[RELEASE] Detect Player Hack

Page 3 of 6

01/18/2010 16:23 ThiagoKasper#31

Quote:

Originally Posted by gawron25

Code:

[ENABLE]
alloc(newmem,1024)
label(returnhere)
label(originalcode)
label(exit)
label(flag)
label(crash)
registersymbol(name1)
label(name1)
registersymbol(name2)
label(name2)
registersymbol(name3)
label(name3)
registersymbol(name4)
label(name4)
registersymbol(name5)
label(name5)
registersymbol(name6)
label(name6)
registersymbol(name7)
label(name7)
registersymbol(name8)
label(name8)
label(index)
label(save_name)

00553A83: //C7 46 0C 00 00 00 00 89 47 04 5F B0 01 5E C2 04
jmp newmem
nop
nop
returnhere:

newmem:
mov [flag],FF
inc [index]
cmp [index],7
jb save_name
mov [index],0

save_name:
pushad
mov ebx,[index]
mov edx,name1
lea ecx,[edx+ebx*08]
lea ecx,[ecx+ebx*08]

mov ebx,[eax+70]
mov [ecx],ebx

cmp ebx,5B474D5D        //new code
je crash                //new code

mov ebx,[eax+74]
mov [ecx+4],ebx

mov ebx,[eax+78]
mov [ecx+8],ebx

mov ebx,[eax+7C]
mov [ecx+C],ebx
popad

originalcode:
mov [esi+0c],00000000

exit:
jmp returnhere
 
flag:
dd 00000000

crash:
call dword ptr [00000000]
 
name1:
dd 00000000 00000000 00000000 00000000
name2:
dd 00000000 00000000 00000000 00000000 
name3:
dd 00000000 00000000 00000000 00000000
name4:
dd 00000000 00000000 00000000 00000000
name5:
dd 00000000 00000000 00000000 00000000
name6:
dd 00000000 00000000 00000000 00000000
name7:
dd 00000000 00000000 00000000 00000000
name8:
dd 00000000 00000000 00000000 00000000
index:
dd 00000000

[DISABLE]
00553A83:
dealloc(newmem)
mov [esi+0c],00000000

then you must manually.
1) Add address manually
2) address 0FA20073
3) Description: name1/Or whatever you want
4) Type: text
5) No. of characters: 16
6) press ok

Adressy to the names of players: 0FA20073, 0FA20083, 0FA20093, 0FA200A3, 0FA200B3, 0FA200C3, 0FA200D3, 0FA200E3.

I'm not too good at making guides

Wrong..
1) Add address manually
2) address name1
3) Description: name1/Or whatever you want
4) Type: text
5) No. of characters: 16
6) press ok

Adressy to the names of players: name1, name2...name7. :)

01/18/2010 16:25 gawron25#32

It's not wrong,type adress name1 and you will see.

01/18/2010 16:30 ThiagoKasper#33

Ok, make a 8� slot for name hack!? ��'

01/18/2010 17:06 gawron25#34

Do not see any of my works, I have in this do not play, I'm too old. Continues to develop pixel bot and hacks in the games exe files do not require bypassa.Ale only projects that are waiting.

01/18/2010 17:23 ThiagoKasper#35

Quote:

Originally Posted by gawron25

Do not see any of my works, I have in this do not play, I'm too old. Continues to develop pixel bot and hacks in the games exe files do not require bypassa.Ale only projects that are waiting.

Ok, ok :handsdown:

Code:

[ENABLE]
alloc(newmem,1024)
label(returnhere)
label(originalcode)
label(exit)
label(flag)
registersymbol(name1)
label(name1)
registersymbol(name2)
label(name2)
registersymbol(name3)
label(name3)
registersymbol(name4)
label(name4)
registersymbol(name5)
label(name5)
registersymbol(name6)
label(name6)
registersymbol(name7)
label(name7)
registersymbol(name8)
label(name8)
registersymbol(name9)
label(name9)
registersymbol(name10)
label(name10)
registersymbol(name11)
label(name11)
registersymbol(name12)
label(name12)
registersymbol(name13)
label(name13)
registersymbol(name14)
label(name14)
registersymbol(name15)
label(name15)
registersymbol(name16)
label(name16)
registersymbol(name17)
label(name17)
registersymbol(name18)
label(name18)
registersymbol(name19)
label(name19)
registersymbol(name20)
label(name20)
label(index)
label(save_name)

00553A83:
jmp newmem
nop
nop
returnhere:

newmem:
mov [flag],FF
inc [index]
cmp [index],20
jb save_name
mov [index],0

save_name:
pushad
mov ebx,[index]
mov edx,name1
lea ecx,[edx+ebx*08]
lea ecx,[ecx+ebx*08]

mov ebx,[eax+70]
mov [ecx],ebx            

mov ebx,[eax+74]
mov [ecx+4],ebx

mov ebx,[eax+78]
mov [ecx+8],ebx

mov ebx,[eax+7C]
mov [ecx+C],ebx

mov ebx,[eax+80]
mov [ecx+10],ebx

mov ebx,[eax+84]
mov [ecx+14],ebx

mov ebx,[eax+88]
mov [ecx+18],ebx

mov ebx,[eax+8C]
mov [ecx+1C],ebx

mov ebx,[eax+90]
mov [ecx+20],ebx

mov ebx,[eax+94]
mov [ecx+24],ebx

mov ebx,[eax+98]
mov [ecx+28],ebx

mov ebx,[eax+9C]
mov [ecx+2C],ebx

mov ebx,[eax+A0]
mov [ecx+30],ebx

mov ebx,[eax+A4]
mov [ecx+34],ebx

mov ebx,[eax+A8]
mov [ecx+38],ebx

mov ebx,[eax+AC]
mov [ecx+3C],ebx

mov ebx,[eax+B0]
mov [ecx+40],ebx

mov ebx,[eax+B4]
mov [ecx+44],ebx

mov ebx,[eax+B8]
mov [ecx+48],ebx

mov ebx,[eax+BC]
mov [ecx+4C],ebx

mov ebx,[eax+C0]
mov [ecx+50],ebx

mov ebx,[eax+C4]
mov [ecx+54],ebx

mov ebx,[eax+C8]
mov [ecx+58],ebx

mov ebx,[eax+CC]
mov [ecx+5C],ebx
popad

originalcode:
mov [esi+0c],00000000

exit:
jmp returnhere
 
flag:
dd 00000000
 
name1:
dd 00000000 00000000 00000000 00000000
name2:
dd 00000000 00000000 00000000 00000000 
name3:
dd 00000000 00000000 00000000 00000000
name4:
dd 00000000 00000000 00000000 00000000
name5:
dd 00000000 00000000 00000000 00000000
name6:
dd 00000000 00000000 00000000 00000000
name7:
dd 00000000 00000000 00000000 00000000
name8:
dd 00000000 00000000 00000000 00000000
name9:
dd 00000000 00000000 00000000 00000000
name10:
dd 00000000 00000000 00000000 00000000
name11:
dd 00000000 00000000 00000000 00000000
name12:
dd 00000000 00000000 00000000 00000000
name13:
dd 00000000 00000000 00000000 00000000
name14:
dd 00000000 00000000 00000000 00000000
name15:
dd 00000000 00000000 00000000 00000000
name16:
dd 00000000 00000000 00000000 00000000
name17:
dd 00000000 00000000 00000000 00000000
name18:
dd 00000000 00000000 00000000 00000000
name19:
dd 00000000 00000000 00000000 00000000
name20:
dd 00000000 00000000 00000000 00000000
index:
dd 00000000

[DISABLE]
00553A83: // C7 46 0C 00 00 00 00 89 47 04 5F B0 01 5E C2 04
dealloc(newmem)
mov [esi+0c],00000000

I make it in this form, i'm noob \o

01/18/2010 18:45 skabed#36

the offset wasnt the bad thing, the bad thing was that you were giving it for just opening and using.

01/18/2010 20:37 trane.#37

Last chance is here, post a script and offset and this thread will not get closed!

01/18/2010 20:38 L.e.v.i.a.t.h.a.n#38

Quote:

Originally Posted by trane.

Last chance is here, post a script and offset and this thread will not get closed!

Ok U have word.

01/19/2010 18:06 bottomy#39

Quote:

Originally Posted by DarkDruidi

Ok, ok :handsdown:

Code:

[ENABLE]
alloc(newmem,1024)
label(returnhere)
label(originalcode)
label(exit)
label(flag)
registersymbol(name1)
label(name1)
registersymbol(name2)
label(name2)
registersymbol(name3)
label(name3)
registersymbol(name4)
label(name4)
registersymbol(name5)
label(name5)
registersymbol(name6)
label(name6)
registersymbol(name7)
label(name7)
registersymbol(name8)
label(name8)
registersymbol(name9)
label(name9)
registersymbol(name10)
label(name10)
registersymbol(name11)
label(name11)
registersymbol(name12)
label(name12)
registersymbol(name13)
label(name13)
registersymbol(name14)
label(name14)
registersymbol(name15)
label(name15)
registersymbol(name16)
label(name16)
registersymbol(name17)
label(name17)
registersymbol(name18)
label(name18)
registersymbol(name19)
label(name19)
registersymbol(name20)
label(name20)
label(index)
label(save_name)

00553A83:
jmp newmem
nop
nop
returnhere:

newmem:
mov [flag],FF
inc [index]
cmp [index],20
jb save_name
mov [index],0

save_name:
pushad
mov ebx,[index]
mov edx,name1
lea ecx,[edx+ebx*08]
lea ecx,[ecx+ebx*08]

mov ebx,[eax+70]
mov [ecx],ebx            

mov ebx,[eax+74]
mov [ecx+4],ebx

mov ebx,[eax+78]
mov [ecx+8],ebx

mov ebx,[eax+7C]
mov [ecx+C],ebx

mov ebx,[eax+80]
mov [ecx+10],ebx

mov ebx,[eax+84]
mov [ecx+14],ebx

mov ebx,[eax+88]
mov [ecx+18],ebx

mov ebx,[eax+8C]
mov [ecx+1C],ebx

mov ebx,[eax+90]
mov [ecx+20],ebx

mov ebx,[eax+94]
mov [ecx+24],ebx

mov ebx,[eax+98]
mov [ecx+28],ebx

mov ebx,[eax+9C]
mov [ecx+2C],ebx

mov ebx,[eax+A0]
mov [ecx+30],ebx

mov ebx,[eax+A4]
mov [ecx+34],ebx

mov ebx,[eax+A8]
mov [ecx+38],ebx

mov ebx,[eax+AC]
mov [ecx+3C],ebx

mov ebx,[eax+B0]
mov [ecx+40],ebx

mov ebx,[eax+B4]
mov [ecx+44],ebx

mov ebx,[eax+B8]
mov [ecx+48],ebx

mov ebx,[eax+BC]
mov [ecx+4C],ebx

mov ebx,[eax+C0]
mov [ecx+50],ebx

mov ebx,[eax+C4]
mov [ecx+54],ebx

mov ebx,[eax+C8]
mov [ecx+58],ebx

mov ebx,[eax+CC]
mov [ecx+5C],ebx
popad

originalcode:
mov [esi+0c],00000000

exit:
jmp returnhere
 
flag:
dd 00000000
 
name1:
dd 00000000 00000000 00000000 00000000
name2:
dd 00000000 00000000 00000000 00000000 
name3:
dd 00000000 00000000 00000000 00000000
name4:
dd 00000000 00000000 00000000 00000000
name5:
dd 00000000 00000000 00000000 00000000
name6:
dd 00000000 00000000 00000000 00000000
name7:
dd 00000000 00000000 00000000 00000000
name8:
dd 00000000 00000000 00000000 00000000
name9:
dd 00000000 00000000 00000000 00000000
name10:
dd 00000000 00000000 00000000 00000000
name11:
dd 00000000 00000000 00000000 00000000
name12:
dd 00000000 00000000 00000000 00000000
name13:
dd 00000000 00000000 00000000 00000000
name14:
dd 00000000 00000000 00000000 00000000
name15:
dd 00000000 00000000 00000000 00000000
name16:
dd 00000000 00000000 00000000 00000000
name17:
dd 00000000 00000000 00000000 00000000
name18:
dd 00000000 00000000 00000000 00000000
name19:
dd 00000000 00000000 00000000 00000000
name20:
dd 00000000 00000000 00000000 00000000
index:
dd 00000000

[DISABLE]
00553A83: // C7 46 0C 00 00 00 00 89 47 04 5F B0 01 5E C2 04
dealloc(newmem)
mov [esi+0c],00000000

I make it in this form, i'm noob \o

Erm why did you increase the amount to be moved into each name? Because for one no name is that long, and for two it'll screw up your names since each name you have there is only 16 bytes long but you will be moving 92 bytes into each name. So this will cause it to start moving the extra bytes onto the other names.

01/20/2010 00:58 Killjoe2009#40

May we have a final version please? Any feedback the public can provide as to comment if this actually works would be helpful.

Also, if you comment please try to use complete, punctuated sentences, for clarity. Thanks!

01/20/2010 01:32 ejamious#41

You could actually read the first page and your question would be answered. In short it works very well...

01/20/2010 03:04 xgoodboyx#42

Quote:

Originally Posted by L.e.v.i.a.t.h.a.n

I read this [Only registered and activated users can see links. Click Here To Register...] I think the script is not harmful to others and help more than hurt.

This will help detect/see people that who use invisible mode, such as [GM]/[DEV] etc.. and also another who use for example the speed hack.

War if u are so considered about 1C Hacks look Here: [Only registered and activated users can see links. Click Here To Register...] Tell me bro what u see in this Thread.

this does not see invisible gms i was in draco to day and a gm was there and when she went in invisible i wanted to try it out so i turned it on and she was not shown but i still had her on target so i know she was still there . 2 other ppl on vent also tried to find her with no luck.

01/20/2010 03:10 bottomy#43

Quote:

Originally Posted by xgoodboyx

this does not see invisible gms i was in draco to day and a gm was there and when she went in invisible i wanted to try it out so i turned it on and she was not shown but i still had her on target so i know she was still there . 2 other ppl on vent also tried to find her with no luck.

That's because you turned it on when the GM is already loaded in your radius. It does list the name of normal, ghostmoded and observermoded players.

01/20/2010 03:13 SellSellSell#44

^ there are no perfect hacks but

Quote:

Originally Posted by L.e.v.i.a.t.h.a.n

* HOW TO USE: Log ON Character Selection Screen NOW ACTIVE ONLY the Detect Player Script and Log ON The Map. U Can Also ACTIVE Script ON MAP.

so maybe u didn't give DPS enough time to load

post was for xgoodboyx, was typing when bottomy posted

01/20/2010 03:23 xgoodboyx#45

Quote:

Originally Posted by bottomy

That's because you turned it on when the GM is already loaded in your radius. It does list the name of normal, ghostmoded and observermoded players.

one guy on vent closed the game reloaded with the bypass and turned it on at char select screen and he did not pick her up.. im just posting my experience with this script that's all

Page 3 of 6

Last »