OllyDBG & CO

thanks again
Ivebeen checking the site like 10+ times a day waiting to see how this was done

::EDIT::Great job explaining what its doing instead of just post what needs to be done,
Thanks for keeping it simple but also making it understandable +K
Real nice

Yah, sorry for the delay like I said I had a fever for the better part of this week.

can we get this thread moved over to the programming section?
This is a great tut,Id hate for it to get lost(Ive never checked the guide section before i seen ollydbg & CO).Debugging is somthing extreamly usefull

I'll ask leavemealone / bone-you to move it.

Thanks, very detailed, going to try this today! :D

Excellent written tutorial, Easy to follow and easy to do also easy updating when TQ patches, I thank you :)

Finally got it to work lol i didnt see the part that said extract it to the game folder xD

Great tutorial apart from that bit lmao

Anyone helping others learn how to use Olly deserves some thanks, so here's one for ya :)

Quote:

Originally Posted by tanelipe [Removing the popup(s)] 1. Backup your Conquer.exe like usually. 2. Open Conquer.exe in OllyDBG (File -> Open -> Browser for its location) 3. Right click -> Search for -> All referenced text strings -> "co.91.com" > Double click it > You should see lines like this Code: 00477A9F > 68 F4E05500 PUSH Conquer.0055E0F4 ; ASCII "http://co.91.com/signout/" 00477AA4 . E9 DB000000 JMP Conquer.00477B84 00477AA9 > FFD7 CALL EDI 00477AAB . 8B10 MOV EDX,DWORD PTR DS:[EAX] 4. Click this line Code: 00477AA4 . E9 DB000000 JMP Conquer.00477B84 5. Push enter (It follows the jmp) 6. Now you should see lines like this Code: 00477B84 53 PUSH EBX ; |Operation 00477B85 FF76 20 PUSH DWORD PTR DS:[ESI+20] ; |hWnd 00477B88 FF15 78565200 CALL DWORD PTR DS:[<&SHELL32.ShellExecut>; ShellExecuteA

For some reason when I look I end up with something different to that.
[Only registered and activated users can see links. Click Here To Register...]
Also when searching for next I get something else not like your xD

Also, awesome guide. Really helpfull :p

That's the right place.

You got these lines

Click the jmp and then hit enter, it should bring you to place where it opens the site via ShellExecute

Quote:

Originally Posted by tanelipe That's the right place. You got these lines Code: 00477B96 > 68 F4E05500 PUSH Conquer.0055E0F4 ; ASCII "http://co.91.com/signout/" 00477B9B > E9 DB000000 JMP Conquer.00477B84 Click the jmp and then hit enter, it should bring you to place where it opens the site via ShellExecute

Ahh, I get it now xD
Thanks :D

THANKS THANKS THANKS +K :)

BUT .....

I HAVE A PROBLEM WHILE I TRYING TO APPLY HOW TO RUN CONQUER.EXE DIRECTLY .

SEE !!!!

[Only registered and activated users can see links. Click Here To Register...]

medooo

try this

find this
JL SHORT Conquer 00468a34
change to
JMP SHORT 00468a5d

you are in the right place your jump just has to be to a different address
the address's change with the new conquer.exe

THANK U Real~Death

i tried it and success

:) +k

im going to use your bypass play.exe as an example here

how do you figure out where the new jump goes?

you changed this
004687F9 . 7C 18 JL SHORT Conquer.00468813

to this
004687F9 . 7C 18 JMP SHORT 0046883C

not sure if im asking the right question or the right way?
Wondering if you can explain on how to figure out what address's go to what command?
I know this example was for the last patch,Im just wondering how you know where to jump to?

::EDIT::ill try to find another way to ask it if you dont understand