|
You last visited: Today at 22:15
Advertisement
Defeating DMA
Discussion on Defeating DMA within the Conquer Online 2 forum part of the MMORPGs category.
08/12/2006, 21:16
|
#1
|
elite*gold: 0 
Join Date: Jul 2005
Posts: 86
Received Thanks: 7
|
How would you go about doing so?
I've done this with T Search but now I'm trying to do this in Visual Basic. I've hit a brick wall... Multiple times...
I made my noob trojan look like he's wearing Burning Blades. Lol. So, no word on defeating the DMA? Stupid TSearch wont let isn't doing something right.
Someone check this please.
Code:
offset 0x400300
lea eax,[esi+0x4]
mov [0x5002F0],eax
nop
jmp 534487
offset 0x5002F0
hex 00000000
offset 534486
jmp 400300
---
offset 534486
nop
It's not redirecting the address to 0x5002F0.
|
|
|
|
08/13/2006, 07:43
|
#2
|
elite*gold: 0
Join Date: Sep 2005
Posts: 28
Received Thanks: 0
|
sry for asking, but wat is DMA?
|
|
|
|
|
08/13/2006, 08:20
|
#3
|
elite*gold: 0
Join Date: Jul 2005
Posts: 86
Received Thanks: 7
|
Dynamic memory allocation.
In other words, the address for something constantly changes.
|
|
|
|
|
08/13/2006, 10:04
|
#4
|
elite*gold: 0
Join Date: Jan 2006
Posts: 275
Received Thanks: 6
|
have you tried using an UCE? UCE is way better than Tsearch, im not sure if tsearch does the same thing still. well, just try a UCE or CE if you cannot make your own.
|
|
|
|
|
08/13/2006, 10:41
|
#5
|
elite*gold: 0
Join Date: Jul 2005
Posts: 86
Received Thanks: 7
|
What's UCE?
Read more about defeating DMA.
Rewrote the code above.
Code:
offset 0x968D3D
mov [esi+0x4],eax
MOV [00453F30],eax
JMP 00534446
Offset 0x00534443
JMP 968D3D
-------------------------------------
offset 0x00534443
mov [esi+0x4],eax
It's supposed to help me find the root address. Maybe something's wrong with it?
|
|
|
|
|
08/13/2006, 15:29
|
#6
|
elite*gold: 0
Join Date: Jul 2006
Posts: 7
Received Thanks: 0
|
wat the hell are all of these codes how can u make them work
|
|
|
|
|
08/13/2006, 15:36
|
#7
|
elite*gold: 0
Join Date: May 2005
Posts: 1,892
Received Thanks: 920
|
Quote:
Originally posted by Orochisuke@Aug 12 2006, 21:16
How would you go about doing so?
I've done this with T Search but now I'm trying to do this in Visual Basic. I've hit a brick wall... Multiple times...
I made my noob trojan look like he's wearing Burning Blades. Lol. So, no word on defeating the DMA? Stupid TSearch wont let isn't doing something right.
Someone check this please.
Code:
offset 0x400300
lea eax,[esi+0x4]
mov [0x5002F0],eax
nop
jmp 534487
offset 0x5002F0
hex 00000000
offset 534486
jmp 400300
---
offset 534486
nop
It's not redirecting the address to 0x5002F0.
|
I'm sorry to say that very few people here can actually code. Everyone leeches.
|
|
|
|
|
08/13/2006, 17:28
|
#8
|
elite*gold: 0
Join Date: Aug 2006
Posts: 41
Received Thanks: 0
|
wow, this is all comfusing. DMA, UCE, UC, wut the hell is all this. Some1 plz explain. =(
|
|
|
|
|
08/14/2006, 12:46
|
#9
|
elite*gold: 0
Join Date: Jul 2005
Posts: 86
Received Thanks: 7
|
Forgive the bumping...
I changed my code in T Search. Well, the value returned from this address [453F30] was 956301313. I didn't know whether this was in hex or decimal.
Anyway, I got a new address [95630129] from that but it was also 956301313. However, when I went to edit the value of 453F30, the value of [453F30], [95630129]'s value changed to the item ID of my equipped weapon. Then, when I try to edit the value of [95630129], it jumps back to 956301313. This happens even after freezing the value.
The Easywrite codes
Code:
offset 0x968D3D
mov eax,[ecx+0x8]
MOV [00453F30],eax
JMP 005371d3
Offset 0x005371d0
JMP 968D3D
-------
offset 0x005371d0
mov eax,[ecx+0x8]
Someone please explain why this happens?
|
|
|
|
|
08/14/2006, 15:31
|
#10
|
elite*gold: 0
Join Date: Jul 2006
Posts: 44
Received Thanks: 0
|
OK OROCH. WTF IS ALL THAT ****, IM BLONDE AND ITS HURTING ME HEAD
|
|
|
|
|
08/14/2006, 15:49
|
#11
|
elite*gold: 0
Join Date: May 2005
Posts: 1,892
Received Thanks: 920
|
Quote:
Originally posted by G-Unot@Aug 13 2006, 17:28
wow, this is all comfusing. DMA, UCE, UC, wut the hell is all this. Some1 plz explain. =(
|
DMA = Dynamic Memory Allocation.
Shame everyone here is a noob.
(Along with me, I don't know how to defeat DMA =D, but I seem to remember a guide somewhere around here.)
|
|
|
|
|
08/14/2006, 16:13
|
#12
|
elite*gold: 0
Join Date: Jul 2005
Posts: 86
Received Thanks: 7
|
Wee, I fixed it! Now just two teeny tiny problems.
The procedure that changes the weapons run each time a new player model is drawn. So in theory, this would change them if run incorrectly, right?
Code:
mov [ebp+4],ebx
pop esi
mov [00450f30],ebp
pop ebp
jmp 00637164
Problem 2:
I'm using Visual Basic. But the program keeps giving me errors. AcessViolationException was unhandled. How do I get past this?
|
|
|
|
|
08/14/2006, 19:25
|
#13
|
elite*gold: 0
Join Date: Mar 2005
Posts: 559
Received Thanks: 17
|
Quote:
Originally posted by joey17@Aug 13 2006, 15:29
wat the hell are all of these codes how can u make them work
|
it makes ur peepee enlarge...
To use repeat them in a tantric fashion while standing naked over a dead bloodied goat.
|
|
|
|
|
08/14/2006, 20:10
|
#14
|
elite*gold: 0
Join Date: Apr 2006
Posts: 46
Received Thanks: 1
|
lol UCE is undetected Cheat Engine.... yeah i would tell u to use Cheat Engine instead of Art Money.. Cheat ENgine has a lot more options that are not all noob friendly though. but for the DMA u should try using the Randomnizer(spell check  ) but yeah because i use a UCE on MS and randomnizer can be used to make it so taht the random dice's that turn in that game come out to what u want. may be u can get it to work the same way u want
|
|
|
|
|
08/14/2006, 20:38
|
#15
|
elite*gold: 0
Join Date: Jul 2005
Posts: 86
Received Thanks: 7
|
Hrm.. I'll see what I can do with this randomizer.
The address for the code that changes the motions keep changing. It's either 637164 or 537164. Any ideas on keeping still?
|
|
|
|
 |
|
Similar Threads
|
Defeating KazeAaze Lass and Jin KazeAaze
04/15/2010 - Grand Chase Philippines - 5 Replies
I can post here right? Since I already red the rules,etc.
Level Requirement: 39 or above
Armor Set:Grand Chase Set or Cash Sets
KazeAaze Lass:
~Lass won't be easy to defeat because this is a mob not a player so his attacks are unpredictable.
~You can start off with a Warlock's Blizzard so he will be frozen for a few seconds and will be open for attacks or Battle Mage's Ice ball
~Don't waste your MP trying to kill him with your 3rd skill because he often moves one place to another...
|
Bypassing Hackshield <-> Defeating Armadillo
01/21/2008 - Kal Online - 16 Replies
Hey Leute <- ich hab aus Wissenshunger versucht KalOnline zu unpacken. An die, die es schon geschafft haben. Es ist mit Armadillo geschützt.
PEiD v0.94 <- Armadillo 3.78 - 4.xx -> Silicon Realms Toolworks
Tools wie ArmaGUI krepieren am HackShield, da kommt eine schwule Fehlermeldung. Bei DilloDIE war ich recht zuversichtlich, weil HackShield nichts sagt, sondern die Engine.exe feststellt, dass sie nicht mit /load Parameter gestartet wurde und mir somit sagt, dass es nicht Standalone...
|
Defeating DMA
10/03/2007 - Conquer Online 2 - 5 Replies
can someone teach how to defeat dma? for example for hp? i know theres a thread on memory address but how does it work? just pointers? or is there more stuff to it
|
What is "Defeating" DMA?
08/08/2005 - Conquer Online 2 - 2 Replies
Ok all I know is that DMA is a process where the CPU isnt used to do the hard work of transfering and reading/writing memory.
But what do you guys mean by "Defeating" DMA
Are you trying to say there is a "lock" on reading an adress or something...I dunno Ive never done anything like this before and im curious...
|
All times are GMT +1. The time now is 22:15.
|
|
