General
ChaosMagician (11-16-2012),DragonHacker123 (10-07-2012),[MPGH]Flengo (09-19-2012),gtaiv2 (10-06-2012),LePROTECTEUR101 (09-26-2012),Otaviomorais (11-04-2012)
Thread: Cshell Dumped 9/19/12
Results 1 to 8 of 8
-
09-19-2012 #1Expert Member
- Join Date
- Jun 2010
- Gender
- Location
- Posts
- 523
- Reputation
151- Thanks
- 1,899
- My Mood
-
Cshell Dumped 9/19/12
Bleh, took me 30 seconds to dump this, Have fun!
Virus Scan 1
Virus Scan 2
/Approve attachment? @.REZ @Kid Cudi
-
The Following 6 Users Say Thank You to arun823 For This Useful Post:
-
09-19-2012 #2
MPGH SA 
- Join Date
- May 2010
- Gender
- Location
- Posts
- 20,591
- Reputation
5180- Thanks
- 14,177
- My Mood
-
I might look into this just for fun
Wonder what I can find.I Read All Of My PM's & VM'sIf you need help with anything, just let me know.
Staff Administrator Since 10.13.2019
Publicist Since 04.04.2015
Middleman Since 04.14.2014
Global Moderator Since 08.01.2013
Premium Since 05.29.2013
Minion+ Since 04.18.2013
Combat Arms Minion Since 12.26.2012
Contributor Since 11.16.2012
Member Since 05.11.2010
-
09-19-2012 #3Keeper of Porra
- Join Date
- Jun 2011
- Gender
- Location
- Posts
- 10,385
- Reputation
- 1110
- Thanks
- 2,218
- My Mood
-
Good work
/approved
-
09-19-2012 #4Banned
- Join Date
- Aug 2012
- Gender
- Posts
- 28
- Reputation
- 21
- Thanks
- 10
Can someone tell me how to open this properly? It seems like I'm the only one who isn't getting it....
It's just not coming up right for me...Code:ADR_NameTags1 0x37255A7F CShellOffset 0x37100000 Offset Address 0x00155A7F Address Hex dump Command Comments 00155A7B BB 01000000 MOV EBX,1 00155A80 A1 70858037 MOV EAX,DWORD PTR DS:[37808570] 00155A85 8D5424 1C LEA EDX,[ESP+1C] 00155A89 C74424 1C 00000 MOV DWORD PTR SS:[ESP+1C],0 00155A91 8B88 84000000 MOV ECX,DWORD PTR DS:[EAX+84] 00155A97 52 PUSH EDX
-
09-19-2012 #5
ThreadstarterExpert Member
- Join Date
- Jun 2010
- Gender
- Location
- Posts
- 523
- Reputation
- 151
- Thanks
- 1,899
- My Mood
-
You need a disassembler, preferably IDA. Look up on google or youtube how to use IDA or learn the basics.
Originally Posted by Avery17
Last edited by arun823; 09-19-2012 at 10:53 PM.
-
09-20-2012 #6Banned
- Join Date
- Aug 2012
- Gender
- Posts
- 28
- Reputation
- 21
- Thanks
- 10
I've tried IDA but I still have the same issues... I'm not sure what I should set all the settings to for this either. Originally Posted by arun823
-
09-20-2012 #7
ThreadstarterExpert Member
- Join Date
- Jun 2010
- Gender
- Location
- Posts
- 523
- Reputation
- 151
- Thanks
- 1,899
- My Mood
-
I don't even understand what your issue is, Enlighten me? Originally Posted by Avery17
-
09-20-2012 #8Banned
- Join Date
- Aug 2012
- Gender
- Posts
- 28
- Reputation
- 21
- Thanks
- 10
Refer to previous post explaining the issue...
I go to an address, expecting certain Assembly code and it's obviously the wrong assembly code. Meaning the file is offset incorrectly, however when I reset the file to have the correct offset it only lines up certain addresses correctly and other addresses are still misaligned.
Similar Threads
-
[Help] Windows 7 x64 CShell Dumping
By khaozizleet in forum C++/C ProgrammingReplies: 2Last Post: 08-14-2011, 05:12 PM -
[Help] Working CShell Dump technique
By wtfhaksftw in forum CrossFire Hack Coding / Programming / Source CodeReplies: 6Last Post: 02-28-2011, 04:23 PM -
[Request] cshell dumped pls
By whit in forum Combat Arms EU Hack Coding/Source CodeReplies: 3Last Post: 01-09-2011, 08:48 AM -
CShell Dump>
By ipwnuuaal5 in forum Combat Arms EU Hack Coding/Source CodeReplies: 2Last Post: 09-03-2010, 08:50 PM -
11.08.2010 [CShell dumped + Strings]
By doofbla in forum Combat Arms EU Hack Coding/Source CodeReplies: 16Last Post: 08-18-2010, 01:50 AM