| View previous topic :: View next topic |
| Author |
Message |
Hatashi
How do I cheat?
 Reputation: 0
Joined: 08 Mar 2007
Posts: 7
|
 Posted: Wed Jul 08, 2009 6:35 am Post subject: Vice City Function Pass? |
 |
|
Hello, I was wondering if anyone could take a look at this code and tell me if It's possible to skip it without it bugging out completely.
First I want to tell you that this function is the "Busted" function.
Like when a cop comes and pulls you out of the car and then you have to start all over.
That annoys me more then anything else in the game, and I found this function and tried nopping some calls and such but all ended in corruption.
| Code: | 004BBEBC |. 68 14F76800 PUSH gta-vc.0068F714 ; ASCII "BUSTED"
004BBEC1 |. E8 6A900C00 CALL gta-vc.00584F30
004BBEC6 |. 6A 02 PUSH 2
004BBEC8 |. 68 88130000 PUSH 1388
004BBECD |. 50 PUSH EAX
004BBECE |. E8 7D810C00 CALL gta-vc.00584050
004BBED3 |. 83C4 0C ADD ESP,0C
004BBED6 |. FF05 30539700 INC DWORD PTR DS:[975330]
004BBEDC \> C3 RETN
004BBEDD 00 DB 00
004BBEDE 00 DB 00
004BBEDF 00 DB 00
004BBEE0 /$ 80B9 CC000000 >CMP BYTE PTR DS:[ECX+CC],0
004BBEE7 |. 75 3C JNZ SHORT gta-vc.004BBF25
004BBEE9 |. C681 CC000000 >MOV BYTE PTR DS:[ECX+CC],1
004BBEF0 |. A1 2C4B9700 MOV EAX,DWORD PTR DS:[974B2C]
004BBEF5 |. 8981 D0000000 MOV DWORD PTR DS:[ECX+D0],EAX
004BBEFB |. E8 90E0F6FF CALL gta-vc.00429F90
004BBF00 |. B9 20B29400 MOV ECX,gta-vc.0094B220
----END----
|
The first call if I nop that, crashes.
The second one just makes the words "Busted" not appear.
And I haven't tried anything else because my ASM knowledge is quite limited at the moment.
So I was wondering if it was even possible or if I'm just wasting my time! |
|
| Back to top |
|
 |
CouLomB
Cheater
![]() Reputation: 0
Joined: 16 Dec 2007
Posts: 45
|
| Posted: Thu Jul 09, 2009 12:29 am Post subject: |
|
|
Maybe not in this function but its possible but what u want to hack ?
Not to Get Busted or Not to Start Game From Over ? |
|
| Back to top |
|
|
Hatashi
How do I cheat?
Reputation: 0
Joined: 08 Mar 2007
Posts: 7
|
| Posted: Thu Jul 09, 2009 7:39 pm Post subject: |
|
|
I want it to completely skip the "Busted" function, like they'd open the door and then point the gun at me and it would just show "Busted"
And show a little cutscene then make me start at the beginning.
I'm wondering if like when they pull the door open that it won't show busted and stuff, I'm starting to doubt if that's even possible without completely redoing that part of the game. |
|
| Back to top |
|
|
CouLomB
Cheater
![]() Reputation: 0
Joined: 16 Dec 2007
Posts: 45
|
| Posted: Fri Jul 10, 2009 2:32 pm Post subject: |
|
|
Ohh i get it...But i dont have any installed GTA to make a small tutorial for you...
But Basicly this function is just to show Busted text in DirectX.But did you try to search for 1&0 ? Like Normally search for 0 then whenever busted show on screen search for 0. Or 1 Normally 0 when busted show.
Then when you got that adress find whats write on to it...There will be function which makes u busted.Then you can use CheatEngine to NOP that or patch the exe by CheatEngine.One more way is to search that function with Olly then NOP needed placed then save as executable.
If this wont help then i may try to find my old Vice City CD for u... |
|
| Back to top |
|
|
Hatashi
How do I cheat?
Reputation: 0
Joined: 08 Mar 2007
Posts: 7
|
| Posted: Sat Jul 11, 2009 1:11 am Post subject: |
|
|
Well now that clears alot of stuff up!
I feel stupid now hahah, I really appreciate your help, I'm going to give that a shot really quick! 
EDIT
Bah I couldn't seem to find it, I tried both searching for 0 first and 1.
All I found was a thing where if I NOP it, it thinks I'm constantly doing an Insane Stunt Bonus. |
|
| Back to top |
|
|
CouLomB
Cheater
![]() Reputation: 0
Joined: 16 Dec 2007
Posts: 45
|
| Posted: Sun Jul 12, 2009 1:25 am Post subject: |
|
|
Ok I just installed my CD again for you but is GTA III so far.After 10min what i have done is..
You dont get BUSTED , You dont DEAD , You dont WASTED...etc
But the problem is when you dead or get busted you are on the floor, so that you cant move ur char i will try to find a fix also for that.
This is the link to patched exe.
http://ul.to/o4f36o
The Busted Function is same as yours so there are very very near.If i fix this one i will explain to u then you can do it ur own. |
|
| Back to top |
|
|
Hatashi
How do I cheat?
Reputation: 0
Joined: 08 Mar 2007
Posts: 7
|
| Posted: Sun Jul 12, 2009 4:00 am Post subject: |
|
|
Wow, did you use the previous method that you explained earlier?
Because I couldn't seem to find it, I may have been doing it wrong though.
And hey I really appreciate the help you're providing. |
|
| Back to top |
|
|
CouLomB
Cheater
![]() Reputation: 0
Joined: 16 Dec 2007
Posts: 45
|
| Posted: Sun Jul 12, 2009 5:23 am Post subject: |
|
|
Ok here is my way until now...
Very easy steps to do..
-Open the exe with olly search for the text string "BUSTED"
-Which gives me your function.Like this one,
| Code: |
004A1330 /$ 80B9 D8000000 CMP BYTE PTR DS:[ECX+0D8],0 ; gta3.004A1330(guessed void)
004A1337 |. 75 3C JNE SHORT 004A1375
004A1339 |. C681 D8000000 MOV BYTE PTR DS:[ECX+0D8],2
004A1340 |. A1 485B8800 MOV EAX,DWORD PTR DS:[885B48]
004A1345 |. 8981 DC000000 MOV DWORD PTR DS:[ECX+0DC],EAX
004A134B |. E8 20FBF7FF CALL 00420E70
004A1350 |. B9 20167700 MOV ECX,OFFSET gta3.00941520
004A1355 |. 68 A86A5F00 PUSH OFFSET gta3.005F6AA8 ; /Arg1 = ASCII "BUSTED"
004A135A |. E8 41B20800 CALL 0052C5A0 ; \gta3.0052C5A0
004A135F |. 6A 02 PUSH 2
004A1361 |. 68 88130000 PUSH 1388
004A1366 |. 50 PUSH EAX
004A1367 |. E8 448B0800 CALL 00529EB0
004A136C |. 83C4 0C ADD ESP,0C
004A136F |. FF05 EC2B8E00 INC DWORD PTR DS:[8E2BEC]
004A1375 \> C3 RETN
|
Ok this function simply appear when you Busted right.There is simply 3 Calls there are prabably the calls for
1)To Show BUSTED text.
2)To Stop the Game ( You cant move anymore ).
3)To start over.
Ok we can make a very easy Jump over those calls.By changing the JNE with JMP command.So that it wont call any of those calls.But however there one more check that makes you stop.You cant move your char.There i am following this way...
Ok this the Busted function but what calls the busted function right ? Which is the main function that makes me Busted that what i have to find !!!
So at the beginning of the function at 004A1330...Right Click and Find References to Selected Command.You will see 1 result in GTAIII donno in vice city sorry 
Mine is looks like this,
| Code: | CPU Disasm
Address Hex dump Command Comments
00421400 /$ 53 PUSH EBX ; gta3.00421400(guessed void)
00421401 |. 56 PUSH ESI
00421402 |. 55 PUSH EBP
00421403 |. 83EC 50 SUB ESP,50
00421406 |. 803D 9FCD9500 CMP BYTE PTR DS:[95CD9F],0
0042140D |. 74 07 JE SHORT 00421416
0042140F |. 83C4 50 ADD ESP,50
00421412 |. 5D POP EBP
00421413 |. 5E POP ESI
00421414 |. 5B POP EBX
00421415 |. C3 RETN
00421416 |> 0FB61D 61CD95 MOVZX EBX,BYTE PTR DS:[95CD61]
0042141D |. 69DB 3C010000 IMUL EBX,EBX,13C
00421423 |. 81C3 F0129400 ADD EBX,OFFSET gta3.009412F0
00421429 |. 0FB683 D80000 MOVZX EAX,BYTE PTR DS:[EBX+0D8] ; Switch (cases 0..3, 5 exits)
00421430 |. 83F8 04 CMP EAX,4
00421433 |. 0F87 DC050000 JA 00421A15
00421439 |. FF2485 A4CD5E JMP DWORD PTR DS:[EAX*4+5ECDA4]
00421440 |> 8B0B MOV ECX,DWORD PTR DS:[EBX] ; Case 0 of switch gta3.421429
00421442 |. 83B9 24020000 CMP DWORD PTR DS:[ECX+224],31
00421449 |. 75 0C JNE SHORT 00421457
0042144B |. E8 E0220D00 CALL 004F3730 ; [gta3.004F3730
00421450 |. 89D9 MOV ECX,EBX
00421452 |. E8 89FE0700 CALL 004A12E0
00421457 |> 8B0B MOV ECX,DWORD PTR DS:[EBX]
00421459 |. 83B9 24020000 CMP DWORD PTR DS:[ECX+224],38
00421460 |. 0F85 AF050000 JNE 00421A15
00421466 |. E8 C5220D00 CALL 004F3730 ; [gta3.004F3730
0042146B |. 89D9 MOV ECX,EBX |
There you will the the Cases and Switches...I only can see 3 Cases there and when i trace all the cases i understand that there are the cases for DEAD , WASTED , BUSTED.
It really really hard to explain after now cause my english now good to explain why i did those steps...Anyway until now what i have done is like
if i dead then the game still working everything cars...etc works but i cant move.If i busted then game still working either but still cant move from the ground.So there should be one more check but i already get fucked up my brain !
You selected way is too hard to patch...If something new happen i will tell you cause when i cant do something i am working on 24hours on it to hack it lol. |
|
| Back to top |
|
|
CouLomB
Cheater
![]() Reputation: 0
Joined: 16 Dec 2007
Posts: 45
|
| Posted: Sun Jul 12, 2009 2:02 pm Post subject: |
|
|
I know this is just the opcode which writes on the wanted level...But what he want is harder then this he want to get his wanted level 5 then when he caught and busted by cops he want to continue playing.
So Your is not the same thing. |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
