[Release] Fix на новият Exploit Anti-Jo's V2

CaHuTaPa

Member
Joined
Jan 29, 2011
Messages
44
Reaction score
13
Windows
Начин на инсталация:

- Изключвате сървъра първо.
- Сваляте този файл и го замествате: Anti-Jo's V2 -> Fix

Файла се слага в главната директория на "HLDS" там кадето е и hlds.exe


Linux

За Linux е по просто, просто отворете терминала и направете следното нещо

Update 13.03.2012
Code:
iptables -I INPUT -p udp -m udp -m string --algo bm --hex-string "|b96c|" -j DROP

Ето това излиза в конзолата преди краша:
Code:
L 03/12/2012 - 15:46:53: "5QTHS0R78588W7X262MZ3N6C9S<6><STEAM_0:1:31098391><>" connected, address "89.215.89.99:2600"
SV_ReadClientMessage: unknown command char (197)
Dropped 5QTHS0R78588W7X262MZ3N6C9S from server
Reason:  Bad command character in client command

Лошото тук е, че крашъра вече има SteamID, което значи, че и Steam сървъри ще бъдат засегнати.

Типа на грешката която излиза в Linux логовете: -- Грешката е примерна

Code:
hlds_i686[14126]: segfault at b8d608de ip b777bca7 sp bf9d2f90 error 6 in libc-2.7.so[b7709000+138000]

Ако някой го интересува ето и целия префикс на крашъра:

15:48:42.997600 IP 89.215.89.99.3051 > 213.145.104.229.27016: UDP, length 1467
0x0000: 4500 05d7 f8b7 0000 7a11 50ad 59d7 5963
0x0010: d591 68e5 0beb 6988 05c3 e144 b96c 85ca
0x0020: cb7c 9891 9078 7f76 b301 13a1 a001 49b8
0x0030: ab73 4802 495a 5316 20fa 5270 bda2 329a
0x0040: 4a0f 7f70 90d5 cf03 f4f5 849f ab1c 9ac3
0x0050: 260b f785 6c6d c0a2 c151 d28b f9a3 7444
0x0060: 449b bf16 7328 d705 7696 f6c8 25f7 7c7a
0x0070: 1b4d 41db 741b 428f 8cc4 360b 9b0f 0794
0x0080: 7ada fbd5 3d23 147f cc14 9df5 c2df 112a
0x0090: c184 6a18 270b c963 87fa 1659 2b62 7b78
0x00a0: c4c7 ac81 1511 f6b9 8d64 0713 d843 b666
0x00b0: cd7a b061 5bb6 884b 09ba bb04 44f1 1547
0x00c0: 5aa1 01d2 962c 6462 a650 fc44 95ca 4512
0x00d0: bdd5 cf50 305a 0624 9330 86f0 01f3 fb66
0x00e0: 8ddc 0723 9d16 8538 5473 732b a75d 7757
0x00f0: b3b7 79b4 240b fda2 02ca 1b22 94c3 cb92
0x0100: dd01 44a5 20a4 b742 1af0 cc54 d21a 9885
0x0110: f17d b78d dc4f 4d5a 7d2a 5107 7581 44fa
0x0120: 533b 612b 720b 9ad8 82da 75ca 4f73 0d5b
0x0130: fa93 0224 23cf 5a38 2019 632f 4b00 8a91
0x0140: 168a 6960 107b 0585 94db 48bf 471b 7a81
0x0150: 7a0c c8f1 4499 9979 93c0 a15a 2688 d520
0x0160: 5582 7fbd c8a3 0f2b 72a0 39b8 7cfc ca40
0x0170: 73bd 0cc3 90f3 b562 caad cfb3 27b3 c231
0x0180: f4ca 1464 ac77 05a0 ad48 8c5d b236 4af4
0x0190: 4c11 a5ab db40 bfd7 ab56 a392 d352 2fd5
0x01a0: 9750 f318 0500 9989 cd0a bc9d 1f37 3d20
0x01b0: 5194 3df1 d04a f7b4 9fa0 6997 f577 f16f
0x01c0: 7952 f7b2 3b89 b135 df4f a6c8 f0a6 69c9
0x01d0: 6939 131d c803 b627 12c6 7185 694a 7036
0x01e0: 0a44 637d 30b4 6375 00d2 4934 c48c a6fa
0x01f0: 89d6 28c0 1899 f794 0536 7f74 7266 5717
0x0200: cacf a8ba 0364 1d7b b3d4 dfb9 90f6 4500
0x0210: f305 7529 62a6 69b0 6f55 48bd 86ab 4802
0x0220: b0dc 711d cdb3 4374 a27b fc44 7a47 969a
0x0230: 2023 8280 9fc2 7f76 9838 1b03 7d0c 5737
0x0240: d6bf ca8f 390c d608 b521 4307 9f32 4f92
0x0250: db12 bf5d fc2c ad06 2d0a 3515 18c1 d942
0x0260: aac9 d329 04d1 01fa 3cb1 d267 cfb2 5a2f
0x0270: 25f9 0c52 bab7 93c1 d1fa 5a0c a594 7dcc
0x0280: b0b3 115f 3323 114f 7c4b 003c bbf4 c77d
0x0290: 3301 54ad af29 6d8c c7cc 6324 bc14 c2f6
0x02a0: fc98 3bc3 2add 955f 3bf6 4555 8f49 4562
0x02b0: 9cd7 2d87 a12b 3f16 5966 892a f667 0bc2
0x02c0: 6978 207c 468c 85b5 6449 5012 a366 5ba1
0x02d0: 0d5f 0978 ddad 8fbb f5f3 0cb2 52c2 5309
0x02e0: 76c8 1f69 65b0 f834 3713 32c7 9936 d563
0x02f0: 768d b831 b7f2 27cd 8ba2 9214 1fd1 6226
0x0300: d560 9c08 993a 3bc0 1643 4050 34f5 1f07
0x0310: 3bab 62d0 c16f a905 2265 3089 9554 fa59
0x0320: 6a19 410f 2a37 d1d1 aa2f a487 9bf4 7a2d
0x0330: c579 50af 23fd 475a 02d3 d193 ac4d 00d5
0x0340: 3326 2833 83f1 fbf4 fd4f 0bb0 2bda 9f9d
0x0350: f0a6 2225 cc5d 86fa c758 2733 5505 0913
0x0360: abf9 55d3 8117 66d9 2f60 774c 74bf 8580
0x0370: 9b59 a912 4bf2 8433 4512 7351 bf07 54cc
0x0380: 674b 595d 4771 ada6 a273 afa9 4791 4c51
0x0390: 2bcc dd77 172f 3ddd 70c4 df77 5f21 d003
0x03a0: 5a17 f048 0c45 52a2 3dcd 18a2 c0f1 5584
0x03b0: f9ad 489c 46c0 c6ca c065 7325 d158 a008
0x03c0: 827d f389 3cbf 497a add8 74a7 5664 772f
0x03d0: d1bf 4819 f6c4 d557 b4f0 922f 4102 0c35
0x03e0: 6af2 a45d a681 9bb1 527f c36d 8cf4 7a29
0x03f0: d315 c09d 886b 16b6 3cd3 1d8a d2ab 7266
0x0400: 864c 8816 7a8d a6a7 8c93 7991 26ad 8f03
0x0410: 220a 062b 9110 67b0 2fb2 8dc3 1913 c199
0x0420: db49 4756 f1cf 1a89 048a f24b 5904 245c
0x0430: 582d 0527 3888 2b5c d483 5d68 814c 2b02
0x0440: 8537 dd16 74b0 acd1 b6bc f98f 649a f3fb
0x0450: 1140 9bfd 7cb6 aa9b 1961 cd3c 659f ab29
0x0460: d07a 6b71 f4d1 a771 d016 72f2 047b d309
0x0470: 5b66 8b7a ac09 df11 709b 8057 b986 0cb9
0x0480: 70db 66c8 6227 557b c569 d11b fdb4 14d5
0x0490: 8f0c ca91 adc8 a651 3df5 7c14 03d1 fdb3
0x04a0: 4b46 96d0 158b 581b 5d1a af1a 59b6 062d
0x04b0: 008f a5c7 39b0 4677 7b24 c012 1bb2 8389
0x04c0: 6af9 f780 8888 76dd 5493 8a10 8246 51bb
0x04d0: 9cd0 5967 8bfb 3474 f664 c823 c153 1674
0x04e0: 3d49 aad4 89a0 d6b1 f7bd 947f 182d 0fb6
0x04f0: 5615 d850 0580 3bd7 6023 395f 644c 115f
0x0500: 55fa 245c 2cd6 f7aa bb7d 1313 df8a 2b8c
0x0510: 5f79 aa82 5b01 4a69 dcf4 da12 6b51 6439
0x0520: a9f4 1c9d a822 4903 4817 7fc7 0dfd 2abf
0x0530: 4099 1853 673b 95f4 b7bf a8d9 8171 1536
0x0540: 536a 808f 86f2 a237 9712 85df d1fb c234
0x0550: c557 9230 54fc a295 8aad c199 b214 69fa
0x0560: b1d5 905c a6b4 5a37 c84c 68cd f770 fb16
0x0570: d0b8 18f4 9386 4bf2 1a10 2858 3097 fa0c
0x0580: 640c cf58 0a7f 9d18 6086 3f3c 26b6 c4b1
0x0590: d328 a493 ca70 528f 6a97 c762 72f9 7591
0x05a0: 55bb c834 da4a 1fa4 1345 8028 9521 b0b7
0x05b0: 3713 ad72 f173 2666 d42b 0675 202d 0fcf
0x05c0: 8b53 a6d8 c071 9284 bfa1 29b4 9d64 730f
0x05d0: b95b 940b 148f 73

iptables -I INPUT -p udp -m udp -m string --algo bm --hex-string "|d500 0080 6e00 0000 e17d 73d6 bc65 62f1 ed29 e017 c74a 30a2 fb75 2396 b635 32b1 bf79 b017|" -j DROP

Защитата прави така, че блокира главното действие на Fake Flood Players, като флууда вкарва между 20-25 играча (които не вредят на сървъра), след което dporoto му блокира трафика.
 
Има нов ъпдейт, сложи го и тук
 
Мисля че съм го направил в 1-вия пост
 
Hi! Its really great, but windows dll is not working anymore I think...I've putted it in my server and I can shutdown it very easily. Do you have andy idea?

Thanksss!
 
Здравейте, можели малко информация за тази версия?