Thread: Pointers

Okay this new game that came out called Soul Masters was just released and a lot of stuff is client side, even hp. I can't attach to the client to find the pointer so I'm left with long pointer scanning and re scanning. My question is. I have found something, I do not know its name.

1C 02 00 00 64 00 00 00 1C 02 00 00 64 00 00 00 <-- this links me directly to the hp of the knight character only. It lists like 3-6 addresses but its become easier every time I do it to pick the right one, its usually the third on in the list. I'm trying to figure out how to get the hp address every time I re-load the client, the address changes every time I go into missions maps and back to town or when I restart. I've also got a few others for monsters hp while in mission maps.

D4 01 00 00 00 00 00 00 D4 01 00 00 00 00 00 00 - Forest Bandits

44 01 00 00 00 00 00 00 44 01 00 00 00 00 00 00 - Ogre Murauders

01 00 00 00 00 00 00 74 01 00 00 00 00 00 00 - Ancient Dragon

01 00 00 00 00 00 00 00 28 02 00 00 00 00 00 00 - Elite Camo tree

when I use the hp knight one and I go into memory viewer and change the display to float, I see simple decimals. I've changed these around and figure out most of them. Like the defense, the position of the character from the ground, Attack speed etc.

Anyone have any info that could help me out and making a trainer and such for this game or what I should be doing?

I don't think it uses any kind, like there is no sign of it. I mean it obviously might considering it crashes. Whats pattern scanning?

-- 2010-07-26, 08:34 --

13CD8D1C - 1c 02 - sbb al,02 = Hp/stam display Mission Maps
13CD8D24 - 1c 02 - sbb al,02 = Hp/stam display Town
13CD8D30 - 1c 02 - sbb al,02 = Hp/stam display Mission Maps
13CD8D38 - 1c 02 - sbb al,02 = Hp/stam display Town
13630F74""
13630F88""
137B0F74""
137B0F88""

a set of these show up when I enter in 1C 02 00 00 64 00 00 00 1C 02 00 00 64 00 00 00

Also they possess 4b - value = 540 which is my hp. If I take the current address that controls my hp and change it, those 4 addresses change corresponding to what I change it to.

The only pattern I see is 13-C/4 13-0/8 13-4/8

-- 2010-07-26, 10:02 --

Originally Posted by Dwar

what type of protection this game uses?

Themida

I tried attaching like 5 more times and it still closes with no error, then I tried with ollydbg and an error popped up when I launched the game saying, there was a debugger in the memory please remove it blah blah. Then I googled Themida, and I'm assuming thats it.

Well I'm new at this lol, and I wouldn't have a clue. I've tried pointer scanning for a BA but it just keeps changing, I even logged like 600mill and it still changed =/. Themida was the name on the error window btw.

also could you explain what pattern scanning is?