Results 1 to 14 of 14
  1. #1
    xVIRUZx's Avatar
    Join Date
    Feb 2013
    Gender
    male
    Posts
    248
    Reputation
    10
    Thanks
    48
    My Mood
    Drunk

    Cool PlusMW3 v10 Anti-Cheat bypass

    Not sure if people still play this crap, but since their anti-cheat is annoyingly based on finding the window title of hacks, injectors and such running on your computer, and since it is very basic and wouldn't waste me much time and effort bypassing it, I decided to go ahead and do it. It's been a while since I ever posted here, so let's do it.

    It's a simple DLL that must be injected at the very start of the game.

    Source code:

    Code:
    #include <Windows.h>
    #include <stdio.h>
    
    bool Compare(const BYTE* pData, const BYTE* bMask, const char* szMask)
    {
    	for(;*szMask;++szMask,++pData,++bMask)
    		if(*szMask=='x' && *pData!=*bMask)   return 0;
    	return (*szMask) == NULL;
    }
    
    DWORD FindPattern(BYTE *bMask,char * szMask)
    {
    	DWORD dwAddress = (DWORD)GetModuleHandleA("iw5m.dll"), dwLen = 0x1036000;
    
    	for(DWORD i=0; i<dwLen; i++)
    		if (Compare((BYTE*)(dwAddress+i),bMask,szMask))  return (DWORD)(dwAddress+i);
    	return 0;
    }
    
    bool PatchPMW3_PatchAddrs(DWORD addr1, DWORD addr2)
    {
    	DWORD dwOldProt, dwNewProt;
    
    	VirtualProtect((LPVOID)addr1, 3, PAGE_EXECUTE_READWRITE, &dwOldProt);
    	VirtualProtect((LPVOID)addr2, 3, PAGE_EXECUTE_READWRITE, &dwOldProt);
    	
    	BYTE* retntrue = (BYTE*)"\xB0\x01\xC3";
    	
    	memcpy((void*)addr1, retntrue, 3);
    	memcpy((void*)addr2, retntrue, 3);
    
    	VirtualProtect((LPVOID)addr1, 3, dwOldProt, &dwNewProt);
    	VirtualProtect((LPVOID)addr2, 3, dwOldProt, &dwNewProt);
    
    	return true;
    }
    
    bool PatchPMW3_Init()
    {
    	DWORD Cbuf_AddType = FindPattern((BYTE*)"\x55\x8B\xEC\x83\xEC\x40\x53\x56\x57\xB9\x00\x00\x00\x00\xE8\x00\x00\x00\x00\x50", "xxxxxxxxxx????x????x");
    	DWORD Cbuf_AddChannel = FindPattern((BYTE*)"\x55\x8B\xEC\x81\xEC\x00\x00\x00\x00\xA1\x00\x00\x00\x00\x33\xC5\x89\x45\xFC\x53\x56\x57\xB9", "xxxxx????x????xxxxxxxxx");
    
    	if(!Cbuf_AddType) return false;
    	if(!Cbuf_AddChannel) return false;
    
    	return PatchPMW3_PatchAddrs(Cbuf_AddType, Cbuf_AddChannel);
    }
    
    BOOL WINAPI DllMain(HINSTANCE hInst, DWORD dwReason, LPVOID lpReserved)
    {
    	switch(dwReason)
    	{
    	case DLL_PROCESS_ATTACH:
    		
    		if(!PatchPMW3_Init())
    			MessageBoxA(NULL, "Unable to patch PlusMW3's anti-cheat (game won't close if you press OK).", "Error", MB_OK | MB_ICONERROR);
    
    		break;
    
    	case DLL_PROCESS_DETACH:
    		break;
    	};
    
    	return TRUE;
    }
    Last edited by xVIRUZx; 06-27-2014 at 12:30 PM. Reason: changed code's font to normal
    blah blah blah

  2. #2
    殺す必要がある唯一のものは殺されるために準備され人 々である。
    Premium Member
    Hitokiri~'s Avatar
    Join Date
    Oct 2012
    Gender
    female
    Location
    Cancer.
    Posts
    1,195
    Reputation
    24
    Thanks
    863
    My Mood
    Bitchy
    Should've just compiled the DLL for nubbets who can't code.

    But yea, the methods were literally exported so it was easy to see.
    Had this for a while now.

  3. The Following User Says Thank You to Hitokiri~ For This Useful Post:

    xVIRUZx (06-28-2014)

  4. #3
    xVIRUZx's Avatar
    Join Date
    Feb 2013
    Gender
    male
    Posts
    248
    Reputation
    10
    Thanks
    48
    My Mood
    Drunk
    Quote Originally Posted by Hitokiri~ View Post
    Should've just compiled the DLL for nubbets who can't code.

    But yea, the methods were literally exported so it was easy to see.
    Had this for a while now.
    Well I actually thought no one had done this before, but yeah, making those 2 exported functions return true at the very beginning does the trick so the rest of the code that gets you banned won't be executed. Plus getting their anti-cheat DLL was easy.

    Off-topic: I also have some code to bypass aCI3 on IW5M or any other project based on it, however, I don't really feel like posting it since it's dead. If anyone is interested in having the code, just tell me.
    Last edited by xVIRUZx; 06-27-2014 at 02:33 PM.
    blah blah blah

  5. The Following User Says Thank You to xVIRUZx For This Useful Post:

    Hitokiri~ (06-28-2014)

  6. #4
    殺す必要がある唯一のものは殺されるために準備され人 々である。
    Premium Member
    Hitokiri~'s Avatar
    Join Date
    Oct 2012
    Gender
    female
    Location
    Cancer.
    Posts
    1,195
    Reputation
    24
    Thanks
    863
    My Mood
    Bitchy
    Btw, the simplest method to avoid injecting would simply be to manually hex edit the DLL with those 3 bytes. (mov eax, 1 ret)

  7. The Following User Says Thank You to Hitokiri~ For This Useful Post:

    xVIRUZx (06-28-2014)

  8. #5
    xVIRUZx's Avatar
    Join Date
    Feb 2013
    Gender
    male
    Posts
    248
    Reputation
    10
    Thanks
    48
    My Mood
    Drunk
    Quote Originally Posted by Hitokiri~ View Post
    Btw, the simplest method to avoid injecting would simply be to manually hex edit the DLL with those 3 bytes. (mov eax, 1 ret)
    Using a debugger would work too, which is what I usually use :P
    blah blah blah

  9. #6
    Versatilefps's Avatar
    Join Date
    Jun 2014
    Gender
    male
    Posts
    2
    Reputation
    10
    Thanks
    0
    how do i make that code into a dll

  10. #7
    xVIRUZx's Avatar
    Join Date
    Feb 2013
    Gender
    male
    Posts
    248
    Reputation
    10
    Thanks
    48
    My Mood
    Drunk
    Quote Originally Posted by Versatilefps View Post
    how do i make that code into a dll
    You can use visual studio to compile it, but you literally have no experience so move along please. :P


    or just paste it into notepad and save it as dll. jk.
    Last edited by xVIRUZx; 06-28-2014 at 03:59 PM.
    blah blah blah

  11. #8
    殺す必要がある唯一のものは殺されるために準備され人 々である。
    Premium Member
    Hitokiri~'s Avatar
    Join Date
    Oct 2012
    Gender
    female
    Location
    Cancer.
    Posts
    1,195
    Reputation
    24
    Thanks
    863
    My Mood
    Bitchy
    Quote Originally Posted by xVIRUZx View Post
    just paste it into notepad and save it as dll
    Holy shit it worked!

    Thanks man!

  12. The Following User Says Thank You to Hitokiri~ For This Useful Post:

    xVIRUZx (06-28-2014)

  13. #9
    iosonoperché's Avatar
    Join Date
    Apr 2014
    Gender
    male
    Location
    http://nrclanmw3,enjin,com
    Posts
    25
    Reputation
    10
    Thanks
    57
    It doesn't work :'(

  14. #10
    殺す必要がある唯一のものは殺されるために準備され人 々である。
    Premium Member
    Hitokiri~'s Avatar
    Join Date
    Oct 2012
    Gender
    female
    Location
    Cancer.
    Posts
    1,195
    Reputation
    24
    Thanks
    863
    My Mood
    Bitchy
    Quote Originally Posted by iosonoperché View Post
    It doesn't work :'(
    Then you're not injecting as soon as the game starts.

  15. #11
    iosonoperché's Avatar
    Join Date
    Apr 2014
    Gender
    male
    Location
    http://nrclanmw3,enjin,com
    Posts
    25
    Reputation
    10
    Thanks
    57
    yes but... i always get banned





    sorry for my english
    Attached Thumbnails Attached Thumbnails
    ban.JPG  

    Last edited by iosonoperché; 06-30-2014 at 03:13 AM.

  16. The Following 4 Users Say Thank You to iosonoperché For This Useful Post:

    Dave's Mexican (04-09-2015),hhaaddii13631363 (07-16-2014),kevenmaster (12-11-2015),The_Vezz (06-03-2016)

  17. #12
    殺す必要がある唯一のものは殺されるために準備され人 々である。
    Premium Member
    Hitokiri~'s Avatar
    Join Date
    Oct 2012
    Gender
    female
    Location
    Cancer.
    Posts
    1,195
    Reputation
    24
    Thanks
    863
    My Mood
    Bitchy
    Quote Originally Posted by iosonoperché View Post
    yes but... i always get banned





    sorry for my english
    Does this say it's for TeknoMW3 or PlusMW3?
    Please read next time.

  18. #13
    Farzad6049's Avatar
    Join Date
    Oct 2014
    Gender
    male
    Posts
    3
    Reputation
    10
    Thanks
    0
    Hi
    plz help me I need a aCI disable or Anti-Cheat bypass for PLusMW3 v76

  19. #14
    ASFeld's Avatar
    Join Date
    Nov 2014
    Gender
    male
    Posts
    15
    Reputation
    10
    Thanks
    38
    My Mood
    Asleep
    Quote Originally Posted by xVIRUZx View Post

    Off-topic: I also have some code to bypass aCI3 on IW5M or any other project based on it, however, I don't really feel like posting it since it's dead. If anyone is interested in having the code, just tell me.
    if you got the code then i would be interested

Similar Threads

  1. [Request] tut for anti cheat bypassing
    By fatbox187 in forum Programming Tutorial Requests
    Replies: 1
    Last Post: 12-26-2015, 04:20 AM
  2. WOGL / ESL (Anti-Cheat Bypass) WTB
    By 1a2a3a4a5a in forum Anti-Cheat
    Replies: 2
    Last Post: 04-20-2013, 04:25 PM
  3. Guys: i need anti cheat bypass beacuse i cant use anything hack HELP ME
    By sergio-197 in forum Alliance of Valiant Arms (AVA) Help
    Replies: 0
    Last Post: 03-03-2013, 02:10 PM
  4. [Request] Doolittle Anti-cheat BYPASS!!! or Another Work CHEAT/EXECUTER
    By yudra in forum DayZ Mod & Standalone Hacks & Cheats
    Replies: 2
    Last Post: 08-16-2012, 08:50 AM
  5. CS 1.6 Anti-cheat bypass?
    By vuadapass in forum CounterStrike (CS) 1.6 Hacks / Counter Strike: Source (CSS) Hacks
    Replies: 0
    Last Post: 11-14-2009, 10:52 AM