| View previous topic :: View next topic |
| Author |
Message |
eranj
How do I cheat?
![]() Reputation: 0
Joined: 28 Feb 2010
Posts: 9
|
 Posted: Sun Feb 28, 2010 5:05 pm Post subject: Cant find Minesweeper Time Pointer |
 |
|
I did the tutorial pointers part and it worked, but now i cant find the pointer of the time in windows Minesweeper...
I found the address, i clicked "find out what writes...", i got this:
| Code: | EAX=00000000
EBX=00000001
ECX=00000000
EDX=00000113
ESI=00000200
EDI=00000000
EBP=0007FDB4
ESP=0007FD64
EIP=01002FFB
Probable base pointer =0100579C
01002fe9 - cmp [0100579c],000003e7
01002ff3 - jnl 01003007
01002ff5 - inc [0100579c]
01002ffb - call 010028b5
01003000 - push 01 |
and I tried to scan for "4 Bytes" Hex value 0100579C but it found nothing..
what i done wrong? |
|
| Back to top |
|
 |
Tom331
Cheater
![]() Reputation: 0
Joined: 14 Jul 2007
Posts: 25
|
| Posted: Mon Mar 01, 2010 5:29 pm Post subject: |
|
|
Because it doesn't use one 
| Code: | 01002fe9 - cmp [0100579c],000003e7 //compare the timer value to 3e7 (999 in decimal)
01002ff3 - jnl 01003007 //if the timer is not less than 999 then skip this code as timer is maxed
01002ff5 - inc [0100579c] //increase the timer value by 1, as you can see it is increasing a specific address (100579c) this address wont change when the game is reloaded so you can use it in a trainer without worrying :) if it was a pointer it would look something like this "inc [eax + 0c]".
01002ffb - call 010028b5
01003000 - push 01 |
|
|
| Back to top |
|
|
eranj
How do I cheat?
![]() Reputation: 0
Joined: 28 Feb 2010
Posts: 9
|
| Posted: Tue Mar 02, 2010 10:33 am Post subject: |
|
|
| Thanx but can u tell me how did u knew that this address wont change? |
|
| Back to top |
|
|
Tom331
Cheater
![]() Reputation: 0
Joined: 14 Jul 2007
Posts: 25
|
| Posted: Tue Mar 02, 2010 5:53 pm Post subject: |
|
|
Ok, but before I explain I'm just warning that I'm not always very clear 
01002ff5 - inc [0100579c]
This is the lil bit of "code" in the program that increases the value stored at address 0100579.
So you know this address wont change because it is part of the code.
If something is in [] then it means it is referring to the value stored at the address in the []'s btw.
Heres an example which might make it easier to understand:
| Code: | 1 mov EAX, 0100579c //Move an address into EAX (EAX is a register, which is basically a variable which can store up to 8 bytes (I think)
2 cmp bl,cl //just for the sake of this example
3 je 5 //If the 2 conditions compared are equal, then jump to line 5 (skipping line 4)
4 mov EAX, 010057f5 //If they were not equal then a different address will be moved into eax
5 inc [EAX] //Value stored at the address in EAX is increased |
So as you can see, EAX could hold 2 possible addresses when it is increased so simply nopping this instruction could have unwanted effects.
This is just an example btw =] |
|
| Back to top |
|
|
eranj
How do I cheat?
![]() Reputation: 0
Joined: 28 Feb 2010
Posts: 9
|
| Posted: Wed Mar 03, 2010 9:37 am Post subject: |
|
|
| Thank you very much |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
