V3.82 -charlie

Discussion on Helbreath Hacks. New ones Released. and how to work them.
Post Reply
charlie
Outpost4lyfe
Posts: 3324
Joined: Sun Apr 06, 2003 12:24 am
Location: Mt GOD
Contact:

Post by charlie »

Code: Select all

382a www.unadvised.net 6-6-05

4C3910 ERROR
4C3918 IP	

Logout

004AA2BA   . C745 14 0B000000          MOV DWORD PTR SS:[EBP+14],0B
004AA2BA     C745 14 00000000          MOV DWORD PTR SS:[EBP+14],0

0045F828  |. C74424 20 0B000000        MOV DWORD PTR SS:[ESP+20],0B
0045F828     C74424 20 00000000        MOV DWORD PTR SS:[ESP+20],0

Restart

0045F8C3     C686 DC460700 05          MOV BYTE PTR DS:[ESI+746DC],5
0045F8C3     C686 DC460700 00          MOV BYTE PTR DS:[ESI+746DC],0

Multislate

0045DEC7     75 25         JNZ SHORT HelGame.0045DEEE
0045DEC7     EB 25                     JMP SHORT HelGame.0045DEEE



No Delay Using Pots

0045339C  |. 75 0D                     JNZ SHORT HelGame.004533AB
0045339C     EB 0D                     JMP SHORT HelGame.004533AB

0045350A  |. 75 0D                     JNZ SHORT HelGame.00453519
0045350A     EB 0D                     JMP SHORT HelGame.00453519

0045D26D   . 75 1C                     JNZ SHORT HelGame.0045D28B
0045D26D     EB 1C                     JMP SHORT HelGame.0045D28B

No Wait for using a Scroll

0045DF15   . 75 52                     JNZ SHORT HelGame.0045DF69
0045DF15     EB 52                     JMP SHORT HelGame.0045DF69

0045DF41   . 75 26                     JNZ SHORT HelGame.0045DF69
0045DF41     EB 26                     JMP SHORT HelGame.0045DF69

Use pots while in exchange

004533B9  |. 75 0D                     JNZ SHORT HelGame.004533C8
004533B9     EB 0F                     JMP SHORT HelGame.004533CA

00453527  |. 75 0D                     JNZ SHORT HelGame.00453536
00453527     EB 0F                     JMP SHORT HelGame.00453538

Default music

00404650   . 8985 143B0700             MOV DWORD PTR SS:[EBP+73B14],EAX; |
00404650     89B5 143B0700             MOV DWORD PTR SS:[EBP+73B14],ESI; |

Beholder

0041F655  |. 8DB3 49480700             LEA ESI,DWORD PTR DS:[EBX+74849]
0041F655     EB 1B                     JMP SHORT HelGame.0041F672
0041F657     90                        NOP
0041F658     90                        NOP
0041F659     90                        NOP
0041F65A     90                        NOP


004206EA  |. 8DB5 49480700             LEA ESI,DWORD PTR SS:[EBP+74849]
004206EA     EB 0B                     JMP SHORT HelGame.004206F7
004206EC     90                        NOP
004206ED     90                        NOP
004206EE     90                        NOP
004206EF     90                        NOP

004264B7  |. 8DB5 49480700             LEA ESI,DWORD PTR SS:[EBP+74849]
004264B7     EB 0B                     JMP SHORT HelGame.004264C4
004264B9     90                        NOP
004264BA     90                        NOP
004264BB     90                        NOP
004264BC     90                        NOP

0042970E  |. 8DB5 49480700             LEA ESI,DWORD PTR SS:[EBP+74849]
0042970E     EB 0B                     JMP SHORT HelGame.0042971B
00429710     90                        NOP
00429711     90                        NOP
00429712     90                        NOP
00429713     90                        NOP

0042D407  |. 8DB5 49480700             LEA ESI,DWORD PTR SS:[EBP+74849]
0042D407     EB 0B                     JMP SHORT HelGame.0042D414
0042D409     90                        NOP
0042D40A     90                        NOP
0042D40B     90                        NOP
0042D40C     90                        NOP

00431A47   . 8DB5 49480700             LEA ESI,DWORD PTR SS:[EBP+74849]
00431A47     EB 0B                     JMP SHORT HelGame.00431A54
00431A49     90                        NOP
00431A4A     90                        NOP
00431A4B     90                        NOP
00431A4C     90                        NOP

00435A30  |. 8DB5 49480700             LEA ESI,DWORD PTR SS:[EBP+74849]
00435A30     EB 0B                     JMP SHORT HelGame.00435A3D
00435A32     90                        NOP
00435A33     90                        NOP
00435A34     90                        NOP
00435A35     90                        NOP

No Cast Delay

0046B15F   . 8D55 C4                   LEA EDX,DWORD PTR SS:[EBP-3C]
0046B15F     EB 20                     JMP SHORT HelGame.0046B181
0046B161     90                        NOP

Enemy Indicator

004198D8  |. 74 34                     JE SHORT HelGame.0041990E
004198D8     90                        NOP
004198D9     90                        NOP

0041C461  |. 74 48                     JE SHORT HelGame.0041C4AB
0041C461     90                        NOP
0041C462     90                        NOP

0041EA08  |. 74 35                     JE SHORT HelGame.0041EA3F
0041EA08     90                        NOP
0041EA09     90                        NOP

0041F91C  |. 74 35                     JE SHORT HelGame.0041F953
0041F91C     90                        NOP
0041F91D     90                        NOP

00420F9E  |. 74 33                     JE SHORT HelGame.00420FD3
00420F9E     90                        NOP
00420F9F     90                        NOP

00424AA1  |. 74 32                     JE SHORT HelGame.00424AD5
00424AA1     90                        NOP
00424AA2     90                        NOP

00426C72  |. 74 4A                     JE SHORT HelGame.00426CBE
00426C72     90                        NOP
00426C73     90                        NOP

00429BFB  |. 74 41                     JE SHORT HelGame.00429C3E
00429BFB     90                        NOP
00429BFC     90                        NOP

0042DB0C  |. 74 35                     JE SHORT HelGame.0042DB43
0042DB0C     90                        NOP
0042DB0D     90                        NOP

00435E78  |. 74 44                     JE SHORT HelGame.00435EBE
00435E78     90                        NOP
00435E79     90                        NOP

True Identity

0045FF63  |. 72 0B                     JB SHORT HelGame.0045FF70
0045FF63    ^72 DB                     JB SHORT HelGame.0045FF40

Speed Trap/Limit

004684A8   . 3D 2C010000    CMP EAX,12C
004684A8     3D 00010000    CMP EAX,100

004684B3   8B8B 40FA0600         MOV ECX,DWORD PTR DS:[EBX+6FA40]
004684B3   E9 F02D0000           JMP HelGame.0046B2A8
004684B8   90                    NOP

Reference-0046B2A8   > 8B4D F4        MOV ECX,DWORD PTR SS:[EBP-C]        &#59;  Default case of switch 0046A80E

Global Spam / Curse

00453717   3C 21            CMP AL,21
00453717   EB 1E            JMP SHORT HelGame.00453737

00453743   75 03            |JNZ SHORT HelGame.00453748
00453743   EB 0B            |JMP SHORT HelGame.00453750

004AB06C   0F84 1C030000    JE HelGame.004AB38E
004AB06C   E9 1C030000      JMP HelGame.004AB38D
004AB071   90               NOP

No confusion / Illision

0048BA93   C786 14430700 01000000     MOV DWORD PTR DS:[ESI+74314],1
0048BA93   C786 14430700 00000000     MOV DWORD PTR DS:[ESI+74314],0

0048BB22   C786 18430700 01000000     MOV DWORD PTR DS:[ESI+74318],1
0048BB22   C786 18430700 00000000     MOV DWORD PTR DS:[ESI+74318],0

0045FE6A   39B3 48440700              CMP DWORD PTR DS:[EBX+74448],ESI
0045FE6A   EB 0A                      JMP SHORT HelGame.0045FE76
0045FE6C   90                         NOP
0045FE6D   90                         NOP
0045FE6E   90                         NOP
0045FE6F   90                         NOP

Detailed Trees

00407F24   8A85 324B0700              ||MOV AL,BYTE PTR SS:[EBP+74B32]
00407F24   33C0                ||XOR EAX,EAX
00407F26   EB 0A               JMP SHORT HelGame.00407F32
00407F28   90                  NOP
00407F29   90                  NOP

004080F9   8A85 324B0700              ||MOV AL,BYTE PTR SS:[EBP+74B32]    &#59; Default case of switch 00408099
004080F9   33C0                ||XOR EAX,EAX                       &#59; Default case of switch 00408099
004080FB   EB 06               JMP SHORT HelGame.00408103
004080FD   90                  NOP
004080FE   90                  NOP

Pre Cast

004988F7   75 14               JNZ SHORT HelGame.0049890D
004988F7   EB 14               JMP SHORT HelGame.0049890D

F1 Hotkey

0045396E   8B85 34430700       MOV EAX,DWORD PTR SS:[EBP+74334]    &#59; Case 48 of switch 00452DB0
00453974   85C0                TEST EAX,EAX
00453976   0F85 43060000       JNZ HelGame.00453FBF

0045396E   6A 00               PUSH 0                              &#59; Case 48 of switch 00452DB0
00453970   8BCD                MOV ECX,EBP
00453972   E8 19470400         CALL HelGame.00498090 *recaluate every update


Reference-00498090   81EC C0000000       SUB ESP,0C0

No wing to fly

00468D2D   0F87 77190000         JA HelGame.0046A6AA
00468D2D   E9 78190000           JMP HelGame.0046A6AA
00468D32   90                    NOP

Soldier-Commando

0043B6D8   6A 26                 PUSH 26
0043B6D8   6A 24                 PUSH 24

Full Swing -by Binarydata

0049cce5    898A380B0000             mov [edx+0xB38],ecx
0049cce5    90                              nop
0049cce6    90                              nop
0049cce7    90                              nop
0049cce8    90                              nop
0049cce9    90                              nop
0049ccea    90                              nop
Girlfriends are dedicated hookers.
binarydata
DBfiller
Posts: 3816
Joined: Fri Oct 31, 2003 5:30 am
Location: San Diego CA, USA
Contact:

Post by binarydata »

added fullswing
<img src='http://img88.exs.cx/img88/2290/7666.jpg' border='0' alt='user posted image' />
charlie
Outpost4lyfe
Posts: 3324
Joined: Sun Apr 06, 2003 12:24 am
Location: Mt GOD
Contact:

Post by charlie »

it ork or is it a binary hack that works ebil
Girlfriends are dedicated hookers.
binarydata
DBfiller
Posts: 3816
Joined: Fri Oct 31, 2003 5:30 am
Location: San Diego CA, USA
Contact:

Post by binarydata »

charlie wrote: it ork or is it a binary hack that works ebil
i started on finding the last message
<img src='http://img88.exs.cx/img88/2290/7666.jpg' border='0' alt='user posted image' />
Kiruku
Loyal fan
Posts: 268
Joined: Wed Feb 22, 2006 12:00 pm
Contact:

Post by Kiruku »

ok i need to ask once... i got ollydbg but where to add that? how to add (i know im a damn noob) ... plz help :D
<img src='http://lichtdrache.lima-city.de/helbrea ... aramba.gif' border='0' alt='user posted image' />
binarydata
DBfiller
Posts: 3816
Joined: Fri Oct 31, 2003 5:30 am
Location: San Diego CA, USA
Contact:

Post by binarydata »

hax posted here are merely for refrence
<img src='http://img88.exs.cx/img88/2290/7666.jpg' border='0' alt='user posted image' />
Kiruku
Loyal fan
Posts: 268
Joined: Wed Feb 22, 2006 12:00 pm
Contact:

Post by Kiruku »

maybe u can post the topic? i cant find anything :S (search used)
<img src='http://lichtdrache.lima-city.de/helbrea ... aramba.gif' border='0' alt='user posted image' />
qwerty84
just visiting
Posts: 6
Joined: Fri Feb 09, 2007 7:03 am

Post by qwerty84 »

Hi!. im playing on hb prophecy, i manage to unpack the game client which is 3.82 but the codes is entirely different from whats posted here. hb prophecy has a different version of 3.82 frm this?
Dax
&lt;3 bd long time
Posts: 785
Joined: Mon Apr 18, 2005 3:19 pm

Post by Dax »

qwerty84 wrote: Hi!. im playing on hb prophecy, i manage to unpack the game client which is 3.82 but the codes is entirely different from whats posted here. hb prophecy has a different version of 3.82 frm this?
Yer a fake version. Don't be fooled by a version number in priv hb, every server is just like the last; SHIT!
Reppin' 127.0.0.1!!!<br><br><img src='http://img502.imageshack.us/img502/1348/sig4daxbn2.jpg' border='0' alt='user posted image' /><br><br>I contend that we are both atheists. I just believe in one fewer god than you do. <br>When you understand why you dismiss all the other possible gods, you will <br>understand why I dismiss yours.<br>~ <b>Stephen Roberts</b>
qwerty84
just visiting
Posts: 6
Joined: Fri Feb 09, 2007 7:03 am

Post by qwerty84 »

oh okay.. its actually a clone server of 3.82. B)
Post Reply