Character Base Adress

04/11/2010 20:11 ~*NewDuuDe*~#1
Well, me and haydz were trying to get this right as I have a speedhack I need this for. We have been playing around with cheat engine for quite some time(c++ was involved too) but neither I or he can get it right. I've been trying to get it out from mana, hp, cords etc, so we really need some assistance here. I have been doing it out of this; [Only registered and activated users can see links. Click Here To Register...] but I allways seem to get stuck at move 10, as there is nothing accessing/writing to the specific address. I have been doing exactly what the thread told me to, but I have failed badly. Epic(ly). I also tried doing it out from something that iamhawtness said, but that didnt seem to do the trick either. Cheat Engine was mostly what I used, as I am not too good with Olly. Any tips? Maybe someone could attempt to get the character base address/offset? :P

Edit: sorry for the typo in the headline =X
04/11/2010 21:08 trash#2
7AEA68
04/11/2010 21:47 IAmHawtness#3
  1. Find the x or y coordinate of your character (make sure the address isn't green, you want to find the dynamic address)
  2. Right-click the address and press "Find out what accesses this address"
  3. Jump around and you'll probably find a couple of instructions that access the address. Look for the one that looks something like this:
    Code:
    0058D5DE - mov ax,[esi+000001fc]
0062BB76 - push [esi+000001fc]
0062BBB8 - push [esi+000001fc]
  4. 0x1FC is the offset, so ESI contains your character's base address
  5. Do a search in Cheat Engine for addresses that contain the value of your base address (e.g. if your hero base address is 0x35807D0, you search for that value in Cheat Engine (remember to tick the "hex" button) - Make sure the address you find is the static one (symbolized with green text))
04/26/2010 12:47 Glenneke15#4
Im still having problems finding it.. Mainly stuck after step 4.
When i search for the address found, i come up blank.

Any idea on what I am doing wrong?
04/26/2010 15:35 IAmHawtness#5
Quote:
Originally Posted by Glenneke15 View Post
Im still having problems finding it.. Mainly stuck after step 4.
When i search for the address found, i come up blank.

Any idea on what I am doing wrong?
I hope this helps:
[Only registered and activated users can see links. Click Here To Register...]
10/21/2010 22:33 denominator#6
So all the different offsets represent different actions to the character right? Like there is one for jump and another for sit and another for attack? Is that the way you find out the monster offsets by attacking the monster? Still a little hazy on this but I think I am starting to understand it more with thanks to IAmHawtness`s simple explanation several posts up.


LMAO I decided to try ahk instead and everything is good :D took around a minute to update the address, just got to figure dc on [GM]/[PM] and loot gold without using pinkpaws etc.
10/31/2010 15:42 w00tare#7
Thanks for posting it IAm, now I found out its; 0x08CC240 (Conquer.exe+4CC240), How can I receive my current hp for example? Should I find my offset for the HP? And then use base+offset_hp to get my HP?

For ex (Gold):

Code:
EAX=000001C0
EBX=00000000
ECX=036207D0
EDX=00000004
ESI=00000000
EDI=1A15D66C
EBP=0018E038
ESP=0018DA98
EIP=00632A73

Probable base pointer =036207D0

00632a6b - ret
00632a6c - mov eax,[esp+04]
00632a70 - mov [ecx+0c],eax
00632a73 - ret 0004
00632a76 - push ecx
so base+0c = gold?

Okey, I tested it, base+0c = gold.

Now, what kind of scantype do I need to use for mana and health? And if I want to scan for like a skill exp? like tornado or something.
10/31/2010 16:01 PuN|SheR#8
I Found My Base Adress.. what i can do with it?
11/08/2010 13:01 |NeoX#9
:facepalm:
11/16/2010 17:40 ~*NewDuuDe*~#10
*Screenshot*

Sorry for the slight bump, but this was just plane hilarious.