89
"[enable] .4"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(LPWriteAOB,A18.exe,3B C8 0F 4F C8 89 ** ** ** ** ** E8)
registersymbol(LPWriteAOB)
aobscanmodule(itemEquipUiidReadOnHighlightedAOB,A18.exe,74 ** 8B 03 89 47 08 8B 43 04)
registersymbol(itemEquipUiidReadOnHighlightedAOB)
aobscanmodule(alchemyLvReadOnAlchemyMenuAccessAOB,A18.exe,8B 94 3B ** ** ** ** FF C2)
registersymbol(alchemyLvReadOnAlchemyMenuAccessAOB)
label(dAlchemyLvOffset)
registersymbol(dAlchemyLvOffset)
[alchemyLvReadOnAlchemyMenuAccessAOB+3]:
dAlchemyLvOffset:
///*********************************************///
aobscanmodule(statsReadInBattleAOB,A18.exe,8B 74 81 ** 8D ** ** 83)
registersymbol(statsReadInBattleAOB)
label(pBattlePlayers)
registersymbol(pBattlePlayers)
alloc(newmem,2048,statsReadInBattleAOB) //"A18.exe"+4F7260)
label(returnhere)
label(originalcode_enable)
registersymbol(originalcode_enable)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
//mov [pBattlePlayer],rcx
test rbx,rbx
jl @f
cmp rbx,4
jge @f
mov rsi,pBattlePlayers
mov [rsi+rbx*8],rcx
//cmp eax,2
//jne @f
//mov rsi,A18.exe+51e75e
//cmp [rsp+28],rsi
//je @f
//mov esi,[rcx+rax*4+68]
originalcode_enable:
readmem(statsReadInBattleAOB,7)
//mov esi,[rcx+rax*4+68]
//lea eax,[rdx-06]
exit:
jmp returnhere
///
pBattlePlayers:
///
statsReadInBattleAOB: //"A18.exe"+4F7260:
jmp newmem
nop
nop
returnhere:
///*********************************************///
aobscanmodule(playerStatsReadInYMenuAOB,A18.exe,8B 44 81 ** C3 83)
registersymbol(playerStatsReadInYMenuAOB)
label(pHighlightedPlayer)
registersymbol(pHighlightedPlayer)
alloc(newmem2,2048,playerStatsReadInYMenuAOB) //"A18.exe"+439D1B)
label(returnhere2)
label(originalcode2_enable)
registersymbol(originalcode2_enable)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedPlayer],rcx
originalcode2_enable:
readmem(playerStatsReadInYMenuAOB,5)
//mov eax,[rcx+rax*4+0C]
ret
exit2:
jmp returnhere2
///
pHighlightedPlayer:
///
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
jmp newmem2
returnhere2:
///*********************************************///
aobscanmodule(afterPlayerNameFetchInYMenuAOB,A18.exe,44 8B ** ** 45 33 C0 41 ** ** 48)
registersymbol(afterPlayerNameFetchInYMenuAOB)
label(pHighlightedPlayerName)
registersymbol(pHighlightedPlayerName)
alloc(newmem6,2048,afterPlayerNameFetchInYMenuAOB) //"A18.exe"+2B0988)
label(returnhere6)
label(originalcode6_enable)
registersymbol(originalcode6_enable)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
test rdx,rdx
jle @f
mov [pHighlightedPlayerName],rdx
originalcode6_enable:
readmem(afterPlayerNameFetchInYMenuAOB,7)
//mov r13d,[rbp+04]
//xor r8d,r8d
exit6:
jmp returnhere6
///
pHighlightedPlayerName:
///
afterPlayerNameFetchInYMenuAOB: //"A18.exe"+2B0988:
jmp newmem6
nop
nop
returnhere6:
///*********************************************///
aobscanmodule(timeOfDayReadAOB,A18.exe,48 8B 05 ** ** ** ** 48 89 01 48 8B C1 C3)
registersymbol(timeOfDayReadAOB)
label(pGameBase)
registersymbol(pGameBase)
label(pLP)
registersymbol(pLP)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
label(bTimeMod)
registersymbol(bTimeMod)
label(bManipulateTime)
registersymbol(bManipulateTime)
label(bResetHrsInRw)
registersymbol(bResetHrsInRw)
label(iAdvanceTimeSpeed)
registersymbol(iAdvanceTimeSpeed)
label(iRewindTimeSpeed)
registersymbol(iRewindTimeSpeed)
alloc(newmem11,2048,timeOfDayReadAOB) //"A18.exe"+586D00)
label(returnhere11)
label(originalcode_enable11)
registersymbol(originalcode_enable11)
label(exit11)
newmem11: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
mov rax,A18.exe
mov [pGameBase],rax
xor rax,rax
db b8
readmem(LPWriteAOB+7,4)
movsxd rax,eax
mov rbx,LPWriteAOB
lea rax,[rbx+rax+b]
mov [pLP],rax
xor rax,rax
db b8
readmem(timeOfDayReadAOB+3,4)
movsxd rax,eax
mov rbx,timeOfDayReadAOB
lea rax,[rbx+rax+7]
mov [pTimeOfDay],rax
cmp byte ptr [bTimeMod],1
jne end11
cmp dword ptr [bManipulateTime],0
je end11
cmp dword ptr [bManipulateTime],7FFFFFFF
je end11
mov ecx,[bManipulateTime]
add ecx,[rax+4]
cmp ecx,#60
jge advhrs11
cmp ecx,0
jl rwhrs11
mov [rax+4],ecx
jmp end11
advhrs11:
xor ecx,ecx
mov [rax+4],ecx
mov ecx,[rax]
inc ecx
cmp ecx,#24
jl @f
//xor ecx,ecx
mov byte ptr [bResetHrsInRw],2
inc dword ptr [rax-8]
@@:
mov [rax],ecx
jmp end11
rwhrs11:
add ecx,#60
mov [rax+4],ecx
mov ecx,[rax]
dec ecx
//jns @f
//test ecx,ecx
//jge @f
///cmp ecx,0
///jge @f
jns @f
//mov ecx,#23
mov byte ptr [bResetHrsInRw],1
dec dword ptr [rax-8]
jns @f
mov dword ptr [rax-8],0
@@:
mov [rax],ecx
end11:
pop rcx
pop rbx
reassemble(timeOfDayReadAOB)
exit11:
jmp returnhere11
///
pGameBase:
dq 0
pLP:
dq 0
pTimeOfDay:
dq 0
bTimeMod:
dd 0
bManipulateTime:
dd 0
bResetHrsInRw:
dd 0
iAdvanceTimeSpeed:
dd 0
iRewindTimeSpeed:
dd 0
originalcode_enable11:
readmem(timeOfDayReadAOB,7)
//mov rax,[A18.exe+146E7A0]
///
timeOfDayReadAOB: //"A18.exe"+586D00:
jmp newmem11
nop
nop
returnhere11:
///*********************************************///
aobscanmodule(chainLinkGaugeReadAOB,A18.exe,8B 49 ** F3 0F 2C C2)
registersymbol(chainLinkGaugeReadAOB)
label(bChainLinkGaugeModKeys)
registersymbol(bChainLinkGaugeModKeys)
label(bFullChainLinkGauge)
registersymbol(bFullChainLinkGauge)
label(bEmptyChainLinkGauge)
registersymbol(bEmptyChainLinkGauge)
label(pChainLinkGauge)
registersymbol(pChainLinkGauge)
alloc(newmem17,2048,chainLinkGaugeReadAOB) //"A18.exe"+51474E)
label(returnhere17)
label(originalcode17_enable)
registersymbol(originalcode17_enable)
label(exit17)
newmem17: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pChainLinkGauge],rcx
cmp byte ptr [bChainLinkGaugeModKeys],1
jne end17
cmp byte ptr [bFullChainLinkGauge],101
jne @f
mov eax,#1000
mov [rcx+40],eax
jmp end17
cmp byte ptr [bFullChainLinkGauge],1
jne @f
mov byte ptr [bFullChainLinkGauge],0
mov eax,#1000
mov [rcx+40],eax
jmp end17
@@:
cmp byte ptr [bEmptyChainLinkGauge],1
jne @f
mov byte ptr [bEmptyChainLinkGauge],0
xor eax,eax
mov [rcx+40],eax
end17:
originalcode17_enable:
readmem(chainLinkGaugeReadAOB,7)
//mov ecx,[rcx+40]
//cvttss2si eax,xmm2
exit17:
jmp returnhere17
///
bChainLinkGaugeModKeys:
dd 0
bFullChainLinkGauge:
dw 0
bEmptyChainLinkGauge:
dw 0
pChainLinkGauge:
///
chainLinkGaugeReadAOB: //"A18.exe"+51474E:
jmp newmem17
nop
nop
returnhere17:
///*********************************************///
aobscanmodule(friendshipCalAOB,A18.exe,0F 57 C9 48 03 C0)
registersymbol(friendshipCalAOB)
label(pFriendshipBase)
registersymbol(pFriendshipBase)
label(pHighlightedFriendship)
registersymbol(pHighlightedFriendship)
alloc(newmem24,2048,friendshipCalAOB) //"A18.exe"+4CD2CA)
label(returnhere24)
label(originalcode24)
label(exit24)
newmem24: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pFriendshipBase],rcx
push rax
push rbx
add rax,rax
lea rbx,[rcx+rax*8]
mov [pHighlightedFriendship],rbx
pop rbx
pop rax
originalcode24:
xorps xmm1,xmm1
add rax,rax
exit24:
jmp returnhere24
///
pFriendshipBase:
dq 0
pHighlightedFriendship:
dq 0
///
friendshipCalAOB: //"A18.exe"+4CD2CA:
jmp newmem24
nop
returnhere24:
///*********************************************///
aobscanmodule(playerHealthSubOnHitRetAOB,A18.exe,8B CE E8 ** ** ** ** 48 8B ** ** ** 48 8B ** ** ** 84 C0 0F)
registersymbol(playerHealthSubOnHitRetAOB)
label(pPlayerHealthSubOnHitRet)
registersymbol(pPlayerHealthSubOnHitRet)
playerHealthSubOnHitRetAOB+7:
pPlayerHealthSubOnHitRet:
///
aobscanmodule(healthSubOnHitAOB,A18.exe,8B 06 29 ** ** 8B)
registersymbol(healthSubOnHitAOB)
label(iMinHealth)
registersymbol(iMinHealth)
label(iMinHealthNonPlayer)
registersymbol(iMinHealthNonPlayer)
label(fNonPlayerDamageMultiplier)
registersymbol(fNonPlayerDamageMultiplier)
label(bUndeadPlayer)
registersymbol(bUndeadPlayer)
label(pNonPlayerJustHit)
registersymbol(pNonPlayerJustHit)
label(bUndeadNonPlayer)
registersymbol(bUndeadNonPlayer)
label(bOneHitKill)
registersymbol(bOneHitKill)
alloc(newmem25,2048,healthSubOnHitAOB) //"A18.exe"+4F3141)
label(returnhere25)
label(originalcode25_undead)
registersymbol(originalcode25_undead)
label(exit25)
newmem25: //this is allocated memory, you have read,write,execute access
//place your code here
mov rax,pPlayerHealthSubOnHitRet
cmp [rsp+28],rax
jne isnotplayer25
cmp byte ptr [bUndeadPlayer],1
jne @f
mov eax,[rdi+6c]
sub eax,[rsi]
cmp eax,[iMinHealth]
jge originalcode25_undead
mov eax,[iMinHealth]
add eax,[rsi]
mov [rdi+6c],eax
jmp originalcode25_undead
@@:
jmp originalcode25_undead
isnotplayer25:
mov [pNonPlayerJustHit],rdi
cmp byte ptr [bUndeadNonPlayer],1
jne @f
mov eax,[rdi+6c]
sub eax,[rsi]
cmp eax,[iMinHealthNonPlayer]
jge originalcode25_undead
mov eax,[iMinHealthNonPlayer]
add eax,[rsi]
mov [rdi+6c],eax
jmp originalcode25_undead
@@:
cmp byte ptr [bOneHitKill],1
jne @f
mov eax,[rdi+6c]
mov [rsi],eax
jmp originalcode25_undead
@@:
fild dword ptr [rsi]
fmul dword ptr [fNonPlayerDamageMultiplier]
fistp dword ptr [rsi]
originalcode25_undead:
readmem(healthSubOnHitAOB,5)
//mov eax,[rsi]
//sub [rdi+6C],eax
exit25:
jmp returnhere25
///
iMinHealth:
dd 0
iMinHealthNonPlayer:
dd 0
fNonPlayerDamageMultiplier:
dd (float)1
pNonPlayerJustHit:
dq 0
bUndeadPlayer:
dd 0
bUndeadNonPlayer:
dd 0
bOneHitKill:
dd 0
///
healthSubOnHitAOB: //"A18.exe"+4F3141:
jmp newmem25
returnhere25:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
unregistersymbol(dAlchemyLvOffset)
///*********************************************///
dealloc(newmem)
statsReadInBattleAOB: //"A18.exe"+4F7260:
readmem(originalcode_enable,7)
//db 8B 74 81 68 8D 42 FA
//Alt: mov esi,[rcx+rax*4+68]
//Alt: lea eax,[rdx-06]
unregistersymbol(pBattlePlayers)
unregistersymbol(originalcode_enable)
///*********************************************///
dealloc(newmem2)
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
readmem(originalcode2_enable,5)
//db 8B 44 81 0C C3
//Alt: mov eax,[rcx+rax*4+0C]
//Alt: ret
unregistersymbol(originalcode2_enable)
unregistersymbol(pHighlightedPlayer)
///*********************************************///
dealloc(newmem6)
afterPlayerNameFetchInYMenuAOB: //"A18.exe"+2B0988:
readmem(originalcode6_enable,7)
//db 44 8B 6D 04 45 33 C0
//Alt: mov r13d,[rbp+04]
//Alt: xor r8d,r8d
unregistersymbol(originalcode6_enable)
unregistersymbol(pHighlightedPlayerName)
///*********************************************///
dealloc(newmem11)
timeOfDayReadAOB: //"A18.exe"+586D00:
readmem(originalcode_enable11,7)
//db 48 8B 05 99 7A EE 00
//Alt: mov rax,[A18.exe+146E7A0]
unregistersymbol(pGameBase)
unregistersymbol(pLP)
unregistersymbol(pTimeOfDay)
unregistersymbol(bTimeMod)
unregistersymbol(bManipulateTime)
unregistersymbol(bResetHrsInRw)
unregistersymbol(iAdvanceTimeSpeed)
unregistersymbol(iRewindTimeSpeed)
unregistersymbol(originalcode_time)
///*********************************************///
dealloc(newmem17)
chainLinkGaugeReadAOB: //"A18.exe"+51474E:
readmem(originalcode17_enable,7)
//db 8B 49 40 F3 0F 2C C2
//Alt: mov ecx,[rcx+40]
//Alt: cvttss2si eax,xmm2
unregistersymbol(originalcode17_enable)
unregistersymbol(bChainLinkGaugeModKeys)
unregistersymbol(bFullChainLinkGauge)
unregistersymbol(bEmptyChainLinkGauge)
unregistersymbol(pChainLinkGauge)
///*********************************************///
dealloc(newmem24)
friendshipCalAOB: //"A18.exe"+4CD2CA:
db 0F 57 C9 48 03 C0
//Alt: xorps xmm1,xmm1
//Alt: add rax,rax
unregistersymbol(pFriendshipBase)
unregistersymbol(pHighlightedFriendship)
///*********************************************///
dealloc(newmem25)
healthSubOnHitAOB: //"A18.exe"+4F3141:
readmem(originalcode25_undead,5)
//db 8B 06 29 47 6C
//Alt: mov eax,[rsi]
//Alt: sub [rdi+6C],eax
unregistersymbol(pPlayerHealthSubOnHitRet)
unregistersymbol(iMinHealth)
unregistersymbol(iMinHealthNonPlayer)
unregistersymbol(fNonPlayerDamageMultiplier)
unregistersymbol(pNonPlayerJustHit)
unregistersymbol(bUndeadPlayer)
unregistersymbol(bUndeadNonPlayer)
unregistersymbol(bOneHitKill)
unregistersymbol(originalcode25_undead)
110
"[scripts]"
000080
1
109
"[battle related]"
000080
1
97
"undead .3"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
iMinHealth:
dd #1
bUndeadPlayer:
db 1
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
iMinHealth:
dd 0
bUndeadPlayer:
dd 0
98
"min HP"
1
008000
4 Bytes
iMinHealth
101
"ignore MP"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfEnoughMPInBattleSkillMenuAccessAOB,A18.exe,7D ** 0F AF C5)
registersymbol(cJmpIfEnoughMPInBattleSkillMenuAccessAOB)
cJmpIfEnoughMPInBattleSkillMenuAccessAOB: //"A18.exe"+51B0D1:
db EB
//Alt: jmp
///*******************************///
aobscanmodule(cJmpIfNotEnoughMPOnBattleSkillSelectAOB,A18.exe,0F 8C ** ** ** ** 33 DB 48 ** ** ** ** 48)
registersymbol(cJmpIfNotEnoughMPOnBattleSkillSelectAOB)
alloc(originalcode2_ignoremp,6)
registersymbol(originalcode2_ignoremp)
originalcode2_ignoremp:
readmem(cJmpIfNotEnoughMPOnBattleSkillSelectAOB,6)
cJmpIfNotEnoughMPOnBattleSkillSelectAOB: //"A18.exe"+524100:
db 90 90 90 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfEnoughMPInBattleSkillMenuAccessAOB: //"A18.exe"+51B0D1:
db 7D
//Alt: jnl
///*******************************///
cJmpIfNotEnoughMPOnBattleSkillSelectAOB: //"A18.exe"+524100:
readmem(originalcode2_ignoremp,6)
//db 0F 8C 98 01 00 00
//Alt: jl A18.exe+52429E
dealloc(originalcode2_ignoremp)
unregistersymbol(originalcode2_ignoremp)
1081
"damage multiplier"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
fNonPlayerDamageMultiplier:
dd (float)2
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
fNonPlayerDamageMultiplier:
dd (float)1
1044
"x?"
1
008000
Float
fNonPlayerDamageMultiplier
1045
"[NonPlayerJustHit]"
000080
Array of byte
0
pNonPlayerJustHit
0
1046
"bUndeadPlayer"
1
008000
Byte
bUndeadPlayer
1047
"bUndeadNonPlayer"
1
008000
Byte
bUndeadNonPlayer
1048
"bOneHitKill"
1
008000
Byte
bOneHitKill
1049
"Lv"
0000FF
4 Bytes
+0*4+68
1050
"battle HP"
0000FF
4 Bytes
+1*4+68
1051
"battle MP"
0000FF
4 Bytes
+2*4+68
1052
"?"
808080
4 Bytes
+3*4+68
1053
"battle HP max"
0000FF
4 Bytes
+4*4+68
1054
"battle MP max"
0000FF
4 Bytes
+5*4+68
1079
"one hit kill"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
bOneHitKill:
db 1
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
bOneHitKill:
db 0
199
"chain link gauge mod"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
bChainLinkGaugeModKeys:
db 1
bFullChainLinkGauge:
dd 0
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
bChainLinkGaugeModKeys:
db 0
bFullChainLinkGauge:
dd 0
201
"ctrl_t : lock full"
808080
1
200
"switch"
1
1
008000
4 Bytes
bFullChainLinkGauge
Set Value
16
84
00000001
0
Set Value
16
82
00010000
1
Set Value
17
84
00000101
2
202
"shift_t : set full / shift_r : set empty"
808080
1
1080
"enemy undead"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
iMinHealthNonPlayer:
dd #1
bUndeadNonPlayer:
db 1
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
iMinHealthNonPlayer:
dd 0
bUndeadNonPlayer:
db 0
1095
"min HP"
1
008000
4 Bytes
iMinHealthNonPlayer
1082
""
808080
1
1009
"bUndeadPlayer"
1
008000
Byte
bUndeadPlayer
1094
"iMinHealth"
1
008000
4 Bytes
iMinHealth
1083
"fNonPlayerDamageMultiplier"
1
008000
Float
fNonPlayerDamageMultiplier
1084
"[NonPlayerJustHit]"
000080
Array of byte
0
pNonPlayerJustHit
0
1085
"bUndeadPlayer"
1
008000
Byte
bUndeadPlayer
1086
"bUndeadNonPlayer"
1
008000
Byte
bUndeadNonPlayer
1087
"bOneHitKill"
1
008000
Byte
bOneHitKill
1088
"Lv"
0000FF
4 Bytes
+0*4+68
1089
"battle HP"
0000FF
4 Bytes
+1*4+68
1090
"battle MP"
0000FF
4 Bytes
+2*4+68
1091
"?"
808080
4 Bytes
+3*4+68
1092
"battle HP max"
0000FF
4 Bytes
+4*4+68
1093
"battle MP max"
0000FF
4 Bytes
+5*4+68
1020
"bOneHitKill"
1
008000
Byte
bOneHitKill
1043
"bUndeadNonPlayer"
1
008000
Byte
bUndeadNonPlayer
1027
"[battle result related]"
000080
1
1028
"Exp multiplier .2.1"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(expmultiplierdefault,(float)4)
aobscanmodule(expGainedAssignAfterLvlPenaltyAppliedAOB,A18.exe,F3 0F 2C C8 41 3B CC)
registersymbol(expGainedAssignAfterLvlPenaltyAppliedAOB)
label(fExpMultiplier)
registersymbol(fExpMultiplier)
alloc(newmem,2048,expGainedAssignAfterLvlPenaltyAppliedAOB) //"A18.exe"+522D22)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mulss xmm0,[fExpMultiplier]
originalcode:
cvttss2si ecx,xmm0
cmp ecx,r12d
exit:
jmp returnhere
///
fExpMultiplier:
dd expmultiplierdefault
///
expGainedAssignAfterLvlPenaltyAppliedAOB: //"A18.exe"+522D22:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
expGainedAssignAfterLvlPenaltyAppliedAOB: //"A18.exe"+522D22:
db F3 0F 2C C8 41 3B CC
//Alt: cvttss2si ecx,xmm0
//Alt: cmp ecx,r12d
unregistersymbol(fExpMultiplier)
1029
"x?"
1
008000
Float
fExpMultiplier
1025
"$ multiplier"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(colemultiplierdefault,(float)4)
aobscanmodule(coleGainedReadOnBattleEndAOB,A18.exe,48 8B ** ** 8B ** ** ** ** ** 89 ** ** ** ** ** 0F ** ** 33)
registersymbol(coleGainedReadOnBattleEndAOB)
label(fColeMultiplier)
registersymbol(fColeMultiplier)
alloc(newmem,2048,coleGainedReadOnBattleEndAOB) //"A18.exe"+522E99)
label(returnhere)
label(originalcode_colemultiplier)
registersymbol(originalcode_colemultiplier)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
readmem(coleGainedReadOnBattleEndAOB,4) //
db DB 81
readmem(coleGainedReadOnBattleEndAOB+6,4)
fmul dword ptr [fColeMultiplier]
db DB 99
readmem(coleGainedReadOnBattleEndAOB+6,4)
readmem(coleGainedReadOnBattleEndAOB+4,6) //
exit:
jmp returnhere
///
fColeMultiplier:
dd colemultiplierdefault
originalcode_colemultiplier:
readmem(coleGainedReadOnBattleEndAOB,10)
//mov rcx,[rcx+08]
//mov eax,[rcx+00003688]
///
coleGainedReadOnBattleEndAOB: //"A18.exe"+522E99:
jmp newmem
nop
nop
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
coleGainedReadOnBattleEndAOB: //"A18.exe"+522E99:
readmem(originalcode_colemultiplier,10)
//db 48 8B 49 08 8B 81 88 36 00 00
//Alt: mov rcx,[rcx+08]
//Alt: mov eax,[rcx+00003688]
unregistersymbol(originalcode_colemultiplier)
unregistersymbol(fColeMultiplier)
1026
"x?"
1
008000
Float
fColeMultiplier
1131
"[alchemy related]"
000080
1
1137
"ignore Idea Points"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNotEnoughIPOnRecipeBookAccessAOB,A18.exe,7C ** C6 ** ** 01 B2 01 E8)
registersymbol(cJmpIfNotEnoughIPOnRecipeBookAccessAOB)
cJmpIfNotEnoughIPOnRecipeBookAccessAOB: //"A18.exe"+26E65F:
db 90 90
///**************************************///
aobscanmodule(cJmpIfEnoughIPOnRecipeSelectInRecipeBookAOB,A18.exe,7D ** BA ** ** ** ** EB ** BA)
registersymbol(cJmpIfEnoughIPOnRecipeSelectInRecipeBookAOB)
cJmpIfEnoughIPOnRecipeSelectInRecipeBookAOB: //"A18.exe"+26F972:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfNotEnoughIPOnRecipeBookAccessAOB: //"A18.exe"+26E65F:
db 7C 1C
//Alt: jl A18.exe+26E67D
///**************************************///
cJmpIfEnoughIPOnRecipeSelectInRecipeBookAOB: //"A18.exe"+26F972:
db 7D
//Alt: jnl
1146
"access all Recipes In Recipe Book"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfRecipeNotLearntOnRecipeBookAccessAOB,A18.exe,43 83 ** ** ** 00 4B ** ** ** 0F 8E ** ** ** ** 49)
registersymbol(cJmpIfRecipeNotLearntOnRecipeBookAccessAOB)
alloc(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode,6)
registersymbol(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode)
cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode:
readmem(cJmpIfRecipeNotLearntOnRecipeBookAccessAOB+a,6)
cJmpIfRecipeNotLearntOnRecipeBookAccessAOB+a: //"A18.exe"+26E761:
db 90 90 90 90 90 90
///*******************************************///
aobscanmodule(recipeStageReadOnRecipeHighlightedInRecipeBookAOB,A18.exe,48 C1 E1 05 FF C8 49 03)
registersymbol(recipeStageReadOnRecipeHighlightedInRecipeBookAOB)
alloc(newmem,2048,recipeStageReadOnRecipeHighlightedInRecipeBookAOB) //"A18.exe"+27B4F5)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
test eax,eax
jnz @f
inc eax
originalcode:
shl rcx,05
dec eax
exit:
jmp returnhere
///
recipeStageReadOnRecipeHighlightedInRecipeBookAOB: //"A18.exe"+27B4F5:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfRecipeNotLearntOnRecipeBookAccessAOB+a: //"A18.exe"+26E761:
readmem(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode,6)
//db 0F 8E 9C 00 00 00
//Alt: jng A18.exe+26E803
dealloc(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode)
unregistersymbol(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode)
///*******************************************///
dealloc(newmem)
recipeStageReadOnRecipeHighlightedInRecipeBookAOB: //"A18.exe"+27B4F5:
db 48 C1 E1 05 FF C8
//Alt: shl rcx,05
//Alt: dec eax
1153
"access all Recipes in Alchemy Menu"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB,A18.exe,41 ** ** ** 03 0F ** ** ** ** ** 41 8B CE)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB)
alloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode,6)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB+5,6)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB+5: //"A18.exe"+41B919:
db 90 90 90 90 90 90
///*************************************************///
aobscanmodule(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB,A18.exe,83 ** 03 7C ** 8B CB)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB)
alloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode,2)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB+3,2)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB+3: //"A18.exe"+573C43:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB+5: //"A18.exe"+41B919:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode,6)
//db 0F 8C AD 01 00 00
//Alt: jl A18.exe+41BACC
dealloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode)
unregistersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode)
///*************************************************///
cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB+3: //"A18.exe"+573C43:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode,2)
//db 7C 19
//Alt: jl A18.exe+573C5E
dealloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode)
unregistersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode)
961
"ignore Alchemy Lv"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(alchemyLvlChkOnAlcemyMenuAccess1AOB,A18.exe,39 48 64 0F 9E C0 48)
registersymbol(alchemyLvlChkOnAlcemyMenuAccess1AOB)
alchemyLvlChkOnAlcemyMenuAccess1AOB: //"A18.exe"+41B6E0:
db 48 85 C0
//Alt: test rax,rax
///***************************************************///
aobscanmodule(alchemyLvlChkOnAlcemyMenuAccess2AOB,A18.exe,39 48 64 0F 9E C0 84 ** ** ** ** ** ** ** 41)
registersymbol(alchemyLvlChkOnAlcemyMenuAccess2AOB)
alchemyLvlChkOnAlcemyMenuAccess2AOB: //"A18.exe"+41B946:
db 48 85 C0
//Alt: test rax,rax
///***************************************************///
aobscanmodule(cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB,A18.exe,41 39 56 ** 7E)
registersymbol(cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB)
cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB+4: //"A18.exe"+23E5B8:
db EB
//Alt: jmp
///***************************************************///
aobscanmodule(alchemyLvlChkOnRecipeHighlightedAOB,A18.exe,41 3B 4F ** 48 ** ** ** 0F 9C C2)
registersymbol(alchemyLvlChkOnRecipeHighlightedAOB)
alchemyLvlChkOnRecipeHighlightedAOB+8: //"A18.exe"+23CA61:
db 90 30 D2
//Alt: nop
//Alt: xor dl,dl
///***************************************************///
aobscanmodule(cJmpIfEnoughAlchemyLvlOnRecipeSelectedAOB,A18.exe,39 50 ** 7E ** BA)
registersymbol(cJmpIfEnoughAlchemyLvlOnRecipeSelectedAOB)
cJmpIfEnoughAlchemyLvlOnRecipeSelectedAOB+3: //"A18.exe"+23C6B3:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
alchemyLvlChkOnAlcemyMenuAccess1AOB: //"A18.exe"+41B6E0:
db 39 48 64
//Alt: cmp [rax+64],ecx
///***************************************************///
alchemyLvlChkOnAlcemyMenuAccess2AOB: //"A18.exe"+41B946:
db 39 48 64
//Alt: cmp [rax+64],ecx
///***************************************************///
cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB+4: //"A18.exe"+23E5B8:
db 7E
//Alt: jle
///***************************************************///
alchemyLvlChkOnRecipeHighlightedAOB+8: //"A18.exe"+23CA61:
db 0F 9C C2
//Alt: setl dl
///***************************************************///
dealloc(newmem)
cJmpIfEnoughAlchemyLvlOnRecipeSelectedAOB+3: //"A18.exe"+23C6B3:
db 7E
//Alt: jle
1117
"item Proficiency multiplier"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(fitemproficiencymultiplier,(float)30)
aobscanmodule(itemProficiencyCalOnCompleteAOB,A18.exe,0F 5B C0 48 8B 41 20)
registersymbol(itemProficiencyCalOnCompleteAOB)
label(fItemProficiencyMultiplier)
registersymbol(fItemProficiencyMultiplier)
alloc(newmem,2048,itemProficiencyCalOnCompleteAOB) //"A18.exe"+22AEEA)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cvtdq2ps xmm0,xmm0
mov rax,fItemProficiencyMultiplier
comiss xmm0,[rax+4]
jae @f
movss xmm0,[rax+4]
@@:
mulss xmm0,[rax]
originalcode:
//cvtdq2ps xmm0,xmm0
mov rax,[rcx+20]
exit:
jmp returnhere
///
fItemProficiencyMultiplier:
dd fitemproficiencymultiplier
dd 0
///
itemProficiencyCalOnCompleteAOB: //"A18.exe"+22AEEA:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
itemProficiencyCalOnCompleteAOB: //"A18.exe"+22AEEA:
db 0F 5B C0 48 8B 41 20
//Alt: cvtdq2ps xmm0,xmm0
//Alt: mov rax,[rcx+20]
unregistersymbol(fItemProficiencyMultiplier)
1133
"x?"
1
008000
Float
fItemProficiencyMultiplier
1118
"always have bonus line in Synthesis"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfLineBonusPresentAOB,A18.exe,75 03 41 FF CC 48)
registersymbol(cJmpIfLineBonusPresentAOB)
cJmpIfLineBonusPresentAOB: //"A18.exe"+235D3D:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfLineBonusPresentAOB: //"A18.exe"+235D3D:
db 75
//Alt: jne A18.exe+235D42
//Alt: dec r12d
1128
"always allow Traits transfer"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNoTraitsTransferOnCompleteAOB,A18.exe,83 BF ** ** ** ** 00 7E 20)
registersymbol(cJmpIfNoTraitsTransferOnCompleteAOB)
cJmpIfNoTraitsTransferOnCompleteAOB+7: //"A18.exe"+22018B:
db 90 90
///************************************************///
aobscanmodule(cJmpIfNoTraitsTransferLeftOnHighlightAOB,A18.exe,83 ** ** 01 0F ** ** ** ** ** 48 8B ** ** ** ** ** 48 2B)
registersymbol(cJmpIfNoTraitsTransferLeftOnHighlightAOB)
alloc(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight,6)
registersymbol(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight)
originalcode_cJmpIfNoTraitsTransferLeftOnHighlight:
readmem(cJmpIfNoTraitsTransferLeftOnHighlightAOB+4,6)
cJmpIfNoTraitsTransferLeftOnHighlightAOB+4: //"A18.exe"+42A988:
db 90 90 90 90 90 90
///************************************************///
aobscanmodule(cJmpIfHaveTraitsTransferLeftOnSelectAOB,A18.exe,83 ** ** 01 7D ** 32 C0 48)
registersymbol(cJmpIfHaveTraitsTransferLeftOnSelectAOB)
cJmpIfHaveTraitsTransferLeftOnSelectAOB+4: //"A18.exe"+429BB7:
db EB
//Alt: jmp
///************************************************///
aobscanmodule(cJmpIfNoTraitsTransferLeftAfterTransferAOB,A18.exe,41 ** ** 01 7C ** 41 ** ** 41 ** ** 41)
registersymbol(cJmpIfNoTraitsTransferLeftAfterTransferAOB)
alloc(originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer,2)
registersymbol(originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer)
originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer:
readmem(cJmpIfNoTraitsTransferLeftAfterTransferAOB+4,2)
cJmpIfNoTraitsTransferLeftAfterTransferAOB+4: //"A18.exe"+42921F:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfNoTraitsTransferOnCompleteAOB+7: //"A18.exe"+22018B:
db 7E 20
//Alt: jle A18.exe+2201AD
///************************************************///
cJmpIfNoTraitsTransferLeftOnHighlightAOB+4: //"A18.exe"+42A988:
readmem(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight,6)
//db 0F 8C C0 00 00 00
//Alt: jl A18.exe+42AA4E
dealloc(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight)
unregistersymbol(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight)
///************************************************///
cJmpIfHaveTraitsTransferLeftOnSelectAOB+4: //"A18.exe"+429BB7:
db 7D
//Alt: jnl
///************************************************///
cJmpIfNoTraitsTransferLeftAfterTransferAOB+4: //"A18.exe"+42921F:
readmem(originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer,2)
//db 7C 03
//Alt: jl A18.exe+429224
948
"[inventory related]"
000080
1
926
"inf. item usage (Count)"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(itemCountDecOnFieldUseAOB,A18.exe,FE 4B 25 B9)
registersymbol(itemCountDecOnFieldUseAOB)
alloc(newmem,2048,itemCountDecOnFieldUseAOB) //"A18.exe"+13A71F)
label(returnhere)
label(originalcode_infitemusage)
registersymbol(originalcode_infitemusage)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov cl,[rbx+26]
mov [rbx+25],cl
readmem(itemCountDecOnFieldUseAOB+3,5)
exit:
jmp returnhere
///
originalcode_infitemusage:
readmem(itemCountDecOnFieldUseAOB,8)
//dec [rbx+25]
//mov ecx,00000228
///
itemCountDecOnFieldUseAOB: //"A18.exe"+13A71F:
jmp newmem
nop
nop
nop
returnhere:
///*****************************************///
aobscanmodule(itemUsageInBattleCallAOB,A18.exe,40 53 48 83 EC 20 BA ** ** ** ** 48 ** ** E8 ** ** ** ** 84)
registersymbol(itemUsageInBattleCallAOB)
itemUsageInBattleCallAOB: //"A18.exe"+3E90A0:
db 90 90 90 30 c0 c3
//Alt: nop
//Alt: nop
//Alt: nop
//Alt: xor al,al
//Alt: ret
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
itemCountDecOnFieldUseAOB: //"A18.exe"+13A71F:
readmem(originalcode_infitemusage,8)
//db FE 4B 25 B9 28 02 00 00
//Alt: dec [rbx+25]
//Alt: mov ecx,00000228
unregistersymbol(originalcode_infitemusage)
///*****************************************///
itemUsageInBattleCallAOB: //"A18.exe"+3E90A0:
db 40 53 48 83 EC 20
//Alt: push rbx
//Alt: sub rsp,20
927
"highlighted item Quality mod"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(minitemqualitydefault,(float)100)
label(dMinItemQuality)
registersymbol(dMinItemQuality)
alloc(newmem,2048,itemEquipUiidReadOnHighlightedAOB+a) //"A18.exe"+3D0788)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
sub rsp,10
movdqu dqword [rsp],xmm15
movss xmm15,[dMinItemQuality]
comiss xmm15,[rbx+4]
jbe @f
movss [rbx+4],xmm15
mov eax,[rbx+4]
@@:
movdqu xmm15,dqword [rsp]
add rsp,10
originalcode:
mov [rdi+0C],eax
mov eax,[rbx+08]
exit:
jmp returnhere
///
dMinItemQuality:
dd minitemqualitydefault
///
itemEquipUiidReadOnHighlightedAOB+a: //"A18.exe"+3D0788:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
itemEquipUiidReadOnHighlightedAOB+a: //"A18.exe"+3D0788:
db 89 47 0C 8B 43 08
//Alt: mov [rdi+0C],eax
//Alt: mov eax,[rbx+08]
unregistersymbol(dMinItemQuality)
928
"min item Quality"
1
008000
Float
dMinItemQuality
933
"highlighted item Component Total mod"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(minitemcomponenttotaldefault,#200)
label(wMinItemComponentTotal)
registersymbol(wMinItemComponentTotal)
alloc(newmem,2048,itemEquipUiidReadOnHighlightedAOB+40) //"A18.exe"+3D07BE)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp [wMinItemComponentTotal],ax
jle @f
mov ax,[wMinItemComponentTotal]
mov [rbx+28],ax
originalcode:
mov [rdi+30],eax
mov eax,[rbx+2C]
exit:
jmp returnhere
///
wMinItemComponentTotal:
dq minitemcomponenttotaldefault
///
itemEquipUiidReadOnHighlightedAOB+40: //"A18.exe"+3D07BE:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
itemEquipUiidReadOnHighlightedAOB+40: //"A18.exe"+3D07BE:
db 89 47 30 8B 43 2C
//Alt: mov [rdi+30],eax
//Alt: mov eax,[rbx+2C]
unregistersymbol(wMinItemComponentTotal)
934
"min item Component Total"
1
008000
2 Bytes
wMinItemComponentTotal
949
"[shopping related]"
000080
1
942
"ignore $"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(setMaxShopItemQuantityAffordableAOB,A18.exe,F7 F9 8B E8 ** ** 33)
registersymbol(setMaxShopItemQuantityAffordableAOB)
alloc(newmem,2048,"A18.exe"+47C050)
label(returnhere)
label(originalcode_ignoremoeny)
registersymbol(originalcode_ignoremoeny)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov ebp,#999
reassemble(setMaxShopItemQuantityAffordableAOB+4)
//jmp A18.exe+47C058
originalcode_ignoremoeny:
readmem(setMaxShopItemQuantityAffordableAOB,6)
//idiv ecx
//mov ebp,eax
//jmp A18.exe+47C058
exit:
jmp returnhere
///
setMaxShopItemQuantityAffordableAOB: //"A18.exe"+47C050:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
setMaxShopItemQuantityAffordableAOB: //"A18.exe"+47C050:
readmem(originalcode_ignoremoeny,6)
//db F7 F9 8B E8 EB 02
//Alt: idiv ecx
//Alt: mov ebp,eax
//Alt: jmp A18.exe+47C058
unregistersymbol(originalcode_ignoremoeny)
945
"ignore shop item quantity"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(setMaxShopItemQuantityAllowedForBulkSaleAOB,A18.exe,39 5E ** 0F 4C 5E ** E8)
registersymbol(setMaxShopItemQuantityAllowedForBulkSaleAOB)
setMaxShopItemQuantityAllowedForBulkSaleAOB+3: //"A18.exe"+47C0FF:
db 90 90 90 90
///**************************************************///
aobscanmodule(shopItemQuantityWriteAfterPurchaceAOB,A18.exe,49 8D 04 C9 48 ** ** ** ** ** ** 44 ** ** ** ** ** ** ** C3)
registersymbol(shopItemQuantityWriteAfterPurchaceAOB)
alloc(newmem,2048,shopItemQuantityWriteAfterPurchaceAOB+b) //"A18.exe"+597A66)
label(returnhere)
label(originalcode_ignoreshopitemquantity)
registersymbol(originalcode_ignoreshopitemquantity)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
//cmp [rax+rcx+01445BE4],r8l
db 44 38
readmem(shopItemQuantityWriteAfterPurchaceAOB+d,6)
jg @f
//mov byte ptr [rax+rcx+01445BE4],1
db C6
readmem(shopItemQuantityWriteAfterPurchaceAOB+d,6)
db 01
jmp exit
originalcode_ignoreshopitemquantity:
readmem(shopItemQuantityWriteAfterPurchaceAOB+b,8)
//sub [rax+rcx+01445BE4],r8l
exit:
jmp returnhere
///
shopItemQuantityWriteAfterPurchaceAOB+b: //"A18.exe"+597A66:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
setMaxShopItemQuantityAllowedForBulkSaleAOB+3: //"A18.exe"+47C0FF:
db 0F 4C 5E 38
//Alt: cmovl ebx,[rsi+38]
///**************************************************///
dealloc(newmem)
shopItemQuantityWriteAfterPurchaceAOB+b: //"A18.exe"+597A66:
readmem(originalcode_ignoreshopitemquantity,8)
//db 44 28 84 08 E4 5B 44 01
//Alt: sub [rax+rcx+01445BE4],r8l
unregistersymbol(originalcode_ignoreshopitemquantity)
103
"[misc.]"
000080
1
921
"inf. LP"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(minlpdefault,#51)
aobscanmodule(LPWritesOnChangedAOB,A18.exe,3B C8 0F 4F C8 89 ** ** ** ** ** E8)
registersymbol(LPWritesOnChangedAOB)
label(dMinLP)
registersymbol(dMinLP)
alloc(newmem,2048,LPWritesOnChangedAOB) //"A18.exe"+582763)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp ecx,[dMinLP]
jge @f
mov ecx,[dMinLP]
originalcode:
cmp ecx,eax
cmovg ecx,eax
exit:
jmp returnhere
///
dMinLP:
dd minlpdefault
///
LPWritesOnChangedAOB: //LPWriteAOB: //"A18.exe"+582763:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
LPWritesOnChangedAOB: //LPWriteAOB: //"A18.exe"+582763:
db 3B C8 0F 4F C8
//Alt: cmp ecx,eax
//Alt: cmovg ecx,eax
unregistersymbol(dMinLP)
923
"min LP"
1
008000
4 Bytes
dMinLP
1100
"movement speed mod"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(fmovespeedmultiplier1default,(float)0.14)
define(fmovespeedmultiplier2default,(float)1.8)
aobscanmodule(moveSpeedCalAOB,A18.exe,41 0F 28 CA 0F 28 C6 0F 28 D7)
registersymbol(moveSpeedCalAOB)
label(bMoveSpeedModKey)
registersymbol(bMoveSpeedModKey)
label(fMoveSpeedMultipliers)
registersymbol(fMoveSpeedMultipliers)
alloc(newmem,2048,moveSpeedCalAOB) //"A18.exe"+550455)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rax
push rbx
mov rax,bMoveSpeedModKey
setg bl
movsx ebx,bl
inc ebx
cmp ebx,2
je @f
mov ebx,[rax]
@@:
test ebx,ebx
jz @f
movsxd rbx,ebx
mulss xmm6,[rax+rbx*4]
mulss xmm7,[rax+rbx*4]
@@:
pop rbx
pop rax
originalcode:
movaps xmm1,xmm10
movaps xmm0,xmm6
exit:
jmp returnhere
///
bMoveSpeedModKey:
dd 0
fMoveSpeedMultipliers:
dd fmovespeedmultiplier1default
dd fmovespeedmultiplier2default
///
moveSpeedCalAOB: //"A18.exe"+550455:
jmp newmem
nop
nop
returnhere:
///***********************************************///
label(bEndThread_moveSpeedMod_keylistener_mem)
registersymbol(bEndThread_moveSpeedMod_keylistener_mem)
alloc(moveSpeedMod_keylistener_mem,2048,"A18.exe")
registersymbol(moveSpeedMod_keylistener_mem)
createthread(moveSpeedMod_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
moveSpeedMod_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,11 //CTRL key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov byte ptr [bMoveSpeedModKey],1
jmp keylistenerend
@@:
mov rcx,14 //CAPS LOCK key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov byte ptr [bMoveSpeedModKey],2
jmp keylistenerend
@@:
mov byte ptr [bMoveSpeedModKey],0
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_moveSpeedMod_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_moveSpeedMod_keylistener_mem],2
ret
///
bEndThread_moveSpeedMod_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_moveSpeedMod_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_moveSpeedMod_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_moveSpeedMod_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_moveSpeedMod_keylistener_mem:
//dd 1
///***********************************************///
dealloc(newmem)
moveSpeedCalAOB: //"A18.exe"+550455:
db 41 0F 28 CA 0F 28 C6
//Alt: movaps xmm1,xmm10
//Alt: movaps xmm0,xmm6
///***********************************************///
unregistersymbol(bEndThread_moveSpeedMod_keylistener_mem)
dealloc(moveSpeedMod_keylistener_mem)
unregistersymbol(moveSpeedMod_keylistener_mem)
1101
"Ctrl speed"
1
008000
Float
fMoveSpeedMultipliers+0*4
1103
"CapsLock speed"
1
008000
Float
fMoveSpeedMultipliers+1*4
59
"time mod .7"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeeddefault,3)
define(rewindtimespeeddefault,-3)
define(busectrlfortimemodkeydefault,1)
///********************************************///
bTimeMod:
db 1
iAdvanceTimeSpeed:
dd advanvcetimespeeddefault
iRewindTimeSpeed:
dd rewindtimespeeddefault
///********************************************///
aobscanmodule(cJmpIfNotAdvanceTimeAOB,A18.exe,0F 2F C6 ** ** ** ** ** ** 8B ** ** ** ** ** 6B)
registersymbol(cJmpIfNotAdvanceTimeAOB)
aobscanmodule(CJmpIfNotMoving1AOB,A18.exe,0F 57 FF 44 0F 2F C7 ** ** ** ** ** ** F3)
registersymbol(CJmpIfNotMoving1AOB)
alloc(newmem6,2048,CJmpIfNotMoving1AOB+7) //"A18.exe"+389D9E)
label(returnhere6)
label(originalcode6_timemod)
registersymbol(originalcode6_timemod)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
pushfq
cmp dword ptr [bManipulateTime],0
je @f
popfq
jmp cJmpIfNotAdvanceTimeAOB+9
originalcode6:
popfq
reassemble(CJmpIfNotMoving1AOB+7)
//jbe A18.exe+389F13
exit6:
jmp returnhere6
///
originalcode6_timemod:
readmem(CJmpIfNotMoving1AOB+7,6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
jmp newmem6
nop
returnhere6:
///********************************************///
aobscanmodule(gameAdvanceTimeCalculateAOB,A18.exe,48 89 ** ** ** 48 89 ** ** ** 45 03 CF)
registersymbol(gameAdvanceTimeCalculateAOB)
alloc(newmem18,2048,gameAdvanceTimeCalculateAOB) //"A18.exe"+582879)
label(returnhere18)
label(originalcode18_timemod)
registersymbol(originalcode18_timemod)
label(exit18)
newmem18: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],0
je originalcode18_timemod
xor r15d,r15d //mins advancement
xor r13d,r13d //hrs advancement
push rax
mov rax,[pTimeOfDay]
cmp byte ptr [bResetHrsInRw],1
jne @f
mov byte ptr [bResetHrsInRw],0
mov dword ptr [rax],#23
jmp end18
@@:
cmp byte ptr [bResetHrsInRw],2
jne @f
mov byte ptr [bResetHrsInRw],0
mov dword ptr [rax],0
end18:
pop rax
originalcode18_timemod:
readmem(gameAdvanceTimeCalculateAOB,5)
//mov [rsp+68],rbx
exit18:
jmp returnhere18
///
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
jmp newmem18
returnhere18:
///********************************************///
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
label(bUseCtrlForTimeModKey)
registersymbol(bUseCtrlForTimeModKey)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
je subkeychk
cmp byte ptr [bUseCtrlForTimeModKey],1
jne @f
mov rcx,11 //CTRL key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
je subkeychk
@@:
mov dword ptr [bManipulateTime],0
jmp keylistenerend
subkeychk:
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov eax,[iAdvanceTimeSpeed]
mov [bManipulateTime],eax
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov eax,[iRewindTimeSpeed]
mov [bManipulateTime],eax
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],7FFFFFFF
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
bUseCtrlForTimeModKey:
dd busectrlfortimemodkeydefault
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
bTimeMod:
db 0
iAdvanceTimeSpeed:
dd 0
iRewindTimeSpeed:
dd 0
///********************************************///
dealloc(newmem6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
readmem(originalcode6_timemod,6)
//db 0F 86 6F 01 00 00
//Alt: jbe A18.exe+389F13
unregistersymbol(originalcode6_timemod)
///********************************************///
dealloc(newmem18)
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
readmem(originalcode18_timemod,5)
//db 48 89 5C 24 68
//Alt: mov [rsp+68],rbx
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
unregistersymbol(bUseCtrlForTimeModKey)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
71
"alt : stop time"
808080
1
72
"bManipulateTime"
1
808080
4 Bytes
bManipulateTime
81
"Advance Time Speed"
1
008000
4 Bytes
iAdvanceTimeSpeed
82
"Rewind Time Speed"
1
008000
4 Bytes
iRewindTimeSpeed
60
"alt_numpad+/- : advance/rewind time"
808080
1
1104
"use Ctrl key as mod key as well?"
0:no
1:yes
1
008000
Byte
bUseCapsLockForTimeModKey
958
"max friendship (non-event)"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNonEventFriendshipGainedExceedMaxAllowedAOB,A18.exe,48 03 CF 0F 2F F8 77)
registersymbol(cJmpIfNonEventFriendshipGainedExceedMaxAllowedAOB)
cJmpIfNonEventFriendshipGainedExceedMaxAllowedAOB+6: //"A18.exe"+4CD210:
db EB
//Alt:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfNonEventFriendshipGainedExceedMaxAllowedAOB+6: //"A18.exe"+4CD210:
db 77
//Alt: ja
975
"access all costume"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(afterCostumeUnlockFlagChkOnDressRoomAccessAOB,A18.exe,84 C0 74 ** 89 ** ** ** FF ** EB)
registersymbol(afterCostumeUnlockFlagChkOnDressRoomAccessAOB)
label(pCostumeFlagBase)
registersymbol(pCostumeFlagBase)
label(bHardUnlock)
registersymbol(bHardUnlock)
alloc(newmem,2048,afterCostumeUnlockFlagChkOnDressRoomAccessAOB) //"A18.exe"+BC123)
label(returnhere)
label(originalcode_unlockcostume)
registersymbol(originalcode_unlockcostume)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
test rcx,rcx
jz originalcode
mov [pCostumeFlagBase],rcx
cmp byte ptr [bHardUnlock],1
jne @f
sete al
mov [rcx+rbx],al
@@:
readmem(afterCostumeUnlockFlagChkOnDressRoomAccessAOB+4,4)
jmp exit
originalcode:
readmem(afterCostumeUnlockFlagChkOnDressRoomAccessAOB,2)
reassemble(afterCostumeUnlockFlagChkOnDressRoomAccessAOB+2)
readmem(afterCostumeUnlockFlagChkOnDressRoomAccessAOB+4,4)
exit:
jmp returnhere
///
pCostumeFlagBase:
dq 0
bHardUnlock:
dd 0
originalcode_unlockcostume:
readmem(afterCostumeUnlockFlagChkOnDressRoomAccessAOB,8)
//test al,al
//je A18.exe+BC12F
//mov [rsi+rdi+04],ebx
///
afterCostumeUnlockFlagChkOnDressRoomAccessAOB: //"A18.exe"+BC123:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
afterCostumeUnlockFlagChkOnDressRoomAccessAOB: //"A18.exe"+BC123:
readmem(originalcode_unlockcostume,8)
//db 84 C0 74 08 89 5C 3E 04
//Alt: test al,al
//Alt: je A18.exe+BC12F
//Alt: mov [rsi+rdi+04],ebx
unregistersymbol(originalcode_unlockcostume)
unregistersymbol(pCostumeFlagBase)
unregistersymbol(bHardUnlock)
976
"hard unlock"
0:no
1:yes
008000
Byte
bHardUnlock
31
"time mod .1"
A68A73
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeed,2)
define(rewindtimespeed,-2)
aobscanmodule(timeOfDayReadAOB,A18.exe,48 8B 05 ** ** ** ** 48 89 01 48 8B C1 C3)
registersymbol(timeOfDayReadAOB)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
label(bManipulateTime)
registersymbol(bManipulateTime)
alloc(newmem,2048,timeOfDayReadAOB) //"A18.exe"+586D00)
label(returnhere)
label(originalcode_time)
registersymbol(originalcode_time)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
xor rax,rax
db b8
readmem(timeOfDayReadAOB+3,4)
movsxd rax,eax
mov rbx,timeOfDayReadAOB
lea rax,[rbx+rax+7]
mov [pTimeOfDay],rax
cmp dword ptr [bManipulateTime],0
je end
mov ecx,[bManipulateTime]
add ecx,[rax+4]
cmp ecx,#60
jg advhrs
test ecx,ecx
jl rwhrs
mov [rax+4],ecx
jmp end
advhrs:
xor ecx,ecx
mov [rax+4],ecx
mov ecx,[rax]
inc ecx
cmp ecx,#24
jl @f
xor ecx,ecx
inc dword ptr [rax-8]
@@:
mov [rax],ecx
jmp end
rwhrs:
add ecx,#60
mov [rax+4],ecx
mov ecx,[rax]
dec ecx
test ecx,ecx
jge @f
add ecx,#24
dec dword ptr [rax-8]
jns @f
mov dword ptr [rax-8],0
@@:
mov [rax],ecx
end:
pop rcx
pop rbx
reassemble(timeOfDayReadAOB)
exit:
jmp returnhere
///
pTimeOfDay:
dq 0
bManipulateTime:
dd 0
originalcode_time:
readmem(timeOfDayReadAOB,7)
//mov rax,[A18.exe+146E7A0]
///
timeOfDayReadAOB: //"A18.exe"+586D00:
jmp newmem
nop
nop
returnhere:
///********************************************///
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne keylistenerend
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],advanvcetimespeed
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],rewindtimespeed
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],0
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
dealloc(newmem)
timeOfDayReadAOB: //"A18.exe"+586D00:
readmem(originalcode_time,7)
//db 48 8B 05 99 7A EE 00
//Alt: mov rax,[A18.exe+146E7A0]
unregistersymbol(pTimeOfDay)
unregistersymbol(bAdvanceTime)
unregistersymbol(bRewindTime)
unregistersymbol(originalcode_time)
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
32
"alt_numpad+ : advance time"
808080
1
33
"alt_numpad- : rewind time"
808080
1
34
"days"
0000FF
4 Bytes
pTimeOfDay
-8
35
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
36
"mins"
0000FF
4 Bytes
pTimeOfDay
4
807
"[pointers]"
000080
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
label(pHighlightedItemEquip)
registersymbol(pHighlightedItemEquip)
alloc(newmem,2048,itemEquipUiidReadOnHighlightedAOB+2) //"A18.exe"+3D0780)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedItemEquip],rbx
originalcode:
mov eax,[rbx]
mov [rdi+08],eax
exit:
jmp returnhere
///
pHighlightedItemEquip:
///
itemEquipUiidReadOnHighlightedAOB+2: //"A18.exe"+3D0780:
jmp newmem
returnhere:
///********************************************///
aobscanmodule(itemSizeReadOnHighlightedInAlchemyFinalAOB,A18.exe,49 8B 4E ** 0F B7 5D ** E8 ** ** ** ** 4C)
registersymbol(itemSizeReadOnHighlightedInAlchemyFinalAOB)
alloc(newmem2,2048,itemSizeReadOnHighlightedInAlchemyFinalAOB) //"A18.exe"+22F569)
label(returnhere2)
label(originalcode2_pointers)
registersymbol(originalcode2_pointers)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedItemEquip],rbp
originalcode2_pointers:
readmem(itemSizeReadOnHighlightedInAlchemyFinalAOB,8)
//mov rcx,[r14+20]
//movzx ebx,word ptr [rbp+22]
exit2:
jmp returnhere2
///
itemSizeReadOnHighlightedInAlchemyFinalAOB: //"A18.exe"+22F569:
jmp newmem2
nop
nop
nop
returnhere2:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
itemEquipUiidReadOnHighlightedAOB+2: //"A18.exe"+3D0780:
db 8B 03 89 47 08
//Alt: mov eax,[rbx]
//Alt: mov [rdi+08],eax
unregistersymbol(pHighlightedItemEquip)
///********************************************///
dealloc(newmem2)
itemSizeReadOnHighlightedInAlchemyFinalAOB: //"A18.exe"+22F569:
readmem(originalcode2_pointers,8)
//db 49 8B 4E 20 0F B7 5D 22
//Alt: mov rcx,[r14+20]
//Alt: movzx ebx,word ptr [rbp+22]
unregistersymbol(originalcode2_pointers)
843
"[inventory]"
000080
1
809
"[highlighted item]"
000080
Array of byte
0
pHighlightedItemEquip
0
810
"uiid"
808080
2 Bytes
+0
811
"id"
///==================Materials///
0000:Princess Grass
0001:Cobalt Grass
0002:Taun
0003:Tall Taun
0004:Red Flower
0005:Blue Flower
0006:Green Flower
0007:Yellow Flower
0008:Purple Flower
0009:White Flower
000A:Dunkelheit
000B:Golden Tree Leaf
000C:Unyu
000D:Beehive
000E:Uni
000F:Mechen Wheat
0010:Gold Potato
0011:Sweet Shoot
0012:Leafy Lettuce
0013:Spinach
0014:Walnut
0015:Cannon Fruit
0016:Nectar Fruit
0017:Snow Queen
0018:Zwei Nuts
0019:Bush Strawberry
001A:Oil Tree Fruit
001B:Fairy Parasol
001C:Darkshroom
001D:Wild Cotton
001E:Dona Wood
001F:Evihibrow
0020:Red Sand
0021:Black Sand
0022:White Sand
0023:Sand Crystal
0024:Ertonite
0025:Ertona Crystal
0026:Broken Stone
0027:White Ashstone
0028:Tamahagane
0029:Golden Rock
002A:Gravistone
002B:Aizen Ore
002C:Raiden Ore
002D:Kupulf Ore
002E:Kaen Stone
002F:Hakurei Stone
0030:Black Star Stone
0031:Ripple Stone
0032:Ripple Stone Shard
0033:Spirit Stone
0034:Spirit Stone Shard
0035:Magnet Stone
0036:Magnet Stone Shard
0037:Black Tree Stone
0038:Black Tree Stone Shard
0039:Kimber Ore
003A:Kimber Ore Shard
003B:Crystal Shard
003C:Blue Steel Stone
003D:Drinking Water
003E:Ground Water
003F:Flocke Hotspring Water
0040:Crackling Water
0041:Zapping Water
0042:Lakebottom Water
0043:Eternal Silver Thaw
0044:Milk
0045:Suspicious Liquid
0046:Mineral Oil
0047:Plant Oil
0048:Cinders
0049:Wool
004A:Monster Feather
004B:Griffon Feather
004C:Bat Wind
004D:Turtle Claw
004E:Island Fish Fin
004F:Animal Hide
0050:Tough Bone
0051:Horn
0052:Big Beast Bone
0053:Wicked Fang
0054:Jelly Gem
0055:Piniball: Blue
0056:Piniball: Green
0057:Piniball: Red
0058:Piniball: Gold
0059:Puni Fluid
005A:Rabbit Fur
005B:Silver Web
005C:Golden Silk
005D:Fresh Meat
005E:Beast Meat
005F:Unknown Egg
0060:Pretty Shell
0061:Wascher
0062:Butterfly Fish
0063:Camber
0064:Muschel
0065:Kriev
0066:Scissor Shrimp
0067:Ballon Fish
0068:Worm Fish
0069:Old Master
006A:Master of Ice
006B:Master of Fire
006C:Paper Scrap
006D:Church Talisman
006E:High Class Talisman
006F:Pious Talisman
0070:Spirit Rock
0071:Big Scale
0072:Dragon Scale
0073:Dragon Heart
0074:Dragon Bloodstone
0075:Wicked Bone
0076:Ancient Armor
0077:Blue Sky Tear
0078:Bicolor Corundum
0079:Deep Core
007A:Pendeloch
///==================Use///
0096:Uni Bag
0097:Bomb
0098:Mining Bomb
0099:Blau Bomb
009A:Ori Bomb
009B:Peta Bomb
009C:Craft
009D:Craft Bag
009E:Ice Bomb
009F:Vio Ice Bomb
00A0:Stahl Ice Bomb
00A1:Einsof Ice Bomb
00A2:Lightning Bomb
00A3:Blitz Stone
00A4:Lightning Crystal
00A5:Blitz Crystal
00A6:Blitz Core: Fire
00A7:Blitz Core: Ice
00A8:Blitz Core: Thunder
00A9:Blitz Core: Void
00AA:Wandering Globe
00AB:Bursting Gift
00AC:God's Gift
00AD:Heaven's Cleanser
00AE:Flame of Origin
00AF:Flame of the End
00B0:Holy Crystal Weight
00BE:No-Doc
00BF:Red Wheat Bread
00C0:Ertona Salve
00C1:Puni Jelly
00C2:Rock Cookie
00C3:Strength Meat
00C4:Fruitea
00C5:Breezy Aroma
00C6:Traveler's Ration
00C7:Honey Syrup
00C8:Stamina Bread
00C9:Nectar of Life
00CA:Dona Cake
00CB:Elixir of Laawe
00CC:Hotspring Egg
00CD:Crokenbuffe
00CE:Mystery Elixir
00CF:Roast RabbitDC Imp's Mischief
00DD:Bottled Misfortune
00DE:Spark Mallet
00DF:Titan Belt
00E0:Acid Cloud
00E1:Medea's Poison
00E2:Hero's Medicine
00E3:Spirit Weave Cloth
00E4:Rainbow Transformer
00E5:Dark Water
00E6:Dragon Elixir
00F0:Special Nutrients
00F1:Wind God's Bag
00F2:Spare Backpack
00F3:Air Drop
00F4:Hot Drop
00F5:Gathering Gloves
00F6:Pickaxe
00F7:Fishing Pole
00F8:High Grade Pole
00F9:God-Pole Liebel Crown
00FA:Shatz Flame
00FB:Flame of Clear Skies
00FC:Stone of Storms
00FD:Sky Flicker
00FE:Artificial Sun
0100:Original Guide
0221:Explorer's Lantern
///==================Synths///
010E:Neutralizer R
010F:Neutralizer B
0110:Neutralizer Y
0111:Neutralizer G
0112:Neutralizer W
0113:Neutralizer P
0114:Rainbow Neutralizer
0115:General Catalyst
0116:Iron Sand Catalyst
0117:Liquid Catalyst
0118:Reactive Catalyst
0119:Distilled Water
011A:Amber Sugar
011B:Honey
011C:Wheat Flour
011D:Apcol
011E:Pure Oil
011F:Zettel
0120:Tanning Fluid
0121:Leather
0122:Handwoven Cloth
0123:Algemein Plywood
0124:Multicolor Dye
0125:Polish
0126:Alchemic Clay
0127:Globe Ball
0128:Tasty Looking Bait
0129:Hay
012A:Gravicrystal
012B:Core Crystal
012C:Ingot
012D:Silvalia
012E:Golt Aizen
012F:Harmonium
0130:Cloth
0131:Mofcott
0132:Flugel
0133:Velvetis
0134:Keel
0135:Reinforced Rudder
0136:Tough Sailcloth
0137:Rolled Metal Plate
0138:Propulsion Furnace
0139:Planetary Gear
013A:Icy Flame
013B:Infinite Fuel Rod
013C:Denudate Metal
013D:Wind Wing
013E:Gravidrive
013F:Improved Furnace
0140:Shining Red Crystal
0141:Plant Disinfectant
0142:Book Repair Kit
0143:General Cold Medicine
0144:Cough Drop
0145:Medical Herb Tea
0146:Smaragd Ore
0147:Granate Ore
0148:Rubinite Ore
0149:Sapphias Ore
014A:Jette Ore
014B:Diamond Ore
014C:Smaragd
014D:Granate
014E:Rubinite
014F:Sapphias
0150:Jette
0151:Diamond
0152:Malmore Comet
0153:Crimson Stone
0154:Philosopher Stone
0228:Gold Puni Statue
022D:Proof of Bonds
022F:Anvil
0233:Cute Doll
0234:Ultimate Gem
0235:Deluxe Compress
///==================KeyItem///
0168:Simple Chest: Brown
0169:Simple Chest: White
016A:Big Container: Brown
016B:Big Container: White
016C:Alchemy Research Desk
016D:Instrument Set
016E:Precision Instrument Desk
016F:Uni Demon Statue
0170:Advanced Cauldron
0171:Leather Sofa
0172:Silken Sofa
0173:Refreshing Bed
0174:Lady's Bed
0175:Treasure Box
0176:Default Cauldron
0177:Default Bed
0178:Default Desk
0179:High Class Desk
017A:Default Container
017B:Default Sofa
017C:Gramophone
017D:Globe
017E:Herculean Statue
017F:Corneria Doll
0180:Pico Doll
0181:Bear Doll
0182:Snowman
0183:Big Clock
0184:Big Hourglass
0185:Mascot Post
0186:Puni Candlestand
0187:Dancing Plant
0188:Shining Ornament Tree
0189:Water Fountain
018A:Safe
018B:Notice Board
018C:Trophy Stand
018D:Brick Stand
018E:Barrel
018F:Purgatory Container
0190:Verdant Bed
0191:Maiden's Bed
021C:Dion's Letter
021D:Aurelie's Letter
021E:Ren's Letter
021F:Norbert's Letter
0220:Kirsche's Letter
0222:Bag of Calming
0223:Atelier Tent
0224:Stylish Clothes
0225:Licensed Alchemist ID
0226:Guiding Tribe's Memoir
0227:Liane's Earrings
0229:Cute Stuffed Toy
022A:Chick Stuffed Toy
022B:Broken Fritz Doll
022C:Fritz Doll
022E:B. White Abyss Key
0230:Sledgehammer
0231:R. White Abyss Key
0232:White Abyss Key
0236:Sophie's Recipe
0237:Plant Memo
0238:Nanna's Store Flyer
0239:Ingredient Memo
023A:Alchemy Exam List
023B:Item Crafting Memo
023C:General Memo
023D:Letter
023E:Simple Sweets Guide
023F:Travels in Rustin
0240:Neutralizer Revolution!
0241:Cooking Secrets
0242:A Sour Man's Life
0243:Light Once Seen
0244:Safety on Journeys
0245:Elsculario
0246:Gems of the World
0247:A Warm Home Life
0248:Basics of Fashion
///==================Weapons///
019A:Blessing Staff
019B:Wind Staff
019C:Sunny Bird Staff
019D:Firebird Staff
019E:Phoenix Staff
019F:Flamberge
01A0:Mirage Sword
01A1:Flame Sword
01A2:Aurora Sword
01A3:Beast Slayer
01A4:Berserk Blade
01A5:Wyrmsoul
01A6:Dragoon Fang
01A7:Swordbreaker
01A8:Metal Slasher
01A9:Gale Dagger
01AA:Hidden Dagger
01AB:Battle Axe
01AC:Pole Axe
01AD:Halberd
01AE:Eisenflut
01AF:Pike
01B0:Cross Spear
01B1:White Wing Spear
01B2:Valkyrie Spear
01B3:Blue Sky Bow
01B4:Steel Bow
01B5:Hawkeye Bow
01B6:Shooting Star
01B7:Howling Gun
01B8:Night Lightning
01B9:Silver Gun
01BA:Zweipiece
01BB:Endless Quest Staff
01BC:Sternbogen
01BD:Weber's Rod
01BE:Earth Splitter Carolina
01BF:Prophetic Kreuz
01C0:Falcata
01C1:Demonblade Valdberg
01C2:Radiant Weise
01C3:Dragon Destroyer
01C4:Mistral Bringer
01C5:Moon Caller
01C6:Cosmos Caller
01C7:Bright Night
///==================Wears///
01D6:Traveler's Clothes
01D7:Common Shirt
01D8:Thick Fur Shirt
01D9:Beast Warding Shirt
01DA:Combat Shirt
01DB:Nightshade
01DC:Colorful Vest
01DD:Alchemy Mantle
01DE:Journey Raiment
01DF:Riveted Leather Armor
01E0:Bone Mail
01E1:Scale Vest
01E2:Plate Vest
01E3:Journey Coat
01E4:Splint Mail
01E5:Tamahagane Mail
01E6:Gold Chain Armor
01E7:Meteor Iron Armor
01E8:Mysterious Plate
01E9:Journey Plate
01EA:Bride's Blouse
01EB:Resurrection Wear
01EC:Moist Armor
01ED:Reactive Coat
///==================Accessories///
01FE:Angel Ribbon
01FF:Knuckle Guard
0200:Bronze Mirror Shield
0201:Beast Talisman
0202:Beast Aroma
0203:Blue Crystal Ring
0204:Ambrosia Garland
0205:Gunade Ring
0206:Element Guard
0207:Coin of Fortune
0208:Firesoul Talisman
0209:Windspirit Talisman
020A:Icedream Talisman
020B:Magic Stone Chain
020C:Long Boots
020D:Gold Long Boots
1
0000FF
2 Bytes
+2
812
"quality"
190:No-Doc
0000FF
Float
+4
859
"[traits]"
0007:Fire Damage M
0008:Fire Damage L
0079:Inflicts Severe Bruns
007c:Blue Flames
00c3:HP Recovery XS
0118:Eat and Recover M
0201:Defense Up S
0216:HP Regen XS
FFFF:empty
1
000080
Array of byte
0
+0
813
"trait 1"
ffff:empty
0000:Low Price
0001:Low Price +
0002:Low Price ++
0003:Common Item
0004:Mass Produced
0005:No Price
0006:High Price
0007:High Price +
0008:High Price ++
0009:High Class
000A:Rare Item
000B:Premium Price
000C:Quality Up
000D:Quality Up +
000E:Quality Up ++
000F:Well Made
0010:Pro Perfection
0011:Super Quality
0012:Destruction Up
0013:Destruction Up +
0014:Destruction Up ++
0015:Big Destruction
0016:Intense Destruction
0017:Ultimate Destruction
0018:God Destroy
0019:Fixed Power
001A:Fixed Power +
001B:Fixed Power ++
001C:Pain in Numbers
001D:Damage in Numbers
001E:Big Damage Numbers
001F:Destruction Legend
0020:Increase Sharpness
0021:Cuts Easily
0022:Increase Aggression
0023:Recovery Up
0024:Recovery Up +
0025:Recovery Up ++
0026:Big Recovery
0027:Intense Recovery
0028:Ultimate Recovery
0029:Blessed by God
002A:Fixed Recovery
002B:Fixed Recovery +
002C:Fixed Recovery ++
002D:Medicine Enhance
002E:Big Medicine Enhance
002F:Enhance Recovery
0030:Legendary Recovery
0031:Critical
0032:Critical +
0033:Critical ++
0034:Critical Finish
0035:Half Critical
0036:One Hit Kill
0037:Stable Effect
0038:Stable Effect +
0039:Stable Effect ++
003A:Stability Emphasis
003B:Solid Effect
003C:Boost Expected Value
003D:Use Count +1
003E:Use Count +2
003F:Multiply
0040:Use Count -1
0041:Use Count -2
0042:Reduction
0043:HP Enhance
0044:HP Boost
0045:HP Super Enhance
0046:Full of Life
0047:Overflowing Life
0048:Power of Life
0049:MP Enhance
004A:MP Boost
004B:MP Super Enhance
004C:Magician's Wisdom
004D:Grand Wisdom
004E:Wisdom of the Gods
004F:LP Enhance
0050:LP Boost
0051:LP Super Enhance
0052:Full of Stamina
0053:Unabating Stamina
0054:Infinite Stamina
0055:HPMP Enhance
0056:HPMP Boost
0057:HPMP Super Enhance
0058:Parameters +10%
0059:Parameters +12%
005A:Parameters +15%
005B:Enhance the Body
005C:Draw Out Power
005D:Develops the Body
005E:Evolves the Body
005F:Attack Enhance
0060:Attack Boost
0061:Attack Super Enhance
0062:Power of Beasts
0063:Power of Destruction
0064:Power of Gods
0065:Defense Enhance
0066:Defense Boost
0067:Defense Super Enhance
0068:Steel Defense
0069:Diamond Defense
006A:Dragonscale Defense
006B:Speed Enhance
006C:Speed Boost
006D:Speed Super Enhance
006E:Speed of Skanda
006F:Speed of Gods
0070:Speed of Light
0071:ATK DEF Enhance
0072:ATK SPD Enhance
0073:DEF SPD Enhance
0074:All Stat Enhance
0075:ATK DEF Boost
0076:ATK SPD Boost
0077:DEF SPD Boost
0078:All Stat Boost
0079:All Stat Super
007A:Well Rounded Power
007B:Flawless Body
007C:Tenacious Body
007D:Consume MP -10%
007E:Consume MP -15%
007F:Consume MP -20%
0080:Cut MP Consume
0081:Compact MP Consume
0082:Halve MP Consume
0083:Skill Power +10%
0084:Skill Power +12%
0085:Skill Power +15%
0086:Skill Enhance
0087:Skill Boost
0088:Skill Super Enhance
0089:Eco Skill
008A:Skill Cost Compress
008B:Skill Savings
008C:Expert Skill
008D:Super Skill
008E:Soul Dwelling
008F:Blessing of Strength
0090:Blessing Protection
0091:Blessing of Skanda
009f:Inflict Poison
00a1:Inflict Curse
00e8:Fast Use
00ec:Power Throw
00f0:Wait Time Enhance +
0160:Light of Harmony
1
0000FF
2 Bytes
+8
814
"trait 2"
ffff:empty
0000:Low Price
0001:Low Price +
0002:Low Price ++
0003:Common Item
0004:Mass Produced
0005:No Price
0006:High Price
0007:High Price +
0008:High Price ++
0009:High Class
000A:Rare Item
000B:Premium Price
000C:Quality Up
000D:Quality Up +
000E:Quality Up ++
000F:Well Made
0010:Pro Perfection
0011:Super Quality
0012:Destruction Up
0013:Destruction Up +
0014:Destruction Up ++
0015:Big Destruction
0016:Intense Destruction
0017:Ultimate Destruction
0018:God Destroy
0019:Fixed Power
001A:Fixed Power +
001B:Fixed Power ++
001C:Pain in Numbers
001D:Damage in Numbers
001E:Big Damage Numbers
001F:Destruction Legend
0020:Increase Sharpness
0021:Cuts Easily
0022:Increase Aggression
0023:Recovery Up
0024:Recovery Up +
0025:Recovery Up ++
0026:Big Recovery
0027:Intense Recovery
0028:Ultimate Recovery
0029:Blessed by God
002A:Fixed Recovery
002B:Fixed Recovery +
002C:Fixed Recovery ++
002D:Medicine Enhance
002E:Big Medicine Enhance
002F:Enhance Recovery
0030:Legendary Recovery
0031:Critical
0032:Critical +
0033:Critical ++
0034:Critical Finish
0035:Half Critical
0036:One Hit Kill
0037:Stable Effect
0038:Stable Effect +
0039:Stable Effect ++
003A:Stability Emphasis
003B:Solid Effect
003C:Boost Expected Value
003D:Use Count +1
003E:Use Count +2
003F:Multiply
0040:Use Count -1
0041:Use Count -2
0042:Reduction
0043:HP Enhance
0044:HP Boost
0045:HP Super Enhance
0046:Full of Life
0047:Overflowing Life
0048:Power of Life
0049:MP Enhance
004A:MP Boost
004B:MP Super Enhance
004C:Magician's Wisdom
004D:Grand Wisdom
004E:Wisdom of the Gods
004F:LP Enhance
0050:LP Boost
0051:LP Super Enhance
0052:Full of Stamina
0053:Unabating Stamina
0054:Infinite Stamina
0055:HPMP Enhance
0056:HPMP Boost
0057:HPMP Super Enhance
0058:Parameters +10%
0059:Parameters +12%
005A:Parameters +15%
005B:Enhance the Body
005C:Draw Out Power
005D:Develops the Body
005E:Evolves the Body
005F:Attack Enhance
0060:Attack Boost
0061:Attack Super Enhance
0062:Power of Beasts
0063:Power of Destruction
0064:Power of Gods
0065:Defense Enhance
0066:Defense Boost
0067:Defense Super Enhance
0068:Steel Defense
0069:Diamond Defense
006A:Dragonscale Defense
006B:Speed Enhance
006C:Speed Boost
006D:Speed Super Enhance
006E:Speed of Skanda
006F:Speed of Gods
0070:Speed of Light
0071:ATK DEF Enhance
0072:ATK SPD Enhance
0073:DEF SPD Enhance
0074:All Stat Enhance
0075:ATK DEF Boost
0076:ATK SPD Boost
0077:DEF SPD Boost
0078:All Stat Boost
0079:All Stat Super
007A:Well Rounded Power
007B:Flawless Body
007C:Tenacious Body
007D:Consume MP -10%
007E:Consume MP -15%
007F:Consume MP -20%
0080:Cut MP Consume
0081:Compact MP Consume
0082:Halve MP Consume
0083:Skill Power +10%
0084:Skill Power +12%
0085:Skill Power +15%
0086:Skill Enhance
0087:Skill Boost
0088:Skill Super Enhance
0089:Eco Skill
008A:Skill Cost Compress
008B:Skill Savings
008C:Expert Skill
008D:Super Skill
008E:Soul Dwelling
008F:Blessing of Strength
0090:Blessing Protection
0091:Blessing of Skanda
009f:Inflict Poison
00a1:Inflict Curse
00e8:Fast Use
00ec:Power Throw
00f0:Wait Time Enhance +
0160:Light of Harmony
1
0000FF
2 Bytes
+a
815
"trait 3"
ffff:empty
0000:Low Price
0001:Low Price +
0002:Low Price ++
0003:Common Item
0004:Mass Produced
0005:No Price
0006:High Price
0007:High Price +
0008:High Price ++
0009:High Class
000A:Rare Item
000B:Premium Price
000C:Quality Up
000D:Quality Up +
000E:Quality Up ++
000F:Well Made
0010:Pro Perfection
0011:Super Quality
0012:Destruction Up
0013:Destruction Up +
0014:Destruction Up ++
0015:Big Destruction
0016:Intense Destruction
0017:Ultimate Destruction
0018:God Destroy
0019:Fixed Power
001A:Fixed Power +
001B:Fixed Power ++
001C:Pain in Numbers
001D:Damage in Numbers
001E:Big Damage Numbers
001F:Destruction Legend
0020:Increase Sharpness
0021:Cuts Easily
0022:Increase Aggression
0023:Recovery Up
0024:Recovery Up +
0025:Recovery Up ++
0026:Big Recovery
0027:Intense Recovery
0028:Ultimate Recovery
0029:Blessed by God
002A:Fixed Recovery
002B:Fixed Recovery +
002C:Fixed Recovery ++
002D:Medicine Enhance
002E:Big Medicine Enhance
002F:Enhance Recovery
0030:Legendary Recovery
0031:Critical
0032:Critical +
0033:Critical ++
0034:Critical Finish
0035:Half Critical
0036:One Hit Kill
0037:Stable Effect
0038:Stable Effect +
0039:Stable Effect ++
003A:Stability Emphasis
003B:Solid Effect
003C:Boost Expected Value
003D:Use Count +1
003E:Use Count +2
003F:Multiply
0040:Use Count -1
0041:Use Count -2
0042:Reduction
0043:HP Enhance
0044:HP Boost
0045:HP Super Enhance
0046:Full of Life
0047:Overflowing Life
0048:Power of Life
0049:MP Enhance
004A:MP Boost
004B:MP Super Enhance
004C:Magician's Wisdom
004D:Grand Wisdom
004E:Wisdom of the Gods
004F:LP Enhance
0050:LP Boost
0051:LP Super Enhance
0052:Full of Stamina
0053:Unabating Stamina
0054:Infinite Stamina
0055:HPMP Enhance
0056:HPMP Boost
0057:HPMP Super Enhance
0058:Parameters +10%
0059:Parameters +12%
005A:Parameters +15%
005B:Enhance the Body
005C:Draw Out Power
005D:Develops the Body
005E:Evolves the Body
005F:Attack Enhance
0060:Attack Boost
0061:Attack Super Enhance
0062:Power of Beasts
0063:Power of Destruction
0064:Power of Gods
0065:Defense Enhance
0066:Defense Boost
0067:Defense Super Enhance
0068:Steel Defense
0069:Diamond Defense
006A:Dragonscale Defense
006B:Speed Enhance
006C:Speed Boost
006D:Speed Super Enhance
006E:Speed of Skanda
006F:Speed of Gods
0070:Speed of Light
0071:ATK DEF Enhance
0072:ATK SPD Enhance
0073:DEF SPD Enhance
0074:All Stat Enhance
0075:ATK DEF Boost
0076:ATK SPD Boost
0077:DEF SPD Boost
0078:All Stat Boost
0079:All Stat Super
007A:Well Rounded Power
007B:Flawless Body
007C:Tenacious Body
007D:Consume MP -10%
007E:Consume MP -15%
007F:Consume MP -20%
0080:Cut MP Consume
0081:Compact MP Consume
0082:Halve MP Consume
0083:Skill Power +10%
0084:Skill Power +12%
0085:Skill Power +15%
0086:Skill Enhance
0087:Skill Boost
0088:Skill Super Enhance
0089:Eco Skill
008A:Skill Cost Compress
008B:Skill Savings
008C:Expert Skill
008D:Super Skill
008E:Soul Dwelling
008F:Blessing of Strength
0090:Blessing Protection
0091:Blessing of Skanda
009f:Inflict Poison
00a1:Inflict Curse
00e8:Fast Use
00ec:Power Throw
00f0:Wait Time Enhance +
0160:Light of Harmony
1
0000FF
2 Bytes
+c
860
"[effects]"
0007:Fire Damage M
0008:Fire Damage L
0079:Inflicts Severe Bruns
007c:Blue Flames
00c3:HP Recovery XS
0118:Eat and Recover M
0201:Defense Up S
0216:HP Regen XS
FFFF:empty
1
000080
Array of byte
0
+0
816
"effect 1"
FFFF:empty
///==================///
0007:Fire Damage M
0008:Fire Damage L
0079:Inflicts Severe Bruns
007c:Blue Flames
00c3:HP Recovery XS
0118:Eat and Recover M
0201:Defense Up S
0216:HP Regen XS
///==================Skills///
05C8:Guard Break
05C9:Meteor Swarm
05CA:Enhancement Art
05CB:Purifying Art
05CC:Healing Art
05CD:Great Heal Form
05CE:Awakening Art
05CF:High Speed Slash
05D0:Whirlwind
05D1:Air Slicer
05D2:Einzelkampf
05D3:Holy Sword
05D4:Sword Saint
05D5:Battle Order
05D6:Multi Attack
05D7:Lightning Speed
05D8:Flash Cross
05D9:Blink Attack
05DA:Fortune Dagger
05DB:Thousand Thrust
05DC:Hermit's Dance
05DD:Full Swing
05DE:Underground Blast
05DF:Peerless Break
05E0:Moon Break
05E1:Dragon Raid
05E2:Tactical Arts
05E3:Morale Boost
05E4:Helm Splitter
05E5:Earth Crash
05E6:Flying Meteor
05E7:Screw Dive
05E8:Flame Strike
05E9:Burning Sweep
05EA:Fire Wind
05EB:Vital Stab
05EC:Frost Spear
05ED:Snowflake Barrage
05EE:Execution
05EF:Meditation
05F0:Spear Guard
05F1:Healing Wind
05F2:Arrow Assault
05F3:Bound Combo
05F4:Chaos Arrow
05F5:Hive Shooter
05F6:Darkness Arrow
05F7:Sky Piercing Shot
05F8:Piercing Light Arrow
05F9:Multi Shot
05FA:Down Shot
05FB:Firefight
05FC:Explosive Shot
05FD:Multiangle Shot
05FE:Medishot
05FF:Showershot
0600:Flame Gaze
0601:Hell Wave
0602:Flare Rain
0603:Tera-Flame
0604:Ice Storm
0605:Ice Volley
0606:Ice Rain
0607:Blizzard
0608:Lightning
0609:Plasma Ray
060A:Thunder Rain
060B:Vortex
060C:Grand Ray
060D:Tornado
060E:Tempest
060F:Calamity
0610:Call Meteor
0611:Silence
0612:Nightmare
0613:Suffocate
0614:Slow
0615:Heal
0616:Heal All
0617:Refresh
0618:Haste
0619:Power
061A:Guard
1
0000FF
2 Bytes
+e
817
"effect 2"
FFFF:empty
///==================///
0007:Fire Damage M
0008:Fire Damage L
0079:Inflicts Severe Bruns
007c:Blue Flames
00c3:HP Recovery XS
0118:Eat and Recover M
0201:Defense Up S
0216:HP Regen XS
///==================Skills///
05C8:Guard Break
05C9:Meteor Swarm
05CA:Enhancement Art
05CB:Purifying Art
05CC:Healing Art
05CD:Great Heal Form
05CE:Awakening Art
05CF:High Speed Slash
05D0:Whirlwind
05D1:Air Slicer
05D2:Einzelkampf
05D3:Holy Sword
05D4:Sword Saint
05D5:Battle Order
05D6:Multi Attack
05D7:Lightning Speed
05D8:Flash Cross
05D9:Blink Attack
05DA:Fortune Dagger
05DB:Thousand Thrust
05DC:Hermit's Dance
05DD:Full Swing
05DE:Underground Blast
05DF:Peerless Break
05E0:Moon Break
05E1:Dragon Raid
05E2:Tactical Arts
05E3:Morale Boost
05E4:Helm Splitter
05E5:Earth Crash
05E6:Flying Meteor
05E7:Screw Dive
05E8:Flame Strike
05E9:Burning Sweep
05EA:Fire Wind
05EB:Vital Stab
05EC:Frost Spear
05ED:Snowflake Barrage
05EE:Execution
05EF:Meditation
05F0:Spear Guard
05F1:Healing Wind
05F2:Arrow Assault
05F3:Bound Combo
05F4:Chaos Arrow
05F5:Hive Shooter
05F6:Darkness Arrow
05F7:Sky Piercing Shot
05F8:Piercing Light Arrow
05F9:Multi Shot
05FA:Down Shot
05FB:Firefight
05FC:Explosive Shot
05FD:Multiangle Shot
05FE:Medishot
05FF:Showershot
0600:Flame Gaze
0601:Hell Wave
0602:Flare Rain
0603:Tera-Flame
0604:Ice Storm
0605:Ice Volley
0606:Ice Rain
0607:Blizzard
0608:Lightning
0609:Plasma Ray
060A:Thunder Rain
060B:Vortex
060C:Grand Ray
060D:Tornado
060E:Tempest
060F:Calamity
0610:Call Meteor
0611:Silence
0612:Nightmare
0613:Suffocate
0614:Slow
0615:Heal
0616:Heal All
0617:Refresh
0618:Haste
0619:Power
061A:Guard
1
0000FF
2 Bytes
+10
818
"effect 3"
FFFF:empty
///==================///
0007:Fire Damage M
0008:Fire Damage L
0079:Inflicts Severe Bruns
007c:Blue Flames
00c3:HP Recovery XS
0118:Eat and Recover M
0201:Defense Up S
0216:HP Regen XS
///==================Skills///
05C8:Guard Break
05C9:Meteor Swarm
05CA:Enhancement Art
05CB:Purifying Art
05CC:Healing Art
05CD:Great Heal Form
05CE:Awakening Art
05CF:High Speed Slash
05D0:Whirlwind
05D1:Air Slicer
05D2:Einzelkampf
05D3:Holy Sword
05D4:Sword Saint
05D5:Battle Order
05D6:Multi Attack
05D7:Lightning Speed
05D8:Flash Cross
05D9:Blink Attack
05DA:Fortune Dagger
05DB:Thousand Thrust
05DC:Hermit's Dance
05DD:Full Swing
05DE:Underground Blast
05DF:Peerless Break
05E0:Moon Break
05E1:Dragon Raid
05E2:Tactical Arts
05E3:Morale Boost
05E4:Helm Splitter
05E5:Earth Crash
05E6:Flying Meteor
05E7:Screw Dive
05E8:Flame Strike
05E9:Burning Sweep
05EA:Fire Wind
05EB:Vital Stab
05EC:Frost Spear
05ED:Snowflake Barrage
05EE:Execution
05EF:Meditation
05F0:Spear Guard
05F1:Healing Wind
05F2:Arrow Assault
05F3:Bound Combo
05F4:Chaos Arrow
05F5:Hive Shooter
05F6:Darkness Arrow
05F7:Sky Piercing Shot
05F8:Piercing Light Arrow
05F9:Multi Shot
05FA:Down Shot
05FB:Firefight
05FC:Explosive Shot
05FD:Multiangle Shot
05FE:Medishot
05FF:Showershot
0600:Flame Gaze
0601:Hell Wave
0602:Flare Rain
0603:Tera-Flame
0604:Ice Storm
0605:Ice Volley
0606:Ice Rain
0607:Blizzard
0608:Lightning
0609:Plasma Ray
060A:Thunder Rain
060B:Vortex
060C:Grand Ray
060D:Tornado
060E:Tempest
060F:Calamity
0610:Call Meteor
0611:Silence
0612:Nightmare
0613:Suffocate
0614:Slow
0615:Heal
0616:Heal All
0617:Refresh
0618:Haste
0619:Power
061A:Guard
1
0000FF
2 Bytes
+12
819
"effect 4"
FFFF:empty
///==================///
0007:Fire Damage M
0008:Fire Damage L
0079:Inflicts Severe Bruns
007c:Blue Flames
00c3:HP Recovery XS
0118:Eat and Recover M
0201:Defense Up S
0216:HP Regen XS
///==================Skills///
05C8:Guard Break
05C9:Meteor Swarm
05CA:Enhancement Art
05CB:Purifying Art
05CC:Healing Art
05CD:Great Heal Form
05CE:Awakening Art
05CF:High Speed Slash
05D0:Whirlwind
05D1:Air Slicer
05D2:Einzelkampf
05D3:Holy Sword
05D4:Sword Saint
05D5:Battle Order
05D6:Multi Attack
05D7:Lightning Speed
05D8:Flash Cross
05D9:Blink Attack
05DA:Fortune Dagger
05DB:Thousand Thrust
05DC:Hermit's Dance
05DD:Full Swing
05DE:Underground Blast
05DF:Peerless Break
05E0:Moon Break
05E1:Dragon Raid
05E2:Tactical Arts
05E3:Morale Boost
05E4:Helm Splitter
05E5:Earth Crash
05E6:Flying Meteor
05E7:Screw Dive
05E8:Flame Strike
05E9:Burning Sweep
05EA:Fire Wind
05EB:Vital Stab
05EC:Frost Spear
05ED:Snowflake Barrage
05EE:Execution
05EF:Meditation
05F0:Spear Guard
05F1:Healing Wind
05F2:Arrow Assault
05F3:Bound Combo
05F4:Chaos Arrow
05F5:Hive Shooter
05F6:Darkness Arrow
05F7:Sky Piercing Shot
05F8:Piercing Light Arrow
05F9:Multi Shot
05FA:Down Shot
05FB:Firefight
05FC:Explosive Shot
05FD:Multiangle Shot
05FE:Medishot
05FF:Showershot
0600:Flame Gaze
0601:Hell Wave
0602:Flare Rain
0603:Tera-Flame
0604:Ice Storm
0605:Ice Volley
0606:Ice Rain
0607:Blizzard
0608:Lightning
0609:Plasma Ray
060A:Thunder Rain
060B:Vortex
060C:Grand Ray
060D:Tornado
060E:Tempest
060F:Calamity
0610:Call Meteor
0611:Silence
0612:Nightmare
0613:Suffocate
0614:Slow
0615:Heal
0616:Heal All
0617:Refresh
0618:Haste
0619:Power
061A:Guard
1
0000FF
2 Bytes
+14
858
"[components]"
0003:Cracked
0004:Shining
0011:Thick
0012:Slimy
0017:Purgent
001a:Melts Easy
0037:Big Umberlla
0038:Crumbles
003a:Strange Smell
003b:Good Smell
0040:Bitter Smell
004b:Feathery
0055:Warm
0068:Flammable
0079:Mineral
0083:Stretchy
008e:Stickiness
0091:Thick Powder
00a6:Neutralizing B
00ac:Good Reaction
00c1:Mellow
00d8:Fine
00dd:Stores Heat
00e1:Metal Luster
00ed:Contaminated
00f3:Hard Water
00ff:Blurry Letters
0100:Faint Shine
0104:Geometric Pattern
0108:Unknown Letters
012b:Faint Heat
01b9:Permeating
ffff:empty
1
000080
Array of byte
0
+0
820
"component 1"
0003:Cracked
0004:Shining
000f:Dry
0010:Dries Easy
0011:Thick
0012:Slimy
0017:Purgent
001a:Melts Easy
0037:Big Umberlla
0038:Crumbles
003a:Strange Smell
003b:Good Smell
0040:Bitter Smell
004b:Feathery
0055:Warm
0068:Flammable
006a:Blue Punipuni
0079:Mineral
0083:Stretchy
008e:Stickiness
0091:Thick Powder
00a6:Neutralizing B
00ac:Good Reaction
00be:Eat and Recover M
00c1:Mellow
00d8:Fine
00dd:Stores Heat
00e1:Metal Luster
00ed:Contaminated
00f3:Hard Water
00ff:Blurry Letters
0100:Faint Shine
0104:Geometric Pattern
0108:Unknown Letters
012b:Faint Heat
01b9:Permeating
ffff:empty
1
0000FF
2 Bytes
+16
845
"component 2"
0003:Cracked
0004:Shining
0011:Thick
0012:Slimy
0017:Purgent
001a:Melts Easy
0037:Big Umberlla
0038:Crumbles
003a:Strange Smell
003b:Good Smell
0040:Bitter Smell
004b:Feathery
0055:Warm
0068:Flammable
0079:Mineral
0083:Stretchy
008e:Stickiness
0091:Thick Powder
00a6:Neutralizing B
00ac:Good Reaction
00be:Eat and Recover M
00c1:Mellow
00d8:Fine
00dd:Stores Heat
00e1:Metal Luster
00ed:Contaminated
00f3:Hard Water
00ff:Blurry Letters
0100:Faint Shine
0104:Geometric Pattern
0108:Unknown Letters
012b:Faint Heat
01b9:Permeating
ffff:empty
1
0000FF
2 Bytes
+18
846
"component 3"
0003:Cracked
0004:Shining
0011:Thick
0012:Slimy
0017:Purgent
001a:Melts Easy
0037:Big Umberlla
0038:Crumbles
003a:Strange Smell
003b:Good Smell
0040:Bitter Smell
004b:Feathery
0055:Warm
0068:Flammable
0079:Mineral
0083:Stretchy
008e:Stickiness
0091:Thick Powder
00a6:Neutralizing B
00ac:Good Reaction
00be:Eat and Recover M
00c1:Mellow
00d8:Fine
00dd:Stores Heat
00e1:Metal Luster
00ed:Contaminated
00f3:Hard Water
00ff:Blurry Letters
0100:Faint Shine
0104:Geometric Pattern
0108:Unknown Letters
012b:Faint Heat
01b9:Permeating
ffff:empty
1
0000FF
2 Bytes
+1a
847
"component 4"
0003:Cracked
0004:Shining
0011:Thick
0012:Slimy
0017:Purgent
001a:Melts Easy
0037:Big Umberlla
0038:Crumbles
003a:Strange Smell
003b:Good Smell
0040:Bitter Smell
004b:Feathery
0055:Warm
0068:Flammable
0079:Mineral
0083:Stretchy
008e:Stickiness
0091:Thick Powder
00a6:Neutralizing B
00ac:Good Reaction
00be:Eat and Recover M
00c1:Mellow
00d8:Fine
00dd:Stores Heat
00e1:Metal Luster
00ed:Contaminated
00f3:Hard Water
00ff:Blurry Letters
0100:Faint Shine
0104:Geometric Pattern
0108:Unknown Letters
012b:Faint Heat
01b9:Permeating
ffff:empty
1
0000FF
2 Bytes
+1c
848
"component 5"
0003:Cracked
0004:Shining
0011:Thick
0012:Slimy
0017:Purgent
001a:Melts Easy
0037:Big Umberlla
0038:Crumbles
003a:Strange Smell
003b:Good Smell
0040:Bitter Smell
004b:Feathery
0055:Warm
0068:Flammable
0079:Mineral
0083:Stretchy
008e:Stickiness
0091:Thick Powder
00a6:Neutralizing B
00ac:Good Reaction
00be:Eat and Recover M
00c1:Mellow
00d8:Fine
00dd:Stores Heat
00e1:Metal Luster
00ed:Contaminated
00f3:Hard Water
00ff:Blurry Letters
0100:Faint Shine
0104:Geometric Pattern
0108:Unknown Letters
012b:Faint Heat
01b9:Permeating
ffff:empty
1
0000FF
2 Bytes
+1e
849
"component 6"
0003:Cracked
0004:Shining
0011:Thick
0012:Slimy
0017:Purgent
001a:Melts Easy
0037:Big Umberlla
0038:Crumbles
003a:Strange Smell
003b:Good Smell
0040:Bitter Smell
004b:Feathery
0055:Warm
0068:Flammable
0079:Mineral
0083:Stretchy
008e:Stickiness
0091:Thick Powder
00a6:Neutralizing B
00ac:Good Reaction
00be:Eat and Recover M
00c1:Mellow
00d8:Fine
00dd:Stores Heat
00e1:Metal Luster
00ed:Contaminated
00f3:Hard Water
00ff:Blurry Letters
0100:Faint Shine
0104:Geometric Pattern
0108:Unknown Letters
012b:Faint Heat
01b9:Permeating
ffff:empty
1
0000FF
2 Bytes
+20
832
"[size]"
1
000080
Array of byte
0
+22
834
"top left"
1
0000FF
Binary
7
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
1
1
Set Value
17
16
186
0
2
Set Value
17
16
222
0
3
Set Value
192
103
0
4
Set Value
9
103
1
5
835
"top center"
1
0000FF
Binary
6
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
1
1
Set Value
17
16
186
0
2
Set Value
17
16
222
0
3
Set Value
192
104
0
4
Set Value
9
104
1
5
836
"top right"
1
0000FF
Binary
5
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
0
1
Set Value
17
16
186
0
2
Set Value
17
16
222
0
3
Set Value
192
105
0
4
Set Value
9
105
1
5
837
"middle left"
1
0000FF
Binary
4
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
1
1
Set Value
17
16
186
1
2
Set Value
17
16
222
1
3
Set Value
192
100
0
4
Set Value
9
100
1
5
838
"middle center"
1
0000FF
Binary
3
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
1
1
Set Value
17
16
186
1
2
Set Value
17
16
222
1
3
Set Value
192
101
0
4
Set Value
9
101
1
5
839
"middle right"
1
0000FF
Binary
2
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
0
1
Set Value
17
16
186
1
2
Set Value
17
16
222
0
3
Set Value
192
102
0
4
Set Value
9
102
1
5
840
"bottom left"
1
0000FF
Binary
1
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
1
1
Set Value
17
16
186
1
2
Set Value
17
16
222
1
3
Set Value
192
97
0
4
Set Value
9
97
1
5
841
"bottom center"
1
0000FF
Binary
0
1
0
+1
Set Value
17
16
219
1
0
Set Value
17
16
221
1
1
Set Value
17
16
186
1
2
Set Value
17
16
222
1
3
Set Value
192
98
0
4
Set Value
9
98
1
5
842
"bottom right"
1
0000FF
Binary
7
1
0
+0
Set Value
17
16
219
1
0
Set Value
17
16
221
0
1
Set Value
17
16
186
1
2
Set Value
17
16
222
0
3
Set Value
192
99
0
4
Set Value
9
99
1
5
826
"?"
808080
Byte
+24
827
"count"
0000FF
Byte
+25
828
"count max?"
0000FF
Byte
+26
829
"?"
808080
Byte
+27
824
"Component Total"
0000FF
2 Bytes
+28
851
"?"
1
808080
Byte
+2a
852
"[colour]"
1
000080
Array of byte
0
+2b
853
"top (upper left)"
00:red
01:blue
02:green
03:yellow
04:white
05:purple
1
0000FF
Byte
+0
854
"left (upper right)"
00:red
01:blue
02:green
03:yellow
04:white
05:purple
1
0000FF
Byte
+1
855
"right (lower left)"
00:red
01:blue
02:green
03:yellow
04:white
05:purple
1
0000FF
Byte
+2
856
"bottom (lower right)"
00:red
01:blue
02:green
03:yellow
04:white
05:purple
1
0000FF
Byte
+3
857
"?"
1
808080
Byte
+2f
830
"?"
1
808080
4 Bytes
+30
112
"[stats]"
000080
1
176
"Alchemy Lv"
0000FF
4 Bytes
pGameBase
dAlchemyLvOffset
177
"Alchemy Exp"
0000FF
4 Bytes
pGameBase
dAlchemyLvOffset+4
178
"?"
808080
4 Bytes
pGameBase
dAlchemyLvOffset+8
114
"[highlighted/viewing character]"
000080
Array of byte
0
pHighlightedPlayer
0
170
"highlighted character name"
808080
String
128
0
1
pHighlightedPlayerName
0
171
"ID?"
808080
4 Bytes
+0*4
172
"Lv"
0000FF
4 Bytes
+1*4
115
"HP"
0000FF
4 Bytes
+0*4+c
173
"Exp"
0000FF
4 Bytes
+2*4
116
"MP"
0000FF
4 Bytes
+1*4+c
117
"HP max base"
0000FF
4 Bytes
+2*4+c
118
"MP max base"
0000FF
4 Bytes
+3*4+c
119
"Attack base"
0000FF
4 Bytes
+4*4+c
120
"Defense base"
0000FF
4 Bytes
+5*4+c
121
"Speed base"
0000FF
4 Bytes
+6*4+c
135
"[?]"
000080
Array of byte
0
+0
122
"?"
808080
4 Bytes
+7*4+c
123
"?"
808080
4 Bytes
+8*4+c
124
"?"
808080
4 Bytes
+9*4+c
125
"?"
808080
4 Bytes
+a*4+c
126
"?"
808080
4 Bytes
+b*4+c
127
"?"
808080
4 Bytes
+c*4+c
128
"?"
808080
4 Bytes
+d*4+c
129
"?"
808080
4 Bytes
+e*4+c
130
"?"
808080
4 Bytes
+f*4+c
131
"?"
808080
4 Bytes
+10*4+c
132
"?"
808080
4 Bytes
+11*4+c
133
"HP max current"
0000FF
4 Bytes
+5a*4+c
134
"MP max current"
0000FF
4 Bytes
+5b*4+c
137
"Attack current"
0000FF
4 Bytes
+5c*4+c
138
"Defense current"
0000FF
4 Bytes
+5d*4+c
139
"Speed current"
0000FF
4 Bytes
+5e*4+c
140
"Main Weapon Base Attack Dmg 1"
0000FF
4 Bytes
+5f*4+c
141
"Main Weapon Base Attack Dmg 2"
0000FF
4 Bytes
+60*4+c
144
"Sub Weapon Base Attack Dmg 1"
0000FF
4 Bytes
+61*4+c
145
"Sub Weapon Base Attack Dmg 2"
0000FF
4 Bytes
+62*4+c
143
"[?]"
000080
Array of byte
0
+0
146
"? currnet"
808080
4 Bytes
+63*4+c
147
"? currnet"
808080
4 Bytes
+64*4+c
148
"? currnet"
808080
4 Bytes
+65*4+c
149
"? currnet"
808080
4 Bytes
+66*4+c
150
"? currnet"
808080
4 Bytes
+67*4+c
151
"? currnet"
808080
4 Bytes
+68*4+c
152
"? currnet"
808080
4 Bytes
+69*4+c
153
"? currnet"
808080
4 Bytes
+6a*4+c
154
"? currnet"
808080
4 Bytes
+6b*4+c
155
"? currnet"
808080
4 Bytes
+6c*4+c
156
"? currnet"
808080
4 Bytes
+6d*4+c
157
"? currnet"
808080
4 Bytes
+6e*4+c
158
"? currnet"
808080
4 Bytes
+6f*4+c
159
"? currnet"
808080
4 Bytes
+70*4+c
953
"[Friendship]"
808080
Array of byte
0
pHighlightedFriendship
0
959
"don't messed with these 4 values unless you know what you're doing"
808080
1
954
"gained from day pass together"
0000FF
Float
+0
955
"gained from battle together"
0000FF
Float
+4
956
"?"
0000FF
Float
+8
957
"init, start with this value"
0000FF
Float
+c
90
"[in-battle]"
000080
Array of byte
0
pBattlePlayers
197
"Chain Link Gauge"
0000FF
4 Bytes
pChainLinkGauge
40
198
"[party]"
000080
Array of byte
0
+0
179
"[slot 1]"
000080
Array of byte
0
+0
0
91
"Lv"
0000FF
4 Bytes
+0*4+68
92
"battle HP"
0000FF
4 Bytes
+1*4+68
93
"battle MP"
0000FF
4 Bytes
+2*4+68
94
"?"
808080
4 Bytes
+3*4+68
95
"battle HP max"
0000FF
4 Bytes
+4*4+68
96
"battle MP max"
0000FF
4 Bytes
+5*4+68
180
"[slot 2]"
000080
Array of byte
0
+8
0
181
"Lv"
0000FF
4 Bytes
+0*4+68
182
"battle HP"
0000FF
4 Bytes
+1*4+68
183
"battle MP"
0000FF
4 Bytes
+2*4+68
184
"?"
808080
4 Bytes
+3*4+68
185
"battle HP max"
0000FF
4 Bytes
+4*4+68
186
"battle MP max"
0000FF
4 Bytes
+5*4+68
1011
"[enemy just hit]"
000080
Array of byte
0
pNonPlayerJustHit
0
1012
"Lv"
0000FF
4 Bytes
+0*4+68
1013
"battle HP"
0000FF
4 Bytes
+1*4+68
1014
"battle MP"
0000FF
4 Bytes
+2*4+68
1015
"?"
808080
4 Bytes
+3*4+68
1016
"battle HP max"
0000FF
4 Bytes
+4*4+68
1017
"battle MP max"
0000FF
4 Bytes
+5*4+68
924
"[misc.]"
000080
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(moneyReadAOB,A18.exe,8B 05 ** ** ** ** C3 CC CC CC CC CC CC CC CC CC 48 ** ** ** 44)
registersymbol(moneyReadAOB)
label(pMoney)
registersymbol(pMoney)
alloc(newmem24,2048,moneyReadAOB) //"A18.exe"+586070)
label(returnhere24)
label(originalcode24_enable)
registersymbol(originalcode24_enable)
label(exit24)
newmem24: //this is allocated memory, you have read,write,execute access
//place your code here
push rax
push rbx
push rcx
xor rax,rax
db b8
readmem(moneyReadAOB+2,4)
movsxd rax,eax
mov rbx,moneyReadAOB
lea rax,[rbx+rax+6]
mov [pMoney],rax
@@:
pop rcx
pop rbx
pop rax
reassemble(moneyReadAOB)
exit24:
jmp returnhere24
///
pMoney:
dq 0
originalcode24_enable:
readmem(moneyReadAOB,6)
//mov eax,[A18.exe+14409B0]
///
moneyReadAOB: //"A18.exe"+586070:
jmp newmem24
nop
returnhere24:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem24)
moneyReadAOB: //"A18.exe"+586070:
readmem(originalcode24_enable,6)
//db 8B 05 3A A9 EB 00
//Alt: mov eax,[A18.exe+14409B0]
unregistersymbol(originalcode24_enable)
unregistersymbol(pMoney)
922
"$"
0000FF
4 Bytes
pMoney
0
925
"LP"
0000FF
4 Bytes
pLP
0
163
"[time]"
000080
1
62
"days"
0000FF
4 Bytes
pTimeOfDay
-8
63
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
64
"mins"
0000FF
4 Bytes
pTimeOfDay
4
16
""
1
8
"No description"
4 Bytes
pTimeOfDay
11
"No description"
Float
812AF5F4
12
"No description"
4 Bytes
D498AF90
14
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne keylistenerend
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],1
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],-1
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],0
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
15
"No description"
1
4 Bytes
bManipulateTime
7
"enable .1"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(timeOfDayReadAOB,A18.exe,48 8B 05 ** ** ** ** 48 89 01 48 8B C1 C3)
registersymbol(timeOfDayReadAOB)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
alloc(newmem,2048,timeOfDayReadAOB) //"A18.exe"+586D00)
label(returnhere)
label(originalcode_enable)
registersymbol(originalcode_enable)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
xor rax,rax
db b8
readmem(timeOfDayReadAOB+3,4)
movsxd rax,eax
push rbx
mov rbx,timeOfDayReadAOB
lea rax,[rbx+rax+7]
pop rbx
mov [pTimeOfDay],rax
reassemble(timeOfDayReadAOB)
exit:
jmp returnhere
///
pTimeOfDay:
dq 0
originalcode_enable:
readmem(timeOfDayReadAOB,7)
//mov rax,[A18.exe+146E7A0]
///
timeOfDayReadAOB: //"A18.exe"+586D00:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
timeOfDayReadAOB: //"A18.exe"+586D00:
readmem(originalcode_enable,7)
//db 48 8B 05 99 7A EE 00
//Alt: mov rax,[A18.exe+146E7A0]
unregistersymbol(pTimeOfDay)
unregistersymbol(originalcode_time)
17
"alt_numpad+ : advance time"
808080
1
38
"bManipulateTime"
1
808080
4 Bytes
bManipulateTime
18
"alt_numpad- : rewind time"
808080
1
9
"days"
0000FF
4 Bytes
pTimeOfDay
-8
10
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
13
"mins"
0000FF
4 Bytes
pTimeOfDay
4
25
"time mod .3b"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(gameAdvanceTimeCalculateAOB,A18.exe,48 89 ** ** ** 48 89 ** ** ** 45 03 CF)
registersymbol(gameAdvanceTimeCalculateAOB)
alloc(newmem18,2048,gameAdvanceTimeCalculateAOB) //"A18.exe"+582879)
label(returnhere18)
label(originalcode18_timemod)
registersymbol(originalcode18_timemod)
label(exit18)
newmem18: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],0
je @f
xor r15d,r15d
originalcode18_timemod:
readmem(gameAdvanceTimeCalculateAOB,5)
//mov [rsp+68],rbx
exit18:
jmp returnhere18
///
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
jmp newmem18
returnhere18:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem18)
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
readmem(originalcode18_timemod,5)
//db 48 89 5C 24 68
//Alt: mov [rsp+68],rbx
26
"alt_numpad+ : advance time"
808080
1
27
"alt_numpad- : rewind time"
808080
1
28
"days"
0000FF
4 Bytes
pTimeOfDay
-8
29
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
30
"mins"
0000FF
4 Bytes
pTimeOfDay
4
65
"time mod .3a"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+582879)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],0
je end
//cmp dword ptr [bManipulateTime],#123456
//jne @f
xor r15d,r15d
jmp end
@@:
//mov r15d,[bManipulateTime]
end:
originalcode:
mov [rsp+68],rbx
exit:
jmp returnhere
///
"A18.exe"+582879:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+582879:
db 48 89 5C 24 68
//Alt: mov [rsp+68],rbx
66
"alt_numpad+ : advance time"
808080
1
67
"alt_numpad- : rewind time"
808080
1
68
"days"
0000FF
4 Bytes
pTimeOfDay
-8
69
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
70
"mins"
0000FF
4 Bytes
pTimeOfDay
4
53
"time mod .3"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeed,1)
define(rewindtimespeed,-1)
label(bManipulateTime)
registersymbol(bManipulateTime)
alloc(newmem,2048,"A18.exe"+582879)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],0
je end
cmp dword ptr [bManipulateTime],#123456
jne @f
xor r15d,r15d
jmp end
@@:
//mov r15d,[bManipulateTime]
end:
originalcode:
mov [rsp+68],rbx
exit:
jmp returnhere
///
bManipulateTime:
dd 0
///
"A18.exe"+582879:
jmp newmem
returnhere:
///********************************************///
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
je @f
mov dword ptr [bManipulateTime],0
jmp keylistenerend
@@:
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],advanvcetimespeed
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],rewindtimespeed
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],#123456
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
dealloc(newmem)
"A18.exe"+582879:
db 48 89 5C 24 68
//Alt: mov [rsp+68],rbx
unregistersymbol(bManipulateTime)
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
54
"alt_numpad+ : advance time"
808080
1
55
"alt_numpad- : rewind time"
808080
1
56
"days"
0000FF
4 Bytes
pTimeOfDay
-8
57
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
58
"mins"
0000FF
4 Bytes
pTimeOfDay
4
39
"time mod .2"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeed,1)
define(rewindtimespeed,-1)
aobscanmodule(gameAdvanceTimeAOB,A18.exe,B8 ** ** ** ** 44 ** ** ** ** ** ** F7 E9)
registersymbol(gameAdvanceTimeAOB)
label(bManipulateTime)
registersymbol(bManipulateTime)
alloc(newmem,2048,gameAdvanceTimeAOB) //"A18.exe"+5828CE)
label(returnhere)
label(originalcode_timemod)
registersymbol(originalcode_timemod)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
cmp dword ptr [bManipulateTime],0
je end
mov rbx,[pTimeOfDay]
test rbx,rbx
jz end
mov r9d,[rbx+4]
cmp dword ptr [bManipulateTime],#123456
je end
mov ecx,[bManipulateTime]
add ecx,r9d
cmp ecx,#60
jg advhrs
test ecx,ecx
jl rwhrs
mov r9d,ecx
jmp end
advhrs:
xor ecx,ecx
mov r9d,ecx
mov ecx,[rbx]
inc ecx
cmp ecx,#24
jl @f
xor ecx,ecx
inc dword ptr [rbx-8]
@@:
mov [rbx],ecx
jmp end
rwhrs:
add ecx,#60
mov r9d,ecx
mov ecx,[rbx]
dec ecx
test ecx,ecx
jge @f
add ecx,#24
dec dword ptr [rbx-8]
jns @f
mov dword ptr [rbx-8],0
@@:
mov [rbx],ecx
end:
pop rcx
pop rbx
originalcode_timemod:
readmem(gameAdvanceTimeAOB,5)
//mov eax,2AAAAAAB
exit:
jmp returnhere
///
bManipulateTime:
dd 0
///
gameAdvanceTimeAOB: //"A18.exe"+5828CE:
jmp newmem
returnhere:
///********************************************///
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
je @f
mov dword ptr [bManipulateTime],0
jmp keylistenerend
@@:
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],advanvcetimespeed
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],rewindtimespeed
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],#123456
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
dealloc(newmem)
gameAdvanceTimeAOB: //"A18.exe"+5828CE:
readmem(originalcode_timemod,5)
//db B8 AB AA AA 2A
//Alt: mov eax,2AAAAAAB
unregistersymbol(bManipulateTime)
unregistersymbol(originalcode_timemod)
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
40
"alt_numpad+ : advance time"
808080
1
41
"alt_numpad- : rewind time"
808080
1
42
"days"
0000FF
4 Bytes
pTimeOfDay
-8
43
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
44
"mins"
0000FF
4 Bytes
pTimeOfDay
4
47
"time mod .1a"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeed,2)
define(rewindtimespeed,-2)
aobscanmodule(timeOfDayReadAOB,A18.exe,48 8B 05 ** ** ** ** 48 89 01 48 8B C1 C3)
registersymbol(timeOfDayReadAOB)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
label(bManipulateTime)
registersymbol(bManipulateTime)
alloc(newmem,2048,timeOfDayReadAOB) //"A18.exe"+586D00)
label(returnhere)
label(originalcode_time)
registersymbol(originalcode_time)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
xor rax,rax
db b8
readmem(timeOfDayReadAOB+3,4)
movsxd rax,eax
mov rbx,timeOfDayReadAOB
lea rax,[rbx+rax+7]
mov [pTimeOfDay],rax
cmp dword ptr [bManipulateTime],0
je end
cmp dword ptr [bManipulateTime],#123456
je end
mov ecx,[bManipulateTime]
add ecx,[rax+4]
cmp ecx,#60
jg advhrs
test ecx,ecx
jl rwhrs
mov [rax+4],ecx
jmp end
advhrs:
xor ecx,ecx
mov [rax+4],ecx
mov ecx,[rax]
inc ecx
cmp ecx,#24
jl @f
xor ecx,ecx
inc dword ptr [rax-8]
@@:
mov [rax],ecx
jmp end
rwhrs:
add ecx,#60
mov [rax+4],ecx
mov ecx,[rax]
dec ecx
test ecx,ecx
jge @f
add ecx,#24
dec dword ptr [rax-8]
jns @f
mov dword ptr [rax-8],0
@@:
mov [rax],ecx
end:
pop rcx
pop rbx
reassemble(timeOfDayReadAOB)
exit:
jmp returnhere
///
pTimeOfDay:
dq 0
bManipulateTime:
dd 0
originalcode_time:
readmem(timeOfDayReadAOB,7)
//mov rax,[A18.exe+146E7A0]
///
timeOfDayReadAOB: //"A18.exe"+586D00:
jmp newmem
nop
nop
returnhere:
///********************************************///
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
je @f
mov dword ptr [bManipulateTime],0
jmp keylistenerend
@@:
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],advanvcetimespeed
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],rewindtimespeed
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],#123456
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
dealloc(newmem)
timeOfDayReadAOB: //"A18.exe"+586D00:
readmem(originalcode_time,7)
//db 48 8B 05 99 7A EE 00
//Alt: mov rax,[A18.exe+146E7A0]
unregistersymbol(pTimeOfDay)
unregistersymbol(bAdvanceTime)
unregistersymbol(bRewindTime)
unregistersymbol(originalcode_time)
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
48
"alt_numpad+ : advance time"
808080
1
49
"alt_numpad- : rewind time"
808080
1
50
"days"
0000FF
4 Bytes
pTimeOfDay
-8
51
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
52
"mins"
0000FF
4 Bytes
pTimeOfDay
4
19
"No description"
Byte
1414D59F4
21
"No Description"
4 Bytes
1414D5A10
20
"No Description"
4 Bytes
1414D5A14
46
"tm.2 b"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNotAdvanceTimeAOB,A18.exe,0F 2F C6 ** ** ** ** ** ** 8B ** ** ** ** ** 6B)
registersymbol(cJmpIfNotAdvanceTimeAOB)
aobscanmodule(CJmpIfNotMoving1AOB,A18.exe,0F 57 FF 44 0F 2F C7 ** ** ** ** ** ** F3)
registersymbol(CJmpIfNotMoving1AOB)
alloc(newmem6,2048,CJmpIfNotMoving1AOB+7) //"A18.exe"+389D9E)
label(returnhere6)
label(originalcode6_timemod)
registersymbol(originalcode6_timemod)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
pushfq
cmp dword ptr [bManipulateTime],0
je @f
popfq
jmp cJmpIfNotAdvanceTimeAOB+9
originalcode6:
popfq
reassemble(CJmpIfNotMoving1AOB+7)
//jbe A18.exe+389F13
exit6:
jmp returnhere6
///
originalcode6_timemod:
readmem(CJmpIfNotMoving1AOB+7,6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
jmp newmem6
nop
returnhere6:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
readmem(originalcode6_timemod,6)
//db 0F 86 6F 01 00 00
//Alt: jbe A18.exe+389F13
unregistersymbol(originalcode6_timemod)
22
"tm.2 a 1/3"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(CJmpIfNotMoving1AOB,A18.exe,0F 57 FF 44 0F 2F C7 ** ** ** ** ** ** F3)
registersymbol(CJmpIfNotMoving1AOB)
alloc(newmem6,2048,CJmpIfNotMoving1AOB+7) //"A18.exe"+389D9E)
label(returnhere6)
label(originalcode6_timemod)
registersymbol(originalcode6_timemod)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
pushfq
cmp dword ptr [bManipulateTime],0
je @f
popfq
jmp exit6
originalcode6:
popfq
reassemble(CJmpIfNotMoving1AOB+7)
//jbe A18.exe+389F13
exit6:
jmp returnhere6
///
originalcode6_timemod:
readmem(CJmpIfNotMoving1AOB+7,6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
jmp newmem6
nop
returnhere6:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
readmem(originalcode6_timemod,6)
//db 0F 86 6F 01 00 00
//Alt: jbe A18.exe+389F13
unregistersymbol(originalcode6_timemod)
23
"tm.2 a 2/3"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(CJmpIfNotMoving2AOB,A18.exe,41 0F 2F C8 ** ** ** ** ** ** E8 ** ** ** ** 84)
registersymbol(CJmpIfNotMoving2AOB)
alloc(newmem2,2048,CJmpIfNotMoving2AOB+4) //"A18.exe"+389DB0)
label(returnhere2)
label(originalcode2_timemod)
registersymbol(originalcode2_timemod)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
pushfq
cmp dword ptr [bManipulateTime],0
je @f
popfq
jmp exit2
originalcode2:
popfq
reassemble(CJmpIfNotMoving2AOB+4)
//jbe A18.exe+389F13
exit2:
jmp returnhere2
///
originalcode2_timemod:
readmem(CJmpIfNotMoving2AOB+4,6)
///
CJmpIfNotMoving2AOB+4: //"A18.exe"+389DB0:
jmp newmem2
nop
returnhere2:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem2)
CJmpIfNotMoving2AOB+4: //"A18.exe"+389DB0:
readmem(originalcode2_timemod,6)
//db 0F 86 5D 01 00 00
//Alt: jbe A18.exe+389F13
unregistersymbol(originalcode2_timemod)
24
"tm.2 a 3/3"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNotAdvanceTimeAOB,A18.exe,0F 2F C6 ** ** ** ** ** ** 8B ** ** ** ** ** 6B)
registersymbol(cJmpIfNotAdvanceTimeAOB)
alloc(newmem11,2048,cJmpIfNotAdvanceTimeAOB+3) //"A18.exe"+389E6D)
label(returnhere11)
label(originalcode11_timemod)
registersymbol(originalcode11_timemod)
label(exit11)
newmem11: //this is allocated memory, you have read,write,execute access
//place your code here
pushfq
cmp dword ptr [bManipulateTime],0
je @f
popfq
jmp exit11
originalcode11:
popfq
reassemble(cJmpIfNotAdvanceTimeAOB+3)
//jbe A18.exe+389EF9
exit11:
jmp returnhere11
///
originalcode11_timemod:
readmem(cJmpIfNotAdvanceTimeAOB+3,6)
cJmpIfNotAdvanceTimeAOB+3: //"A18.exe"+389E6D:
jmp newmem11
nop
returnhere11:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem11)
cJmpIfNotAdvanceTimeAOB+3: //"A18.exe"+389E6D:
readmem(originalcode11_timemod,6)
//db 0F 86 86 00 00 00
//Alt: jbe A18.exe+389EF9
unregistersymbol(originalcode11_timemod)
37
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeed,1)
define(rewindtimespeed,-1)
aobscanmodule(gameAdvanceTimeAOB,A18.exe,B8 ** ** ** ** 44 ** ** ** ** ** ** F7 E9)
registersymbol(gameAdvanceTimeAOB)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
label(bManipulateTime)
registersymbol(bManipulateTime)
alloc(newmem,2048,gameAdvanceTimeAOB) //"A18.exe"+5828CE)
label(returnhere)
label(originalcode_timemod)
registersymbol(originalcode_timemod)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
cmp dword ptr [bManipulateTime],0
je end
mov rbx,[pTimeOfDay]
mov r9d,[rbx+4]
cmp dword ptr [bManipulateTime],#123456
je end
mov ecx,[bManipulateTime]
add ecx,r9d
cmp ecx,#60
jg advhrs
test ecx,ecx
jl rwhrs
mov r9d,ecx
jmp end
advhrs:
xor ecx,ecx
mov r9d,ecx
mov ecx,[rbx]
inc ecx
cmp ecx,#24
jl @f
xor ecx,ecx
inc dword ptr [rbx-8]
@@:
mov [rbx],ecx
jmp end
rwhrs:
add ecx,#60
mov r9d,ecx
mov ecx,[rbx]
dec ecx
test ecx,ecx
jge @f
add ecx,#24
dec dword ptr [rbx-8]
jns @f
mov dword ptr [rbx-8],0
@@:
mov [rbx],ecx
end:
pop rcx
pop rbx
originalcode_timemod:
readmem(gameAdvanceTimeAOB,5)
//mov eax,2AAAAAAB
exit:
jmp returnhere
///
pTimeOfDay:
dq 0
bManipulateTime:
dd 0
///
gameAdvanceTimeAOB: //"A18.exe"+5828CE:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
gameAdvanceTimeAOB: //"A18.exe"+5828CE:
readmem(originalcode_timemod,5)
//db B8 AB AA AA 2A
//Alt: mov eax,2AAAAAAB
unregistersymbol(pTimeOfDay)
unregistersymbol(bAdvanceTime)
unregistersymbol(bRewindTime)
unregistersymbol(originalcode_timemod)
45
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeed,1)
define(rewindtimespeed,-1)
label(bManipulateTime)
registersymbol(bManipulateTime)
alloc(newmem,2048,"A18.exe"+582879)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],0
je end
cmp dword ptr [bManipulateTime],#123456
jne @f
xor r15d,r15d
end:
originalcode:
mov [rsp+68],rbx
exit:
jmp returnhere
///
bManipulateTime:
dd 0
///
"A18.exe"+582879:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+582879:
db 48 89 5C 24 68
//Alt: mov [rsp+68],rbx
unregistersymbol(bManipulateTime)
73
"time mod .4"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeed,3)
define(rewindtimespeed,-3)
aobscanmodule(timeOfDayReadAOB,A18.exe,48 8B 05 ** ** ** ** 48 89 01 48 8B C1 C3)
registersymbol(timeOfDayReadAOB)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
label(bManipulateTime)
registersymbol(bManipulateTime)
alloc(newmem,2048,timeOfDayReadAOB) //"A18.exe"+586D00)
label(returnhere)
label(originalcode_time)
registersymbol(originalcode_time)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
xor rax,rax
db b8
readmem(timeOfDayReadAOB+3,4)
movsxd rax,eax
mov rbx,timeOfDayReadAOB
lea rax,[rbx+rax+7]
mov [pTimeOfDay],rax
cmp dword ptr [bManipulateTime],0
je end
cmp dword ptr [bManipulateTime],7FFFFFFF
je end
mov ecx,[bManipulateTime]
add ecx,[rax+4]
cmp ecx,#60
jge advhrs
test ecx,ecx
jl rwhrs
mov [rax+4],ecx
jmp end
advhrs:
xor ecx,ecx
mov [rax+4],ecx
mov ecx,[rax]
inc ecx
cmp ecx,#24
jle @f
xor ecx,ecx
inc dword ptr [rax-8]
@@:
mov [rax],ecx
jmp end
rwhrs:
add ecx,#60
mov [rax+4],ecx
mov ecx,[rax]
dec ecx
//jns @f
//test ecx,ecx
//jge @f
cmp ecx,0
jge @f
add ecx,#24
dec dword ptr [rax-8]
jns @f
mov dword ptr [rax-8],0
@@:
mov [rax],ecx
end:
pop rcx
pop rbx
reassemble(timeOfDayReadAOB)
exit:
jmp returnhere
///
pTimeOfDay:
dq 0
bManipulateTime:
dd 0
originalcode_time:
readmem(timeOfDayReadAOB,7)
//mov rax,[A18.exe+146E7A0]
///
timeOfDayReadAOB: //"A18.exe"+586D00:
jmp newmem
nop
nop
returnhere:
///********************************************///
aobscanmodule(cJmpIfNotAdvanceTimeAOB,A18.exe,0F 2F C6 ** ** ** ** ** ** 8B ** ** ** ** ** 6B)
registersymbol(cJmpIfNotAdvanceTimeAOB)
aobscanmodule(CJmpIfNotMoving1AOB,A18.exe,0F 57 FF 44 0F 2F C7 ** ** ** ** ** ** F3)
registersymbol(CJmpIfNotMoving1AOB)
alloc(newmem6,2048,CJmpIfNotMoving1AOB+7) //"A18.exe"+389D9E)
label(returnhere6)
label(originalcode6_timemod)
registersymbol(originalcode6_timemod)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
pushfq
cmp dword ptr [bManipulateTime],0
je @f
popfq
jmp cJmpIfNotAdvanceTimeAOB+9
originalcode6:
popfq
reassemble(CJmpIfNotMoving1AOB+7)
//jbe A18.exe+389F13
exit6:
jmp returnhere6
///
originalcode6_timemod:
readmem(CJmpIfNotMoving1AOB+7,6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
jmp newmem6
nop
returnhere6:
///********************************************///
aobscanmodule(gameAdvanceTimeCalculateAOB,A18.exe,48 89 ** ** ** 48 89 ** ** ** 45 03 CF)
registersymbol(gameAdvanceTimeCalculateAOB)
alloc(newmem18,2048,gameAdvanceTimeCalculateAOB) //"A18.exe"+582879)
label(returnhere18)
label(originalcode18_timemod)
registersymbol(originalcode18_timemod)
label(exit18)
newmem18: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],0
je @f
xor r15d,r15d
originalcode18_timemod:
readmem(gameAdvanceTimeCalculateAOB,5)
//mov [rsp+68],rbx
exit18:
jmp returnhere18
///
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
jmp newmem18
returnhere18:
///********************************************///
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
je @f
mov dword ptr [bManipulateTime],0
jmp keylistenerend
@@:
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],advanvcetimespeed
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov dword ptr [bManipulateTime],rewindtimespeed
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],7FFFFFFF
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
dealloc(newmem)
timeOfDayReadAOB: //"A18.exe"+586D00:
readmem(originalcode_time,7)
//db 48 8B 05 99 7A EE 00
//Alt: mov rax,[A18.exe+146E7A0]
unregistersymbol(pTimeOfDay)
unregistersymbol(bAdvanceTime)
unregistersymbol(bRewindTime)
unregistersymbol(originalcode_time)
///********************************************///
dealloc(newmem6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
readmem(originalcode6_timemod,6)
//db 0F 86 6F 01 00 00
//Alt: jbe A18.exe+389F13
unregistersymbol(originalcode6_timemod)
///********************************************///
dealloc(newmem18)
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
readmem(originalcode18_timemod,5)
//db 48 89 5C 24 68
//Alt: mov [rsp+68],rbx
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
74
"alt : stop time"
808080
1
75
"bManipulateTime"
1
808080
4 Bytes
bManipulateTime
76
"alt_numpad+ : advance time"
808080
1
77
"alt_numpad- : rewind time"
808080
1
78
"days"
0000FF
4 Bytes
pTimeOfDay
-8
79
"hrs"
0000FF
4 Bytes
pTimeOfDay
0
80
"mins"
0000FF
4 Bytes
pTimeOfDay
4
83
"No description"
Float
DINPUT8.dll+2C810
84
"No description"
Byte
7FEECDCC811
85
"No description"
4 Bytes
812D49F0
86
"No description"
4 Bytes
8139344C
87
"No description"
4 Bytes
812D4A00
88
"No description"
4 Bytes
81393450
99
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfEnoughMPInBattleSkillMenuAccessAOB,A18.exe,7D ** 0F AF C5)
registersymbol(cJmpIfEnoughMPInBattleSkillMenuAccessAOB)
cJmpIfEnoughMPInBattleSkillMenuAccessAOB: //"A18.exe"+51B0D1:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfEnoughMPInBattleSkillMenuAccessAOB: //"A18.exe"+51B0D1:
db 7D
//Alt: jnl
100
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNotEnoughMPOnBattleSkillSelectAOB,A18.exe,0F 8C ** ** ** ** 33 DB 48 ** ** ** ** 48)
registersymbol(cJmpIfNotEnoughMPOnBattleSkillSelectAOB)
alloc(originalcode2_ignoremp,6)
registersymbol(originalcode2_ignoremp)
originalcode2_ignoremp:
readmem(cJmpIfNotEnoughMPOnBattleSkillSelectAOB,6)
cJmpIfNotEnoughMPOnBattleSkillSelectAOB: //"A18.exe"+524100:
db 90 90 90 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfNotEnoughMPOnBattleSkillSelectAOB: //"A18.exe"+524100:
readmem(originalcode2_ignoremp,6)
//db 0F 8C 98 01 00 00
//Alt: jl A18.exe+52429E
dealloc(originalcode2_ignoremp)
unregistersymbol(originalcode2_ignoremp)
102
"No Description"
4 Bytes
813456AC
108
"[battle related] .1"
000080
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(statsReadInBattleAOB,A18.exe,8B 74 81 ** 8D ** ** 83)
registersymbol(statsReadInBattleAOB)
label(pPlayer)
registersymbol(pPlayer)
alloc(newmem,2048,statsReadInBattleAOB) //"A18.exe"+4F7260)
label(returnhere)
label(originalcode_battlerelated)
registersymbol(originalcode_battlerelated)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pPlayer],rcx
cmp eax,2
jne @f
//mov rsi,A18.exe+51e75e
//cmp [rsp+28],rsi
//je @f
//mov esi,[rcx+rax*4+68]
originalcode_battlerelated:
readmem(statsReadInBattleAOB,7)
//mov esi,[rcx+rax*4+68]
//lea eax,[rdx-06]
exit:
jmp returnhere
///
pPlayer:
///
statsReadInBattleAOB: //"A18.exe"+4F7260:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
statsReadInBattleAOB: //"A18.exe"+4F7260:
readmem(originalcode_battlerelated,7)
//db 8B 74 81 68 8D 42 FA
//Alt: mov esi,[rcx+rax*4+68]
//Alt: lea eax,[rdx-06]
unregistersymbol(pPlayer)
unregistersymbol(originalcode_battlerelated)
104
"No description"
4 Bytes
A18.exe+14D59FC+0
105
"No description"
4 Bytes
A18.exe+14D59FC+4
106
"No description"
4 Bytes
A18.exe+14D59FC+8
107
"No description"
Byte
1414D588C
113
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(playerStatsReadInYMenuAOB,A18.exe,8B 44 81 ** C3 83)
registersymbol(playerStatsReadInYMenuAOB)
label(pHighlightedPlayer)
registersymbol(pHighlightedPlayer)
alloc(newmem2,2048,playerStatsReadInYMenuAOB) //"A18.exe"+439D1B)
label(returnhere2)
label(originalcode2_enable)
registersymbol(originalcode2_enable)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedPlayer],rcx
originalcode2_enable:
readmem(playerStatsReadInYMenuAOB,5)
//mov eax,[rcx+rax*4+0C]
ret
exit2:
jmp returnhere2
///
pHighlightedPlayer:
///
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
jmp newmem2
returnhere2:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem2)
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
readmem(originalcode2_enable,5)
//db 8B 44 81 0C C3
//Alt: mov eax,[rcx+rax*4+0C]
//Alt: ret
unregistersymbol(originalcode2_enable)
unregistersymbol(pHighlightedPlayer)
160
"[enable] .2"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(statsReadInBattleAOB,A18.exe,8B 74 81 ** 8D ** ** 83)
registersymbol(statsReadInBattleAOB)
label(pBattlePlayer)
registersymbol(pBattlePlayer)
alloc(newmem,2048,statsReadInBattleAOB) //"A18.exe"+4F7260)
label(returnhere)
label(originalcode_enable)
registersymbol(originalcode_enable)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pBattlePlayer],rcx
cmp eax,2
jne @f
//mov rsi,A18.exe+51e75e
//cmp [rsp+28],rsi
//je @f
//mov esi,[rcx+rax*4+68]
originalcode_enable:
readmem(statsReadInBattleAOB,7)
//mov esi,[rcx+rax*4+68]
//lea eax,[rdx-06]
exit:
jmp returnhere
///
pBattlePlayer:
///
statsReadInBattleAOB: //"A18.exe"+4F7260:
jmp newmem
nop
nop
returnhere:
///**************************///
aobscanmodule(playerStatsReadInYMenuAOB,A18.exe,8B 44 81 ** C3 83)
registersymbol(playerStatsReadInYMenuAOB)
label(pHighlightedPlayer)
registersymbol(pHighlightedPlayer)
alloc(newmem2,2048,playerStatsReadInYMenuAOB) //"A18.exe"+439D1B)
label(returnhere2)
label(originalcode2_enable)
registersymbol(originalcode2_enable)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedPlayer],rcx
originalcode2_enable:
readmem(playerStatsReadInYMenuAOB,5)
//mov eax,[rcx+rax*4+0C]
ret
exit2:
jmp returnhere2
///
pHighlightedPlayer:
///
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
jmp newmem2
returnhere2:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
statsReadInBattleAOB: //"A18.exe"+4F7260:
readmem(originalcode_enable,7)
//db 8B 74 81 68 8D 42 FA
//Alt: mov esi,[rcx+rax*4+68]
//Alt: lea eax,[rdx-06]
unregistersymbol(pBattlePlayer)
unregistersymbol(originalcode_enable)
///**************************///
dealloc(newmem2)
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
readmem(originalcode2_enable,5)
//db 8B 44 81 0C C3
//Alt: mov eax,[rcx+rax*4+0C]
//Alt: ret
unregistersymbol(originalcode2_enable)
unregistersymbol(pHighlightedPlayer)
161
"time mod .5"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(advanvcetimespeeddefault,3)
define(rewindtimespeeddefault,-3)
aobscanmodule(timeOfDayReadAOB,A18.exe,48 8B 05 ** ** ** ** 48 89 01 48 8B C1 C3)
registersymbol(timeOfDayReadAOB)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
label(bManipulateTime)
registersymbol(bManipulateTime)
label(bResetHrsInRw)
registersymbol(bResetHrsInRw)
label(iAdvanceTimeSpeed)
registersymbol(iAdvanceTimeSpeed)
label(iRewindTimeSpeed)
registersymbol(iRewindTimeSpeed)
alloc(newmem,2048,timeOfDayReadAOB) //"A18.exe"+586D00)
label(returnhere)
label(originalcode_time)
registersymbol(originalcode_time)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
xor rax,rax
db b8
readmem(timeOfDayReadAOB+3,4)
movsxd rax,eax
mov rbx,timeOfDayReadAOB
lea rax,[rbx+rax+7]
mov [pTimeOfDay],rax
cmp dword ptr [bManipulateTime],0
je end
cmp dword ptr [bManipulateTime],7FFFFFFF
je end
mov ecx,[bManipulateTime]
add ecx,[rax+4]
cmp ecx,#60
jge advhrs
cmp ecx,0
jl rwhrs
mov [rax+4],ecx
jmp end
advhrs:
xor ecx,ecx
mov [rax+4],ecx
mov ecx,[rax]
inc ecx
cmp ecx,#24
jl @f
//xor ecx,ecx
mov byte ptr [bResetHrsInRw],2
inc dword ptr [rax-8]
@@:
mov [rax],ecx
jmp end
rwhrs:
add ecx,#60
mov [rax+4],ecx
mov ecx,[rax]
dec ecx
//jns @f
//test ecx,ecx
//jge @f
///cmp ecx,0
///jge @f
jns @f
//mov ecx,#23
mov byte ptr [bResetHrsInRw],1
dec dword ptr [rax-8]
jns @f
mov dword ptr [rax-8],0
@@:
mov [rax],ecx
end:
pop rcx
pop rbx
reassemble(timeOfDayReadAOB)
exit:
jmp returnhere
///
pTimeOfDay:
dq 0
bManipulateTime:
dd 0
bResetHrsInRw:
dd 0
iAdvanceTimeSpeed:
dd advanvcetimespeeddefault
iRewindTimeSpeed:
dd rewindtimespeeddefault
originalcode_time:
readmem(timeOfDayReadAOB,7)
//mov rax,[A18.exe+146E7A0]
///
timeOfDayReadAOB: //"A18.exe"+586D00:
jmp newmem
nop
nop
returnhere:
///********************************************///
aobscanmodule(cJmpIfNotAdvanceTimeAOB,A18.exe,0F 2F C6 ** ** ** ** ** ** 8B ** ** ** ** ** 6B)
registersymbol(cJmpIfNotAdvanceTimeAOB)
aobscanmodule(CJmpIfNotMoving1AOB,A18.exe,0F 57 FF 44 0F 2F C7 ** ** ** ** ** ** F3)
registersymbol(CJmpIfNotMoving1AOB)
alloc(newmem6,2048,CJmpIfNotMoving1AOB+7) //"A18.exe"+389D9E)
label(returnhere6)
label(originalcode6_timemod)
registersymbol(originalcode6_timemod)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
pushfq
cmp dword ptr [bManipulateTime],0
je @f
popfq
jmp cJmpIfNotAdvanceTimeAOB+9
originalcode6:
popfq
reassemble(CJmpIfNotMoving1AOB+7)
//jbe A18.exe+389F13
exit6:
jmp returnhere6
///
originalcode6_timemod:
readmem(CJmpIfNotMoving1AOB+7,6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
jmp newmem6
nop
returnhere6:
///********************************************///
aobscanmodule(gameAdvanceTimeCalculateAOB,A18.exe,48 89 ** ** ** 48 89 ** ** ** 45 03 CF)
registersymbol(gameAdvanceTimeCalculateAOB)
alloc(newmem18,2048,gameAdvanceTimeCalculateAOB) //"A18.exe"+582879)
label(returnhere18)
label(originalcode18_timemod)
registersymbol(originalcode18_timemod)
label(exit18)
newmem18: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],0
je originalcode18_timemod
xor r15d,r15d
push rax
mov rax,[pTimeOfDay]
cmp byte ptr [bResetHrsInRw],1
jne @f
mov byte ptr [bResetHrsInRw],0
mov dword ptr [rax],#23
jmp end18
@@:
cmp byte ptr [bResetHrsInRw],2
jne @f
mov byte ptr [bResetHrsInRw],0
mov dword ptr [rax],0
end18:
pop rax
originalcode18_timemod:
readmem(gameAdvanceTimeCalculateAOB,5)
//mov [rsp+68],rbx
exit18:
jmp returnhere18
///
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
jmp newmem18
returnhere18:
///********************************************///
label(bEndThread_timeOfDay_keylistener_mem)
registersymbol(bEndThread_timeOfDay_keylistener_mem)
alloc(timeOfDay_keylistener_mem,2048,"A18.exe")
registersymbol(timeOfDay_keylistener_mem)
createthread(timeOfDay_keylistener_mem)
label(keylistenerstart)
label(keylistenerend)
label(keylistenerexit)
timeOfDay_keylistener_mem:
sub rsp,28
keylistenerstart:
mov rcx,12 //ALT key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
je @f
mov dword ptr [bManipulateTime],0
jmp keylistenerend
@@:
mov rcx,6B //Add key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov eax,[iAdvanceTimeSpeed]
mov [bManipulateTime],eax
jmp keylistenerend
@@:
mov rcx,6D //Subtract key
push rcx
call GetAsyncKeyState
add rsp,08
shr ax,#15
cmp ax,1
jne @f
mov eax,[iRewindTimeSpeed]
mov [bManipulateTime],eax
jmp keylistenerend
@@:
mov dword ptr [bManipulateTime],7FFFFFFF
keylistenerend:
mov rcx,#100
call Sleep
cmp dword ptr [bEndThread_timeOfDay_keylistener_mem],1
jne keylistenerstart
keylistenerexit:
add rsp,28
mov dword ptr [bEndThread_timeOfDay_keylistener_mem],2
ret
///
bEndThread_timeOfDay_keylistener_mem:
dd 0
///
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//obtained from SubBeam's ACS script - start//
{$lua}
if( syntaxcheck == false ) then --actual execution
local starttime = getTickCount()
if readInteger( "bEndThread_timeOfDay_keylistener_mem" ) == 0 then --could be 2 already
writeInteger( "bEndThread_timeOfDay_keylistener_mem", 1 ) --tell the thread to kill itself
end
while( getTickCount() < starttime + 1000 ) and ( readInteger( "bEndThread_timeOfDay_keylistener_mem" ) ~=2 ) do --wait till it has finished
sleep( 20 )
end
if( getTickCount() > starttime + 1000 ) then --could happen when the window is shown
showMessage( 'Disabling the thread failed!' )
error( 'Thread disabling failed!' )
end
sleep( 1 )
end
{$asm}
//obtained from SubBeam's ACS script - end//
//bEndThread_timeOfDay_keylistener_mem:
//dd 1
///********************************************///
dealloc(newmem)
timeOfDayReadAOB: //"A18.exe"+586D00:
readmem(originalcode_time,7)
//db 48 8B 05 99 7A EE 00
//Alt: mov rax,[A18.exe+146E7A0]
unregistersymbol(pTimeOfDay)
unregistersymbol(bManipulateTime)
unregistersymbol(bResetHrsInRw)
unregistersymbol(iAdvanceTimeSpeed)
unregistersymbol(iRewindTimeSpeed)
unregistersymbol(originalcode_time)
///********************************************///
dealloc(newmem6)
CJmpIfNotMoving1AOB+7: //"A18.exe"+389D9E:
readmem(originalcode6_timemod,6)
//db 0F 86 6F 01 00 00
//Alt: jbe A18.exe+389F13
unregistersymbol(originalcode6_timemod)
///********************************************///
dealloc(newmem18)
gameAdvanceTimeCalculateAOB: //"A18.exe"+582879:
readmem(originalcode18_timemod,5)
//db 48 89 5C 24 68
//Alt: mov [rsp+68],rbx
///********************************************///
unregistersymbol(bEndThread_timeOfDay_keylistener_mem)
dealloc(timeOfDay_keylistener_mem)
unregistersymbol(timeOfDay_keylistener_mem)
164
"No description"
String
5
0
1
84F6AEE8
165
"No description"
String
5
0
1
84F64E88
166
"-"
String
5
0
1
84F45548
167
"No description"
String
5
0
1
84F08BE8
168
"No description"
String
5
0
1
856114A0
169
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(afterPlayerNameFetchInYMenuAOB,A18.exe,44 8B ** ** 45 33 C0 41 ** ** 48)
registersymbol(afterPlayerNameFetchInYMenuAOB)
label(pHighlightedPlayerName)
registersymbol(pHighlightedPlayerName)
alloc(newmem6,2048,afterPlayerNameFetchInYMenuAOB) //"A18.exe"+2B0988)
label(returnhere6)
label(originalcode6_enable)
registersymbol(originalcode6_enable)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedPlayerName],rdx
originalcode6_enable:
readmem(afterPlayerNameFetchInYMenuAOB,7)
//mov r13d,[rbp+04]
//xor r8d,r8d
exit6:
jmp returnhere6
///
pHighlightedPlayerName:
///
afterPlayerNameFetchInYMenuAOB: //"A18.exe"+2B0988:
jmp newmem6
nop
nop
returnhere6:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem6)
afterPlayerNameFetchInYMenuAOB: //"A18.exe"+2B0988:
readmem(originalcode6_enable,7)
//db 44 8B 6D 04 45 33 C0
//Alt: mov r13d,[rbp+04]
//Alt: xor r8d,r8d
unregistersymbol(originalcode6_enable)
unregistersymbol(pHighlightedPlayerName)
174
"No description"
4 Bytes
A18.exe+143A678
175
"No description"
4 Bytes
a18.exe+[alchemyLvReadOnAlchemyMenuAccessAOB+3]
187
"No description"
Float
8115035C
188
"-"
4 Bytes
81150360
189
"No description"
4 Bytes
81150368
190
"No description"
4 Bytes
81150398
191
"No description"
Float
81334F9C
192
"No description"
Float
81334FB8
193
"No description"
Float
813D7910
194
"No description"
Float
DB2A8C3C
195
"No description"
Float
DB2A8C58
196
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(chainLinkGaugeReadAOB,A18.exe,8B 49 ** F3 0F 2C C2)
registersymbol(chainLinkGaugeReadAOB)
label(pChainLinkGauge)
registersymbol(pChainLinkGauge)
alloc(newmem17,2048,chainLinkGaugeReadAOB) //"A18.exe"+51474E)
label(returnhere17)
label(originalcode17_enable)
registersymbol(originalcode17_enable)
label(exit17)
newmem17: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pChainLinkGauge],rcx
originalcode17_enable:
readmem(chainLinkGaugeReadAOB,7)
//mov ecx,[rcx+40]
//cvttss2si eax,xmm2
exit17:
jmp returnhere17
///
pChainLinkGauge:
///
chainLinkGaugeReadAOB: //"A18.exe"+51474E:
jmp newmem17
nop
nop
returnhere17:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem17)
chainLinkGaugeReadAOB: //"A18.exe"+51474E:
readmem(originalcode17_enable,7)
//db 8B 49 40 F3 0F 2C C2
//Alt: mov ecx,[rcx+40]
//Alt: cvttss2si eax,xmm2
unregistersymbol(originalcode17_enable)
unregistersymbol(pChainLinkGauge)
806
"No description"
Byte
1414707F0
861
"No Description"
Float
8131284C
862
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+3E6DDA)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
movss xmm0,[haha]
jmp exit
originalcode:
movss xmm0,[rcx+04]
exit:
jmp returnhere
///
haha:
dd (float)1000
///
"A18.exe"+3E6DDA:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+3E6DDA:
db F3 0F 10 41 04
//Alt: movss xmm0,[rcx+04]
863
"pass c rank limit check (for display only?)"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(setItemRankLimitAOB,A18.exe,F3 0F 2C E8 3B E8 0F 4F E8)
registersymbol(setItemRankLimitAOB)
setItemRankLimitAOB+6: //"A18.exe"+3E6E01:
db 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
setItemRankLimitAOB+6: //"A18.exe"+3E6E01:
db 0F 4F E8
//Alt: cmovg ebp,eax
864
"No description"
String
13
0
1
84F96E88
866
"traits name fetch start"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
//traits name fetch start
label(bTraitsNameFetch)
registersymbol(bTraitsNameFetch)
label(dHighlightedItemTraitsNameIndex)
registersymbol(dHighlightedItemTraitsNameIndex)
label(pHighlightedItemTraitsName)
registersymbol(pHighlightedItemTraitsName)
alloc(newmem2,2048,"A18.exe"+3D0B9F)
label(returnhere2)
label(originalcode2)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
mov byte ptr [bTraitsNameFetch],1
originalcode2:
mov ebx,eax
mov rdx,[rdi]
exit2:
jmp returnhere2
///
bTraitsNameFetch:
dd 0
dHighlightedItemTraitsNameIndex:
dd 0
pHighlightedItemTraitsName:
///
"A18.exe"+3D0B9F:
jmp newmem2
returnhere2:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem2)
"A18.exe"+3D0B9F:
db 8B D8 48 8B 17
//Alt: mov ebx,eax
//Alt: mov rdx,[rdi]
unregistersymbol(bTraitsNameFetch)
unregistersymbol(pHighlightedItemTraitsName)
867
"traits name fetch"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
//some text fetch
alloc(newmem6,2048,"A18.exe"+4041B5)
label(returnhere6)
label(originalcode6)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
cmp byte ptr [bTraitsNameFetch],1
jne @f
mov byte ptr [bTraitsNameFetch],0
mov rdx,pHighlightedItemTraitsName
mov ecx,[dHighlightedItemTraitsNameIndex]
movsxd rcx,ecx
mov [rdx+rcx*8],rax
inc ecx
mov [dHighlightedItemTraitsNameIndex],ecx
originalcode6:
mov rdx,rax
mov rcx,rbx
exit6:
jmp returnhere6
///
"A18.exe"+4041B5:
jmp newmem6
nop
returnhere6:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem6)
"A18.exe"+4041B5:
db 48 8B D0 48 8B CB
//Alt: mov rdx,rax
//Alt: mov rcx,rbx
865
"traits name fetch end"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem11,2048,"A18.exe"+3D0BDD)
label(returnhere11)
label(originalcode11)
label(exit11)
newmem11: //this is allocated memory, you have read,write,execute access
//place your code here
mov eax,[dHighlightedItemTraitsNameIndex]
movsxd rax,eax
cmp rax,7
jge clearindex
mov rcx,pHighlightedItemTraitsName
xor rbx,rbx
mov r14,7
@@:
mov [rcx+rax*8],rbx
inc rax
cmp rax,r14
jl @b
clearindex:
xor eax,eax
mov [dHighlightedItemTraitsNameIndex],eax
originalcode11:
mov rax,[r15+08]
mov r14d,[rax+00000324]
exit11:
jmp returnhere11
///
"A18.exe"+3D0BDD:
jmp newmem11
nop
nop
nop
nop
nop
nop
returnhere11:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem11)
"A18.exe"+3D0BDD:
db 49 8B 47 08 44 8B B0 24 03 00 00
//Alt: mov rax,[r15+08]
//Alt: mov r14d,[rax+00000324]
868
"name"
0000FF
String
128
0
1
pHighlightedItemTraitsName+0*8
0
869
"name"
0000FF
String
128
0
1
pHighlightedItemTraitsName+0+1*8
0
870
"name"
0000FF
String
128
0
1
pHighlightedItemTraitsName+0+2*8
0
871
"No description"
String
10
0
1
84FE1128
877
"traits name fetch container"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
//some text fetch 2
alloc(newmem24,2048,"A18.exe"+404334)
label(returnhere24)
label(originalcode24)
label(exit24)
newmem24: //this is allocated memory, you have read,write,execute access
//place your code here
cmp byte ptr [bTraitsNameFetch],1
jne @f
mov byte ptr [bTraitsNameFetch],0
mov rdi,pHighlightedItemTraitsName
mov ebx,[dHighlightedItemTraitsNameIndex]
movsxd rbx,ebx
mov [rdi+rbx*8],rdx
inc ebx
mov [dHighlightedItemTraitsNameIndex],ebx
originalcode24:
xor ebx,ebx
mov rdi,rdx
exit24:
jmp returnhere24
///
"A18.exe"+404334:
jmp newmem24
returnhere24:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem24)
"A18.exe"+404334:
db 33 DB 48 8B FA
//Alt: xor ebx,ebx
//Alt: mov rdi,rdx
872
"No description"
String
10
0
1
850A0AAC
873
"No description"
String
10
0
1
856173C0
874
"No description"
String
14
0
1
84EE6388
875
"No description"
String
14
0
1
84FE6728
876
"traits name fetch start container"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem17,2048,"A18.exe"+3D0C62)
label(returnhere17)
label(originalcode17)
label(exit17)
newmem17: //this is allocated memory, you have read,write,execute access
//place your code here
mov byte ptr [bTraitsNameFetch],1
originalcode17:
mov edx,eax
mov rcx,rsi
exit17:
jmp returnhere17
///
"A18.exe"+3D0C62:
jmp newmem17
returnhere17:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem17)
"A18.exe"+3D0C62:
db 8B D0 48 8B CE
//Alt: mov edx,eax
//Alt: mov rcx,rsi
880
"traits name fetch end container -"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem32,2048,"A18.exe"+3D0C14)
label(returnhere32)
label(originalcode32)
label(exit32)
newmem32: //this is allocated memory, you have read,write,execute access
//place your code here
push rax
push rbx
mov eax,[dHighlightedItemTraitsNameIndex]
movsxd rax,eax
cmp rax,7
jge clearindex
mov rcx,pHighlightedItemTraitsName
xor rbx,rbx
mov rdx,7
@@:
mov [rcx+rax*8],rbx
inc rax
cmp rax,rdx
jl @b
clearindex:
xor eax,eax
mov [dHighlightedItemTraitsNameIndex],eax
originalcode32:
pop rbx
pop rax
mov rdx,[rbx]
mov rcx,rbx
exit32:
jmp returnhere32
"A18.exe"+3D0C14:
jmp newmem32
nop
returnhere32:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem32)
"A18.exe"+3D0C14:
db 48 8B 13 48 8B CB
//Alt: mov rdx,[rbx]
//Alt: mov rcx,rbx
878
"No description"
String
14
0
1
856173C0
879
"No description"
String
14
0
1
84FE6728
929
"No description"
Byte
141470919
930
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+13A6AA:
db 90 E9
//Alt: nop
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
"A18.exe"+13A6AA:
db 0F 84
//Alt: je
931
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+13A71D:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
"A18.exe"+13A71D:
db 74
//Alt: je
932
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(itemCountDecOnFieldUseAOB,A18.exe,FE 4B 25 B9)
registersymbol(itemCountDecOnFieldUseAOB)
alloc(newmem,2048,itemCountDecOnFieldUseAOB) //"A18.exe"+13A71F)
label(returnhere)
label(originalcode_infitemusage)
registersymbol(originalcode_infitemusage)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov cl,[rbx+26]
mov [rbx+25],cl
readmem(itemCountDecOnFieldUseAOB+3,5)
exit:
jmp returnhere
///
originalcode_infitemusage:
readmem(itemCountDecOnFieldUseAOB,8)
//dec [rbx+25]
//mov ecx,00000228
///
itemCountDecOnFieldUseAOB: //"A18.exe"+13A71F:
jmp newmem
nop
nop
nop
returnhere:
///*****************************************///
aobscanmodule(itemUsageInBattleCallAOB,A18.exe,40 53 48 83 EC 20 BA ** ** ** ** 48 ** ** E8 ** ** ** ** 84)
registersymbol(itemUsageInBattleCallAOB)
itemUsageInBattleCallAOB: //"A18.exe"+3E90A0:
db 90 90 90 30 c0 c3
//Alt: nop
//Alt: nop
//Alt: nop
//Alt: xor al,al
//Alt: ret
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
itemCountDecOnFieldUseAOB: //"A18.exe"+13A71F:
readmem(originalcode_infitemusage,8)
//db FE 4B 25 B9 28 02 00 00
//Alt: dec [rbx+25]
//Alt: mov ecx,00000228
unregistersymbol(originalcode_infitemusage)
///*****************************************///
itemUsageInBattleCallAOB: //"A18.exe"+3E90A0:
db 40 53 48 83 EC 20
//Alt: push rbx
//Alt: sub rsp,20
935
"money ret check"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
label(dMoneyRetIndex)
registersymbol(dMoneyRetIndex)
label(pMoneyRet)
registersymbol(pMoneyRet)
alloc(newmem,2048,"A18.exe"+586076)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rax
push rbx
push rcx
mov rax,[rsp+18]
mov rbx,pMoneyRet
mov ecx,[dMoneyRetIndex]
cmp ecx,#20
jg @f
movsxd rcx,ecx
cmp [rbx+rcx*8-8],rax
je @f
mov [rbx+rcx*8],rax
inc rcx
mov [dMoneyRetIndex],ecx
@@:
pop rcx
pop rbx
pop rax
originalcode:
ret
int 3
int 3
int 3
int 3
exit:
jmp returnhere
///
dMoneyRetIndex:
dd 0
pMoneyRet:
///
"A18.exe"+586076:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+586076:
db C3 CC CC CC CC
//Alt: ret
//Alt: int 3
//Alt: int 3
//Alt: int 3
//Alt: int 3
unregistersymbol(dMoneyRetIndex)
unregistersymbol(pMoneyRet)
936
"[MoneyRet]"
0000FF
Array of byte
0
pMoneyRet
937
"1"
1
0000FF
8 Bytes
+0*8
938
"2"
1
0000FF
8 Bytes
+1*8
939
"3"
1
0000FF
8 Bytes
+2*8
940
"4"
1
0000FF
8 Bytes
+3*8
941
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+47C04D:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+47C04D:
db 74 07
//Alt: je A18.exe+47C056
943
"No description"
Byte
85A0A03C
944
"No description"
Byte
A18.exe+1459274
946
"No description"
Byte
8599711C
947
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(setMaxShopItemQuantityAllowedForBulkSaleAOB,A18.exe,39 5E ** 0F 4C 5E ** E8)
registersymbol(setMaxShopItemQuantityAllowedForBulkSaleAOB)
setMaxShopItemQuantityAllowedForBulkSaleAOB+3: //"A18.exe"+47C0FF:
db 90 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
setMaxShopItemQuantityAllowedForBulkSaleAOB+3: //"A18.exe"+47C0FF:
db 0F 4C 5E 38
//Alt: cmovl ebx,[rsi+38]
950
"No description"
2 Bytes
A26E021C
951
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+4CD2C0)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
movsxd rax,ecx
lea rcx,[A18.exe+1437B80]
exit:
jmp returnhere
///
"A18.exe"+4CD2C0:
jmp newmem
nop
nop
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+4CD2C0:
db 48 63 C1 48 8D 0D B6 A8 F6 00
//Alt: movsxd rax,ecx
//Alt: lea rcx,[A18.exe+1437B80]
952
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(friendshipCalAOB,A18.exe,0F 57 C9 48 03 C0)
registersymbol(friendshipCalAOB)
label(pFriendshipBase)
registersymbol(pFriendshipBase)
label(pHighlightedFriendship)
registersymbol(pHighlightedFriendship)
alloc(newmem24,2048,friendshipCalAOB) //"A18.exe"+4CD2CA)
label(returnhere24)
label(originalcode24)
label(exit24)
newmem24: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pFriendshipBase],rcx
push rax
push rbx
add rax,rax
lea rbx,[rcx+rax*8]
mov [pHighlightedFriendship],rbx
pop rbx
pop rax
originalcode24:
xorps xmm1,xmm1
add rax,rax
exit24:
jmp returnhere24
///
pFriendshipBase:
dq 0
pHighlightedFriendship:
dq 0
///
friendshipCalAOB: //"A18.exe"+4CD2CA:
jmp newmem24
nop
returnhere24:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem24)
friendshipCalAOB: //"A18.exe"+4CD2CA:
db 0F 57 C9 48 03 C0
//Alt: xorps xmm1,xmm1
//Alt: add rax,rax
unregistersymbol(pFriendshipBase)
unregistersymbol(pHighlightedFriendship)
960
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+23CA61)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
xor dl,dl
originalcode:
setl dl
call A18.exe+4AFCC0
exit:
jmp returnhere
///
"A18.exe"+23CA61:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+23CA61:
db 0F 9C C2 E8 57 32 27 00
//Alt: setl dl
//Alt: call A18.exe+4AFCC0
962
"-"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(alchemyLvlChkOnAlcemyMenuAccess1AOB,A18.exe,39 48 64 0F 9E C0 48)
registersymbol(alchemyLvlChkOnAlcemyMenuAccess1AOB)
alchemyLvlChkOnAlcemyMenuAccess1AOB: //"A18.exe"+41B6E0:
db 48 85 C0
//Alt: test rax,rax
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
alchemyLvlChkOnAlcemyMenuAccess1AOB: //"A18.exe"+41B6E0:
db 39 48 64
//Alt: cmp [rax+64],ecx
963
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+41B6E3:
db 90 B0 01
//Alt: nop
//Alt: mov al,1
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
"A18.exe"+41B6E3:
db 0F 9E C0
//Alt: setle al
964
"-"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(alchemyLvlChkOnAlcemyMenuAccess2AOB,A18.exe,39 48 64 0F 9E C0 84 ** ** ** ** ** ** ** 41)
registersymbol(alchemyLvlChkOnAlcemyMenuAccess2AOB)
alchemyLvlChkOnAlcemyMenuAccess2AOB: //"A18.exe"+41B946:
db 48 85 C0
//Alt: test rax,rax
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
alchemyLvlChkOnAlcemyMenuAccess2AOB: //"A18.exe"+41B946:
db 39 48 64
//Alt: cmp [rax+64],ecx
965
"-"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB,A18.exe,41 39 56 ** 7E)
registersymbol(cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB)
cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB+4: //"A18.exe"+23E5B8:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB+4: //"A18.exe"+23E5B8:
db 7E
//Alt: jle
966
"+"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfEnoughAlchemyLclOnRecipeSelectAOB,A18.exe,39 50 ** 7E ** BA)
registersymbol(cJmpIfEnoughAlchemyLclOnRecipeSelectAOB)
cJmpIfEnoughAlchemyLclOnRecipeSelectAOB+3: //"A18.exe"+23C6B3:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
cJmpIfEnoughAlchemyLclOnRecipeSelectAOB+3: //"A18.exe"+23C6B3:
db 7E
//Alt: jle
967
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(itemSizeReadOnHighlightedInAlchemyFinalAOB,A18.exe,49 8B 4E ** 0F B7 5D ** E8 ** ** ** ** 4C)
registersymbol(itemSizeReadOnHighlightedInAlchemyFinalAOB)
alloc(newmem2,2048,itemSizeReadOnHighlightedInAlchemyFinalAOB) //"A18.exe"+22F569)
label(returnhere2)
label(originalcode2_pointers)
registersymbol(originalcode2_pointers)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedItemEquip],rbp
originalcode2_pointers:
readmem(itemSizeReadOnHighlightedInAlchemyFinalAOB,8)
//mov rcx,[r14+20]
//movzx ebx,word ptr [rbp+22]
exit2:
jmp returnhere2
///
itemSizeReadOnHighlightedInAlchemyFinalAOB: //"A18.exe"+22F569:
jmp newmem2
nop
nop
nop
returnhere2:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem2)
itemSizeReadOnHighlightedInAlchemyFinalAOB: //"A18.exe"+22F569:
readmem(originalcode2_pointers,8)
//db 49 8B 4E 20 0F B7 5D 22
//Alt: mov rcx,[r14+20]
//Alt: movzx ebx,word ptr [rbp+22]
unregistersymbol(originalcode2_pointers)
968
"No Description"
4 Bytes
8129ED90
969
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem24,2048,"A18.exe"+2CC7C0)
label(returnhere24)
label(originalcode24)
label(exit24)
newmem24: //this is allocated memory, you have read,write,execute access
//place your code here
cmp dword ptr [bManipulateTime],7FFFFFFF
jne @f
xor edx,edx
originalcode24:
add [rcx],edx
mov eax,[rcx]
mov edx,00000000
exit24:
jmp returnhere24
///
"A18.exe"+2CC7C0:
jmp newmem24
nop
nop
nop
nop
returnhere24:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem24)
"A18.exe"+2CC7C0:
//Alt: add [rcx],edx
db 01 11 8B 01 BA 00 00 00 00
//Alt: mov eax,[rcx]
//Alt: mov edx,00000000
970
"cc 1"
Byte
A18.exe+1103300
977
"cc 2"
Byte
A18.exe+1103304
978
"cc 3"
Byte
A18.exe+1103308
972
"No description"
4 Bytes
1414277D4
971
"No Description"
4 Bytes
1414277DC
973
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+BC12F:
db 90 90 90 90 90 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
"A18.exe"+BC12F:
db C7 44 3E 04 FF FF FF FF
//Alt: mov [rsi+rdi+04],FFFFFFFF
974
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+BC123)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
test rcx,rcx
originalcode:
test al,al
je A18.exe+BC12F
mov [rsi+rdi+04],ebx
exit:
jmp returnhere
///
"A18.exe"+BC123:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+BC123:
db 84 C0 74 08 89 5C 3E 04
//Alt: test al,al
//Alt: je A18.exe+BC12F
//Alt: mov [rsi+rdi+04],ebx
979
"force custom change test"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(customsIDReadOnExitCostumMenuAOB,A18.exe,8B 84 11 ** ** ** ** 39 ** ** ** ** ** ** 0F 95 C0 C3)
registersymbol(customsIDReadOnExitCostumMenuAOB)
label(aCustomModels)
registersymbol(aCustomModels)
alloc(newmem,2048,customsIDReadOnExitCostumMenuAOB) //"A18.exe"+B9062)
label(returnhere)
label(originalcode_forcecustomcostume)
registersymbol(originalcode_forcecustomcostume)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
test rsi,rsi
js @f
cmp rsi,6
jge @f
mov rax,aCustomModels
mov eax,[rax+rsi*4]
cmp eax,ffffffff
je @f
//mov [rcx+rdx+01103300],eax
db 89 84 11
readmem(customsIDReadOnExitCostumMenuAOB+3,4)
@@:
originalcode_forcecustomcostume:
readmem(customsIDReadOnExitCostumMenuAOB,7)
//mov eax,[rcx+rdx+01103300]
exit:
jmp returnhere
///
aCustomModels:
dq ffffffffffffffff
dq ffffffffffffffff
dq ffffffffffffffff
///
customsIDReadOnExitCostumMenuAOB: //"A18.exe"+B9062:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
customsIDReadOnExitCostumMenuAOB: //"A18.exe"+B9062:
readmem(originalcode_forcecustomcostume,7)
//db 8B 84 11 00 33 10 01
//Alt: mov eax,[rcx+rdx+01103300]
unregistersymbol(originalcode_forcecustomcostume)
unregistersymbol(aCustomModels)
981
"Firis"
-1:disable
1
008000
4 Bytes
aCustomModels+0*4
982
"Liane"
-1:disable
1
008000
4 Bytes
aCustomModels+1*4
983
"female character 3"
-1:disable
1
008000
4 Bytes
aCustomModels+2*4
984
"female character 4"
-1:disable
1
008000
4 Bytes
aCustomModels+3*4
985
"female character 5"
-1:disable
1
008000
4 Bytes
aCustomModels+4*4
986
"female character 6"
-1:disable
1
008000
4 Bytes
aCustomModels+5*4
980
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+B8B62)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov eax,#10
originalcode:
mov eax,[rcx+rax*4]
add rsp,28
exit:
jmp returnhere
///
"A18.exe"+B8B62:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+B8B62:
db 8B 04 81 48 83 C4 28
//Alt: mov eax,[rcx+rax*4]
//Alt: add rsp,28
987
"No description"
Float
A18.exe+1500420
988
"No description"
Float
A18.exe+1500424
989
"No description"
Float
A18.exe+1500428
990
"No description"
4 Bytes
8103120C
991
"No description"
4 Bytes
81033A24
992
"No description"
1
4 Bytes
81033C5C
993
"No description"
1
4 Bytes
81033CE4
994
"No description"
4 Bytes
8103E930
995
"No description"
1
4 Bytes
80043C3C
996
"No description"
1
4 Bytes
80A6CA5C
997
"No description"
1
4 Bytes
80A6CA9C
998
"No description"
1
4 Bytes
80A6CAE4
999
"No description"
1
4 Bytes
80D62E7C
1000
"No description"
1
4 Bytes
80D634AC
1001
"No description"
4 Bytes
810309AC
1002
"No description"
4 Bytes
810333E4
1003
"No description"
4 Bytes
81249FF0
1004
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+4AA88F)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov dword ptr [rsi+0000026C],4
originalcode:
cmp r14d,[rsi+0000026C]
exit:
jmp returnhere
///
"A18.exe"+4AA88F:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+4AA88F:
db 44 3B B6 6C 02 00 00
//Alt: cmp r14d,[rsi+0000026C]
1005
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+4AA803)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
//mov dword ptr [rcx+30],2
cmp r14d,2
jne @f
jmp exit
originalcode:
cmp r14d,[rcx+30]
jne A18.exe+4AA879
exit:
jmp returnhere
///
"A18.exe"+4AA803:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+4AA803:
db 44 3B 71 30 75 70
//Alt: cmp r14d,[rcx+30]
//Alt: jne A18.exe+4AA879
1006
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+8A108)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov eax,4
originalcode:
mov eax,[rax+30]
add rsp,28
exit:
jmp returnhere
///
"A18.exe"+8A108:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+8A108:
db 8B 40 30 48 83 C4 28
//Alt: mov eax,[rax+30]
//Alt: add rsp,28
1007
"No Description"
4 Bytes
80FF8970
1008
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+4AAA0A)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov eax,2
originalcode:
//mov eax,[rcx+30]
mov [rsp+2C],eax
exit:
jmp returnhere
///
"A18.exe"+4AAA0A:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+4AAA0A:
db 8B 41 30 89 44 24 2C
//Alt: mov eax,[rcx+30]
//Alt: mov [rsp+2C],eax
1018
"No description"
4 Bytes
A18.exe+14FB604
1019
"No description"
4 Bytes
8141BE98
1021
"No description"
4 Bytes
81531198
1024
"No description"
4 Bytes
814DE268
1022
"Exp multiplier .1"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(expmultiplierdefault,(float)2)
aobscanmodule(expGainedReadOnBattleEndAOB,A18.exe,44 8B ** ** 44 89 ** ** ** ** ** ** 44 8B ** ** E8)
registersymbol(expGainedReadOnBattleEndAOB)
label(fExpMultiplier)
registersymbol(fExpMultiplier)
alloc(newmem,2048,expGainedReadOnBattleEndAOB) //"A18.exe"+522C9E)
label(returnhere)
label(originalcode_expmultiplier)
registersymbol(originalcode_expmultiplier)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
db DB 41
readmem(expGainedReadOnBattleEndAOB+3,1)
fmul dword ptr [fExpMultiplier]
db DB 59
readmem(expGainedReadOnBattleEndAOB+3,1)
originalcode_expmultiplier:
readmem(expGainedReadOnBattleEndAOB,12)
//mov r12d,[rcx+20]
//mov [rsp+000000B0],r12d
exit:
jmp returnhere
///
fExpMultiplier:
dd expmultiplierdefault
///
expGainedReadOnBattleEndAOB: //"A18.exe"+522C9E:
jmp newmem
nop
nop
nop
nop
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
expGainedReadOnBattleEndAOB: //"A18.exe"+522C9E:
readmem(originalcode_expmultiplier,12)
//db 44 8B 61 20 44 89 A4 24 B0 00 00 00
//Alt: mov r12d,[rcx+20]
//Alt: mov [rsp+000000B0],r12d
unregistersymbol(originalcode_expmultiplier)
unregistersymbol(fExpMultiplier)
1023
"x?"
1
008000
Float
fExpMultiplier
1030
"No description"
Byte
8158B8A8
1031
"No Description"
4 Bytes
814F5648
1055
"enable .3"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(LPWriteAOB,A18.exe,3B C8 0F 4F C8 89 ** ** ** ** ** E8)
registersymbol(LPWriteAOB)
aobscanmodule(itemEquipUiidReadOnHighlightedAOB,A18.exe,74 ** 8B 03 89 47 08 8B 43 04)
registersymbol(itemEquipUiidReadOnHighlightedAOB)
aobscanmodule(alchemyLvReadOnAlchemyMenuAccessAOB,A18.exe,8B 94 3B ** ** ** ** FF C2)
registersymbol(alchemyLvReadOnAlchemyMenuAccessAOB)
label(dAlchemyLcOffset)
registersymbol(dAlchemyLcOffset)
[alchemyLvReadOnAlchemyMenuAccessAOB+3]:
dAlchemyLcOffset:
///*********************************************///
aobscanmodule(statsReadInBattleAOB,A18.exe,8B 74 81 ** 8D ** ** 83)
registersymbol(statsReadInBattleAOB)
label(pBattlePlayers)
registersymbol(pBattlePlayers)
alloc(newmem,2048,statsReadInBattleAOB) //"A18.exe"+4F7260)
label(returnhere)
label(originalcode_enable)
registersymbol(originalcode_enable)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
//mov [pBattlePlayer],rcx
test rbx,rbx
jl @f
cmp rbx,4
jge @f
mov rsi,pBattlePlayers
mov [rsi+rbx*8],rcx
//cmp eax,2
//jne @f
//mov rsi,A18.exe+51e75e
//cmp [rsp+28],rsi
//je @f
//mov esi,[rcx+rax*4+68]
originalcode_enable:
readmem(statsReadInBattleAOB,7)
//mov esi,[rcx+rax*4+68]
//lea eax,[rdx-06]
exit:
jmp returnhere
///
pBattlePlayers:
///
statsReadInBattleAOB: //"A18.exe"+4F7260:
jmp newmem
nop
nop
returnhere:
///*********************************************///
aobscanmodule(playerStatsReadInYMenuAOB,A18.exe,8B 44 81 ** C3 83)
registersymbol(playerStatsReadInYMenuAOB)
label(pHighlightedPlayer)
registersymbol(pHighlightedPlayer)
alloc(newmem2,2048,playerStatsReadInYMenuAOB) //"A18.exe"+439D1B)
label(returnhere2)
label(originalcode2_enable)
registersymbol(originalcode2_enable)
label(exit2)
newmem2: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pHighlightedPlayer],rcx
originalcode2_enable:
readmem(playerStatsReadInYMenuAOB,5)
//mov eax,[rcx+rax*4+0C]
ret
exit2:
jmp returnhere2
///
pHighlightedPlayer:
///
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
jmp newmem2
returnhere2:
///*********************************************///
aobscanmodule(afterPlayerNameFetchInYMenuAOB,A18.exe,44 8B ** ** 45 33 C0 41 ** ** 48)
registersymbol(afterPlayerNameFetchInYMenuAOB)
label(pHighlightedPlayerName)
registersymbol(pHighlightedPlayerName)
alloc(newmem6,2048,afterPlayerNameFetchInYMenuAOB) //"A18.exe"+2B0988)
label(returnhere6)
label(originalcode6_enable)
registersymbol(originalcode6_enable)
label(exit6)
newmem6: //this is allocated memory, you have read,write,execute access
//place your code here
test rdx,rdx
jle @f
mov [pHighlightedPlayerName],rdx
originalcode6_enable:
readmem(afterPlayerNameFetchInYMenuAOB,7)
//mov r13d,[rbp+04]
//xor r8d,r8d
exit6:
jmp returnhere6
///
pHighlightedPlayerName:
///
afterPlayerNameFetchInYMenuAOB: //"A18.exe"+2B0988:
jmp newmem6
nop
nop
returnhere6:
///*********************************************///
aobscanmodule(timeOfDayReadAOB,A18.exe,48 8B 05 ** ** ** ** 48 89 01 48 8B C1 C3)
registersymbol(timeOfDayReadAOB)
label(pGameBase)
registersymbol(pGameBase)
label(pLP)
registersymbol(pLP)
label(pTimeOfDay)
registersymbol(pTimeOfDay)
label(bTimeMod)
registersymbol(bTimeMod)
label(bManipulateTime)
registersymbol(bManipulateTime)
label(bResetHrsInRw)
registersymbol(bResetHrsInRw)
label(iAdvanceTimeSpeed)
registersymbol(iAdvanceTimeSpeed)
label(iRewindTimeSpeed)
registersymbol(iRewindTimeSpeed)
alloc(newmem11,2048,timeOfDayReadAOB) //"A18.exe"+586D00)
label(returnhere11)
label(originalcode_enable11)
registersymbol(originalcode_enable11)
label(exit11)
newmem11: //this is allocated memory, you have read,write,execute access
//place your code here
push rbx
push rcx
mov rax,A18.exe
mov [pGameBase],rax
xor rax,rax
db b8
readmem(LPWriteAOB+7,4)
movsxd rax,eax
mov rbx,LPWriteAOB
lea rax,[rbx+rax+b]
mov [pLP],rax
xor rax,rax
db b8
readmem(timeOfDayReadAOB+3,4)
movsxd rax,eax
mov rbx,timeOfDayReadAOB
lea rax,[rbx+rax+7]
mov [pTimeOfDay],rax
cmp byte ptr [bTimeMod],1
jne end11
cmp dword ptr [bManipulateTime],0
je end11
cmp dword ptr [bManipulateTime],7FFFFFFF
je end11
mov ecx,[bManipulateTime]
add ecx,[rax+4]
cmp ecx,#60
jge advhrs11
cmp ecx,0
jl rwhrs11
mov [rax+4],ecx
jmp end11
advhrs11:
xor ecx,ecx
mov [rax+4],ecx
mov ecx,[rax]
inc ecx
cmp ecx,#24
jl @f
//xor ecx,ecx
mov byte ptr [bResetHrsInRw],2
inc dword ptr [rax-8]
@@:
mov [rax],ecx
jmp end11
rwhrs11:
add ecx,#60
mov [rax+4],ecx
mov ecx,[rax]
dec ecx
//jns @f
//test ecx,ecx
//jge @f
///cmp ecx,0
///jge @f
jns @f
//mov ecx,#23
mov byte ptr [bResetHrsInRw],1
dec dword ptr [rax-8]
jns @f
mov dword ptr [rax-8],0
@@:
mov [rax],ecx
end11:
pop rcx
pop rbx
reassemble(timeOfDayReadAOB)
exit11:
jmp returnhere11
///
pGameBase:
dq 0
pLP:
dq 0
pTimeOfDay:
dq 0
bTimeMod:
dd 0
bManipulateTime:
dd 0
bResetHrsInRw:
dd 0
iAdvanceTimeSpeed:
dd 0
iRewindTimeSpeed:
dd 0
originalcode_enable11:
readmem(timeOfDayReadAOB,7)
//mov rax,[A18.exe+146E7A0]
///
timeOfDayReadAOB: //"A18.exe"+586D00:
jmp newmem11
nop
nop
returnhere11:
///*********************************************///
aobscanmodule(chainLinkGaugeReadAOB,A18.exe,8B 49 ** F3 0F 2C C2)
registersymbol(chainLinkGaugeReadAOB)
label(bChainLinkGaugeModKeys)
registersymbol(bChainLinkGaugeModKeys)
label(bFullChainLinkGauge)
registersymbol(bFullChainLinkGauge)
label(bEmptyChainLinkGauge)
registersymbol(bEmptyChainLinkGauge)
label(pChainLinkGauge)
registersymbol(pChainLinkGauge)
alloc(newmem17,2048,chainLinkGaugeReadAOB) //"A18.exe"+51474E)
label(returnhere17)
label(originalcode17_enable)
registersymbol(originalcode17_enable)
label(exit17)
newmem17: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pChainLinkGauge],rcx
cmp byte ptr [bChainLinkGaugeModKeys],1
jne end17
cmp byte ptr [bFullChainLinkGauge],101
jne @f
mov eax,#1000
mov [rcx+40],eax
jmp end17
cmp byte ptr [bFullChainLinkGauge],1
jne @f
mov byte ptr [bFullChainLinkGauge],0
mov eax,#1000
mov [rcx+40],eax
jmp end17
@@:
cmp byte ptr [bEmptyChainLinkGauge],1
jne @f
mov byte ptr [bEmptyChainLinkGauge],0
xor eax,eax
mov [rcx+40],eax
end17:
originalcode17_enable:
readmem(chainLinkGaugeReadAOB,7)
//mov ecx,[rcx+40]
//cvttss2si eax,xmm2
exit17:
jmp returnhere17
///
bChainLinkGaugeModKeys:
dd 0
bFullChainLinkGauge:
dw 0
bEmptyChainLinkGauge:
dw 0
pChainLinkGauge:
///
chainLinkGaugeReadAOB: //"A18.exe"+51474E:
jmp newmem17
nop
nop
returnhere17:
///*********************************************///
aobscanmodule(friendshipCalAOB,A18.exe,0F 57 C9 48 03 C0)
registersymbol(friendshipCalAOB)
label(pFriendshipBase)
registersymbol(pFriendshipBase)
label(pHighlightedFriendship)
registersymbol(pHighlightedFriendship)
alloc(newmem24,2048,friendshipCalAOB) //"A18.exe"+4CD2CA)
label(returnhere24)
label(originalcode24)
label(exit24)
newmem24: //this is allocated memory, you have read,write,execute access
//place your code here
mov [pFriendshipBase],rcx
push rax
push rbx
add rax,rax
lea rbx,[rcx+rax*8]
mov [pHighlightedFriendship],rbx
pop rbx
pop rax
originalcode24:
xorps xmm1,xmm1
add rax,rax
exit24:
jmp returnhere24
///
pFriendshipBase:
dq 0
pHighlightedFriendship:
dq 0
///
friendshipCalAOB: //"A18.exe"+4CD2CA:
jmp newmem24
nop
returnhere24:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
unregistersymbol(dAlchemyLcOffset)
///*********************************************///
dealloc(newmem)
statsReadInBattleAOB: //"A18.exe"+4F7260:
readmem(originalcode_enable,7)
//db 8B 74 81 68 8D 42 FA
//Alt: mov esi,[rcx+rax*4+68]
//Alt: lea eax,[rdx-06]
unregistersymbol(pBattlePlayers)
unregistersymbol(originalcode_enable)
///*********************************************///
dealloc(newmem2)
playerStatsReadInYMenuAOB: //"A18.exe"+439D1B:
readmem(originalcode2_enable,5)
//db 8B 44 81 0C C3
//Alt: mov eax,[rcx+rax*4+0C]
//Alt: ret
unregistersymbol(originalcode2_enable)
unregistersymbol(pHighlightedPlayer)
///*********************************************///
dealloc(newmem6)
afterPlayerNameFetchInYMenuAOB: //"A18.exe"+2B0988:
readmem(originalcode6_enable,7)
//db 44 8B 6D 04 45 33 C0
//Alt: mov r13d,[rbp+04]
//Alt: xor r8d,r8d
unregistersymbol(originalcode6_enable)
unregistersymbol(pHighlightedPlayerName)
///*********************************************///
dealloc(newmem11)
timeOfDayReadAOB: //"A18.exe"+586D00:
readmem(originalcode_enable11,7)
//db 48 8B 05 99 7A EE 00
//Alt: mov rax,[A18.exe+146E7A0]
unregistersymbol(pGameBase)
unregistersymbol(pLP)
unregistersymbol(pTimeOfDay)
unregistersymbol(bTimeMod)
unregistersymbol(bManipulateTime)
unregistersymbol(bResetHrsInRw)
unregistersymbol(iAdvanceTimeSpeed)
unregistersymbol(iRewindTimeSpeed)
unregistersymbol(originalcode_time)
///*********************************************///
dealloc(newmem17)
chainLinkGaugeReadAOB: //"A18.exe"+51474E:
readmem(originalcode17_enable,7)
//db 8B 49 40 F3 0F 2C C2
//Alt: mov ecx,[rcx+40]
//Alt: cvttss2si eax,xmm2
unregistersymbol(originalcode17_enable)
unregistersymbol(bChainLinkGaugeModKeys)
unregistersymbol(bFullChainLinkGauge)
unregistersymbol(bEmptyChainLinkGauge)
unregistersymbol(pChainLinkGauge)
///*********************************************///
dealloc(newmem24)
friendshipCalAOB: //"A18.exe"+4CD2CA:
db 0F 57 C9 48 03 C0
//Alt: xorps xmm1,xmm1
//Alt: add rax,rax
unregistersymbol(pFriendshipBase)
unregistersymbol(pHighlightedFriendship)
1056
"undead .2"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(minhealthdefault,#1)
aobscanmodule(playerHealthSubOnHitRetAOB,A18.exe,8B CE E8 ** ** ** ** 48 8B ** ** ** 48 8B ** ** ** 84 C0 0F)
registersymbol(playerHealthSubOnHitRetAOB)
label(pPlayerHealthSubOnHitRet)
registersymbol(pPlayerHealthSubOnHitRet)
playerHealthSubOnHitRetAOB+7:
pPlayerHealthSubOnHitRet:
///
aobscanmodule(healthSubOnHitAOB,A18.exe,8B 06 29 ** ** 8B)
registersymbol(healthSubOnHitAOB)
label(iMinHealth)
registersymbol(iMinHealth)
label(fNonPlayerDamageMultiplier)
registersymbol(fNonPlayerDamageMultiplier)
label(bUndeadPlayer)
registersymbol(bUndeadPlayer)
label(pNonPlayerJustHit)
registersymbol(pNonPlayerJustHit)
label(bUndeadNonPlayer)
registersymbol(bUndeadNonPlayer)
label(bOneHitKill)
registersymbol(bOneHitKill)
alloc(newmem25,2048,healthSubOnHitAOB) //"A18.exe"+4F3141)
label(returnhere25)
label(originalcode25_undead)
registersymbol(originalcode25_undead)
label(exit25)
newmem25: //this is allocated memory, you have read,write,execute access
//place your code here
mov rax,pPlayerHealthSubOnHitRet
cmp [rsp+28],rax
jne isnotplayer25
cmp byte ptr [bUndeadPlayer],1
jne @f
mov eax,[rdi+6c]
sub eax,[rsi]
cmp eax,[iMinHealth]
jge originalcode25_undead
mov eax,[iMinHealth]
add eax,[rsi]
mov [rdi+6c],eax
jmp originalcode25_undead
@@:
jmp originalcode25_undead
isnotplayer25:
mov [pNonPlayerJustHit],rdi
cmp byte ptr [bUndeadNonPlayer],1
jne @f
mov eax,[rdi+6c]
sub eax,[rsi]
cmp eax,[iMinHealth]
jge originalcode25_undead
mov eax,[iMinHealth]
add eax,[rsi]
mov [rdi+6c],eax
jmp originalcode25_undead
@@:
cmp byte ptr [bOneHitKill],1
jne @f
mov eax,[rdi+6c]
mov [rsi],eax
jmp originalcode25_undead
@@:
fild dword ptr [rsi]
fmul dword ptr [fNonPlayerDamageMultiplier]
fistp dword ptr [rsi]
originalcode25_undead:
readmem(healthSubOnHitAOB,5)
//mov eax,[rsi]
//sub [rdi+6C],eax
exit25:
jmp returnhere25
///
iMinHealth:
dd minhealthdefault
fNonPlayerDamageMultiplier:
dd (float)10
pNonPlayerJustHit:
dq 0
bUndeadPlayer:
dd 1
bUndeadNonPlayer:
dd 0
bOneHitKill:
dd 0
///
healthSubOnHitAOB: //"A18.exe"+4F3141:
jmp newmem25
returnhere25:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem25)
healthSubOnHitAOB: //"A18.exe"+4F3141:
readmem(originalcode25_undead,5)
//db 8B 06 29 47 6C
//Alt: mov eax,[rsi]
//Alt: sub [rdi+6C],eax
unregistersymbol(pPlayerHealthSubOnHitRet)
unregistersymbol(iMinHealth)
unregistersymbol(fNonPlayerDamageMultiplier)
unregistersymbol(pNonPlayerJustHit)
unregistersymbol(bUndeadPlayer)
unregistersymbol(bUndeadNonPlayer)
unregistersymbol(bOneHitKill)
unregistersymbol(originalcode25_undead)
1057
"min HP"
1
008000
4 Bytes
iMinHealth
1058
"[NonPlayerJustHit]"
000080
Array of byte
0
pNonPlayerJustHit
0
1059
"bUndeadPlayer"
1
008000
Byte
bUndeadPlayer
1060
"bUndeadNonPlayer"
1
008000
Byte
bUndeadNonPlayer
1061
"bOneHitKill"
1
008000
Byte
bOneHitKill
1062
"fNonPlayerDamageMultiplier"
1
008000
Float
fNonPlayerDamageMultiplier
1063
"[NonPlayerJustHit]"
000080
Array of byte
0
pNonPlayerJustHit
0
1064
"bUndeadPlayer"
1
008000
Byte
bUndeadPlayer
1065
"bUndeadNonPlayer"
1
008000
Byte
bUndeadNonPlayer
1066
"bOneHitKill"
1
008000
Byte
bOneHitKill
1067
"Lv"
0000FF
4 Bytes
+0*4+68
1068
"battle HP"
0000FF
4 Bytes
+1*4+68
1069
"battle MP"
0000FF
4 Bytes
+2*4+68
1070
"?"
808080
4 Bytes
+3*4+68
1071
"battle HP max"
0000FF
4 Bytes
+4*4+68
1072
"battle MP max"
0000FF
4 Bytes
+5*4+68
1073
"Lv"
0000FF
4 Bytes
+0*4+68
1074
"battle HP"
0000FF
4 Bytes
+1*4+68
1075
"battle MP"
0000FF
4 Bytes
+2*4+68
1076
"?"
808080
4 Bytes
+3*4+68
1077
"battle HP max"
0000FF
4 Bytes
+4*4+68
1078
"battle MP max"
0000FF
4 Bytes
+5*4+68
1032
"undead .1"
FF0000
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(minhealthdefault,#1)
aobscanmodule(playerHealthSubOnHitRetAOB,A18.exe,8B CE E8 ** ** ** ** 48 8B ** ** ** 48 8B ** ** ** 84 C0 0F)
registersymbol(playerHealthSubOnHitRetAOB)
label(pPlayerHealthSubOnHitRet)
registersymbol(pPlayerHealthSubOnHitRet)
playerHealthSubOnHitRetAOB+7:
pPlayerHealthSubOnHitRet:
///
aobscanmodule(healthSubOnHitAOB,A18.exe,8B 06 29 ** ** 8B)
registersymbol(healthSubOnHitAOB)
label(iMinHealth)
registersymbol(iMinHealth)
label(pNonPlayerJustHit)
registersymbol(pNonPlayerJustHit)
label(bUndeadNonPlayer)
registersymbol(bUndeadNonPlayer)
label(bOneHitKill)
registersymbol(bOneHitKill)
alloc(newmem,2048,healthSubOnHitAOB) //"A18.exe"+4F3141)
label(returnhere)
label(originalcode_undead)
registersymbol(originalcode_undead)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov rax,pPlayerHealthSubOnHitRet
cmp [rsp+28],rax
jne isnotplayer
mov eax,[rdi+6c]
sub eax,[rsi]
cmp eax,[iMinHealth]
jge originalcode_undead
mov eax,[iMinHealth]
add eax,[rsi]
mov [rdi+6c],eax
jmp originalcode_undead
isnotplayer:
//haa
mov [pNonPlayerJustHit],rdi
cmp byte ptr [bUndeadNonPlayer],1
jne @f
mov eax,[rdi+6c]
sub eax,[rsi]
cmp eax,[iMinHealth]
jge originalcode_undead
mov eax,[iMinHealth]
add eax,[rsi]
mov [rdi+6c],eax
jmp originalcode_undead
@@:
cmp byte ptr [bOneHitKill],1
jne @f
mov eax,[rdi+6c]
mov [rsi],eax
originalcode_undead:
readmem(healthSubOnHitAOB,5)
//mov eax,[rsi]
//sub [rdi+6C],eax
exit:
jmp returnhere
///
iMinHealth:
dd minhealthdefault
pNonPlayerJustHit:
dq 0
bUndeadNonPlayer:
dd 0
bOneHitKill:
dd 0
///
healthSubOnHitAOB: //"A18.exe"+4F3141:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
healthSubOnHitAOB: //"A18.exe"+4F3141:
readmem(originalcode_undead,5)
//db 8B 06 29 47 6C
//Alt: mov eax,[rsi]
//Alt: sub [rdi+6C],eax
unregistersymbol(pPlayerHealthSubOnHitRet)
unregistersymbol(iMinHealth)
unregistersymbol(pNonPlayerJustHit)
unregistersymbol(bUndeadNonPlayer)
unregistersymbol(bOneHitKill)
unregistersymbol(originalcode_undead)
1033
"min HP"
1
008000
4 Bytes
iMinHealth
1034
"[NonPlayerJustHit]"
000080
Array of byte
0
pNonPlayerJustHit
0
1035
"bUndeadNonPlayer"
1
008000
Byte
bUndeadNonPlayer
1036
"bOneHitKill"
1
008000
Byte
bOneHitKill
1037
"Lv"
0000FF
4 Bytes
+0*4+68
1038
"battle HP"
0000FF
4 Bytes
+1*4+68
1039
"battle MP"
0000FF
4 Bytes
+2*4+68
1040
"?"
808080
4 Bytes
+3*4+68
1041
"battle HP max"
0000FF
4 Bytes
+4*4+68
1042
"battle MP max"
0000FF
4 Bytes
+5*4+68
1099
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
define(fmovespeedmultiplier1default,(float)0.1)
define(fmovespeedmultiplier2default,(float)1.6)
aobscanmodule(moveSpeedCalAOB,A18.exe,41 0F 28 CA 0F 28 C6 0F 28 D7)
registersymbol(moveSpeedCalAOB)
label(bMoveSpeedModKey)
registersymbol(bMoveSpeedModKey)
label(fMoveSpeedMultipliers)
registersymbol(fMoveSpeedMultipliers)
alloc(newmem,2048,moveSpeedCalAOB) //"A18.exe"+550455)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push rax
push rbx
mov rax,bMoveSpeedModKey
cmp byte ptr [rax],0
je end
mov ebx,[rax]
movsxd rbx,ebx
mulss xmm6,[rax+rbx*4]
mulss xmm7,[rax+rbx*4]
end:
pop rbx
pop rax
originalcode:
movaps xmm1,xmm10
movaps xmm0,xmm6
exit:
jmp returnhere
///
bMoveSpeedModKey:
dd 0
fMoveSpeedMultipliers:
dd fmovespeedmultiplier1default
dd fmovespeedmultiplier2default
///
moveSpeedCalAOB: //"A18.exe"+550455:
jmp newmem
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
moveSpeedCalAOB: //"A18.exe"+550455:
db 41 0F 28 CA 0F 28 C6
//Alt: movaps xmm1,xmm10
//Alt: movaps xmm0,xmm6
1106
"LP consumtion rate in snowfield"
Float
A18.exe+1437B08
1107
"LP consumtion rate in wilderness"
Float
A18.exe+1437B0C
1108
"Air Drop effect time rate"
Float
A18.exe+1437B10
1098
"movement speed multiplier"
Float
a18.exe+1437B14
1109
"purchase price -, sell price +"
Float
A18.exe+1437B18
1105
"rare material rate"
Float
a18.exe+1437B1C
1134
"always rare drop"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+357010:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
"A18.exe"+357010:
db 73 32
//Alt: jae A18.exe+357044
1111
"time speed multiplier"
Float
A18.exe+1437B20
1116
"proficiency increased"
Float
A18.exe+1437B24
1114
"gathered item quality +"
4 Bytes
A18.exe+1437B28
1115
"gathered item better traits"
4 Bytes
A18.exe+1437B2C
1112
"time speed related?"
4 Bytes
A18.exe+1437B30
1110
"bonus lines during synthesis"
4 Bytes
A18.exe+1437B34
1130
"always allow traits transfer"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNoTraitsTransferOnCompleteAOB,A18.exe,83 BF ** ** ** ** 00 7E 20)
registersymbol(cJmpIfNoTraitsTransferOnCompleteAOB)
cJmpIfNoTraitsTransferOnCompleteAOB+7: //"A18.exe"+22018B:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfNoTraitsTransferOnCompleteAOB+7: //"A18.exe"+22018B:
db 7E 20
//Alt: jle A18.exe+2201AD
1121
"chk at least 1 left on highlight"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNoTraitsTransferLeftOnHighlightAOB,A18.exe,83 ** ** 01 0F ** ** ** ** ** 48 8B ** ** ** ** ** 48 2B)
registersymbol(cJmpIfNoTraitsTransferLeftOnHighlightAOB)
alloc(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight,6)
registersymbol(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight)
originalcode_cJmpIfNoTraitsTransferLeftOnHighlight:
readmem(cJmpIfNoTraitsTransferLeftOnHighlightAOB+4,6)
cJmpIfNoTraitsTransferLeftOnHighlightAOB+4: //"A18.exe"+42A988:
db 90 90 90 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfNoTraitsTransferLeftOnHighlightAOB+4: //"A18.exe"+42A988:
readmem(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight,6)
//db 0F 8C C0 00 00 00
//Alt: jl A18.exe+42AA4E
dealloc(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight)
unregistersymbol(originalcode_cJmpIfNoTraitsTransferLeftOnHighlight)
1122
"chk at least 1 left on select"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfHaveTraitsTransferLeftOnSelectAOB,A18.exe,83 ** ** 01 7D ** 32 C0 48)
registersymbol(cJmpIfHaveTraitsTransferLeftOnSelectAOB)
cJmpIfHaveTraitsTransferLeftOnSelectAOB+4: //"A18.exe"+429BB7:
db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfHaveTraitsTransferLeftOnSelectAOB+4: //"A18.exe"+429BB7:
db 7D
//Alt: jnl
1123
"chk at least 1 left after transfer"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfNoTraitsTransferLeftAfterTransferAOB,A18.exe,41 ** ** 01 7C ** 41 ** ** 41 ** ** 41)
registersymbol(cJmpIfNoTraitsTransferLeftAfterTransferAOB)
alloc(originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer,2)
registersymbol(originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer)
originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer:
readmem(cJmpIfNoTraitsTransferLeftAfterTransferAOB+4,2)
cJmpIfNoTraitsTransferLeftAfterTransferAOB+4: //"A18.exe"+42921F:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfNoTraitsTransferLeftAfterTransferAOB+4: //"A18.exe"+42921F:
readmem(originalcode_cJmpIfNoTraitsTransferLeftAfterTransfer,2)
//db 7C 03
//Alt: jl A18.exe+429224
1120
"No description"
4 Bytes
81646988
1119
"rare material rate"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
label(fRareMaterialRateMultiplier)
registersymbol(fRareMaterialRateMultiplier)
alloc(newmem,2048,"A18.exe"+356C4A)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mulss xmm0,[fRareMaterialRateMultiplier]
cvttss2si ebx,xmm0
originalcode:
inc r9d
mov eax,r9d
exit:
jmp returnhere
///
fRareMaterialRateMultiplier:
dd (float)2
///
"A18.exe"+356C4A:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+356C4A:
db 41 FF C1 41 8B C1
//Alt: inc r9d
//Alt: mov eax,r9d
unregistersymbol(fRareMaterialRateMultiplier)
1124
"No description"
4 Bytes
81013678
1125
"No description"
4 Bytes
813EC2A4
1126
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+23F493)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
mov edx,[rbp+000001D8]
cmp edx,1
jge @f
mov edx,1
mov [rbp+000001D8],edx
originalcode:
mov edx,[rbp+000001D8]
exit:
jmp returnhere
///
"A18.exe"+23F493:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+23F493:
db 8B 95 D8 01 00 00
//Alt: mov edx,[rbp+000001D8]
1127
"No Description"
4 Bytes
810D90B8
1129
"No Description"
4 Bytes
815B9578
1132
"i p chk bypass test"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfProficiencyNotMax,A18.exe,76 08 F3 ** ** ** ** ** ** ** 41 8B C8)
registersymbol(cJmpIfProficiencyNotMax)
cJmpIfProficiencyNotMax: //"A18.exe"+22AF3F:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfProficiencyNotMax: //"A18.exe"+22AF3F:
db 76 08
//Alt: jna A18.exe+22AF49
1135
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+7E06A8:
db 90 90
//db EB
//Alt: jmp
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
"A18.exe"+7E06A8:
db 75 0D
//Alt: jne A18.exe+7E06B7
//db 75
//Alt: jne
1136
"Idea Pts"
4 Bytes
A18.exe+143A4BC
1138
"No description"
4 Bytes
815862EC
1139
"4 Bytes"
4 Bytes
84653FD4
1140
"*"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfRecipeNotLearntOnRecipeBookAccessAOB,A18.exe,43 83 ** ** ** 00 4B ** ** ** 0F 8E ** ** ** ** 49)
registersymbol(cJmpIfRecipeNotLearntOnRecipeBookAccessAOB)
alloc(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode,6)
registersymbol(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode)
cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode:
readmem(cJmpIfRecipeNotLearntOnRecipeBookAccessAOB+a,6)
cJmpIfRecipeNotLearntOnRecipeBookAccessAOB+a: //"A18.exe"+26E761:
db 90 90 90 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfRecipeNotLearntOnRecipeBookAccessAOB+a: //"A18.exe"+26E761:
readmem(cJmpIfRecipeNotLearntOnRecipeBookAccess_originalcode,6)
//db 0F 8E 9C 00 00 00
//Alt: jng A18.exe+26E803
1145
"*"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(recipeStageReadOnRecipeHighlightedInRecipeBookAOB,A18.exe,48 C1 E1 05 FF C8 49 03)
registersymbol(recipeStageReadOnRecipeHighlightedInRecipeBookAOB)
alloc(newmem,2048,recipeStageReadOnRecipeHighlightedInRecipeBookAOB) //"A18.exe"+27B4F5)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
test eax,eax
jnz @f
inc eax
originalcode:
shl rcx,05
dec eax
exit:
jmp returnhere
///
recipeStageReadOnRecipeHighlightedInRecipeBookAOB: //"A18.exe"+27B4F5:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
recipeStageReadOnRecipeHighlightedInRecipeBookAOB: //"A18.exe"+27B4F5:
db 48 C1 E1 05 FF C8
//Alt: shl rcx,05
//Alt: dec eax
1141
"4 Bytes"
4 Bytes
8465391C
1142
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"A18.exe"+27EC45)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
test r8,r8
jnz @f
mov r8,1
originalcode:
cvtdq2ps xmm0,xmm0
mulss xmm0,[rbx+r8*4+00BC3480]
exit:
jmp returnhere
///
"A18.exe"+27EC45:
jmp newmem
nop
nop
nop
nop
nop
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"A18.exe"+27EC45:
db 0F 5B C0 F3 42 0F 59 84 83 80 34 BC 00
//Alt: cvtdq2ps xmm0,xmm0
//Alt: mulss xmm0,[rbx+r8*4+00BC3480]
1144
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
"A18.exe"+26E65F:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
"A18.exe"+26E65F:
db 7C 1C
//Alt: jl A18.exe+26E67D
1147
"No Description"
4 Bytes
848C318C
1148
"No Description"
4 Bytes
810DAF2C
1149
"No Description"
4 Bytes
14146A978
1150
"No Description"
4 Bytes
14146AB88
1152
"1"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB,A18.exe,41 ** ** ** 03 0F ** ** ** ** ** 41 8B CE)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB)
alloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode,6)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB+5,6)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB+5: //"A18.exe"+41B919:
db 90 90 90 90 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB+5: //"A18.exe"+41B919:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode,6)
//db 0F 8C AD 01 00 00
//Alt: jl A18.exe+41BACC
dealloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode)
unregistersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess1_originalcode)
1151
"2"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB,A18.exe,83 ** 03 7C ** 8B CB)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB)
alloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode,2)
registersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB+3,2)
cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB+3: //"A18.exe"+573C43:
db 90 90
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB+3: //"A18.exe"+573C43:
readmem(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode,2)
//db 7C 19
//Alt: jl A18.exe+573C5E
dealloc(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode)
unregistersymbol(cJmpIfRecipeNotLearntOnAlchemyMenuAccess2_originalcode)
Code :mov eax,[rcx+rdx+01103300]
1400B9062
A18.exe
B9062
85
00
00
00
00
8B
84
11
00
33
10
01
39
84
11
E8
32
Code :mov edx,[rcx+r8+01103300]
1400B67A0
A18.exe
B67A0
80
00
00
00
00
42
8B
94
01
00
33
10
01
42
39
94
01
E8
Code :mov eax,[rcx+rax*4]
1400B8B62
A18.exe
B8B62
A7
04
01
48
98
8B
04
81
48
83
C4
28
C3
Code :add [r14+30],edx
1405AE704
A18.exe
5AE704
C1
E8
1F
03
D0
41
01
56
30
45
33
E4
41
8B
after rmr fetch finished (sum of 2 times fetch) Code :comiss xmm7,xmm9
140356F38
A18.exe
356F38
E9
A3
70
00
CC
41
0F
2F
F9
72
09
F3
44
0F
is Code :mov eax,[rbx+r15*4+0146A960]
14027EAD9
A18.exe
27EAD9
1D
27
15
D8
FF
42
8B
84
BB
60
A9
46
01
49
8B
FF
83
F8
CJmpIfNotMoving2AOB
140389DAC
gameAdvanceTimeAOB
1405828CE
originalcode_timemod
13FFE00AE
cJmpIfNotEnoughMPInBattleSkillMenuAccessAOB
14051B0D1
bTraitsNameFetch
13FF5001A
dHighlightedItemTraitsNameIndex
13FF5001E
pHighlightedItemTraitsName
13FF50022
setItemRankLimitAOB
1403E6DFB
itemUsageCallAOB
1403E90A0
cJmpIfEnoughAlchemyLclOnRecipeSelectAOB
14023C6B0
bSoftUnlock
13FEC0026
expGainedReadOnBattleEndAOB
140522C9E
customsIDReadOnExitCostumMenuAOB
1400B9062
fMinItemProficiency
13FE7002A
cJmpIfNoTraitsTransferLeftOnSelectAOB
140429BB3
cJmpIfProficiencyNotMax
14022AF3F
LPWriteAOB
140582763
itemEquipUiidReadOnHighlightedAOB
1403D077E
alchemyLvReadOnAlchemyMenuAccessAOB
140586101
dAlchemyLvOffset
E1E8C2FF0143A674
statsReadInBattleAOB
1404F7260
pBattlePlayers
13FFF0036
originalcode_enable
13FFF0021
playerStatsReadInYMenuAOB
140439D1B
pHighlightedPlayer
13FFE001B
originalcode2_enable
13FFE0007
afterPlayerNameFetchInYMenuAOB
1402B0988
pHighlightedPlayerName
13FFD0025
originalcode6_enable
13FFD0010
timeOfDayReadAOB
140586D00
pGameBase
13FFC0123
pLP
13FFC012B
pTimeOfDay
13FFC0133
bTimeMod
13FFC013B
bManipulateTime
13FFC013F
bResetHrsInRw
13FFC0143
iAdvanceTimeSpeed
13FFC0147
iRewindTimeSpeed
13FFC014B
originalcode_enable11
13FFC014F
chainLinkGaugeReadAOB
14051474E
bChainLinkGaugeModKeys
13FFB008F
bFullChainLinkGauge
13FFB0093
bEmptyChainLinkGauge
13FFB0095
pChainLinkGauge
13FFB0097
originalcode17_enable
13FFB007A
friendshipCalAOB
1404CD2CA
pFriendshipBase
13FFA002D
pHighlightedFriendship
13FFA0035
playerHealthSubOnHitRetAOB
14042D9A7
pPlayerHealthSubOnHitRet
14042D9AE
healthSubOnHitAOB
1404F3141
iMinHealth
13FF900DB
iMinHealthNonPlayer
13FF900DF
fNonPlayerDamageMultiplier
13FF900E3
bUndeadPlayer
13FF900EF
pNonPlayerJustHit
13FF900E7
bUndeadNonPlayer
13FF900F3
bOneHitKill
13FF900F7
originalcode25_undead
13FF900C8
pHighlightedItemEquip
13FF8001A
itemSizeReadOnHighlightedInAlchemyFinalAOB
14022F569
originalcode2_pointers
13FF70007
moneyReadAOB
140586070
pMoney
13FF60041
originalcode24_enable
13FF60049
cJmpIfEnoughMPInBattleSkillMenuAccessAOB
14051B0D1
cJmpIfNotEnoughMPOnBattleSkillSelectAOB
140524100
expGainedAssignAfterLvlPenaltyAppliedAOB
140522D22
fExpMultiplier
13FF5001D
coleGainedReadOnBattleEndAOB
140522E99
fColeMultiplier
13FF4002A
originalcode_colemultiplier
13FF4002E
cJmpIfNotEnoughIPOnRecipeBookAccessAOB
14026E65F
cJmpIfEnoughIPOnRecipeSelectInRecipeBookAOB
14026F972
cJmpIfRecipeNotLearntOnRecipeBookAccessAOB
14026E757
recipeStageReadOnRecipeHighlightedInRecipeBookAOB
14027B4F5
alchemyLvlChkOnAlcemyMenuAccess1AOB
14041B6E0
alchemyLvlChkOnAlcemyMenuAccess2AOB
14041B946
cJmpIfEnoughAlchemyLclOnAlchemyMenuAccess3AOB
14023E5B4
alchemyLvlChkOnRecipeHighlightedAOB
14023CA59
cJmpIfEnoughAlchemyLvlOnRecipeSelectedAOB
14023C6B0
itemProficiencyCalOnCompleteAOB
14022AEEA
fItemProficiencyMultiplier
13FF20032
cJmpIfLineBonusPresentAOB
140235D3D
cJmpIfNoTraitsTransferOnCompleteAOB
140220184
cJmpIfNoTraitsTransferLeftOnHighlightAOB
14042A984
cJmpIfHaveTraitsTransferLeftOnSelectAOB
140429BB3
cJmpIfNoTraitsTransferLeftAfterTransferAOB
14042921B
itemCountDecOnFieldUseAOB
14013A71F
originalcode_infitemusage
13FF10019
itemUsageInBattleCallAOB
1403E90A0
dMinItemQuality
13FF00045
wMinItemComponentTotal
13FEF002F
setMaxShopItemQuantityAffordableAOB
14047C050
originalcode_ignoremoeny
13FEE000A
setMaxShopItemQuantityAllowedForBulkSaleAOB
14047C0FC
shopItemQuantityWriteAfterPurchaceAOB
140597A5B
originalcode_ignoreshopitemquantity
13FED0024
LPWritesOnChangedAOB
140582763
dMinLP
13FEC0025
moveSpeedCalAOB
140550455
bMoveSpeedModKey
13FEB004B
fMoveSpeedMultipliers
13FEB004F
bEndThread_moveSpeedMod_keylistener_mem
13FEA00C5
cJmpIfNotAdvanceTimeAOB
140389E6A
CJmpIfNotMoving1AOB
140389D97
originalcode6_timemod
13FE90029
gameAdvanceTimeCalculateAOB
140582879
originalcode18_timemod
13FE80061
bEndThread_timeOfDay_keylistener_mem
13FE7015D
bUseCtrlForTimeModKey
13FE70161
cJmpIfNonEventFriendshipGainedExceedMaxAllowedAOB
1404CD20A
afterCostumeUnlockFlagChkOnDressRoomAccessAOB
1400BC123
pCostumeFlagBase
13FE6004F
bHardUnlock
13FE60057
originalcode_unlockcostume
13FE6005B
cJmpIfRecipeNotLearntOnAlchemyMenuAccess1AOB
14041B914
cJmpIfRecipeNotLearntOnAlchemyMenuAccess2AOB
140573C40
http://fearlessrevolution.com/viewtopic.php?f=4&t=280#p918