Rox Anticheat (Previously 1fx AC)

Just an FYI.
Edit,
Attached second ss.


Screenshot 2024-11-07 233953.png
 

Attachments

  • Screenshot 2024-11-07 234500.png
    Screenshot 2024-11-07 234500.png
    251.9 KB · Views: 12
Last edited:
Nice try.
What’s this supposed to be, a one up? You do know how an effective anticheat works right? There’s a reason why some antivirus flag it as malware.

Trust me I’ve seen the source of the original 1fx ac which it is based on, not a single strand of anything bogus on it. Also, the game is not run with admin rights so you won’t end up into issues.

I thought you spoke about programming something for maps while you don’t understand anything about how programs work? clown…

And to answer why - it’s mostly the packer and protection parts which ‘obfuscate’ reverse engineer-ability of certain functions. That’s how viruses act, not to get detected -> they start obfuscating parts which get them detected.

so yet again, what’s your picture supposed to be? You not understanding nor knowing shit?

VirusTotal

VirusTotal
www.virustotal.com
14 AV's out of 72 state it's something like a virus.
Some state grayware, some state that it's heuristically a trojan, some unsafe, some state "behaviour".

Reality? An anticheat will always act kind of like a virus because it snoops the files you're using during gameplay. And it is packed in a way that it wouldn't be easy to reverse engineer it. And because we are not a large company to have our own signed dll’s and trust chain to state that it is actually clean, it’ll be flagged like that.


So to prevent that, they have to interact with the system at a very low level, which is exactly the level where keyloggers/mouseloggers should be. That means that the heuristics of an anti-malware have to flag them as suspect.

Go and educate yourself retard


And also - in the end for it to have an impact, you’d have to run sof as an administrator, which you don’t do with ac, therefore ac is effectively in a sandbox, has some rights yes but only limited.


And to see what truly happens, there’s a tool called procmon- if you want to actually come here and say LOOK and not look like an ass, do it correctly.

 
Saved you the hassle because you're probably too much of an idiot to use it.

Attached dump of all of the disk IO activity sof produces with AC (incl. AC server messaging).

Used filters:
1731073807481.png

So only include sof2mp activity (the sandbox where the DLL runs)

1731073834479.png

Exclude activity in sof2actest folder (my sof2 folder with AC)
Exclude registry activities in LM, CU and CR as you won't achieve much with registry anyhow, nothing you do with it.
Exclude C:\Windows and System32/SyuWOW64 (excluded by Windows actually but I added windows as a filter later on).
Windows path exclusions reasons:
* The game often communicates with DLLs and drivers as it has to, will make logs too huge.
* The game cannot write to Windows folder due to missing admin rights which is explicitly needed for windows write access.

Only thing which can stand out for your moronic brain is this row:

15:47:21,5970203 sof2mp.exe 39772 QueryInformationVolume C:\ SUCCESS VolumeCreationTime: 28.12.2023 17:41:58, VolumeSerialNumber: 2A64-87CF, SupportsObjects: True, VolumeLabel: System
This is how AC users get their GUID IIRC. Based on volume SN

So do tell me what happens then? Or are you just an ass who doesn't understand how shit works?
 

Attachments

  • Logfile.txt
    30.4 KB · Views: 13
Saved you the hassle because you're probably too much of an idiot to use it.

Attached dump of all of the disk IO activity sof produces with AC (incl. AC server messaging).

Used filters:
View attachment 6887
So only include sof2mp activity (the sandbox where the DLL runs)

View attachment 6888
Exclude activity in sof2actest folder (my sof2 folder with AC)
Exclude registry activities in LM, CU and CR as you won't achieve much with registry anyhow, nothing you do with it.
Exclude C:\Windows and System32/SyuWOW64 (excluded by Windows actually but I added windows as a filter later on).
Windows path exclusions reasons:
* The game often communicates with DLLs and drivers as it has to, will make logs too huge.
* The game cannot write to Windows folder due to missing admin rights which is explicitly needed for windows write access.

Only thing which can stand out for your moronic brain is this row:

15:47:21,5970203 sof2mp.exe 39772 QueryInformationVolume C:\ SUCCESS VolumeCreationTime: 28.12.2023 17:41:58, VolumeSerialNumber: 2A64-87CF, SupportsObjects: True, VolumeLabel: System
This is how AC users get their GUID IIRC. Based on volume SN

So do tell me what happens then? Or are you just an ass who doesn't understand how shit works?
I dunno why but somehow this post reminded me of skankhunt42.
You setting up the vibe with the light, a nice song and pouring in some red wine to begin the roast.

 
I dunno why but somehow this post reminded me of skankhunt42.
You setting up the vibe with the light, a nice song and pouring in some red wine to begin the roast.

Bro just cooked him well done
 
What’s this supposed to be, a one up? You do know how an effective anticheat works right? There’s a reason why some antivirus flag it as malware.

Trust me I’ve seen the source of the original 1fx ac which it is based on, not a single strand of anything bogus on it. Also, the game is not run with admin rights so you won’t end up into issues.

I thought you spoke about programming something for maps while you don’t understand anything about how programs work? clown…

And to answer why - it’s mostly the packer and protection parts which ‘obfuscate’ reverse engineer-ability of certain functions. That’s how viruses act, not to get detected -> they start obfuscating parts which get them detected.

so yet again, what’s your picture supposed to be? You not understanding nor knowing shit?

VirusTotal

VirusTotal
www.virustotal.com
14 AV's out of 72 state it's something like a virus.
Some state grayware, some state that it's heuristically a trojan, some unsafe, some state "behaviour".

Reality? An anticheat will always act kind of like a virus because it snoops the files you're using during gameplay. And it is packed in a way that it wouldn't be easy to reverse engineer it. And because we are not a large company to have our own signed dll’s and trust chain to state that it is actually clean, it’ll be flagged like that.




Go and educate yourself retard


And also - in the end for it to have an impact, you’d have to run sof as an administrator, which you don’t do with ac, therefore ac is effectively in a sandbox, has some rights yes but only limited.


And to see what truly happens, there’s a tool called procmon- if you want to actually come here and say LOOK and not look like an ass, do it correctly.

What a kanker boss you are man, hats off.
 
What’s this supposed to be, a one up? You do know how an effective anticheat works right? There’s a reason why some antivirus flag it as malware.

Trust me I’ve seen the source of the original 1fx ac which it is based on, not a single strand of anything bogus on it. Also, the game is not run with admin rights so you won’t end up into issues.

I thought you spoke about programming something for maps while you don’t understand anything about how programs work? clown…

And to answer why - it’s mostly the packer and protection parts which ‘obfuscate’ reverse engineer-ability of certain functions. That’s how viruses act, not to get detected -> they start obfuscating parts which get them detected.

so yet again, what’s your picture supposed to be? You not understanding nor knowing shit?

VirusTotal

VirusTotal
www.virustotal.com
14 AV's out of 72 state it's something like a virus.
Some state grayware, some state that it's heuristically a trojan, some unsafe, some state "behaviour".

Reality? An anticheat will always act kind of like a virus because it snoops the files you're using during gameplay. And it is packed in a way that it wouldn't be easy to reverse engineer it. And because we are not a large company to have our own signed dll’s and trust chain to state that it is actually clean, it’ll be flagged like that.




Go and educate yourself retard


And also - in the end for it to have an impact, you’d have to run sof as an administrator, which you don’t do with ac, therefore ac is effectively in a sandbox, has some rights yes but only limited.


And to see what truly happens, there’s a tool called procmon- if you want to actually come here and say LOOK and not look like an ass, do it correctly.


Saved you the hassle because you're probably too much of an idiot to use it.

Attached dump of all of the disk IO activity sof produces with AC (incl. AC server messaging).

Used filters:
View attachment 6887
So only include sof2mp activity (the sandbox where the DLL runs)

View attachment 6888
Exclude activity in sof2actest folder (my sof2 folder with AC)
Exclude registry activities in LM, CU and CR as you won't achieve much with registry anyhow, nothing you do with it.
Exclude C:\Windows and System32/SyuWOW64 (excluded by Windows actually but I added windows as a filter later on).
Windows path exclusions reasons:
* The game often communicates with DLLs and drivers as it has to, will make logs too huge.
* The game cannot write to Windows folder due to missing admin rights which is explicitly needed for windows write access.

Only thing which can stand out for your moronic brain is this row:

15:47:21,5970203 sof2mp.exe 39772 QueryInformationVolume C:\ SUCCESS VolumeCreationTime: 28.12.2023 17:41:58, VolumeSerialNumber: 2A64-87CF, SupportsObjects: True, VolumeLabel: System
This is how AC users get their GUID IIRC. Based on volume SN

So do tell me what happens then? Or are you just an ass who doesn't understand how shit works?

fitting all he could do was react :gigashit: to it lmao what a joke



A bit defensive Jenny?

Are you okay?


Maybe next time give people a heads up about virus protection.,
Its okay for the lads who pray to ally but, people with brains who code, might wanna be a heads up.

Didn't mean to offend you mate.

Respect,
 
Last edited:
A bit defensive Jenny?
Nope just calling out what a retard you are. And I just hate stupidity
Nice try.

people with brains who code
That ain’t you tho lmao dumbass
Also people know that anticheats often get flagged, just because you’re dumb doesn’t mean the ‘people praying to ally’ are as dumb as you.

We’ve even had the same point come up 3 years ago with sof2guard.



In the end if you want to ‘nice try’ someone, get some facts dikzak
 
@Darky You're missing something here, i ain't that stupid to make some "malware" that will be flagged by a antivirus/firewall, i would accomplish nothing with that, proper malwares are sophisticated and the developers make sure that no antivirus will detect them.

If what you are saying is true and you are a coder, why don't you run the anticheat in a sandbox mode? and do some background checking yourself? That's what i would do before i would start to spit out random accusations. What you're doing now is, just scaring away people that have zero knowledge about computers from using the anticheat.

If you made such accusations in the real business world it would be considered defamation, which would be grounds for a lawsuit. Just sayin

You're not even an active player/3d member, so either use it or you don't but if you get caught wallhacking you will just be banned,

You don't care? Neither do we.
 
A bit defensive Jenny?

Are you okay?


Maybe next time give people a heads up about virus protection.,
Its okay for the lads who pray to ally but, people with brains who code, might wanna be a heads up.

Didn't mean to offend you mate.

Respect,
You aint coding shit
 
Back
Top