445F510  68 31F34504      PUSH Ba.0445F331                        ; ASCII "Custom\ad1.ase"
0445F515  B9 68117D00      MOV ECX,Ba.007D1168
0445F51A  E8 F119FDFB      CALL Ba.00430F10
0445F51F  68 39A1FFFF      PUSH FFFFA139
0445F524  68 45FC0000      PUSH 0FC45
0445F529  B9 68117D00      MOV ECX,Ba.007D1168
0445F52E  C705 2C127D00 00>MOV DWORD PTR DS:[7D122C],500
0445F538  891D 30127D00    MOV DWORD PTR DS:[7D1230],EBX
0445F53E  891D 34127D00    MOV DWORD PTR DS:[7D1234],EBX
0445F544  891D 38127D00    MOV DWORD PTR DS:[7D1238],EBX
0445F54A  892D 3C127D00    MOV DWORD PTR DS:[7D123C],EBP
0445F550  8935 88257D00    MOV DWORD PTR DS:[7D2588],ESI
0445F556  E8 551AFDFB      CALL Ba.00430FB0
0445F55B  68 39A1FFFF      PUSH FFFFA139
0445F560  68 45FC0000      PUSH 0FC45
0445F565  E8 261AFDFB      CALL Ba.00430F90
0445F56A  6A 20            PUSH 20
0445F56C  6A 40            PUSH 40
0445F56E  6A 0D            PUSH 0D
0445F570  68 498FFFFF      PUSH FFFF8F49
0445F575  68 B9FC0000      PUSH 0FCB9
0445F57A  E8 311BFDFB      CALL Ba.004310B0
0445F57F  6A 5A            PUSH 5A
0445F581  68 F796FFFF      PUSH FFFF96F7
0445F586  68 BB200100      PUSH 120BB
0445F58B  68 E4257D00      PUSH Ba.007D25E4
0445F590  E8 DB1BFDFB      CALL Ba.00431170
0445F595  68 39A1FFFF      PUSH FFFFA139
0445F59A  68 45FC0000      PUSH 0FC45
0445F59F  E8 6C20FDFB      CALL Ba.00431610
0445F5A4  8B15 1C137D00    MOV EDX,DWORD PTR DS:[7D131C]
0445F5AA  53              PUSH EBX
0445F5AB  69D2 E0000000    IMUL EDX,EDX,0E0
0445F5B1  68 80000000      PUSH 80
0445F5B6  68 498FFFFF      PUSH FFFF8F49
0445F5BB  6A 0D            PUSH 0D
0445F5BD  68 B9FC0000      PUSH 0FCB9
0445F5C2  C782 EC137D00 64>MOV DWORD PTR DS:[EDX+7D13EC],64
0445F5CC  E8 CF21FDFB      CALL Ba.004317A0
0445F5D1  68 41F34504      PUSH Ba.0445F341                        ; ASCII "ad2"
0445F5D6  68 45F34504      PUSH Ba.0445F345                        ; ASCII "Custom\ad2.ase"
0445F5DB  B9 E4257D00      MOV ECX,Ba.007D25E4
0445F5E0  E8 2B19FDFB      CALL Ba.00430F10
0445F5E5  68 0497FFFF      PUSH FFFF9704
0445F5EA  68 BE200100      PUSH 120BE
0445F5EF  B9 E4257D00      MOV ECX,Ba.007D25E4
0445F5F4  C705 A8267D00 00>MOV DWORD PTR DS:[7D26A8],500
0445F5FE  891D AC267D00    MOV DWORD PTR DS:[7D26AC],EBX
0445F604  891D B0267D00    MOV DWORD PTR DS:[7D26B0],EBX
0445F60A  891D B4267D00    MOV DWORD PTR DS:[7D26B4],EBX
0445F610  892D B8267D00    MOV DWORD PTR DS:[7D26B8],EBP
0445F616  8935 043A7D00    MOV DWORD PTR DS:[7D3A04],ESI
0445F61C  E8 8F19FDFB      CALL Ba.00430FB0
0445F621  68 0497FFFF      PUSH FFFF9704
0445F626  68 BE200100      PUSH 120BE
0445F62B  E8 6019FDFB      CALL Ba.00430F90
0445F630  6A 20            PUSH 20
0445F632  6A 40            PUSH 40
0445F634  6A 6D            PUSH 6D
0445F636  68 FD96FFFF      PUSH FFFF96FD
0445F63B  68 1A210100      PUSH 1211A
0445F640  E8 6B1AFDFB      CALL Ba.004310B0
0445F645  6A 2E            PUSH 2E
0445F647  68 AD8FFFFF      PUSH FFFF8FAD
0445F64C  68 B2FC0000      PUSH 0FCB2
0445F651  68 68117D00      PUSH Ba.007D1168
0445F656  E8 151BFDFB      CALL Ba.00431170
0445F65B  6A 20            PUSH 20
0445F65D  6A 40            PUSH 40
0445F65F  6A 27            PUSH 27
0445F661  68 599BFFFF      PUSH FFFF9B59
0445F666  68 08190100      PUSH 11908
0445F66B  E8 401AFDFB      CALL Ba.004310B0
0445F670  68 0E010000      PUSH 10E
0445F675  68 988FFFFF      PUSH FFFF8F98
0445F67A  68 883F0100      PUSH 13F88
0445F67F  68 603A7D00      PUSH Ba.007D3A60
0445F684  E8 E71AFDFB      CALL Ba.00431170
0445F689  68 0497FFFF      PUSH FFFF9704
0445F68E  68 BE200100      PUSH 120BE
0445F693  E8 781FFDFB      CALL Ba.00431610
0445F698  A1 E4447D00      MOV EAX,DWORD PTR DS:[7D44E4]
0445F69D  6A 20            PUSH 20
0445F69F  69C0 E0000000    IMUL EAX,EAX,0E0
0445F6A5  6A 40            PUSH 40
0445F6A7  6A 27            PUSH 27
0445F6A9  68 599BFFFF      PUSH FFFF9B59
0445F6AE  68 08190100      PUSH 11908
0445F6B3  C780 B4457D00 64>MOV DWORD PTR DS:[EAX+7D45B4],64
0445F6BD  E8 EE19FDFB      CALL Ba.004310B0
0445F6C2  68 55F34504      PUSH Ba.0445F355                        ; ASCII "ad3"
0445F6C7  68 59F34504      PUSH Ba.0445F359                        ; ASCII "Custom\ad3.ase"
0445F6CC  B9 603A7D00      MOV ECX,Ba.007D3A60
0445F6D1  E8 3A18FDFB      CALL Ba.00430F10
0445F6D6  68 BC8FFFFF      PUSH FFFF8FBC
0445F6DB  68 6A3F0100      PUSH 13F6A
0445F6E0  B9 603A7D00      MOV ECX,Ba.007D3A60
0445F6E5  C705 243B7D00 00>MOV DWORD PTR DS:[7D3B24],500
0445F6EF  891D 283B7D00    MOV DWORD PTR DS:[7D3B28],EBX
0445F6F5  891D 2C3B7D00    MOV DWORD PTR DS:[7D3B2C],EBX
0445F6FB  891D 303B7D00    MOV DWORD PTR DS:[7D3B30],EBX
0445F701  892D 343B7D00    MOV DWORD PTR DS:[7D3B34],EBP
0445F707  8935 804E7D00    MOV DWORD PTR DS:[7D4E80],ESI
0445F70D  E8 FE1EFDFB      CALL Ba.00431610
0445F712  68 BC8FFFFF      PUSH FFFF8FBC
0445F717  68 6A3F0100      PUSH 13F6A
0445F71C  E8 6F18FDFB      CALL Ba.00430F90
0445F721  6A 20            PUSH 20
0445F723  6A 40            PUSH 40
0445F725  68 0E010000      PUSH 10E
0445F72A  68 2A8FFFFF      PUSH FFFF8F2A
0445F72F  68 913F0100      PUSH 13F91
0445F734  E8 7719FDFB      CALL Ba.004310B0
0445F739  6A 46            PUSH 46
0445F73B  68 4F9BFFFF      PUSH FFFF9B4F
0445F740  68 AA180100      PUSH 118AA
0445F745  68 E4257D00      PUSH Ba.007D25E4
0445F74A  E8 211AFDFB      CALL Ba.00431170
0445F74F  68 BC8FFFFF      PUSH FFFF8FBC
0445F754  68 6A3F0100      PUSH 13F6A
0445F759  E8 B21EFDFB      CALL Ba.00431610
0445F75E  68 69F34504      PUSH Ba.0445F369                        ; ASCII "dc1"
0445F763  68 6DF34504      PUSH Ba.0445F36D                        ; ASCII "Boss\dark_boss.ase"
0445F768  B9 DC4E7D00      MOV ECX,Ba.007D4EDC
0445F76D  E8 9E17FDFB      CALL Ba.00430F10
0445F772  68 1BAC0300      PUSH 3AC1B
0445F777  68 7D060300      PUSH 3067D
0445F77C  B9 DC4E7D00      MOV ECX,Ba.007D4EDC
0445F781  C705 A04F7D00 00>MOV DWORD PTR DS:[7D4FA0],500
0445F78B  891D A44F7D00    MOV DWORD PTR DS:[7D4FA4],EBX
0445F791  891D A84F7D00    MOV DWORD PTR DS:[7D4FA8],EBX
0445F797  891D AC4F7D00    MOV DWORD PTR DS:[7D4FAC],EBX
0445F79D  892D B04F7D00    MOV DWORD PTR DS:[7D4FB0],EBP
0445F7A3  8935 FC627D00    MOV DWORD PTR DS:[7D62FC],ESI
0445F7A9  E8 E217FDFB      CALL Ba.00430F90
0445F7AE  68 1BAC0300      PUSH 3AC1B
0445F7B3  68 7D060300      PUSH 3067D
0445F7B8  E8 531EFDFB      CALL Ba.00431610
0445F7BD  68 81F34504      PUSH Ba.0445F381                        ; ASCII "dun-9"
0445F7C2  68 87F34504      PUSH Ba.0445F387                        ; ASCII "endless\dun-9.ase"
0445F7C7  B9 58637D00      MOV ECX,Ba.007D6358
0445F7CC  E8 3F17FDFB      CALL Ba.00430F10
0445F7D1  68 A65AFFFF      PUSH FFFF5AA6
0445F7D6  68 20130000      PUSH 1320
0445F7DB  B9 58637D00      MOV ECX,Ba.007D6358
0445F7E0  C705 1C647D00 00>MOV DWORD PTR DS:[7D641C],500
0445F7EA  891D 20647D00    MOV DWORD PTR DS:[7D6420],EBX
0445F7F0  891D 24647D00    MOV DWORD PTR DS:[7D6424],EBX
0445F7F6  891D 28647D00    MOV DWORD PTR DS:[7D6428],EBX
0445F7FC  892D 2C647D00    MOV DWORD PTR DS:[7D642C],EBP
0445F802  8935 78777D00    MOV DWORD PTR DS:[7D7778],ESI
0445F808  E8 8317FDFB      CALL Ba.00430F90
0445F80D  68 A65AFFFF      PUSH FFFF5AA6
0445F812  68 20130000      PUSH 1320
0445F817  E8 F41DFDFB      CALL Ba.00431610
0445F81C  68 A65AFFFF      PUSH FFFF5AA6
0445F821  68 12190000      PUSH 1912
0445F826  E8 E51DFDFB      CALL Ba.00431610
0445F82B  6A 20            PUSH 20
0445F82D  6A 40            PUSH 40
0445F82F  68 E6000000      PUSH 0E6
0445F834  68 965BFFFF      PUSH FFFF5B96
0445F839  68 20130000      PUSH 1320
0445F83E  E8 6D18FDFB      CALL Ba.004310B0
0445F843  68 8B000000      PUSH 8B
0445F848  68 6F5EFFFF      PUSH FFFF5E6F
0445F84D  68 86140000      PUSH 1486
0445F852  68 14307C00      PUSH Ba.007C3014
0445F857  E9 02030000      JMP Ba.0445FB5E
0445F85C  0000            ADD BYTE PTR DS:[EAX],AL
0445F85E  8B91 1C140000    MOV EDX,DWORD PTR DS:[ECX+141C]
0445F864  83FA 2A          CMP EDX,2A
0445F867  0F84 93000000    JE Ba.0445F900
0445F86D  83FA 2B          CMP EDX,2B
0445F870  0F84 8A000000    JE Ba.0445F900
0445F876  83FA 2C          CMP EDX,2C
0445F879  0F84 81000000    JE Ba.0445F900
0445F87F  83FA 2D          CMP EDX,2D

---

re-write them and add for every map this:

Code:

---

MOV DWORD PTR DS:[+1278],xx (Put here your which level you want to access)

---

take this as example AD1

Code:

---

MOV DWORD PTR DS:[EDX+7D13EC],64

---

64 = 100 means you can access with lvl 100.

Quote:

---

Originally Posted by tr1pl3x1

re-write them and add for every map this:

take this as example AD1

Code:

---

MOV DWORD PTR DS:[EDX+7D13EC],64

---

64 = 100 means you can access with lvl 100.

---

i try change but not working , still have that problem

Take AD1 as example

Code:

---

0445F50B  68 2DF34504      PUSH Ba.0445F32D                        ; ASCII "ad1"
0445F510  68 31F34504      PUSH Ba.0445F331                        ; ASCII "Custom\ad1.ase"
0445F515  B9 68117D00      MOV ECX,Ba.007D1168
0445F51A  E8 F119FDFB      CALL Ba.00430F10
0445F51F  68 39A1FFFF      PUSH FFFFA139
0445F524  68 45FC0000      PUSH 0FC45
0445F529  B9 68117D00      MOV ECX,Ba.007D1168
0445F52E  C705 2C127D00 00>MOV DWORD PTR DS:[7D122C],500
0445F538  891D 30127D00    MOV DWORD PTR DS:[7D1230],EBX
0445F53E  891D 34127D00    MOV DWORD PTR DS:[7D1234],EBX
0445F544  891D 38127D00    MOV DWORD PTR DS:[7D1238],EBX
0445F54A  892D 3C127D00    MOV DWORD PTR DS:[7D123C],EBP
0445F550  8935 88257D00    MOV DWORD PTR DS:[7D2588],ESI
0445F556  E8 551AFDFB      CALL Ba.00430FB0
0445F55B  68 39A1FFFF      PUSH FFFFA139
0445F560  68 45FC0000      PUSH 0FC45
0445F565  E8 261AFDFB      CALL Ba.00430F90
0445F56A  6A 20            PUSH 20
0445F56C  6A 40            PUSH 40
0445F56E  6A 0D            PUSH 0D
0445F570  68 498FFFFF      PUSH FFFF8F49
0445F575  68 B9FC0000      PUSH 0FCB9
0445F57A  E8 311BFDFB      CALL Ba.004310B0
0445F57F  6A 5A            PUSH 5A
0445F581  68 F796FFFF      PUSH FFFF96F7
0445F586  68 BB200100      PUSH 120BB
0445F58B  68 E4257D00      PUSH Ba.007D25E4
0445F590  E8 DB1BFDFB      CALL Ba.00431170
0445F595  68 39A1FFFF      PUSH FFFFA139
0445F59A  68 45FC0000      PUSH 0FC45
0445F59F  E8 6C20FDFB      CALL Ba.00431610
0445F5A4  8B15 1C137D00    MOV EDX,DWORD PTR DS:[7D131C]
0445F5AA  53              PUSH EBX
0445F5AB  69D2 E0000000    IMUL EDX,EDX,0E0
0445F5B1  68 80000000      PUSH 80
0445F5B6  68 498FFFFF      PUSH FFFF8F49
0445F5BB  6A 0D            PUSH 0D
0445F5BD  68 B9FC0000      PUSH 0FCB9
0445F5C2  C782 EC137D00 64>MOV DWORD PTR DS:[EDX+7D13EC],64 <--- your goal for other maps
0445F5CC  E8 CF21FDFB      CALL Ba.004317A0

---

You just need to add this line to the other maps.

Let me teach you with ba3.

Code:

---

0445F491  68 19F34504      PUSH Ba.0445F319                        ; ASCII "ba3"
0445F496  68 1DF34504      PUSH Ba.0445F31D                        ; ASCII "Custom\ba3.ase"
0445F49B  B9 ECFC7C00      MOV ECX,Ba.007CFCEC
0445F4A0  E8 6B1AFDFB      CALL Ba.00430F10
0445F4A5  68 14D7FFFF      PUSH -28EC
0445F4AA  68 15AEFFFF      PUSH FFFFAE15
0445F4AF  B9 ECFC7C00      MOV ECX,Ba.007CFCEC
0445F4B4  C705 B0FD7C00 00>MOV DWORD PTR DS:[7CFDB0],300
0445F4BE  C705 B4FD7C00 04>MOV DWORD PTR DS:[7CFDB4],4
0445F4C8  892D B8FD7C00    MOV DWORD PTR DS:[7CFDB8],EBP
0445F4CE  C705 BCFD7C00 06>MOV DWORD PTR DS:[7CFDBC],6
0445F4D8  C705 C0FD7C00 0A>MOV DWORD PTR DS:[7CFDC0],0A
0445F4E2  893D 0C117D00    MOV DWORD PTR DS:[7D110C],EDI
0445F4E8  E8 C31AFDFB      CALL Ba.00430FB0

---

Thats your Mystery Desert 2. To add a lvl req. , you need to add that line from AD1 in that map too.

Like this

Code:

---

0445F491  68 19F34504      PUSH Ba.0445F319                        ; ASCII "ba3"
0445F496  68 1DF34504      PUSH Ba.0445F31D                        ; ASCII "Custom\ba3.ase"
0445F49B  B9 ECFC7C00      MOV ECX,Ba.007CFCEC
0445F4A0  E8 6B1AFDFB      CALL Ba.00430F10
0445F4A5  68 14D7FFFF      PUSH -28EC
0445F4AA  68 15AEFFFF      PUSH FFFFAE15
0445F4AF  B9 ECFC7C00      MOV ECX,Ba.007CFCEC
0445F4B4  C705 B0FD7C00 00>MOV DWORD PTR DS:[7CFDB0],300
0445F4BE  C705 B4FD7C00 04>MOV DWORD PTR DS:[7CFDB4],4
0445F4C8  892D B8FD7C00    MOV DWORD PTR DS:[7CFDB8],EBP
0445F4CE  C705 BCFD7C00 06>MOV DWORD PTR DS:[7CFDBC],6
0445F4D8  C705 C0FD7C00 0A>MOV DWORD PTR DS:[7CFDC0],0A
0445F4E2  893D 0C117D00    MOV DWORD PTR DS:[7D110C],EDI
0xxxxxxx  xxxx xxxxxxxx    MOV DWORD PTR DS:[007CFCEC+1278],73 and the lvl req.
0445F4E8  E8 C31AFDFB      CALL Ba.00430FB0

---

Good luck

even my mom can add map level requeriment now :lol:

thanks alot , problem solve , Ole change level map cap in game.dll

Code:

---

MOV DWORD PTR DS:[007CFCEC+1278],73

---

That should be

Code:

---

MOV DWORD PTR DS:[ECX+1278],73

---

from my reading. (otherwise you are wasting a perfectly good register cached pointer, and 7CFCEC+1278 = 7D0F64 which Olly will work out for you anyway)

If map level is in game.dll then you do not have anything like a standard client. (sounds like Majestic) And I wouldn't have the foggiest idea how to work with it without seeing the source code for game.dll.

Quote:

---

Originally Posted by bobsobol

Code:

---

MOV DWORD PTR DS:[007CFCEC+1278],73

---

That should be

Code:

---

MOV DWORD PTR DS:[ECX+1278],73

---

from my reading. (otherwise you are wasting a perfectly good register cached pointer, and 7CFCEC+1278 = 7D0F64 which Olly will work out for you anyway)

If map level is in game.dll then you do not have anything like a standard client. (sounds like Majestic) And I wouldn't have the foggiest idea how to work with it without seeing the source code for game.dll.

---

he just add new thinks in game.dll , and now its working ,
he told me in game.dll is easyer added then in game.exe