Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


Pushad cant be complied WTF

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine
View previous topic :: View next topic  
Author Message
NanoByte
Expert Cheater
Reputation: 1

Joined: 13 Sep 2013
Posts: 222
PostPosted: Thu Jun 19, 2014 1:44 pm    Post subject: Pushad cant be complied WTF Reply with quote
Says Pushad cant be complied and if i click OK and try to activate it, it wont acitvate. Why?
Code:
pushad
push 12
call GetAsyncKeyState
shr ax,f
cmp ax,1
popad
jne originalcode
mov [rcx+04],40
originalcode:
movsxd  rcx,dword ptr [rcx+04]
xor edx,edx
Back to top
View user's profile Send private message
Redouane
Master Cheater
Reputation: 3

Joined: 05 Sep 2013
Posts: 363
Location: Algeria
PostPosted: Thu Jun 19, 2014 2:59 pm    Post subject: Re: Pushad cant be complied WTF Reply with quote
NanoByte wrote:
Says Pushad cant be complied and if i click OK and try to activate it, it wont acitvate. Why?


Pushad compiles just fine (bytecode is 0x60),The mistake is in your side,where are you injecting the code?it looks like there is no address specifier.
edit 'address' in this script,if you are allocating memory,then declare it by doing alloc(mem,64) or something then remplace address with mem.
Code:
address:
pushad
push 12 // not sure if you meant #12 or 0x12
call GetAsyncKeyState
shr ax,f
pushfd // save the flags,because you're going to modify them
cmp ax,1
jne originalcode
mov [rcx+04],40
originalcode:
popfd
popad
movsxd  rcx,dword ptr [rcx+04]
xor edx,edx
[/code]
Back to top
View user's profile Send private message
Geri
Moderator
Reputation: 111

Joined: 05 Feb 2010
Posts: 5636
PostPosted: Thu Jun 19, 2014 3:09 pm    Post subject: Reply with quote
Because there is no pushad instruction for 64-bit.
_________________
My trainers can be found here: http://www.szemelyesintegracio.hu/cheats

If you are interested in any of my crappy articles/tutorials about CE and game hacking, you can find them here:
http://www.szemelyesintegracio.hu/cheats/41-game-hacking-articles

Don't request cheats or updates.


Last edited by Geri on Thu Jun 19, 2014 3:19 pm; edited 2 times in total
Back to top
View user's profile Send private message
NanoByte
Expert Cheater
Reputation: 1

Joined: 13 Sep 2013
Posts: 222
PostPosted: Thu Jun 19, 2014 3:14 pm    Post subject: Reply with quote
Woot no pushad woot do i do then?

Code:
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,55CB6CF1)
label(returnhere)
label(originalcode)
label(exit)

newmem: //this is allocated memory, you have read,write,execute access
//place your code here
push 12
call GetAsyncKeyState
shr ax,f
cmp ax,1
jne originalcode
mov [rcx+04],40
originalcode:
movsxd  rcx,dword ptr [rcx+04]
xor edx,edx

exit:
jmp returnhere

55CB6CF1:
jmp newmem
nop
returnhere:


 
 
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
55CB6CF1:
movsxd  rcx,dword ptr [rcx+04]
xor edx,edx
//Alt: db 48 63 49 04 33 D2
[/code]

Last edited by NanoByte on Thu Jun 19, 2014 3:22 pm; edited 2 times in total
Back to top
View user's profile Send private message
simonzack
Newbie cheater
Reputation: 0

Joined: 19 Jun 2014
Posts: 15
PostPosted: Thu Jun 19, 2014 3:17 pm    Post subject: Reply with quote
You gotta push all the registers manually.
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 470

Joined: 09 May 2003
Posts: 25785
Location: The netherlands
PostPosted: Thu Jun 19, 2014 3:17 pm    Post subject: This post has 1 review(s) Reply with quote
replace
Code:

pushad


with

Code:

push rax
push rbx
push rcx
push rdx
push rsi
push rdi
push rbp
push r8
push r9
push r10
push r11
push r12
push r13
push r14
push r15


and replace
Code:

  popad

with
Code:

pop r15
pop r14
pop r13
pop r12
pop r11
pop r10
pop r9
pop r8
pop rbp
pop rdi
pop rsi
pop rdx
pop rcx
pop rbx
pop rax


or try to figure out which registers could have changed and only do those (search for "windows 64-bit abi")

also,
Code:

push 12 // not sure if you meant #12 or 0x12
call GetAsyncKeyState

is invalid in 64-bit

you must allocate some stackspace and pass the parameters in registers

http://msdn.microsoft.com/en-us/library/ms235286.aspx
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
Geri
Moderator
Reputation: 111

Joined: 05 Feb 2010
Posts: 5636
PostPosted: Thu Jun 19, 2014 3:19 pm    Post subject: Reply with quote
Getasynckeystate will change EAX, ECX and EDX registers, in case you want to know. I guess it's the same on 64-bit system with the 64-bit register versions.
_________________
My trainers can be found here: http://www.szemelyesintegracio.hu/cheats

If you are interested in any of my crappy articles/tutorials about CE and game hacking, you can find them here:
http://www.szemelyesintegracio.hu/cheats/41-game-hacking-articles

Don't request cheats or updates.
Back to top
View user's profile Send private message
NanoByte
Expert Cheater
Reputation: 1

Joined: 13 Sep 2013
Posts: 222
PostPosted: Thu Jun 19, 2014 3:25 pm    Post subject: Reply with quote
Thx Alot Guys. Love CE Community Very Happy
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites