Hacking [GUIDE] Badge Arcade Cheating with NTR Debugger

[HappyzLife]

It literally just worked as you posted haha

So theyre banning now? Do they ban if you have 99 goes? or only if you get an obscene amount of badges?

We don't know, just don't exaggerate :/

 

[noatpad]

Yello! Found this a couple days ago, but I can't seem to get this to work, and I'm pretty sure I'm doing all the steps correctly. I have a USA N3DSXL, so my code should be 3646BBCC, thus 3646BBBC being the unlocking code.
The listprocess() function prints own this:

Spoiler: listprocess()

> listprocess()
null
pid: 0x00000000, pname:       fs, tid: 0000000000000000, kpobj: fff75c30
pid: 0x00000001, pname:   loader, tid: 0000000000000000, kpobj: fff75ea0
pid: 0x00000002, pname:       pm, tid: 0000000000000000, kpobj: fff76110
pid: 0x00000003, pname:       sm, tid: 0000000000000000, kpobj: fff76380
pid: 0x00000004, pname:      pxi, tid: 0000000000000000, kpobj: fff765f0
pid: 0x00000005, pname:       ns, tid: 0004013000008002, kpobj: fff76860
pid: 0x00000006, pname:      ptm, tid: 0004013000002202, kpobj: fff76ad0
pid: 0x00000007, pname:      cfg, tid: 0004013000001702, kpobj: fff76d40
pid: 0x00000008, pname:     gpio, tid: 0004013000001b02, kpobj: fff76fb0
pid: 0x00000009, pname:      i2c, tid: 0004013000001e02, kpobj: fff77220
pid: 0x0000000a, pname:      mcu, tid: 0004013000001f02, kpobj: fff77490
pid: 0x0000000b, pname:      pdn, tid: 0004013000002102, kpobj: fff77700
pid: 0x0000000c, pname:      spi, tid: 0004013000002302, kpobj: fff77970
pid: 0x0000000d, pname:       ps, tid: 0004013000003102, kpobj: fff77be0
pid: 0x0000000e, pname:  ErrDisp, tid: 0004003000008a02, kpobj: fff77e50
pid: 0x0000000f, pname:     menu, tid: 0004003000008f02, kpobj: fff780c0
pid: 0x00000010, pname:      hid, tid: 0004013000001d02, kpobj: fff78330
pid: 0x00000011, pname:    codec, tid: 0004013000001802, kpobj: fff785a0
pid: 0x00000012, pname:      dsp, tid: 0004013000001a02, kpobj: fff78810
pid: 0x00000013, pname:       am, tid: 0004013000001502, kpobj: fff78a80
pid: 0x00000014, pname:      gsp, tid: 0004013000001c02, kpobj: fff78cf0
pid: 0x00000015, pname:      qtm, tid: 0004013000004202, kpobj: fff78f60
pid: 0x00000016, pname:   camera, tid: 0004013000001602, kpobj: fff791d0
pid: 0x00000017, pname:     csnd, tid: 0004013000002702, kpobj: fff79440
pid: 0x00000018, pname:      mic, tid: 0004013000002002, kpobj: fff796b0
pid: 0x00000019, pname:       ir, tid: 0004013000003302, kpobj: fff79920
pid: 0x0000001a, pname:      nwm, tid: 0004013000002d02, kpobj: fff79b90
pid: 0x0000001b, pname:   socket, tid: 0004013000002e02, kpobj: fff79e00
pid: 0x0000001c, pname:     http, tid: 0004013000002902, kpobj: fff7a070
pid: 0x0000001d, pname:      ssl, tid: 0004013000002f02, kpobj: fff7a2e0
pid: 0x0000001e, pname:     cecd, tid: 0004013000002602, kpobj: fff7a550
pid: 0x0000001f, pname:  friends, tid: 0004013000003202, kpobj: fff7a7c0
pid: 0x00000020, pname:       ac, tid: 0004013000002402, kpobj: fff7aa30
pid: 0x00000021, pname:     boss, tid: 0004013000003402, kpobj: fff7aca0
pid: 0x00000022, pname:      act, tid: 0004013000003802, kpobj: fff7af10
pid: 0x00000023, pname:     news, tid: 0004013000003502, kpobj: fff7b180
pid: 0x00000024, pname:      ndm, tid: 0004013000002b02, kpobj: fff7b3f0
pid: 0x00000025, pname:      nim, tid: 0004013000002c02, kpobj: fff7b660
pid: 0x00000026, pname:      dlp, tid: 0004013000002802, kpobj: fff7b8d0
pid: 0x0000002e, pname:   CENTER, tid: 0004000000153500, kpobj: fff7bb40     // Here's the CENTER pid code
pid: 0x0000002f, pname:      nfc, tid: 0004013000004002, kpobj: fff7bdb0
pid: 0x00000030, pname:       ro, tid: 0004013000003702, kpobj: fff7c020
end of process list.

So, the PID should be 0x2e. Finally, I type in the Debugger (while in the Real Badge Machine) the following and it prints out:

> write(0x3646BBBC,(0x04,0x00), pid=0x2e)
null
finished

But after all that, nothing happens on my 3DS. It just stays at the same screen when you have no plays.
The only thing I can think of is that it's because I'm on 9.5 emuNAND (rxTools), or perhaps the code is wrong on the spreadsheet, since there are some trolls out there...
I'd appreciate any help, so thanks in advance!
EDIT Oh gawd, I'm an idiot. I was looking at the old version of the spreadsheet, so the code was outdated. Used the code from the updated tab, and it worked perfectly! Sorry about the trouble, but thanks a lot if you were looking into it.

 

[suloku]

I think the bans might be only to people who unlock plays, I'm gonna try only with modifying plays earned with daily practice, see if I get banned

 

[Krude]

I think the bans might be only to people who unlock plays, I'm gonna try only with modifying plays earned with daily practice, see if I get banned

This is exactly why banning is done in waves, btw, weeks apart and some random people on the list get pushed onto the list for the next wave instead.
It's to obfuscate what exactly leads to the ban.

 

[suloku]

This is exactly why banning is done in waves, btw, weeks apart and some random people on the list get pushed onto the list for the next wave instead.
It's to obfuscate what exactly leads to the ban.

I'm only gonna do that, if I get banned that'll mean any kind of cheating leads to ban

 

[Krude]

that'll be good to know in 4 weeks, when the ban wave hits you

 

[noatpad]

It is a good theory that suloku has. Maybe they are able to identify when we get 5 plays without paying up a dollar. But we really don't know for sure, perhaps they can see how many plays we've used in a day, and any number of plays that's not a multiple of 5 (5, 10, 15...), but again, we have no clue.

 

[DarkenedMatter]

Damn, the people on here are so obnoxious. It was never confirmed if it was "ban waves" or what it was. Nintendo will never give that kind of information out and we won't find out probably for half a month.

I'm still not banned and used the unlock code the other day to grab like two badge sets so.... We shall see in due time what it actually is.

 

[craftsygaming]

yo its not working for me o3ds (o means original ) 10.4 emu 9.2 sys
we are connected on the same network, tryed every code in v2

 

[lefthandsword]

Doesn't work for me, the offsets seem to changed after today's catchers rotation

 

[HappyzLife]

Doesn't work for me, the offsets seem to changed after today's catchers rotation

what? Just the right offset?

 

[MiePx3]

Can confrim. Does not work anymore!
Couldnt find anything. Does that mean its patched or do we have to wait for another code that we used in step 3?

 

[Konako]

It still work I tried the 5 plays and 99 plays code and got it working

Edit can't test anymore since I'm banned and too lazy to create a new nnid

 

[cristian321]

worked for me with the V2 tab

 

[cristian321]

it is not working anymore, i'm using the latest code, the right id and still doesn't work >(

 

[cristian321]

can someone help me?

 

[ElyosOfTheAbyss]

I'm using n3ds xl and I enter this

write(0x3646B23C,(0x04,0x00), pid=0x39)

Nothing happens

 

[chinesekidx]

I'm using n3ds xl and I enter this

write(0x3646B23C,(0x04,0x00), pid=0x39)

Nothing happens

Check your code again

(Updated 2/26 for EU N3DSXL)
Real:3646B5CC
Train:368256DC

 

[DesperadoV3]

not working for me, US N3DS XL

 

[HappyzLife]

not working for me, US N3DS XL

Maybe the spreadsheets is deprecated, because the method should works.