What does R* look for when they ban?

**Dan'** · 05-24-2015

Just curious as to what they do when banning. I know using CE will get you banned. What other things? Like spent cash, earned cash, etc?

**powertome** · 05-24-2015

They have an automatic statistics tracker, simple memory edit detection (CE), asi and dll file checks.
Basically everything thats a dll or asi is detected.
R* is just waiting for the data to be conclusive.

**Khyy** · 05-25-2015

Originally Posted by powertome

They have an automatic statistics tracker, simple memory edit detection (CE), asi and dll file checks.
Basically everything thats a dll or asi is detected.
R* is just waiting for the data to be conclusive.

Thank you that someone else finally gets this. I have been stressing this to kids forever on this forum. Since R* doesn't take immediate action they swear they're safe using their little skid menus despite the fact their method of using them is actually detected. If only they knew the bypass was the online check byte to prevent them from getting banned. Not a AC bypass.

**Spacedraggin** · 05-25-2015

Originally Posted by powertome

They have an automatic statistics tracker, simple memory edit detection (CE), asi and dll file checks.
Basically everything thats a dll or asi is detected.
R* is just waiting for the data to be conclusive.

What about that "GTAV_Native.dll" file that supposedly disables the .dll/ file check?

**Khyy** · 05-25-2015

Originally Posted by Spacedraggin

What about that "GTAV_Native.dll" file that supposedly disables the .dll/ file check?

I'll open that up in IDA later or NET Reflector (depending upon if it's a Framework dependency or not) and see if that's actually true. The issue is that you have to manually map the natives and such to prevent the detection. Scripthook doesn't do that so it'll be interesting to see what this actually does.

**Spacedraggin** · 05-25-2015

do you use pro6?

**Khyy** · 05-25-2015

Originally Posted by Spacedraggin

do you use pro6?

Yeah you pretty much have to if you want to use 64bit anything. 32bit is so obsolete. I'm home now so i'll check into it and see what it actually does.