Register for your free account! | Forgot your password?

Go Back   elitepvpers > World of Warcraft > WoW Exploits, Hacks, Tools & Macros
You last visited: Today at 23:47

  • Please register to post and access all features, it's quick, easy and FREE!


Syndrome 1.10.1:5320 [Undetected]

Closed Thread
 
Old   #1
 
elite*gold: 0
Join Date: Mar 2006
Posts: 4
Received Thanks: 0
Yes, I am not your god.

Quote:
Originally posted by "Read Me"+--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td>QUOTE ("Read Me")</td></tr><tr><td id='QUOTE'>
I DID NOT MAKE THIS

ALL CREDITS GO TO FALDO, ALL I DID WAS RECODE SOME OF IT TO MAKE IT UNDETECTABLE&#33;

EVERYTHING STILL WORKS

-----------

Run dist/installer/installer.exe to install the protection.

It should start cmdc.exe

From there you load jahfjahfakhgw.exe which is syndrome

ENJOY

~Brandon
[/b]


Enjoy, scan it if you want, etc.

I can take critisism, only to a certain extent, so dont be a prick if you think its a virus, the only thing that they say is a virus is the auto it file, but you get that everytime. Enjoy the undetectableness, hopefully they dont screw you guys over again.

<!--QuoteBegin--"Virus Scanner"


File: jahfjahfakhgw.exe
Status:
MIGHT BE INFECTED/MALWARE (Sandbox emulation took a long time and/or runtime packers were found, this is suspicious. Normally programs aren&#39;t packed and don&#39;t force the sandbox into lengthy emulation. Do realize no scanner issued any warning, the file can very well be harmless. Caution is advised, however.)
MD5 c9c147f0452ea460c6410315672444bd
Packers detected:
UPX, AUTOIT
Scanner results
AntiVir
Found nothing
ArcaVir
Found nothing
Avast
Found nothing
AVG Antivirus
Found nothing
BitDefender
Found nothing
ClamAV
Found nothing
Dr.Web
Found nothing
F-Prot Antivirus
Found nothing
Fortinet
Found nothing
Kaspersky Anti-Virus
Found nothing
NOD32
Found nothing
Norman Virus Control
Found nothing
UNA
Found nothing
VirusBuster
Found nothing
VBA32
Found nothing
[/quote]

It works nicely btw.




bweliky is offline  
Old 04/27/2006, 01:13   #2
 
elite*gold: 0
Join Date: Mar 2006
Posts: 4
Received Thanks: 0
Sorry for double post, but please +Karma


bweliky is offline  
Old 04/27/2006, 01:27   #3
 
elite*gold: 0
Join Date: Jul 2005
Posts: 2,375
Received Thanks: 15
What exactly did you do so that you think it&#39;s now undetectable?
JohnDS is offline  
Old 04/27/2006, 01:27   #4
 
elite*gold: 0
Join Date: Mar 2006
Posts: 4
Received Thanks: 0
Blizzard looks for certain things in the file, all I did was recode it so it would work the sameway but in different coding.


bweliky is offline  
Old 04/27/2006, 01:35   #5
 
elite*gold: 0
Join Date: Jul 2005
Posts: 2,375
Received Thanks: 15
Yes, I thought so.

But did you also think about the whole function of warden?

Example:

Warden opens every process running on your computer. When each program is opened, warden then calls ReadProcessMemory and reads a series of addresses - usually in the 0x0040xxxx or 0x0041xxxx range - this is the range that most executable programs on windows will place their code. Warden reads about 10-20 bytes for each test, and again hashes this and compares against a list of banning hashes. These tests are clearly designed to detect known 3rd party programs, such as wowglider and friends. Every process is read from in this way.
JohnDS is offline  
Old 04/27/2006, 01:41   #6
 
elite*gold: 0
Join Date: Mar 2006
Posts: 4
Received Thanks: 0
The bypass is still the same, its just hasn&#39;t been caught, all the functions are also the same but changed so that it reads and writes differently but works the same way. I&#39;ve been using it since the release of 1.10 and haven&#39;t been banned, even after the mass ban a couple weeks ago.
bweliky is offline  
Old 04/27/2006, 01:44   #7
 
elite*gold: 0
Join Date: Jul 2005
Posts: 2,375
Received Thanks: 15
That&#39;s no answer on my question but we&#39;ll see.
JohnDS is offline  
Old 04/27/2006, 02:52   #8
 
elite*gold: 0
Join Date: Aug 2005
Posts: 446
Received Thanks: 27
Still too dangerous in my opinion. "Undetectable"..
ogR1sH is offline  
Old 04/27/2006, 03:02   #9
 
elite*gold: 0
Join Date: Dec 2005
Posts: 23
Received Thanks: 0
i would like some little piggys 2 test drive this beast
Stealth_soul is offline  
Old 04/27/2006, 04:00   #10
 
elite*gold: 0
Join Date: Sep 2005
Posts: 8
Received Thanks: 0
TheHacker says Trojan/Clicker.Small.ht
UNA says Backdoor.Rbot

..
hmm no thanks.
UGMatt is offline  
Old 04/27/2006, 11:57   #11
 
elite*gold: 0
Join Date: Mar 2006
Posts: 1
Received Thanks: 0
NOT safe&#33;

The "installer.exe" tries to send an email to "mail.nerdshack.com" (209.235.105.50:2525) using local port 1268.
Maybe your WoW Account data or something.


Run it with your Personal Firewall active and see it for yourself.
Darkshade is offline  
Old 04/27/2006, 13:29   #12
 
elite*gold: 0
Join Date: May 2005
Posts: 12
Received Thanks: 0
haha stupid *** scammer :S
impzor is offline  
Old 04/27/2006, 13:39   #13
 
elite*gold: 0
Join Date: May 2005
Posts: 12
Received Thanks: 0
doesnt work anyway

Protection not running. please reload installer.exe

Make sure it works when you post a hax or something

****
impzor is offline  
Old 04/27/2006, 13:58   #14

 
elite*gold: 92
Join Date: Jul 2005
Posts: 12,324
Received Thanks: 2,917
who would be so stupid to use a hack from a user with 4 posts? -.-,,
invisible is offline  
Old 04/27/2006, 16:23   #15
 
elite*gold: 0
Join Date: Oct 2005
Posts: 137
Received Thanks: 2
installer.exe is infected


Shortyyyy is offline  
Closed Thread



« Twin Emps Exploit | 15-20 Second Flights »

Similar Threads
Syndrome v1.1.92b
03/14/2006 - WoW Exploits, Hacks, Tools & Macros - 65 Replies
POSTS DIE NICHT IN ENGLISCH GESCHRIEBEN SIND, WERDEN IGNORIERT, DA FALDO KEIN DEUTSCH VERSTEHT&#33; German Syndrome Support Topic <- post here in german synĚdrome Listen : A group of symptoms that collectively indicate an abnormal condition. Symptoms: Speed hack: Run/swim/mount at up to 200% of normal speed. A 60 gold mount runs as fast as a 800 gold mount. Combat teleport: Reccord spots and warp in between them having your foe run around, not being able to hit you, while you kill it...
Syndrome v1.1.92
01/18/2006 - WoW Exploits, Hacks, Tools & Macros - 23 Replies
POSTS DIE NICHT IN ENGLISCH GESCHRIEBEN SIND, WERDEN IGNORIERT, DA FALDO KEIN DEUTSCH VERSTEHT&#33; German Syndrome Support Topic <- post here in german synĚdrome Listen : A group of symptoms that collectively indicate an abnormal condition. Symptoms: Speed hack: Run/swim/mount at up to 200% of normal speed. A 60 gold mount runs as fast as a 800 gold mount. Combat teleport: Reccord spots and warp in between them having your foe run around, not being able to hit you, while you kill it...
Syndrome 1.1.9
01/17/2006 - WoW Exploits, Hacks, Tools & Macros - 90 Replies
POSTS DIE NICHT IN ENGLISCH GESCHRIEBEN SIND, WERDEN IGNORIERT, DA FALDO KEIN DEUTSCH VERSTEHT&#33; German Syndrome Support Topic <- post here in german synĚdrome Listen : A group of symptoms that collectively indicate an abnormal condition. Symptoms: Speed hack: Run/swim/mount at 150% or 200% of normal speed. A 60 gold mount runs as fast as a 800 gold mount. Combat teleport: Reccord two spots and warp in between them having your foe run in between, not being able to hit you, while you...
Syndrome v0.71
10/19/2005 - WoW Exploits, Hacks, Tools & Macros - 67 Replies
German Syndrome Support Topic Please speak English in this Thread Yet another wow patch, yet another version of Syndrome, enjoy :) Features: Cheat-detection proof. Speed hack: Run at 150% or 200% of normal speed.



All times are GMT +1. The time now is 23:47.


Powered by vBulletin®
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.

Support | Contact Us | FAQ | Advertising | Privacy Policy | Abuse
Copyright ©2018 elitepvpers All Rights Reserved.