We may not be able to hack BFV anymore. I have tried the following with no success.

1) Jumping from the ORIGINAL CODE to a code cave, hacking there and jumping back to the game later in the code. All code skipped was recreated in the code cave. = kick GAMEHACK

2) Jumping from the ORIGINAL CODE to the code cave, recreating all ORIGINAL CODE inside the code cave, WITHOUT hacking anything and jumping back to the ORIGINAL CODE. = kick GAMEHACK

3) Short Jumping from the ORIGINAL CODE to an inert area of code near the area I want to hack. Double jumping from there to the Code Cave, doing the hack inside the cave, recreating skipped code and jumping back out. =kick GAMEHACK

4) Nopping = kick GAMEHACK

5) Jumping out WAY BEFORE the breakpoint address, to code cave, recreating all code + hacked code and jumping out, = did not work, as the jump out was skipped on the memory read.

I am out of ideas, and after spending 30+ hours coding over the last 2 days.. I think it maybe safe to say BFV will be without hacks for awhile.

My overall findings have provided the following:

a) PunkBuster seems to be knowledgeable of common code cave address ranges. Possible they took all the addresses from Tsongkie's Code Cave tool.

If that is indeed the case, then any jumps out from the BFV original code that is pointing to those address ranges would be considered GAMEHACK. I sort of proved this by making a simple Jump OUT, recreated original code inside a code cave... one of the addresses provided by Tsongies. Then jumped back to the original code. I was kicked for GAMEHACK. Even though I had no real hack going. There was nothing at all enabled as far as the hacks go. Just a reroute of the original code.

So giving punkbuster the most credit possible, lets say they have now enabled thier software to be knowledgable of common code cave hex addresses. If the PB scan detects a jump to one of these offsets then it kicks you.

If PB is even more evolved than I think, then it could be actually READing the original code, and comparing it against a template of what the code is supposed to be. If ANY change at all is noted, then it is considered a GAMEHACK.

I have tried to recode with hacks in various areas of the game, I get a different GAMEHACK # for each one... that makes me think punkbuster KNOWS where it is, on the scan.. and that punkbuster KNOWS what is supposed to be there. If it reads the area for nametags and detects any deviation from the orginal code, then it kicks for GAMEHACK #80209, nametags hack.

I have gotten maybe 4-5 different numbers, so punkbuster has a good idea of where it is looking and what it is looking for at each area.

I am really tired at the moment, so I will be taking a day or two off to relax and let others gather data. Maybe we can still overcome this. But if this was the last days of hacking, then maybe BFV will be worth playing again.. based on SKILL.

There are ways of getting past that are a bit different then just changing a codecave. I know because my private hack was/is not detected by these batches of detections. Ohh and PB dont use no tools like Tsongkie's Code Cave tool. In fact if you know what your doing you can do stuff like that straight from inside OllyDbg.

At any cost there is already a thread for bf1942 that this all will be discussed in. http://www.mpcforum.com/showthread.php?t=53409

I see that EB finally took our advice and made a decent detection system eh spont and test0r...

Funny how so many "Leet" players are now just average without their hacks. I actually have been playing without my own trainer (which is still undetected) and having a lot of fun on a mostly level playing field. :smoke:

sigh, wish i read this post b4 i wasted my time creating codecaves myself.
well im lost again in finding another way around.

oh could someone pm me another way around?
just give me a general idea, i'll work the rest outmyself

goggles99, you guessed right. I think they finally went to the system that test0r and I said they should use a long time ago, LOL. Well my private trainer is still undetected and I still got a couple other ways around PB yet(still only editting the games memory, nothing more).


lingering, its too earlier to tell exactly what methods are going to work and I know most of us are going to keep atleast 1 method for ourselves(meaning we wont tell anyone) so I think for right now all you can do is try things out. I know sometime during the week I will post atleast 1 method that works but I want to do more testing myself to make sure everything is good to go.

fair enough

I reprogramed my code and seems to work, so far: MAP, TAG, 3DMAP, FOG and VIEWDIST.
I am using a method described by Lingering and Xanupox so I dont know why theirs dont work, hmm. Unless I am doing it somewhat diffrently?.

Tried this on 4 different servers so far, 15 min each and no kick.

Cox I have a feeling I know what your doing different, see PM.

K guys, I had a little test done on the LATEST SERVER VERSION!!!
PunkBuster Server v1.102 - Client v1.107 A1334 .
Thanks for that Xanupox.

I got kicked within 10 min so no good, Sorry guys have to rethink this.
Spont I need to talk to ya ;)

And If U guys got a private hack that still seems to work, try it on your own server and update it before to the latest version IMPORTANT!!!.

I say this couse as I said before, it looked like I had it but after talking to Xanupox, and uptating to the latest version (BFV SERVER 1.1 and the latest SERVER uptate from PB) I got kicked, so I must have been testing my hack online on older server versions before when it seemed to work.

My Hack is still undetected!

Only the console hack + viewdistance "block" was detected (gamehack 80206) but I fixed it and now everything is 100% pb proof. :fkr:

yea, im still tring to figure a way around pb

Might wanna read where I said this was all being discussed at the beginning of the thread. Way around PB was already posted.

so by using "VirtualAllocEx" and also other modules other than vietnam.exe is a workaround?

i'll have to do some research on that

Them are other work arounds yes, there are still a couple normal work arounds like I posted.

I wonder if Goggles could make a tut for VirtualAllocEx, as what I found so far is way above what I can understand. Maybe if I took some prog classes, but who has time lol.

yea cox that would be nice as I too been tryying to read up on the VirtualAllocEx and man looks harder then I thought it would be.

memory allocation is a tricky subject :/