Offsets GameServer 1.00.93

[tranphuoctai]

bug in GS 1.00.93:

1... Kris weapon don't trade, don't put in warehourse
2... dark horse and dark spirit can repair in inventory
3.... clost client when set character to GM
Sorry bad english

 

[dazee]

if is there someone who can explain me this hooking function in asm

mov eax, 0x00403922+1 // this is where to hook our function..this is where gameserver call original function ? or is where original function start?
mov ecx, offset ProtocolCore // this is our function address
sub ecx, 0x00403922+5 // why to extract this from function address?
mov [eax], ecx

 

[ianvalls90]

Actually I can say it's true after I tested.....
Character with CtrlCode = 8;24;32;34 (ADMIN & GM known codes) = CLIENT CRASH right after appearing on map.....

Any solution for this?

 

[VeltonD]

All Fix for 1.00.93

//==========================================================================
//-- GM Windows 7 e Windows Vista
//==========================================================================
BYTE GMVista[2] = {0xEB, 0x42};
memcpy((int*)0x00509FDC, GMVista, sizeof(GMVista));

//==========================================================================
//-- FIX DISCONNECT RANKING SERVER
//==========================================================================
*(BYTE*)(0x004CB53E) = 0xEB;
//==========================================================================
//-- Protocol Error Fix & Outros Fixs
//==========================================================================
BYTE bProtocolErrorFix[] = { 0xE9, 0x9F, 0x0E, 0x00, 0x00, 0x90, 0x90 };
memcpy((LPBYTE)0x0045B092, bProtocolErrorFix, sizeof(bProtocolErrorFix));


BYTE bErrorL2Fix[] = { 0xEB, 0x2A, 0x90 };
memcpy((LPBYTE)0x004B7AFB, bErrorL2Fix, sizeof(bErrorL2Fix));


BYTE bInvalidSocketFix[] = { 0xEB, 0x13, 0x90 };
memcpy((LPBYTE)0x004B87CC, bInvalidSocketFix, sizeof(bInvalidSocketFix));


BYTE bInvalidScoketFix2[] = { 0xEB, 0x22, 0x90 };
memcpy((LPBYTE)0x004B87FB, bInvalidScoketFix2, sizeof(bInvalidScoketFix2));


BYTE bFixLuckDrop[7] = { 0x90, 0x90, 0x90, 0x90, 0x90, 0x90, 0x90 };
memcpy((LPBYTE)0x004A58C0, bFixLuckDrop, sizeof(bFixLuckDrop));


BYTE bSoulNoLuck[3] = { 0xC0, 0x74, 0x69 };
memcpy((LPBYTE)0x0053D226, bSoulNoLuck, sizeof(bSoulNoLuck));

//==========================================================================
//-- Skip Speed Hack Check Fix
//==========================================================================
BYTE bSkipSpeedHackCheck[] = {0x5F, 0x5E, 0x5B, 0x8B, 0xE5, 0x5D, 0xC3, 0x90, 0x90, 0x90};
memcpy((LPBYTE) 0x0043A4FD, bSkipSpeedHackCheck, sizeof(bSkipSpeedHackCheck));

//==========================================================================
//-- GM Transformação Ring
//==========================================================================
BYTE JumpGMCode[] = {0xE9 ,0x3E, 0x08, 0x00, 0x00, 0x90, 0x90, 0x90};
memcpy((int*)0x00535AB8,JumpGMCode,sizeof(JumpGMCode));


BYTE PachtGMCode[] = {0x83, 0xC2, 0x2E, 0x89, 0x95, 0x6C, 0xEC, 0xFF, 0xFF,
0xE9, 0xB7, 0xF7, 0xFF, 0xFF};
memcpy((int*)0x005362FB,PachtGMCode,sizeof(PachtGMCode));

//==========================================================================
//-- Box of Kundum Drop
//==========================================================================
Util.SetNop(0x004A58C0,7);
Util.SetNop(0x004A58CE,7);


//==========================================================================
//-- GM Move "M" Key
//==========================================================================
*(BYTE*)(0x00567095) = 0xE9;
*(BYTE*)(0x00567096) = 0xF5;
*(BYTE*)(0x00567097) = 0x00;
*(BYTE*)(0x005670B8) = 0x90;
*(BYTE*)(0x005670B9) = 0x8B;

//==========================================================================
//-- [ANTI-HACK][Serial 0 Item] Fix
//==========================================================================
BYTE Serial0[9] = { 0xE9, 0x90, 0x00, 0x00, 0x00, 0x90, 0x90, 0x90, 0x90 };
memcpy((int*) 0x00548D50,Serial0,sizeof(Serial0));


BYTE Serial0UseItem[6] = { 0xE9, 0xAD, 0x00, 0x00, 0x00, 0x90 };
memcpy ((int*) 0x0045CE76, Serial0UseItem, sizeof(Serial0UseItem));


BYTE Serial0SellItem[6] = { 0xE9, 0x81, 0x00, 0x00, 0x00, 0x90 };
memcpy ((int*) 0x00448A36, Serial0SellItem, sizeof(Serial0SellItem));


BYTE Serial0PSHop[6] = { 0xE9, 0xB0, 0x00, 0x00, 0x00, 0x90 };
memcpy ((int*) 0x0044CB4A, Serial0PSHop, sizeof(Serial0PSHop));


BYTE Serial0BPSHop[6] = { 0xE9, 0xAE, 0x00, 0x00, 0x00, 0x90 };
memcpy ((int*) 0x0044ED0C, Serial0BPSHop, sizeof(Serial0BPSHop));


*(BYTE*)(0x0044248D) = 0xEB;
*(BYTE*)(0x00525CB5) = 0xEB;
*(BYTE*)(0x00529694) = 0xEB;
*(BYTE*)(0x0052A0D8) = 0xEB;
*(BYTE*)(0x00551266) = 0xEB;
*(BYTE*)(0x00551BF6) = 0xEB;

//==========================================================================
//-- Pk Kill Fix
//==========================================================================
*(BYTE*)(0x004DB385) = 0xEB;
*(BYTE*)(0x004DB764) = 0xEB;
*(BYTE*)(0x004DB7F2) = 0xEB;
*(BYTE*)(0x005DFFAA) = 0xEB;

by ~ Velton D.

 

[ianvalls90]

All Fix for 1.00.93


by ~ Velton D.

Does this fix the GM character client close issue?
I'll test this. Thanks.

 

[tranphuoctai]

All Fix for 1.00.93


by ~ Velton D.

@Velton, you can help me export to dll?? i don't know C++ , sorry bad eng

 

[ianvalls90]

@Velton, you can help me export to dll?? i don't know C++ , sorry bad eng

That would be lovely, I know how to do it, but dont really have the time to do it....and Im super-lazy today. LOL.

BTW: tranphuoctai how did you solve the GM character issue?

 

[tranphuoctai]

@ianvalls90: i use windows XP is GM in game ok, but use windows 7 is close client!

if you need, i'll share my server files to you

 

[VeltonD]

That would be lovely, I know how to do it, but dont really have the time to do it....and Im super-lazy today. LOL.

BTW: tranphuoctai how did you solve the GM character issue?

Yes, GM FIX Close in Vista/Win7/Win8

@tranphuotai
Sorry do not use 1.00.93, Emulator I Own, Not Have time sorry

 

[ianvalls90]

Yes, GM FIX Close in Vista/Win7/Win8

@tranphuotai
Sorry do not use 1.00.93, Emulator I Own, Not Have time sorry

OKOK; So at least I know this will fix it, I'll try to make the DLL myself as soon as I have some time...
If anyone else can make it before, it would be just awesome, wanna test this fully.

 

[tranphuoctai]

yes, sorry ianvalls90 so much, because i can test and find bug but i don't know fix i in ASM or C++...thank ianvalls90 i will wait you

@VeltonD, i use server files and GS 1.00.93

 

[ianvalls90]

yes, sorry ianvalls90 so much, because i can test and find bug but i don't know fix i in ASM or C++...thank ianvalls90 i will wait you

@VeltonD, i use server files and GS 1.00.93

NeverMind, just HEX edited the mentioned offset by VeltonD for Fix GM char, took me 2 seconds, now im logged as a GM with Win7 Ultimate x64.
Going to Hex every single fix provided now, and share you my Gs at the end if you want me to....I'm not in the mood for coding a DLL right now XD.

 

[tranphuoctai]

yes, thanks ianvalls90, i need fix GM ^_^, help me plz
if ok, i can share event server active pc point café 100%

You must be registered to see links

 

[ianvalls90]

yes, thanks ianvalls90, i need fix GM ^_^, help me plz
if ok, i can share event server active pc point café 100%

You must be registered to see links

Ok so after making all changes, i could join game with gm ctl codes 32 & 34, but not recognized as gamemaster by server...cant use /make command, and using /online says 1 member, 0 gms online :/

using ctlcode=8 keeps on closing my client.......i guess something went wrong with my edits, or, not totally fixed with this offsets :|

anyways if someone can use /make on win7, let me know what ctlcode u using.

 

[tranphuoctai]

yes, server don't support command of GM, i only need GM join game in win7, you can share me the GS? thank ianvalls90, later affternoon, i send you my server file fix pc point café

 

[ianvalls90]

yes, server don't support command of GM, i only need GM join game in win7, you can share me the GS? thank ianvalls90, later affternoon, i send you my server file fix pc point café

OOOOOOOOOhhhhhhhhhh, so I was complaining about something that isn't working at all?
Good to know, I was getting a headache with this /make command.

I guess it's ok then.
Here's my GS, there 1 or 2 fixes I couldn't make...but just 1 or 2 lines, i believe it's nothing serious, altho i didnt test it yet. (it's running OK, i mean the fixes themselves.)

I'll attach it here.
PS:
Credits to VeltonD for the offsets given, and OllyDbg for being amazing (?).

 

[tranphuoctai]

OOOOOOOOOhhhhhhhhhh, so I was complaining about something that isn't working at all?
Good to know, I was getting a headache with this /make command.

I guess it's ok then.
Here's my GS, there 1 or 2 fixes I couldn't make...but just 1 or 2 lines, i believe it's nothing serious, altho i didnt test it yet. (it's running OK, i mean the fixes themselves.)

I'll attach it here.
PS:
Credits to VeltonD for the offsets given, and OllyDbg for being amazing (?).

When run GS is error don't send

You must be registered to see links

 

[VeltonD]

I worked with 1.00.93, do right now in the Source GameServer [Emulator for HermeX .90]

 

[tranphuoctai]

yes, i fixed on window 7, i will share my GS later affternoon, beacause not tiem, sorry bad eng

You must be registered to see links

You must be registered to see links

 

[tianye]

Can you make a changelog with your GS, my friend? So that we can know what have been fixed or added, thank you.