Protection Conquer.exe?

09/04/2007 22:38 ZeRo-ToLeRaNcE#1
Hello all!

We can help me with find the new HP and MP Poke values?
conquer.exe is protected, and i can not find it anymore,
i have to disable the protection, but i don't have any idea to do that.

I can not further with my own program COTools,

Please someone can help me further?

Greets,

DyNy
09/05/2007 00:44 giacometti#2
if I have the time i will make a tutorial on how to defeat those dma, but it may take really long time. So best thing for you to do is learn how to do it by your own, so you will be independent. Download Tsearch from web and read its tutorial (come within). Its a good start. Later try learning about debuggin... i do recomment OllyDbg cause its very intuitive.

good luck.
09/05/2007 09:48 ZeRo-ToLeRaNcE#3
He Dude!

i know how to make an DMA Defeat allready,
but it seems that the conquer.exe is protected to inject code to read the HP and MP. because my client crached when i enable the DMA defeat with tsearch.

Anantasia has told that TQ has protected his conquer.exe to read some memoryadresses.

greets,

DyNy

Quote:
Originally Posted by giacometti View Post
if I have the time i will make a tutorial on how to defeat those dma, but it may take really long time. So best thing for you to do is learn how to do it by your own, so you will be independent. Download Tsearch from web and read its tutorial (come within). Its a good start. Later try learning about debuggin... i do recomment OllyDbg cause its very intuitive.

good luck.
09/05/2007 10:27 Real~Death#4
*M* cracked the last Conquer.exe message him,he might be able to help
09/06/2007 14:16 ZeRo-ToLeRaNcE#5
He guys!

i have made an code cave to get the HP value, but it is not fully working well, who can help me further?

Code:
Offset 0x400019
lea eax,[eax+edi*4]
mov [0x4BCC5F],eax
call 0x004A5C2C
JMP 4a5a6a

Offset 0x4a5a65
JMP 400019
Greets,

DyNy
09/06/2007 14:19 high6#6
Quote:
Originally Posted by Real~Death View Post
*M* cracked the last Conquer.exe message him,he might be able to help
Conquer isn't protected...
09/06/2007 14:29 Queen-Of-Evil#7
Conquers not protected, either your calling the wrong memory address or you didnt defeat the DMA properlly,,, personally id reccommend just using M's conquer.exe file.
09/06/2007 14:37 high6#8
To get the memory address for health simply...

((*(int*)0x004E1CC4)+0x18)

basically, Read offset 0x004E1CC4. Add 18(hex) and there is your address for the health.
09/06/2007 16:05 ZeRo-ToLeRaNcE#9
Quote:
Originally Posted by high6 View Post
To get the memory address for health simply...

((*(int*)0x004E1CC4)+0x18)

basically, Read offset 0x004E1CC4. Add 18(hex) and there is your address for the health.
You are telling me that HP and MP olso are Pointers, also Arrows?
09/06/2007 16:08 ZeRo-ToLeRaNcE#10
Damn thats very easy!!

you have maby the MP and Arrows olso?

i can find them.

greets,

DyNy