I've been searching for a tutorial to remove the above, but have been unsuccessful thus far. Anyone kind enough to either point me in the right direction or provide me a guide? Thanks in advance.
[Request] Guide to removing Background Click checks and Away effect.
08/31/2010 02:00
kavee55#1
08/31/2010 06:39
IAmHawtness#2
Removing background click checks:Quote:
I've been searching for a tutorial to remove the above, but have been unsuccessful thus far. Anyone kind enough to either point me in the right direction or provide me a guide? Thanks in advance.
Code:
00561FB8 > FF15 3C7A7800 CALL DWORD PTR DS:[<&USER32.GetActiveWin>; [GetActiveWindow 00561FBE . 50 PUSH EAX 00561FBF . E8 0E3B1700 CALL <JMP.&MFC42.#2864> 00561FC4 . 3BC3 CMP EAX,EBX 00561FC6 . 75 1E JNZ SHORT Conquer.00561FE6 00561FC8 . 393D 78DD8600 CMP DWORD PTR DS:[86DD78],EDI 00561FCE . 75 0E JNZ SHORT Conquer.00561FDE 00561FD0 . 6A 0A [COLOR="Red"]PUSH 0A[/COLOR] 00561FD2 . E8 34A40800 [COLOR="Red"]CALL Conquer.005EC40B[/COLOR] 00561FD7 . 8BC8 [COLOR="Red"]MOV ECX,EAX[/COLOR] 00561FD9 . E8 6B9C0800 [COLOR="Red"][B]CALL Conquer.005EBC49[/B] <-----[/COLOR]
It then calls the actual function that sends the "cheater packet" or whatever you wanna call it (the "CALL Conquer.005EBC49") . What I suggest is that you go inside that function and change the first line of it to a "RET" (0xC3), like this:
From this
Code:
005EBC49 /$ B8 029B7600 MOV EAX,Conquer.00769B02 005EBC4E |. E8 0DA20E00 CALL Conquer.006D5E60 005EBC53 |. 81EC 60080000 SUB ESP,860 005EBC59 |. 53 PUSH EBX 005EBC5A |. 56 PUSH ESI 005EBC5B |. 6A 01 PUSH 1
Code:
005EBC49 C3 RETN 005EBC4A 90 NOP 005EBC4B 90 NOP 005EBC4C 90 NOP 005EBC4D 90 NOP 005EBC4E |. E8 0DA20E00 CALL Conquer.006D5E60 005EBC53 |. 81EC 60080000 SUB ESP,860 005EBC59 |. 53 PUSH EBX 005EBC5A |. 56 PUSH ESI 005EBC5B |. 6A 01 PUSH 1
Edit:
Editing your Conquer.exe is not recommended unless you know what you're doing