Solved

My program works only on 64bit systems .. Why.

Posted on 2009-06-27
8
234 Views
Last Modified: 2012-05-07
Hi, I have c++ console application, but it works only on 64bit systems. Please help me to find solution for this problem.
#include <windows.h>

#include <Tlhelp32.h>

#include <iostream>

#include <stdio.h>

#include <psapi.h>

#include <tchar.h>
 

using namespace std;
 

DWORD GetPIDForProcess (char* process);

void EnableDebugPriv();

DWORD GetDLLBase(char* DllName, DWORD tPid);
 

#define PATCH(i,w,l) WriteProcessMemory(hProc,reinterpret_cast<LPVOID>(gameBase+i),w,l,&dSize)

#define NPATCH(i,w,l) WriteProcessMemory(hProc,reinterpret_cast<LPVOID>(i),w,l,&dSize)
 

BOOL IsAllowedToStart()

{

   if (strstr(GetCommandLine(),"-launch")) return TRUE;

 

  return FALSE;

}
 

int main()

{ 

	system("COLOR 0");

	system("TITLE AnGrY's GameTools 2009 (Version 6.55) Released on 26.06.09");

    cout << "Welcome to E3MC Clan GameTools 2009" << endl << endl;

		  if(IsAllowedToStart())

  {

    printf("Access Granted\n");

  }

  else

  {

    printf("You are not allowed to start this program.\n");

 

    return -1;

  } 

    if(GetPIDForProcess("WAR3.EXE") == 0)

    {

        cout << "Warcraft 3 is not running!" << endl;

        system("Pause");

        exit(0);

    }

    else

    {

        EnableDebugPriv();

        HANDLE hProc = OpenProcess(PROCESS_ALL_ACCESS, false, GetPIDForProcess("WAR3.EXE"));

        if(hProc)

        {

            cout << "Process opened... Patching" << endl;

            DWORD gameBase = GetDLLBase("Game.dll",GetPIDForProcess("WAR3.EXE"));

			DWORD dSize = 0;
 

            PATCH(0x3A1E9B,"\x90\x90",2);

            if(dSize == 0)

            {

                cout << "Failed to patch showunitsingame" << endl;

            }
 

            PATCH(0x361DFC,"\x00",1);

            if(dSize == 0)

            {

                cout << "Failed to patch showunitsmap" << endl;

            }
 

            PATCH(0x285B8C,"\x90\x90",2);  

            if(dSize == 0)

            {

                cout << "Failed to patch clickableunits" << endl;

            }
 

            PATCH(0x285BA2,"\xEB\x29",2);  

            if(dSize == 0)

            {

                cout << "Failed to patch clickableunits (2nd patch)" << endl;

            }
 

            PATCH(0x28345C,"\x40\xc3",2);

            if(dSize == 0)

            {

                cout << "Failed to patch revealillu" << endl;

            }
 

            PATCH(0x73DEC9,"\xB2\x00\x90\x90\x90\x90",6);

            if(dSize == 0)

            {

                cout << "Failed to patch removefogingame" << endl;

            }
 

            PATCH(0x431556,"\x3B\xC0\x0F\x85\xC0\x00\x00\x00\x8D\x8B\xF0\x00\x00\x00\xE8\x07\x3D\x03\x00\x3B\xC0\x0F\x85\xAD\x00\x00\x00",27);

            if(dSize == 0)

            {

                cout << "Failed to patch pingsignal" << endl;

            }
 

            PATCH(0x362211,"\x3B\xC0\x0F\x85\x30\x04\x00\x00",8);

            if(dSize == 0)

            {

                cout << "Failed to patch showinvisiblemap" << endl;

            }
 

            PATCH(0x356E7E,"\x90\x90\x90",3);

            if(dSize == 0)

            {

                cout << "Failed to patch showinvisiblemap" << endl;

            }
 

            PATCH(0x3C5C22,"\xEB",1);

            PATCH(0x3C135C,"\xB8\xFF\x00\x00\x00\xEB",6);

            if(dSize == 0)

            {

                cout << "Failed to bypass DotA -ah command" << endl;

            }
 

            PATCH(0x3F92CA,"\x90\x90",2);

            PATCH(0x3A1DDB,"\xEB",1);

            if(dSize == 0)

            {

                cout << "Failed to enable viewable items" << endl;

            }
 

            NPATCH(0x4559EC,"\x60\x0B\xC0\x75\x2F\x8A\x8E\xD0\x02\x00\x00\x80\xF9\x01\x74\x51\xC6\x86\xD0\x02\x00\x00\x01\xC6\x86\xD1\x02\x00\x00\x01\xC6\x86\xD2\x02\x00\x00\xFF\x8B\xCE\xB8\xFF\x01\x01\xFF\xFF\x15\x60\x5A\x45\x00\xEB\x2D\x8A\x8E\xD0\x02\x00\x00\x80\xF9\xFF\x74\x22\xC6\x86\xD0\x02\x00\x00\xFF\xC6\x86\xD1\x02\x00\x00\xFF\xC6\x86\xD2\x02\x00\x00\xFF\x8B\xCE\xB8\xFF\xFF\xFF\xFF\xFF\x15\x60\x5A\x45\x00\x61\xB8\x01\x00\x00\x00\x23\xD8\x89\x44\x24\xE4\xFF\x35\x65\x5A\x45\x00\xC3",116);

            DWORD addr[3];

            addr[0] = gameBase + 0x29E270; 

            addr[1] = gameBase + 0x39A3BF; 

            addr[2] = 0x4559EC;            

            NPATCH(0x455A60,&addr[0],sizeof(DWORD));

            NPATCH(0x455A65,&addr[1],sizeof(DWORD));

            NPATCH(0x455A6A,&addr[2],sizeof(DWORD));

            PATCH(0x39A3B9,"\xFF\x25\x6A\x5A\x45\x00",6); 

            if(dSize == 0)

            {

                cout << "Failed to enable colored invisibles" << endl;

            }
 
 

            PATCH(0x2030DC,"\x90\x90\x90\x90\x90\x90",6);

            PATCH(0x34FC68,"\x90\x90",2);

            if(dSize == 0)

            {

                cout << "Failed to enable view skills" << endl;

            }
 

            PATCH(0x28EBCE,"\xEB",1);

            PATCH(0x34FCA6,"\x90\x90\x90\x90",4);

            if(dSize == 0)

            {

                cout << "Failed to enable view cooldowns" << endl;

            }
 

            PATCH(0x285BA2,"\xEB",1);

            if(dSize == 0)

            {

                cout << "Failed to enable click invisible units" << endl;

            }

        }

        else

        {

            cout << "Warcraft 3 could not be opened..." << endl;

            system("Pause");

            exit(0);

        }

    }

	return 0;

}
 

//Queries the ProcessId of a certain process

DWORD GetPIDForProcess (char* process)

{

    BOOL            working=0;

    PROCESSENTRY32 lppe= {0};

    DWORD            targetPid=0;
 

    HANDLE hSnapshot=CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS ,0);

    if (hSnapshot) 

    {

        lppe.dwSize=sizeof(lppe);

        working=Process32First(hSnapshot,&lppe);

        while (working)

        {

            if(_stricmp(lppe.szExeFile,process)==0)

            {

                targetPid=lppe.th32ProcessID;

                break;

            }

            working=Process32Next(hSnapshot,&lppe);

        }

    }
 

    CloseHandle( hSnapshot );

    return targetPid;

}
 

//Enables to open other processes

void EnableDebugPriv()

{

    HANDLE hToken;

    LUID sedebugnameValue;

    TOKEN_PRIVILEGES tkp;
 

    if ( ! OpenProcessToken( GetCurrentProcess(),

        TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, &hToken ) )

        return;

    if ( ! LookupPrivilegeValue( NULL, SE_DEBUG_NAME, &sedebugnameValue ) ){

        CloseHandle( hToken );

        return;

    }

    tkp.PrivilegeCount = 1;

    tkp.Privileges[0].Luid = sedebugnameValue;

    tkp.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;

    if ( ! AdjustTokenPrivileges( hToken, FALSE, &tkp, sizeof tkp, NULL, NULL ) )

        CloseHandle( hToken );

} 
 

//Gets the base of our dll

DWORD GetDLLBase(char* DllName, DWORD tPid)

{

    HANDLE snapMod;  

    MODULEENTRY32 me32;
 

    if (tPid == 0) return 0;

    snapMod = CreateToolhelp32Snapshot(TH32CS_SNAPMODULE, tPid);  

    me32.dwSize = sizeof(MODULEENTRY32);  

    if (Module32First(snapMod, &me32)){ 

        do{

            if (strcmp(DllName,me32.szModule) == 0){ 

                CloseHandle(snapMod); 

                return (DWORD) me32.modBaseAddr; 

            }

        }while(Module32Next(snapMod,&me32));

    }
 

    CloseHandle(snapMod); 

    return 0;  
 

}

Open in new window

0
Comment
Question by:GameOverlayUI
  • 5
  • 3
8 Comments
 
LVL 8

Expert Comment

by:JIEXA
ID: 24727397
Make sure you compile it for 32-bit.
What is the output of the program on 32-bit system if compiled 32-bit?
0
 

Author Comment

by:GameOverlayUI
ID: 24727412
It works on both ( I mean I can launch it ) but it patches offsets only in 64bit version of windows.
0
 
LVL 8

Expert Comment

by:JIEXA
ID: 24727453
What is exact failure? Do you check the results of WriteProcessMemory?
0
 

Author Comment

by:GameOverlayUI
ID: 24727464
no
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:GameOverlayUI
ID: 24727466
well, I can see result... it is not patching memory as it should be on 32bit systems.
0
 
LVL 8

Accepted Solution

by:
JIEXA earned 500 total points
ID: 24727494
You need to find out whether the offsets are wrong, or just WriteProcessMemory() calls fail.
#define PATCH(i,w,l) do { if (!WriteProcessMemory(hProc,reinterpret_cast<LPVOID>(gameBase+i),w,l,&dSize)) printf("PATCH: %d\n",GetLastError());} while(0)

#define NPATCH(i,w,l) do { if (!WriteProcessMemory(hProc,reinterpret_cast<LPVOID>(i),w,l,&dSize)) printf("NPATCH: %d\n",GetLastError());} while(0)

Open in new window

0
 
LVL 8

Expert Comment

by:JIEXA
ID: 24727508
Explain me:
1. do you have both 32-bit and 64-bit OS?
2. what is the bitness of WAR3.EXE on all systems?
3. what is the bitness of your patching application on all systems?
4. are the offsets known to be good for both 32-bit and 64-bit WAR3.exe?
0
 
LVL 8

Expert Comment

by:JIEXA
ID: 24727522
Also, what is the output on working and not working systems.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

When writing generic code, using template meta-programming techniques, it is sometimes useful to know if a type is convertible to another type. A good example of when this might be is if you are writing diagnostic instrumentation for code to generat…
Templates For Beginners Or How To Encourage The Compiler To Work For You Introduction This tutorial is targeted at the reader who is, perhaps, familiar with the basics of C++ but would prefer a little slower introduction to the more ad…
The goal of the video will be to teach the user the difference and consequence of passing data by value vs passing data by reference in C++. An example of passing data by value as well as an example of passing data by reference will be be given. Bot…
The viewer will learn how to user default arguments when defining functions. This method of defining functions will be contrasted with the non-default-argument of defining functions.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now