[Request] Guide to removing Background Click checks and Away effect.

kavee55 · 08/31/2010, 02:00

I've been searching for a tutorial to remove the above, but have been unsuccessful thus far. Anyone kind enough to either point me in the right direction or provide me a guide? Thanks in advance.

~~IAmHawtness~~ · 08/31/2010, 06:39

Quote:

Originally Posted by kavee55

I've been searching for a tutorial to remove the above, but have been unsuccessful thus far. Anyone kind enough to either point me in the right direction or provide me a guide? Thanks in advance.

Removing background click checks:

Code:

00561FB8   > FF15 3C7A7800  CALL DWORD PTR DS:[<&USER32.GetActiveWin>; [GetActiveWindow
00561FBE   . 50             PUSH EAX
00561FBF   . E8 0E3B1700    CALL <JMP.&MFC42.#2864>
00561FC4   . 3BC3           CMP EAX,EBX
00561FC6   . 75 1E          JNZ SHORT Conquer.00561FE6
00561FC8   . 393D 78DD8600  CMP DWORD PTR DS:[86DD78],EDI
00561FCE   . 75 0E          JNZ SHORT Conquer.00561FDE
00561FD0   . 6A 0A          [COLOR="Red"]PUSH 0A[/COLOR]
00561FD2   . E8 34A40800    [COLOR="Red"]CALL Conquer.005EC40B[/COLOR]
00561FD7   . 8BC8           [COLOR="Red"]MOV ECX,EAX[/COLOR]
00561FD9   . E8 6B9C0800    [COLOR="Red"][B]CALL Conquer.005EBC49[/B] <-----[/COLOR]

As you can see, Conquer calls the "GetActiveWindow" to see which window is active. If it's not the Conquer window, it pushes 0xA (which is an argument in one of the 0x271A packets - tells the server that you're using an auto clicker) then it calls a function to get your character ID (the "CALL Conquer.005EC40B")
It then calls the actual function that sends the "cheater packet" or whatever you wanna call it (the "CALL Conquer.005EBC49") . What I suggest is that you go inside that function and change the first line of it to a "RET" (0xC3), like this:

From this

Code:

005EBC49  /$ B8 029B7600    MOV EAX,Conquer.00769B02
005EBC4E  |. E8 0DA20E00    CALL Conquer.006D5E60
005EBC53  |. 81EC 60080000  SUB ESP,860
005EBC59  |. 53             PUSH EBX
005EBC5A  |. 56             PUSH ESI
005EBC5B  |. 6A 01          PUSH 1

To this

Code:

005EBC49     C3             RETN
005EBC4A     90             NOP
005EBC4B     90             NOP
005EBC4C     90             NOP
005EBC4D     90             NOP
005EBC4E  |. E8 0DA20E00    CALL Conquer.006D5E60
005EBC53  |. 81EC 60080000  SUB ESP,860
005EBC59  |. 53             PUSH EBX
005EBC5A  |. 56             PUSH ESI
005EBC5B  |. 6A 01          PUSH 1

As for removing the away status, you might wanna check my signature

Edit:
Editing your Conquer.exe is not recommended unless you know what you're doing