Shakto

Yeah it's the crash i was talking about, I"m testing where diff is wrong

First hex (Pretty hard to find... Not all the exe has been uncrypt... so....) Find :68 DC 99 92 00 B9 0C E9 BA 00 88 15 E2 8A C0 00 E8 A9 48 D8 FFToE8 75 7A 16 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90Not sure:E8 ?? ?? ?? 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90It's a CALL 00?????? // crypted // I think it's 009D605C but not sure I can't find the following... it's not uncryted sry for that. I can't find anything related to rdata.grf. That mean it's not use by ragexe.exe ? (just by the old ragexeRe.exe) ? If yes maybe there is just one more patch to search and not 2. Any other diff to try ? // I'm going to look patch by patch if the hex replace are working and who is the hex who make the client crash on exit.

I go smoke and i do that I finally understand perfectly how it works

Read data folder first Find :80 3D 08 E9 BA 00 00 53 8BTo :90 A1 08 E9 BA 00 40 53 8B Thanks to test that What do we need else ?

Yes that's what i thank ^^ but i'm pretty sure mine is working correctly Edit : i'm really close to find the read data folder first it will not be complicated

I FOUND IT FINALY 80 3D 74 8D C0 00 00 74 13 C6 05 74 8D C0 00 00 C7 43 0C 04 00 00 00to6A 03 B9 C8 65 A6 00 E8 1B FE D5 FF 90 90 90 90 90 90 90 90 90 90 90 0F 84 23 01 00 00 83 F8 12 0F 84 1A 01 00 00to90 90 90 90 90 90 83 F8 12 90 90 90 90 90 90 Can aynone test it !!!! ? I'll try to look on ollydb where to have the read data first diff

Judas, can you try with my hex modification ? Maybe my 2nd is not good at all but the 1st should be good, we clearly see that it's not exit the client when you click on button but after few moment Edit : Argh, it don't crash anymore but still don't work, i think i have the wrong CALL and MOV adress for the 1st modification >.<

I found the first part on OllyDb, i'm trying to figure out where to find the call adress >.<

It not works but we have to do smthing like this >.< I found the first hex to change : 80 3D 74 8D C0 00 00 74 13 C6 05 74 8D C0 00 00 C7 43 0C 04 00 00 00to6A 03 B9 C8 65 A6 00 E8 AB B1 DF FF 90 90 90 90 90 90 90 90 90 90 90 Assembly code : 00802119 . 803D 748DC000 >CMP BYTE PTR DS:[C08D74],000802120 . 74 13 JE SHORT 2013-03-.0080213500802122 . C605 748DC000 >MOV BYTE PTR DS:[C08D74],000802129 . C743 0C 040000>MOV DWORD PTR DS:[EBX+C],4 Should looks like something like this assembly code PUSH 3MOV ECX,2013-03-.00A665C8 (MAYBE WRONG 00A665C8 if it is,what is the adress)CALL 2013-03-.00568960 (SAME)NOPNOPNOPNOP....NOP (to fill the old command) The 2nd 0F 84 23 01 00 00 83 F8 12 0F 84 1A 01 00 00to90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 Assembly code 00802A20 . 0F84 23010000 JE 2013-03-.00802B4900802A26 . 83F8 12 CMP EAX,1200802A29 . 0F84 1A010000 JE 2013-03-.00802B49

GO ahead ppl, i always need the enforce old login system

//Map types 21 - 24 not used. //Map types 26 - 28 remains opens for future types. Map type 29 and 30 Maybe we have to try with all this map type on and off

No, for me it recognize that. That's why it check if it's allowed to have it with a mapflag or celltype.

I don't think it's a mapflag for "vending" -> there is alrdy a celltype for that I think it's a mapflag or a celltype to have a cart like having a peco ect...

It seems it's a new mapflag °° Never saw that before. But it's great to notice that. Just have to seach out how to find the mapflag and how add it

It would be a pleasure to try to fix that but my server use md5 password. Without the enforce old login system, it's not possible to log in >.< Password NULL has his md5, can't believe it >.>

Ok so it's older exe problem, no reason to worry about this for new client in that case

Anyway... Does anyone can tell if with the new version of lub files, they have a problem with the skill tree ? (new skill are in 2nd job tree) and some news skills are at the same location as older skills. I tried with 2012 exe, so can anyone look if it's the same things with the new exe ?

Do you have hackshield in your RO folder ? It still doesn't work for me except with the exe from k3dt We have to find the hex for old login system too >.< (Here the new packet_db : http://pastebin.com/n2hpKRk4) with your modification Ryuuzaki

Your patched client still ask me for aos (hshield) I tried to find your hex line but i didn't find them so i think there is some hex modification missing in the list

Great ! Is this still necessary to do : ragexe.exe -1rag1 /account:sci.xml -t:blah blah server (In bat file) where sci.xml is in the data folder ? If yes what hex modification is missing for that ?

Maybe but bored to search for it at each revision of rathena x) Sometimes they make a mess in their files With that i'm sure to haven't any prob xD Well i searched for read lua before lub, it seems they totally change the code and just look for lub files except for some file.lua with name in the client so we can't change it anymore. Ppl will have to save their lua into lub files xD

Tetra Vortex Skill animation Fix Find :65 66 66 65 63 74 5C 74 76 2D 38 2E 62 6D 70 00 65 66 66 65 63 74 5C 74 76 2D 37 2E 62 6D 70 00 65 66 66 65 63 74 5C 74 76 2D 36 2E 62 6D 70 00 65 66 66 65 63 74 5C 74 76 2D 35 2E 62 6D 70 00 65 66 66 65 63 74 5C 74 76 2D 34 2E 62 6D 70 00 65 66 66 65 63 74 5C 74 76 2D 33 2E 62 6D 70 00 65 66 66 65 63 74 5C 74 76 2D 32 2E 62 6D 70 00 65 66 66 65 63 74 5C 74 76 2D 31 2E 62 6D 70 00Replace to :00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Read Data folder first : (anyone can confirm for it => i find the location but not sure for replace) Find :C2 0C 00 80 3D 08 E9 BA 00 00 53Replace:C2 0C 00 80 A1 70 8E 94 00 40 53

Maybe this can help for hshield. http://www.elitepvpers.com/forum/4story-hacks-bots-cheats-exploits/1562400-tutorial-how-build-hackshield-bypass.html I've a problem with my software, he doesn't stop at my breakpoint so anyone can find the call of dlls ?

I found line 5A 58B0 some stuff about aos, i think it's near that (or not i just modified the output windows of error >.<)

Ok i found the first modification line for hshield : 20 1910 Search 51 83 3D BC F1 BA 00 00 74 04 33 C0 59 C3 Replace by 51 31 C0 40 90 90 90 90 90 90 90 90 59 C3 (I'm not sure its that for replace but i've the first line to change ^^) I'm searching next line to change