|
You last visited: Today at 23:54
Advertisement
Make Your Own Rohan Online Hack
Discussion on Make Your Own Rohan Online Hack within the Rohan forum part of the MMORPGs category.
04/13/2009, 08:13
|
#1
|
elite*gold: 0 
Join Date: Apr 2006
Posts: 326
Received Thanks: 440
|
Make Your Own Rohan Online Hack
I just found this Link. Not yen been tested on my Part.
1. Well, basically you need the Rohan Game Client.
2. Then you should download OllyDBG v1.10
3. After following the step by step tutorial, make sure you back up your original rohanclient.exe.
4. Finally, save the new edited rohanclient.exe into your installed directory and launch the game from rohanclient.exe itself. Do not run Rohan via the launcher as it will just repatch your edited rohanclient.exe
Step by Step Tutorial
~ Preliminary Notes ~
When assembling code, make sure the Fill with NOPs box is checked at all times.
To save your changes, follow these directions:
Right click the CPU window, Copy to Executable -> All Modifications.
Click Copy All, and then in the new window, right click the code area and click Save file.
(If at any time an error comes up, just press 'Ok'.)
Quote:
Make sure you do this below before anything else
Quote:
Initialize Code Cave
Go to 00427C50 and change the command there to RETN.
Now highlight and select from address 00427C51 to 00427DC9, right click, Binary -> Fill with NOPs.
Enable GM Commands
First, go to the address 004111F5 you should see this:
MOVZX EAX,BYTE PTR SS:[ESP+A9]
So you create a call at that address to a code cave you found/created, in this example, I'll be using the address 00427C52 as my code cave.
So you change the code at 004111F5 to CALL 00427C52 .
Go to 00427C52 and write this code:
MOV BYTE PTR SS:[ESP+0A9],0FA
MOVZX EAX,BYTE PTR SS:[ESP+0A9]
RETN
Increase Normal Attack Damage
Normally when you attack, you tell the server
to start an attack on a target and the server handles everything from there, updating you when you attack and what not.
But there's a way to make attacking client-side, it's a pretty simple exploit, that once built into the game, can become a very good hack.
This hack does not increase your damage, it just makes you attack extremely fast.
You'll need to hack two different things for this one, you need to disable the animations for attacking while its in use and the actual attacking.
(If you leave the animation on, it won't work correctly.)
Disable Attack Animation
Go to 0048AA3B and change the command there to JE 0048AACD .
This will disable the attack animation for players. (Yourself and others)
Damage Hack
For this hack, I'll be using 00427C64 as the start of the code cave.
Go to 00487E81 and change that code to CALL 00427C64 .
This command will jump to our custom code.
Go to 00487E87, right click it, go to Binary -> Fill With NOPs.
This change will disable the client from setting the current attack state.
Go to 00487EB7, right click it, go to Binary -> Fill With NOPs.
This change will disable attack speed, so your next attack is called instantly.
Now go to 00427C64 and put this code:
XOR EDI,EDI
MOV EDX,DWORD PTR DS:[0AF62FC]
MOV EAX,DWORD PTR DS:[0AF62F8]
MOV ECX,DWORD PTR DS:[0AC7FB8]
PUSH EDX
PUSH EAX
PUSH 0
PUSH 1308
CALL 00407030
MOV EDX,DWORD PTR DS:[0AF62FC]
MOV EAX,DWORD PTR DS:[0AF62F8]
PUSH EDX
PUSH EAX
LEA ECX,DWORD PTR SS:[ESP+1C]
PUSH ECX
MOV ECX,DWORD PTR DS:[0AC7FB8]
PUSH 1307
CALL 00407030
INC EDI
CMP EDI,4
JL SHORT 00427C66
MOV EDI,EBP
RETN
This code sends 4 sets of stop attacking / start attacking commands to the server.
The 4 in CMP EDI, 4 is how many loops it does, so you can change it to suit your needs.
(I dont suggest going over 20, 4 should be the perfect number for everyone.. Going too high may make you do less damage.)
Bypass the Patcher
Go to 0043F231 in the code area, right click it and go to Follow in dump -> Immediate Constant.
Now in the dump area, change ·ΞΗΡ to RoHan
Save the file.
Now press CTRL F2.
Once its restarted, go to 0043F1A0 and change the code there to MOV EDX, 9FB1DC .
Go to 0043F1C8 and right click then Binary -> Fill with Nops.
Remove Chat Filter
This hack will let you bypass the cuss filter.
Change the code at 004D38CC to JMP SHORT 004D38EA .
|
|
|
|
04/13/2009, 08:18
|
#2
|
elite*gold: 0
Join Date: Jun 2008
Posts: 46
Received Thanks: 2
|
Patched ages ago. It's the same as the sorien hack.
Regards,
~Pampierot
|
|
|
|
|
04/14/2009, 08:54
|
#3
|
elite*gold: 0
Join Date: Aug 2007
Posts: 48
Received Thanks: 12
|
Has anyone tried if this could still be working? Has anyone tried to edit the hex values at all?
|
|
|
|
|
04/18/2009, 05:38
|
#4
|
elite*gold: 0
Join Date: Apr 2009
Posts: 1
Received Thanks: 0
|
lol you should have at least give the link...
and i think i saw this also, it is for rohan blood feud... and the game client is a differnet version?
|
|
|
|
|
04/27/2009, 23:59
|
#5
|
elite*gold: 0
Join Date: Mar 2009
Posts: 2
Received Thanks: 0
|
does this work or not ppl
|
|
|
|
|
04/28/2009, 00:05
|
#6
|
elite*gold: 0
Join Date: May 2008
Posts: 136
Received Thanks: 6
|
^
^
desperado.
why dont u try it?
|
|
|
|
|
04/29/2009, 02:14
|
#7
|
elite*gold: 0
Join Date: May 2008
Posts: 83
Received Thanks: 11
|
nde nagmamatch ung codes, blood feud lng ata toh
|
|
|
|
|
04/29/2009, 02:19
|
#8
|
elite*gold: 0
Join Date: Apr 2008
Posts: 108
Received Thanks: 77
|
this is sorien's hack and only worked a long long time ago
|
|
|
|
|
05/01/2009, 08:08
|
#9
|
elite*gold: 0
Join Date: May 2009
Posts: 9
Received Thanks: 0
|
to see is to believe. any screen shot yet?
|
|
|
|
|
05/01/2009, 08:47
|
#10
|
elite*gold: 0
Join Date: May 2008
Posts: 56
Received Thanks: 8
|
Its Working you Tried But you learn how to Use...OllyDBG v1.10
And Follow Here DesTruction
Sory Bad English
|
|
|
|
|
05/03/2009, 19:34
|
#11
|
elite*gold: 0
Join Date: Nov 2007
Posts: 9
Received Thanks: 0
|
does not work tried and tested
|
|
|
|
|
05/03/2009, 19:57
|
#12
|
elite*gold: 0
Join Date: May 2009
Posts: 18
Received Thanks: 1
|
stable?!
|
|
|
|
|
05/04/2009, 00:24
|
#13
|
elite*gold: 0
Join Date: Jun 2008
Posts: 15
Received Thanks: 2
|
Quote:
Originally Posted by bjbolero
to see is to believe. any screen shot yet?
|
To see Is To Believe ??? I Dont Believe In That then I'll ask you can you see your brain?? if not then you don't believe that you have brain?
|
|
|
|
|
05/19/2009, 07:31
|
#14
|
elite*gold: 0
Join Date: May 2008
Posts: 46
Received Thanks: 2
|
Quote:
Originally Posted by zhoea
I just found this Link. Not yen been tested on my Part.
1. Well, basically you need the Rohan Game Client.
2. Then you should download OllyDBG v1.10
3. After following the step by step tutorial, make sure you back up your original rohanclient.exe.
4. Finally, save the new edited rohanclient.exe into your installed directory and launch the game from rohanclient.exe itself. Do not run Rohan via the launcher as it will just repatch your edited rohanclient.exe
Step by Step Tutorial
~ Preliminary Notes ~
When assembling code, make sure the Fill with NOPs box is checked at all times.
To save your changes, follow these directions:
Right click the CPU window, Copy to Executable -> All Modifications.
Click Copy All, and then in the new window, right click the code area and click Save file.
(If at any time an error comes up, just press 'Ok'.)
Quote:
Make sure you do this below before anything else
Quote:
Initialize Code Cave
Go to 00427C50 and change the command there to RETN.
Now highlight and select from address 00427C51 to 00427DC9, right click, Binary -> Fill with NOPs.
Enable GM Commands
First, go to the address 004111F5 you should see this:
MOVZX EAX,BYTE PTR SS:[ESP+A9]
So you create a call at that address to a code cave you found/created, in this example, I'll be using the address 00427C52 as my code cave.
So you change the code at 004111F5 to CALL 00427C52 .
Go to 00427C52 and write this code:
MOV BYTE PTR SS:[ESP+0A9],0FA
MOVZX EAX,BYTE PTR SS:[ESP+0A9]
RETN
Increase Normal Attack Damage
Normally when you attack, you tell the server
to start an attack on a target and the server handles everything from there, updating you when you attack and what not.
But there's a way to make attacking client-side, it's a pretty simple exploit, that once built into the game, can become a very good hack.
This hack does not increase your damage, it just makes you attack extremely fast.
You'll need to hack two different things for this one, you need to disable the animations for attacking while its in use and the actual attacking.
(If you leave the animation on, it won't work correctly.)
Disable Attack Animation
Go to 0048AA3B and change the command there to JE 0048AACD .
This will disable the attack animation for players. (Yourself and others)
Damage Hack
For this hack, I'll be using 00427C64 as the start of the code cave.
Go to 00487E81 and change that code to CALL 00427C64 .
This command will jump to our custom code.
Go to 00487E87, right click it, go to Binary -> Fill With NOPs.
This change will disable the client from setting the current attack state.
Go to 00487EB7, right click it, go to Binary -> Fill With NOPs.
This change will disable attack speed, so your next attack is called instantly.
Now go to 00427C64 and put this code:
XOR EDI,EDI
MOV EDX,DWORD PTR DS:[0AF62FC]
MOV EAX,DWORD PTR DS:[0AF62F8]
MOV ECX,DWORD PTR DS:[0AC7FB8]
PUSH EDX
PUSH EAX
PUSH 0
PUSH 1308
CALL 00407030
MOV EDX,DWORD PTR DS:[0AF62FC]
MOV EAX,DWORD PTR DS:[0AF62F8]
PUSH EDX
PUSH EAX
LEA ECX,DWORD PTR SS:[ESP+1C]
PUSH ECX
MOV ECX,DWORD PTR DS:[0AC7FB8]
PUSH 1307
CALL 00407030
INC EDI
CMP EDI,4
JL SHORT 00427C66
MOV EDI,EBP
RETN
This code sends 4 sets of stop attacking / start attacking commands to the server.
The 4 in CMP EDI, 4 is how many loops it does, so you can change it to suit your needs.
(I dont suggest going over 20, 4 should be the perfect number for everyone.. Going too high may make you do less damage.)
Bypass the Patcher
Go to 0043F231 in the code area, right click it and go to Follow in dump -> Immediate Constant.
Now in the dump area, change ·ΞΗΡ to RoHan
Save the file.
Now press CTRL F2.
Once its restarted, go to 0043F1A0 and change the code there to MOV EDX, 9FB1DC .
Go to 0043F1C8 and right click then Binary -> Fill with Nops.
Remove Chat Filter
This hack will let you bypass the cuss filter.
Change the code at 004D38CC to JMP SHORT 004D38EA .
|
I think this coding only works for EN client before. As the coding for the PH client is different, the placing of the codes we need to search is also different. Unless ofcors someone has already made this work using the tutorial.
|
|
|
|
|
05/19/2009, 10:24
|
#15
|
elite*gold: 0
Join Date: Apr 2008
Posts: 108
Received Thanks: 77
|
The procedure remains the same. It is just the address need to be updated. For how to find the new addresses, I also don't know 
|
|
|
|
All times are GMT +2. The time now is 23:54.
|
|
