|
You last visited: Today at 03:58
Advertisement
Question about EG Dekaron hacks.
Discussion on Question about EG Dekaron hacks. within the Dekaron forum part of the MMORPGs category.
11/12/2009, 19:13
|
#1
|
elite*gold: 0 
Join Date: Apr 2008
Posts: 1
Received Thanks: 0
|
Question about EG Dekaron hacks.
If anyone would like to help me out, thanks in advance first.
I have been through lots of the Tuts on how to hack in winhex n CE.
First problem i have is concerning vack & non aggro. I use this script for non aggro
Non-agro
[ENABLE]
alloc(newmem,1024)
label(returnhere)
label(originalcode)
label(exit)
0053D16A:
jmp newmem
nop
nop
returnhere:
newmem:
originalcode:
movzx eax,word ptr [esi+00000154]
//mov eax,01
//mov word ptr [esi+00000156],ax
mov [esi+00000070], 41A50000 // speed mob
//40c00000 = 6 lv 1 (to replace the above blue color)
//40400000 = 12 lv 2 (to replace the above blue color)
//41c00000 = 24 lv 3 (to replace the above blue color)
mov byte ptr [esi+00000174],00 // malee attack range = 0
mov byte ptr [esi+00000244],00 // magic attack range = 0
mov [esi+00000240],0000000 //other attack range = 0
mov [esi+0000023c],0000000 //other attack range = 0
mov [esi+00000238],0000000 //other attack range = 0
mov eax,03
mov word ptr [esi+00000154],ax
exit:
jmp returnhere
[DISABLE]
dealloc(newmem)
0053D16A:
movzx eax,word ptr [esi+00000154]
The thing is when i use array of bytes or assembly scan i cant seem to find the offset. No address comes out. so i cant inject the script in.
movzx eax,word ptr [esi+00000154], 0F B7 86 54 01 00
Vac instead i can find the address but then when i inject it and login, all the mobs do is shake around like their in a disco club with too much pills in them. They dont follow at all. Used to work but now i have no idea.
[ENABLE]
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
0045C1CD:
jmp newmem
nop
returnhere:
newmem:
//DwExploreRange eax
mov [eax+08],00000020//DwSight eax+08
mov [eax+04],00000020//DwPersuitRange eax+04
//DwAvoidRange eax+0C
mov [eax+10],00000064//DwExploreStandDelay eax+10
mov [eax+14],00000064//DwExploreMoveDelay eax+14
mov [eax+18],00000064//DwStandDelay eax+18
mov [eax+1C],00000064//DwMoveDelay eax+1C
//DwFollowMyMasterRange eax+20
//DwStopMasterNear eax+24
//DwWarpMyMasterRange eax+28
mov [eax+2C],00000064//DwCallTeamPossibelHP eax+2C
mov [eax+30],00000020//DwCallTeamCount eax+30
mov [eax+34],00000000//DwBlockNFirstAttack eax+34//mov [eax+38],00000020//dwCallTeamCell byte[eax+38]
//dwFollowTarget eax+3C
//dwSpecialAttackStartHP
//dwSpecialMeleeAttackRate
//dwSpecialRangeAttackRate
//DwPowerAttacjStartHP
//dwPowerMeleeAttackProbable
//dwPowerRangeAttackProbable
//mov [eax+40],00000000//DwUnderAttackAggro eax+40
//mov [eax+44],00000000//DwMeleeAttackRangeInAggro eax+44
//mov [eax+48],00000000//DwRangeAttackRangeInAggro eax+48
//DwSightInAggro eax+4C
//DwDefeatAggro eax+50
mov [eax+54],00000000//DwBlockedAggro eax+54
mov [eax+58],00000000//DwSlideAggro eax+58
mov [eax+5C],00000000//DwHealAggro eax+5C
//DwMasterUnderAttackAggro eax+50
//DwMasterDefeatAggro eax+54
//DwMasterBlockingAggro eax+58
//DwMasterSlideAggro eax+5C
//DwCOmplusionUnderAttackAggro eax+60
//dwMaxSummonsMonsterCount eax+64
//dwReSummonsMonsterTick eax+68
//dwMaxSummonsMonsterRange eax+6C
//dwSummonsStartPcCountPatternType eax+70
originalcode:
mov edx,[eax+1c]
mov [ecx+20],edx
mov edx,10 // number spawn
mov [eax+8c],edx
mov edx,64 // time delay spawn
mov [eax+90],edx
mov edx,30 // # follow monster
mov [eax+3C],edx
//mov [ecx+20],edx // # follow my master
exit:
jmp returnhere
[DISABLE]
dealloc(newmem)
0045C1CD:
mov edx,[eax+1c]
mov [ecx+20],edx
Lastly on skill.
For example incar magician itimid flash
i search for the skill in winhex IconIndex,548
so when i find it i start editing the values of all NOCANCEL,255,155,0
and also 1,0,547,1,0,14000, i change to 1,0,547,1,0,00000,
but all i get is no cooldown with skill but no dmg.
If anyone has any idea and can help me out thanks for your time in reading a noobs post, thanks alot.
|
|
|
|
11/13/2009, 23:12
|
#2
|
elite*gold: 0
Join Date: Oct 2009
Posts: 218
Received Thanks: 40
|
if u go down, u will see ////1,1,15,0,-,-,-,1,0,282,1,0,6000,1,4,0,14,0,0\\\\ or something like that u must edit the cooldown to 0 (in this case the cooldown is 6000)
|
|
|
|
|
11/14/2009, 15:49
|
#3
|
elite*gold: 35
Join Date: Aug 2009
Posts: 5,822
Received Thanks: 1,958
|
+#2 reported at 14/11/09 GMT +1 15:49 cause spamm
|
|
|
|
|
07/12/2010, 20:24
|
#4
|
elite*gold: 0
Join Date: Apr 2010
Posts: 3
Received Thanks: 2
|
Quote:
Originally Posted by kelvinseow
If anyone would like to help me out, thanks in advance first.
I have been through lots of the Tuts on how to hack in winhex n CE.
First problem i have is concerning vack & non aggro. I use this script for non aggro
Non-agro
[ENABLE]
alloc(newmem,1024)
label(returnhere)
label(originalcode)
label(exit)
0053D16A:
jmp newmem
nop
nop
returnhere:
newmem:
originalcode:
movzx eax,word ptr [esi+00000154]
//mov eax,01
//mov word ptr [esi+00000156],ax
mov [esi+00000070], 41A50000 // speed mob
//40c00000 = 6 lv 1 (to replace the above blue color)
//40400000 = 12 lv 2 (to replace the above blue color)
//41c00000 = 24 lv 3 (to replace the above blue color)
mov byte ptr [esi+00000174],00 // malee attack range = 0
mov byte ptr [esi+00000244],00 // magic attack range = 0
mov [esi+00000240],0000000 //other attack range = 0
mov [esi+0000023c],0000000 //other attack range = 0
mov [esi+00000238],0000000 //other attack range = 0
mov eax,03
mov word ptr [esi+00000154],ax
exit:
jmp returnhere
[DISABLE]
dealloc(newmem)
0053D16A:
movzx eax,word ptr [esi+00000154]
The thing is when i use array of bytes or assembly scan i cant seem to find the offset. No address comes out. so i cant inject the script in.
movzx eax,word ptr [esi+00000154], 0F B7 86 54 01 00
Vac instead i can find the address but then when i inject it and login, all the mobs do is shake around like their in a disco club with too much pills in them. They dont follow at all. Used to work but now i have no idea.
[ENABLE]
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
0045C1CD:
jmp newmem
nop
returnhere:
newmem:
//DwExploreRange eax
mov [eax+08],00000020//DwSight eax+08
mov [eax+04],00000020//DwPersuitRange eax+04
//DwAvoidRange eax+0C
mov [eax+10],00000064//DwExploreStandDelay eax+10
mov [eax+14],00000064//DwExploreMoveDelay eax+14
mov [eax+18],00000064//DwStandDelay eax+18
mov [eax+1C],00000064//DwMoveDelay eax+1C
//DwFollowMyMasterRange eax+20
//DwStopMasterNear eax+24
//DwWarpMyMasterRange eax+28
mov [eax+2C],00000064//DwCallTeamPossibelHP eax+2C
mov [eax+30],00000020//DwCallTeamCount eax+30
mov [eax+34],00000000//DwBlockNFirstAttack eax+34//mov [eax+38],00000020//dwCallTeamCell byte[eax+38]
//dwFollowTarget eax+3C
//dwSpecialAttackStartHP
//dwSpecialMeleeAttackRate
//dwSpecialRangeAttackRate
//DwPowerAttacjStartHP
//dwPowerMeleeAttackProbable
//dwPowerRangeAttackProbable
//mov [eax+40],00000000//DwUnderAttackAggro eax+40
//mov [eax+44],00000000//DwMeleeAttackRangeInAggro eax+44
//mov [eax+48],00000000//DwRangeAttackRangeInAggro eax+48
//DwSightInAggro eax+4C
//DwDefeatAggro eax+50
mov [eax+54],00000000//DwBlockedAggro eax+54
mov [eax+58],00000000//DwSlideAggro eax+58
mov [eax+5C],00000000//DwHealAggro eax+5C
//DwMasterUnderAttackAggro eax+50
//DwMasterDefeatAggro eax+54
//DwMasterBlockingAggro eax+58
//DwMasterSlideAggro eax+5C
//DwCOmplusionUnderAttackAggro eax+60
//dwMaxSummonsMonsterCount eax+64
//dwReSummonsMonsterTick eax+68
//dwMaxSummonsMonsterRange eax+6C
//dwSummonsStartPcCountPatternType eax+70
originalcode:
mov edx,[eax+1c]
mov [ecx+20],edx
mov edx,10 // number spawn
mov [eax+8c],edx
mov edx,64 // time delay spawn
mov [eax+90],edx
mov edx,30 // # follow monster
mov [eax+3C],edx
//mov [ecx+20],edx // # follow my master
exit:
jmp returnhere
[DISABLE]
dealloc(newmem)
0045C1CD:
mov edx,[eax+1c]
mov [ecx+20],edx
Lastly on skill.
For example incar magician itimid flash
i search for the skill in winhex IconIndex,548
so when i find it i start editing the values of all NOCANCEL,255,155,0
and also 1,0,547,1,0,14000, i change to 1,0,547,1,0,00000,
but all i get is no cooldown with skill but no dmg.
If anyone has any idea and can help me out thanks for your time in reading a noobs post, thanks alot.
|
Vac-hack
[ENABLE]
alloc(MonsterProperties,2048)
label(ReturnMonsterProperties)
label(PropertyBace)
registersymbol(PropertyBace)
00450CAE: //8B 80 98 00 00 00 89 81 9C 00
jmp MonsterProperties
nop
ReturnMonsterProperties:
MonsterProperties:
push eax
mov eax,[eax+00000098] //Original Code
mov [ecx+0000009C],eax //Original Code
pop eax
mov [PropertyBace],ecx
//mov [ecx+00],00000000 //DwInfoIndex
mov [ecx+04],000003E8 //DwExploreRange
mov [ecx+08],000003E8 //DwSight
mov [ecx+0C],000003E8 //DwPersuitRange
//mov [ecx+10],00000000 //DwAvoidRange
mov [ecx+14],00000001 //DwExploreStandDelay
//mov [ecx+18],00000003 //DwExploreMoveDelay
//mov [ecx+1C],00000001 //DwStandDelay
mov [ecx+20],00000001 //DwMoveDelay
//mov [ecx+24],00000000 //DwFollowMyMasterRange
//mov [ecx+28],00000000 //DwStopMasterNear
//mov [ecx+2C],00000000 //DwWarpMyMasterRange
//mov [ecx+30],00000000 //DwCallTeamPossibelHP
//mov [ecx+34],00000000 //DwCallTeamCount
//mov [ecx+38],00000000 //DwBlockNFirstAttack
//mov [ecx+3C],00000000 //dwCallTeamCell
mov [ecx+40],FFFFFFFF //dwFollowTarget
//mov [ecx+44],00000000 //dwSpecialAttackStartHP
//mov [ecx+48],00000000 //dwSpecialMeleeAttackRate
//mov [ecx+4C],00000000 //dwSpecialRangeAttackRate
//mov [ecx+50],00000000 //DwPowerAttacjStartHP
//mov [ecx+54],00000000 //dwPowerMeleeAttackProbable
//mov [ecx+58],00000000 //dwPowerRangeAttackProbable
//mov [ecx+5C],00000000 //DwUnderAttackAggro
mov [ecx+60],00000000 //DwMeleeAttackRangeInAggro
mov [ecx+64],00000000 //DwRangeAttackRangeInAggro
mov [ecx+68],000003E8 //DwSightInAggro
//mov [ecx+6C],00000000 //DwDefeatAggro
//mov [ecx+70],00000000 //DwBlockedAggro
//mov [ecx+74],00000000 //DwSlideAggro
//mov [ecx+78],00000000 //DwHealAggro
//mov [ecx+7C],00000000 //DwMasterUnderAttackAggro
//mov [ecx+80],00000000 //DwMasterDefeatAggro
//mov [ecx+84],00000000 //DwMasterBlockingAggro
//mov [ecx+88],00000000 //DwMasterSlideAggro
//mov [ecx+8C],00000000 //DwCOmplusionUnderAttackAggro
//mov [ecx+90],00000064 //dwMaxSummonsMonsterCount
//mov [ecx+94],00000000 //dwReSummonsMonsterTick
//mov [ecx+98],00000000 //dwMaxSummonsMonsterRange
//mov [ecx+9C],00000000 //dwSummonsStartPcCount
//mov [eax+A0],00000000 //PatternType
mov eax,[ecx+0000009C] //Original Code
jmp ReturnMonsterProperties
PropertyBace:
db 00 00 00 00
[DISABLE]
dealloc(MonsterProperties)
unregistersymbol(PropertyBace)
00459A9E:
mov eax,[eax+00000098]
And Your Hack Fail ! Vac Fail Non-Aggro Fail !
|
|
|
|
|
07/13/2010, 10:34
|
#5
|
elite*gold: 90
Join Date: Jan 2008
Posts: 1,175
Received Thanks: 137
|
#4 reported bumping old thread
|
|
|
|
|
07/13/2010, 12:51
|
#6
|
elite*gold: 35
Join Date: Aug 2009
Posts: 5,822
Received Thanks: 1,958
|
#closed
|
|
|
|
All times are GMT +2. The time now is 03:58.
|
|
