[M]CO Loader

Page 7 of 8

11/21/2008 14:48 riah64#91

Quote:

Originally Posted by *M*

have some source code

Code:

; *******************
; *  Loader 0.[B]5062  [/B]*   
; *******************
; *                 * 
; * Code     : *M*  *
; * language : MASM *
; *                 * 
; *******************

.586
.model flat,stdcall
option casemap:none
;=============================================================================================

include \masm32\include\windows.inc
include \masm32\include\user32.inc
include \masm32\include\kernel32.inc

includelib \masm32\lib\user32.lib
includelib \masm32\lib\kernel32.lib
;=============================================================================================

.data

;// Target Process
target db "Conquer.exe",0

;// Injection Values

    ;Blacknull
        BN1 db 0EBh,41h

    ;Multi-Client
        MUL1 db 0EBh

    ;GM Commands
        GM1 db 0EBh

    ;Wall-Jump
        Wall1 db 0EBh
        ;//Guild
        Wall2 db 0E9h, 42h, 0F8h, 0FFh, 0FFh, 90h

    ;Server.dat bypass
        SB1 db 90h,90h
    
    ;//Popup-Filter
        PU1 db 0EBh

    ;Equipment Parenthesis
        EP1 db 00h

    ;//Extra Zoom
        EZ1 db 80h,00h
        EZ2 db 05h
    ;//FPS Unlock
        FPS3 db 90h,90h,90h
        
    ;//Magic Hack
        MG1 db 90h,90h,90h,90h,90h,90h
        
    ;//Anti-Anti Virus
        AV1 db 0EBh
    
    ;//Non-DC
        NDC1 db 0E9h, 03Ch, 24h, 0FCh, 0FFh
        NDC2 db 81h, 05h, 0B0h, 0EFh, 56h, 00h, 06Ah, 04h, 00h, 00h, 0A1h, 0B0h, 0EFh, 56h, 00h, 0E9h, 0B0h, 0DBh, 03h, 00h
        NDC3 db 0E9h, 95h, 54h, 05h, 00h
        NDC4 db 56h, 33h, 0F6h, 06Ah, 64h, 83h, 03Dh, 0BEh, 0D0h, 56h, 00h, 00h, 07Ch, 0Ah, 0C7h, 05h, 0BEh, 0D0h, 56h, 00h, 00h, 00h, 00h, 00h, 07Fh, 00Ah, 0C7h, 05h, 0BEh, 0D0h, 56h, 00h, 80h, 00h, 00h, 00h, 0E9h, 42h, 0ABh, 0FAh, 0FFh
        NDC5 DB 0C3h        
        
    ;//Wharehouse
        WH1 db 0E9h, 0CEh, 06h, 00h, 00h, 90h, 90h










;// Error Captions
    no_exe db "Conquer.exe not found",0 ;If file isnt found
    no_inject db "Couldn't Inject",0 ;If there is an injection error

;// PI
hInstance dd ?
startinfo STARTUPINFO <?> ;the startupinfo structure
pi PROCESS_INFORMATION <?> ;the process_information structure
;=============================================================================================

.code
start:

;// Get handle of loader
    invoke GetModuleHandle,NULL
    mov hInstance,eax

;// Create Process
    invoke CreateProcess,addr target,NULL,NULL,NULL,FALSE,NORMAL_PRIORITY_CLASS, NULL,NULL, addr startinfo,addr pi
    
;If Conquer.exe (target) is not found, Jump to error 1
    cmp eax,0 ;error ??
    jz error_1

;// Wait till process is in memory
    ;Set injection time to 0 miliseconds, this is necesary to inject blacknull code before play.exe error
    ;Not necessary for conquer but if an app had a CRC check, patches could be applied after a certain timeframe
    invoke WaitForInputIdle,pi.hProcess,0 


;// Inject Code

    ;// Blacknull
        invoke WriteProcessMemory, pi.hProcess, 004687C8h, addr BN1, sizeof BN1, NULL

    ;// Multi-Client
        invoke WriteProcessMemory, pi.hProcess, 00469AE3h, addr MUL1, sizeof MUL1, NULL

    ;// GM Commands
        invoke WriteProcessMemory, pi.hProcess, 004A65ADh, addr GM1, sizeof GM1, NULL

    ;// Wall-Jump
        invoke WriteProcessMemory, pi.hProcess, 004A62BFh, addr Wall1, sizeof Wall1, NULL
        invoke WriteProcessMemory, pi.hProcess, 004C0DDCh, addr Wall2, sizeof Wall2, NULL

    ;//Server.dat bypass
        invoke WriteProcessMemory, pi.hProcess, 00432C62h, addr SB1, sizeof SB1, NULL
        invoke WriteProcessMemory, pi.hProcess, 004E405Ah, addr SB1, sizeof SB1, NULL

    ;//Popup-Filter
        invoke WriteProcessMemory, pi.hProcess, 00477E3Dh, addr PU1, sizeof PU1, NULL

    ;//Extra Zoom
        invoke WriteProcessMemory, pi.hProcess, 004791FFh, addr EZ1, sizeof EZ1, NULL
        invoke WriteProcessMemory, pi.hProcess, 0047920Dh, addr EZ2, sizeof EZ2, NULL
        
    ;//FPS Unlock
        invoke WriteProcessMemory, pi.hProcess, 00468ADBh, addr Wall1, sizeof Wall1, NULL
        
    ;//Anti-Anti Virus
        invoke WriteProcessMemory, pi.hProcess, 004686CFh, addr AV1, sizeof AV1, NULL
        
    ;//Magic Hack
        invoke WriteProcessMemory, pi.hProcess, 004C4CE2h, addr Wall1, sizeof Wall1, NULL
        invoke WriteProcessMemory, pi.hProcess, 004C4F6Dh, addr MG1, sizeof MG1, NULL
        invoke WriteProcessMemory, pi.hProcess, 004C4F82h, addr MG1, sizeof MG1, NULL
        
    ;//Non-DC
        invoke WriteProcessMemory, pi.hProcess, 004A6389h, addr NDC1, sizeof NDC1, NULL
        invoke WriteProcessMemory, pi.hProcess, 004687CAh, addr NDC2, sizeof NDC2, NULL
        invoke WriteProcessMemory, pi.hProcess, 00413344h, addr NDC3, sizeof NDC3, NULL
        invoke WriteProcessMemory, pi.hProcess, 004687DEh, addr NDC4, sizeof NDC4, NULL
        invoke WriteProcessMemory, pi.hProcess, 00412453h, addr NDC5, sizeof NDC5, NULL

    ;//Wharehouse
    ;    invoke WriteProcessMemory, pi.hProcess, 00475D24h, addr WH1, sizeof WH1, NULL


;If code injection is not possible, Jump to error 2:
    cmp eax,0 ;error??
    jz error_2

;// End and launch apps
    fin:
    invoke ExitProcess,NULL
    error_1:
    invoke MessageBoxA,NULL,addr no_exe,NULL,NULL
    jmp fin
    error_2:
    invoke MessageBoxA,NULL,addr no_inject,NULL,NULL
    jmp fin
end start

(sory 4 this n0ob question.but cn u pls tel m hw to use this code??i rely knw nthing about this code.pls....:handsdown:

11/23/2008 06:25 Pindle#92

Quote:

Originally Posted by riah64

(sory 4 this n0ob question.but cn u pls tel m hw to use this code??i rely knw nthing about this code.pls....:handsdown:

It's useless to you then.

I'll give ya $5 if you send me an updated loader with FPS hah.

11/23/2008 06:54 Ian*#93

Quote:

Originally Posted by riah64

(sory 4 this n0ob question.but cn u pls tel m hw to use this code??i rely knw nthing about this code.pls....:handsdown:

First.. it's in MASM so get an MASM Compiler. (use google).

Copy/ Paste the code into the compiler, and manually update the addresses.
Use tanelipes guide in the programming section to figure out how to find the addresses you need to update.

05/03/2009 23:09 bigwinner#94

HEEEELP respond quick im a huge newb and im completly lost in the whole code thong plzzzzzz help e out... how do i use this code so that i can lay requiem bloodymare agin.... som1 help... lol

05/03/2009 23:20 high6#95

Quote:

Originally Posted by bigwinner

HEEEELP respond quick im a huge newb and im completly lost in the whole code thong plzzzzzz help e out... how do i use this code so that i can lay requiem bloodymare agin.... som1 help... lol

LERN TO FKING SPL SO US CEN REED YOOR WORDS.

Seriously though, I hope you die.

05/03/2009 23:23 bigwinner#96

pk so i didnt spell right.... im sorry i was in a hurry.... damn i was hoping for help not this. wow

05/03/2009 23:26 bigwinner#97

im still wondering if any1 can help me out with the whole code thing its driving me crazy!!!

05/03/2009 23:37 [bluezone]#98

Quote:

Originally Posted by bigwinner

im still wondering if any1 can help me out with the whole code thing its driving me crazy!!!

NICE BUMP NOOB STOP BUMPING THREADS PEOPLE... GRAVEDIGGING IS NOT ALLOWED!

05/03/2009 23:41 bigwinner#99

ok.... sorry

05/04/2009 12:07 _fobos_#100

Quote:

Originally Posted by bigwinner

im still wondering if any1 can help me out with the whole code thing its driving me crazy!!!

Get MASM compiler [Only registered and activated users can see links. Click Here To Register...]
Get OllyDbg [Only registered and activated users can see links. Click Here To Register...]

Then update the memory addresses -> compile -> place in your CO folder -> run.
how to update memory addresses? Look in OllyDbg thread in the programming section.

05/05/2009 12:34 joepaks3#101

dont beleave fobos his a hacker and he will inject ur pc with keylogger... damn your creations stole my friends items and account... fobos hacker..

05/05/2009 18:14 poppy51#102

Quote:

Originally Posted by *M*

Finally back from the dead...

I will PM the source code to certain people on request.

;// Blacknull/AutoPatch bypass

;// Multi-Client

;// PM Commands
/break: Disconnects client

/color in FF FF FF FF format

/look %d: Change user model (1, 2, 3, 4)

/mount %d: Unknown

/rolescale %d: Change spawn size

/ver: Print version information

/scale %u: Change map zoom

/data %s: Unknown

/addeffect %s: Add effect (Names in ini/3DEffect.ini)

/addaction %d %d: Add action (Action Id, Direction)

/addmsg %s: Add system message

/mapcolor %x: Unknown

;// Wall-Jump + Gate Jump

;//Server.dat bypass

;//Extra Zoom

;//Anti-Anti Virus

;//All Speed-hacks non-dc

;//Magic cast time and range limits removed

;//Built in speed hack, press path finding button

Put in Co folder and run
:mofo:

Tried it and it don't work!!!!!!!::mad:

05/05/2009 18:57 cdmkiller#103

hi i got a little problem so i downloaded the file extracted it etc. etc. then i pop it into the conquer folder and run it and up comes this like runtime libray c++ thingy box which is seethrough so all you can seee inside it is the programs i got running behind it and it lags the computer loads and nothing much happens what did i do wrong?????

05/05/2009 21:19 firfox#104

is it working for 5121?

05/05/2009 21:58 hessewesse#105

It crashes D:<

Page 7 of 8

« First

[*M*]CO Loader

[M]CO Loader