 |
Cheat Engine
The Official Site of Cheat Engine
|
| View previous topic :: View next topic |
| Author |
Message |
Momo5000
How do I cheat?
![]() Reputation: 0
Joined: 20 Nov 2010
Posts: 2
|
 Posted: Sat Nov 20, 2010 3:50 am Post subject: Probable base pointer problem |
 |
|
Hey there, i just saw some tutorials on youtube / forum and im trying to find a pointer for a address, my problem is i cant find the P.B.P, i saw a topic here that i need to calculate ESI,EAX and such a shi*, i dont know much about asm, but could anyone explain what i have to do here to get the real Pointer addr. ?
| Code: | EAX=00000005
EBX=305CC0B6
ECX=03334160
EDX=00126826
ESI=2AB59CF0
EDI=03334160
EBP=2CE9FE50
ESP=2CE9FDBC
EIP=006422C2
Probable base pointer =2AB59CF0
006422ba - mov [esi+08],edx
006422bd - mov eax,[ecx]
006422bf - mov [esi+04],eax
006422c2 - pop esi
006422c3 - ret |
|
|
| Back to top |
|
 |
BlackBolt
Cheater
![]() Reputation: 0
Joined: 16 Jun 2010
Posts: 26
Location: Spain
|
| Posted: Sat Nov 20, 2010 4:06 pm Post subject: |
|
|
By what I see there, I think this is what you have to do:
Do a 4 byte scan in hex of 2AB59CF0.
If there are any results (usually hundreds) it often works if you get the smallest one (still, that depens...)
Click the "Add the adress manualy" button, mark the adress as a pointer and at the adress put whatever adress you pick up to test. and at offset, in this case, put 08.
Why? Here's the explanation:
1st look at this:
Probable base pointer =2AB59CF0
And then compare it with the list
EAX=00000005
EBX=305CC0B6
ECX=03334160
EDX=00126826
ESI=2AB59CF0
EDI=03334160
EBP=2CE9FE50
ESP=2CE9FDBC
EIP=006422C2
So what you need to look for on the codes is ESI
006422ba - mov [esi+08],edx
006422bd - mov eax,[ecx]
006422bf - mov [esi+04],eax
006422c2 - pop esi
006422c3 - ret
In most cases the codes that have [] are the ones you need.
mov [esi+08],edx
So you can see that ESI has a + right? the number after it is the offset.
If the adress you added is a green one the you're done, that's the base pointer. Save it and enjoy!
If not, it means it's another pointer: A pointer to a pointer (or a level 2 pointer)
Scan what acesses the adress you added, make it change and see if any codes acessed it. If not, then delete that adress and try another one. If there are any codes, then "More info" button and go back to the beginning...
Hope it helps.
_________________
Look, behind you! A dristraction!
Where!? |
|
| Back to top |
|
|
Momo5000
How do I cheat?
![]() Reputation: 0
Joined: 20 Nov 2010
Posts: 2
|
| Posted: Sun Nov 21, 2010 4:57 am Post subject: |
|
|
| Thanks for the help but my problem: I cant find any addresses if i do a HEX-Scan with the probable base pointer... i get 0 results, i checked All and also scan Read-only memory, 0 results so far....
|
|
| Back to top |
|
|
BlackBolt
Cheater
![]() Reputation: 0
Joined: 16 Jun 2010
Posts: 26
Location: Spain
|
| Posted: Sun Nov 21, 2010 7:13 am Post subject: |
|
|
Then theer are two things you can do:
Either try another adress from the beginning that sets what you want to change, or use pointerscan.
Sometimes pointers are hard to find...
_________________
Look, behind you! A dristraction!
Where!? |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
