Channel down Hack: HACK_DETECT

12/22/2013 20:30 sarucan#1

Channel syserr :

SYSERR: Dec 22 18:51:26 :: Hack: HACK_DETECT: yFT "�@��/��>f‘:Ni��,�[��g^ğ�Œiw^ya<—}[‹� ;�İ1”��h�~A�T”�‹|+�H‚�D”wZa��””P��Ğe—,m�NE͏�� 5�r2�ˆ��]?�sğ�‡�b*��_š@�&P�hx8"�*�rڽ

Help :(

Game version : 34083

12/22/2013 22:36 .Cyous#2

Vor ein paar Tagen wurde ein Channel Downer f�r die 34K Game releast.
Das Thread wurde aber dann wieder gel�scht..
ich denke mal das es noch keinen fixx daf�r gibt.

Mfg

12/23/2013 09:14 #Phonie#3

Quote:

Originally Posted by .HC'Cyous

Vor ein paar Tagen wurde ein Channel Downer f�r die 34K Game releast.
Das Thread wurde aber dann wieder gel�scht..
ich denke mal das es noch keinen fixx daf�r gibt.

Mfg

Hi Hc-Hapo Dj!
"Der Thread" pls. ( Macht nichts bin auch nicht der Beste )

-Jop er hat recht.

12/23/2013 13:50 MartPwnS#4

could you send me your game.core file pls if it exists i want to track down this issue.

12/25/2013 03:48 MartPwnS#5

Sry for the double post but it looks like an buffer overrun in the CinputHack function im investigating.

�dit
[Only registered and activated users can see links. Click Here To Register...]

This looks kinda strange why this long buffer value in the backtrace seems like someone is sending specific packets.

Quote:

void (CInputMain * const, LPCHARACTER, const char* (a3))
{
[...]
strlcpy(&v7, a3 + 1, 256);
}

Maybe a3 is to big for this 256 byte buffer anyway what is this line so i removed it completely because it doesnt get used afterwards
v7 is not referenced anywhere.

Quote:

This difference file has been created by IDA

PLEASE ONLY USE FOR TESTING PURPOSES!
IM NOT SURE IF THIS CAUSES CRASHES
ONLY USE WITH CAUTION!

game
000F5753: E8 90
000F5754: 18 90
000F5755: 17 90
000F5756: F1 90
000F5757: FF 90

Maybe the best would be to remove the entire function, since we dont need it.

Quote:

This difference file has been created by IDA

game_r34083_32
removes call from CInputMain::Analyze and CInputDead::Analyze
000FD48B: E8 90
000FD48D: 82 90
000FD48E: FF 90
000FD48F: FF 90

000FCC6B: E8 90
000FCC6C: B0 90
000FCC6D: 8A 90
000FCC6E: FF 90
000FCC6F: FF 90
000FD48B: E8 90
000FD48D: 82 90
000FD48E: FF 90
000FD48F: FF 90

Kind Regards
MartPwnS

12/26/2013 14:34 JovaProd#6

I search fix too...

Quote:

SYSERR: Dec 26 13:19:35 :: Hack: HACK_DETECT: Elysium 0.�}�JŽ0.�v�CӦ��_�0}��Žb��3��˜iv…H�1u��T��•&�S�= lK“��“—�š…�¹�%�!L�'-d;r��Š��q]��‚V<�˜F.��F�DuS��=X�S��Ž�<K�„—��:r��S^�O� �Ѳ��,x)%�ž��œ?[{y\J��Fe�2q��L�G��K�B1�G��*RNo�qˆ.6չ��’�+ bž��”��^�*K��[Zc&&��r_�i'��

And after this, my core channel crash ...
Please help

12/26/2013 14:39 AnonyHacks#7

Just delete the entire fucntion

12/26/2013 15:20 JovaProd#8

what function ?

12/26/2013 15:59 MartPwnS#9

Just take the last DIF that i posted.

12/26/2013 19:19 [iSeven]#10

(*(void (__cdecl **)(_DWORD, _DWORD))(**(_DWORD **)(a2 + 44) + 16))(*(_DWORD *)(a2 + 44), 0);
int __cdecl CInputMain__Hack(int a1, int a2, int a3)
{
int result; // eax@1
int v4; // edx@1
int v5; // ecx@1
char v6; // al@1
char v7; // [sp+2Ch] [bp-10Ch]@1
int v8; // [sp+12Ch] [bp-Ch]@1

v8 = *(_DWORD *)_stack_chk_guard__FBSD_1_0;
strlcpy(&v7, a3 + 1, 256);
v6 = CHARACTER__GetName(a2);

sys_err((int)"Hack", 2757, "HACK_DETECT: %s %s", v6);

(*(void (__cdecl **)(_DWORD, _DWORD))(**(_DWORD **)(a2 + 44) + 16))(*(_DWORD *)(a2 + 44), 0);
result = *(_DWORD *)_stack_chk_guard__FBSD_1_0 ^ v8;

if ( *(_DWORD *)_stack_chk_guard__FBSD_1_0 != v8 )
__stack_chk_fail(v5, v4);
return result;
}