Arkshine,
I give some pictures on my previous post.
Look:
[IMG]http://img850.**************/img850/301/4310291b.jpg[/IMG]
All Bulgarian servers have crashed from 2-3 days.
This is new exploit and work.
I tried some methods but it doesn't work.
Server crash with:
unknown char in client command (32) when fake player is connecting to server.
(doesnt have log) - this is log (unknown char in client command (32))
I understand, this is simple info, not verry informative to you, but i dont have words to say how to work this exploit. (i know he's is based on hlds_vcrash)
Look at this post -
http://forums.alliedmods.net/showthr...47#post1109447
(Yes, this is good plugin but it doesnt work again.
This is new exploit and this "key":
19e5f1e722f4ab6d0d41c82f89c65295) is used verry populary in this type of exploit, but in new exploit is changed.
He's key is got from everyone, i think that is the "steam key", i found some in google:
Code:
#include <amxmodx>
#include <orpheu>
public plugin_precache()
{
OrpheuRegisterHook(OrpheuGetFunction("SV_ConnectClient"),"OnSV_ConnectClient")
}
public OrpheuHookReturn:OnSV_ConnectClient()
{
static info[100],dummy[1]
read_argv(3,info,charsmax(info))
for(new i=0;i<8;i++)
strtok(info,dummy,0,info,charsmax(info),'\')
return equal(info,"19e5f1e722f4ab6d0d41c82f89c65295") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"f0ef8a36258af1bb64ed866538c9db76") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"d506d189cf551620a70277a3d2c55bb2") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"67790c589689e0c8bc9254418f74a7e8") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"2f7aca2b284b6bd8aedd261c6a5a6b49") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"a8da12f3f71d87a40ca6c35ee73ad1a5") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"61b9ce4070c5a3ec287995faa9e6dc49") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"821bd412a43cd778dd3448791a135275") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"520a87d91ba71f8dc9a905424b548a7d") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"861078331b85a424935805ca54f82891") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"fc919407beff66e210d03f3a72d456c0") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"dffa71977e9f0a0e6f0ea6d47e8a17bc") ? OrpheuSupercede : OrpheuIgnored
||
equal(info,"dacc732487fb2972a20f49b7070eed64") ? OrpheuSupercede : OrpheuIgnored
}
Yes, but it doesnt work. (author of exploit can always change the key)
Look at this (i found in pastebin)
Plugin:
Code:
#include <amxmodx>
#include <orpheu>
#include <orpheu_advanced>
#include <orpheu_memory>
public plugin_precache()
{
new address = OrpheuGetFunctionAddress(OrpheuGetFunction("Host_Error"))
OrpheuMemorySetAtAddress(address,"hostErrorBlock",1,0xC3)
}
function Host_Error:
Code:
{
"name" : "Host_Error",
"library" : "engine",
"arguments" :
[
{
"type" : "char *"
}
],
"identifiers" :
[
{
"os" : "windows",
"value" : [0x55,0x8B,0xEC,0x81,0xEC,0x00,0x04,0x00,0x00,0xA1,"*","*","*","*",0x85,0xC0,0x74,0x0D,0x68,"*","*","*","*",0xE8,"*","*","*","*",0x83,0xC4,0x04,0xC7]
},
{
"os" : "linux",
"value" : "Host_Error"
}
]
}
memory hostErrorBlock:
Code:
[
{
"name" : "hostErrorBlock",
"library" : "engine",
"type" : "byte",
"memoryType" : "code",
"identifiers" :
[
{
"os" : "windows",
"value" : 0
},
{
"os" : "linux",
"value" : 0
}
]
}
]
What do you think about that ?