Hello there.
Instead of stealing a guide from another forum, I decided to make a new and easy one for you with step-by-step instruction.
This is moderately hard to accomplish and I would reccommend you to have some (little) prior knowledge as to how memory-editing a game works.
You will need the following:
*TSearch
*PermEdit
Link: http://www.badongo.com/file/2634101
Ok, now that you have the utilities needed, I will tell you a little more about how the memory is stored.
When blizzard made WoW, the made it cleverly. . . they packed all the information that are related to each other togther so that it can be accessed fast.
Player-related values like Health and Mana or Rage are stored together closely on what is called a memory-range.
For example: Health Mana Rage Speed Jump distance etc etc are stored like this:
Health: E89F99F2
Mana: E89F95E1
Speed: E89F4562
Thus we can conclude that all the player-related values are stored in the memory-range E8######
These addresses change everytime the client reloads data, this is an attempt to stop hacking.
Ok, lets begin.
Firstly, make sure that your WoW is running and logged in.Make sure you are in Kalimdor before begining (Not neccesary, but it will be needed to complete this tutorial) Then press escape-->Video Option-->Windowed mode
This will make it much easier for us when it comes to actually finding the coords.
Now open up Tsearch (From the downloaded file)
Then open PermEdit and select Tsearch from the list.Click
"Grant Permissions" and continue.
You have now given TSearch permission to edit the memory WoW uses.
Click "Open Process" button and select WoW.exe from the list.
Now we are going to tell TSearch exactly where to search.Click Process-->Memory
A list should now appear.Scroll down and look for the COMCTL32.dll,
Write down the address that has been assigned to that DLL.
In my case it will be 5D090000.
We do this because all the addresses beyond 5D090000 are reserved for sound and so on - useless to us.
Now go to View-->Options in Tsearch
Select "User Defined" in the range list and make the beginning 0
Make the "End" whatever the address is that you wrote down earlier.
Click ok.
Now we are going to search for your character's health address.We do this to find out what range your characters information is stored in.
Click on your open WoW window and check your health.Remember what it is.The go back to your TSearch window and click on the button.
Make sure the "Type" is set to 4 Bytes and Search box is set to "Exact Value"
Type in your Health in the value box. (2335 in my case)
Click ok.
You should now have a few addresses in the address list.
This is too much for us to just "guess" which one of the two belongs to player, so we are going to filter it our a bit.
Go back in to the game and do something that would decrease your health.
I am a warrior so im going to use my "Blood Rage" ability
Quickly go back into Tsearch and click the button (Not )
Our value has decreased and thus we must tell Tsearch to show us all the values that decreased.
Press Ok.
Now you should have 2 values.(If you have more than two values, wait until your health has become full again and search for an increased value)
Both of these values usually have the same range.
Add the two addresses to the working list to the right.
You now have the address range of your coordinate values.
In my case the range was E2#####
These two address are no longer of any use to us, the only functioned as a pointer the where the coordinate addresses may be.
Now we need to tell Tsearch where it should look for our coords address.
You know that the address will be somewhere in the range you identified,
This is a tricky bit as the address range you have will probly not be as easy as mine.
For example. If you got the range E8##### you will know that the address will be anywhere between E7##### and E8#####
If you got the range 1E##### you will know that the address will be anywhere between 1D##### and 1F#####.
Note that if the range has a F as the second digit, you will have to make the END range from the first digit eg. 4F##### will become:
Between 4E##### and 5######
Now go to VIEW-->OPTIONS
copy the address from of your Health into both the end and the begin boxes, changing the 2nd digit of each so it searches only your memory-range.
(This is very complicated to explain, so I hope you understand better when looking at the picture)
Press ok.
If you got that step right, you are ready to discover your coordinates!
First off, you are going to click the search button and search for an "Unknown Value"
Tsearch will now discover all the possible values.
The search should finish almost instantly, spitting out a few million results.
Go into the game and move around a bit.This will change the coord-values of the character.
Go back to Tsearch and click the filter button ()
Search for a value that has changed.
Now you should have a little less addresses.This is still too much
Go into the game and look around.(DO NOT TURN)
Go back to Tsearch and filter-search all the values that have not changed.
Now the numbers should be declining rapidly.
Continue doing this (Move Char-->Search Changed--->Look around--->Search The same) a few times, you should have a relatively low number of addresses.
I did this about 8 times and got 91 left.
Make sure that you have at most 200 addresses, the less the better.
Now do a final search but make sure you change the "Type" box to "Float"
Your values are now displayed as "Digital Data" and not just a simple number.
Now we come to the difficult part of this tutorial: Filtering out the useless values.
The first filter we are going to do is in the left address list (Search results)
Select all of the values that are in the address range which you discovered earlier.Click the green + button (Shown on picture) to add these to the right hand side (Editing List)
The second filter is to delete all the junk-addresses on the right side that cant be coordinates.
Typical coordinate values look like this:
-3099.643788 or 436.4323 or 43.3334
For example, an address with a value like -1.#QNAN cant be coordinates.
Delete all results that look like any of the following:
4.703755304e-003
-1.#QNAN
23.
-1
Remember that a coordinate will always be a long streched out decimal.(45.1246876)
Thirdly, delete all the addresses that do not end on 0,4 or 8
Once you have done this you should be left with little over 20 addresses.
The next step is going to require of you to be able to spot the coordinates.
The coordinates are ALWAYS 4 spaces (bytes) away from eachother.
eg. the first address will end on 0, the second address will end on 4 and the third will end on 8
This is how is will look:
Y: ######0
X: ######4
Z: ######8
You have found your coordinate values!
To test if you have found the correct values, make the Z value (Which ends on a little more.
The Z value is the Height value.
In my case I changed the value of Z from 41 to 45.
Once you have changed it, go to your WoW window to check if you have moved.
If you have followed this tutorial correctly, then you should be hanging in mid air
Congratulations, you have successfully discovered and hacked your characters coordinates!
Now that we know what our coordinates are,we can play around with them a bit.
The GM island is a place where administrators of WoW go to get away from the players.We think this is not fair and thus we are going to surprise them.Note that this is an instant ban in most cases, so dont try it without a trial account.Even better, do it on a private server.
Change the values as follows:
You are now on the GM island!
I hope that everyone understand this tutorial, as I tried to make it simple enough for everyone..
Thank you for reading and happy hacking!
Cheers
-=Tehavatar=-
-----)(Please leave the copyright text intact)(-----
This post is copyright by the user posting it and MMOwned.com - World of Warcraft Exploits,Hacks, Bots and Guides, where it was posted. You may not copy or reproduce this information on any other site without written permission from both the poster and MMOwned.com