BY-PASS hackshield RF novus rising summary

jhejay01 · 08/27/2009, 11:00

turning off the kernel is way to sophisticated. as well us building up a HS that wont inject the DLL of RF.

bypassing new RFPH is very easy just do some experiment inside the
hackshield folder and thats it! nasa en-ph ^^

1st, method sa BIN. edit nyo. hanapin nyo yung "Declaration na" "Game Hack Ditected"
2nd, wag nlng kayu mag tanong kung pano. C++ gamitin nyo.
"UPX" ang pag pack nila sa RF exe. nandun lahat kailangan nyo. enjoy.

as you notice inside the hackshield folder may mga
nadagdag na files just do something to this new 3 folder...
and xmpre sa files na psapi.dll and EHsvc.dll.. i know u knew it...

what i did is to make a dummy files or to fool the game that it really uses the real hackshield.

Let's start with the files that come along with hackshield, these are:

- EhSvc.dll
the main Hackshield file, contains the HackShield class used by Engine.dll,
does the basic functions like loading/unloading its kernel mode driver, file integrity scanning,
memory integrity scanning. the checksum generated by the
integrity scans are used to authenticate with the game-server

- v3warpns.v3d and v3warpds.v3d
contain each a kernel mode driver (.sys file) in encrypted from, one v3d contains a
win9x driver the other a winNT driver.
once the driver has been loaded it will protect the ro process from being accessed
(read/write) by every non-kernel mode programm
(example: taskmanager)

- v3pro32s.dll
i didn't look at it yet, but i suspect it to be the loader for the .sys driver files (.v3d files)
maybe not written by Hackshield creators

- EGRNAP.dll and EGRNAPX2.dll
ahhnlab "anti-virus" scanning libs, probably used to scann for programms like packet sniffers,
memory editors etc

- Hshield.log
produced by EhSvc.dll, its encrypted with an evolving XOR key, i've reversed that algo,
its included in my hackshield emu source & there's a ready to use decryption tool in SagaTools,
however it doesn't contain much useful info
(basically logs detections/checksum errors for gravity/hackshield to investigate)

- psapi.dll
a proccess helper library by Microsoft, nothing special

clue :
1. bypass HS.
2.edit rf bin. (EHSvc.dll related)
3.edit rf.exe using XVI32 [launcher] (edit it so the patcher wont patch your edited HS folder)

Check nio ha sa en-ph folder ng rf eh may mga hidden files which is a process status helper.
Hindi katulad dati na 3 lang ang DLL, ngaun more than 10 na. CCR put it there for a reason.
Hindi lang psapi.dll ang tumatakbo ngaun madami pa.
Ung iba naddc kahit ma bypass pa nila kasi ngaun may server side checks na ginagawa ang server ng LU
per client na nakakonek sa kanila so if 1 of the DLL's doesn't respond, disconnected kayo.

ALL THOSE THINGS WAS IDEAS COMBINED IM THIS FORUM....
PAG USAPAN NATIN PARA MAGAWA NA

k9crow203310 · 08/27/2009, 16:03

actually, may na discover ako ngayon na very efficient way ng pag bypass ng RF, natawa ako bigla kasi pinaghirapan ko pa yung bypass ko samantalang ganyan lang pala ka dali ^^

research lang mga tol.. makaka jakcpot din kayo tulad ko

Clue: the program i discovered ngayon lang for bypass is not for hacking, it is a famous and a Legal comercial program. mahal lang pag buy ninyo, pero dami naman torrents jan na may crack.

ownmhe23 · 08/27/2009, 17:01

@k9 nakita ko na ung sinasabi mo kaya lang nakita ko my bayad T__T kaya bypass nalng
follow ko nalng ung hint na binigay them boom..!
sSsHh.. na lang tau ^__^

magmet · 08/27/2009, 18:14

can anyone transate it?

shemgwapo · 08/27/2009, 18:31

Quote:

Originally Posted by magmet

can anyone transate it?

they're boasting that they discovered how to bypass hackshield and they're giving hints/clues which will lead to more hints/clues and this thread will become a begging thread where people will ask them to teach them and etc.

in tagalog:

nagpapansin lang.

joynad01 · 08/27/2009, 19:54

Kuya meron ako mga tools para sa pag edit nyan. ang problema ko lng d ko alam kung ano ei edit ko. tulad sa Rf.exe d ko alam ano edit ko.. try ko edit di na gumana ang RF ^^//\\.. tapos sa bin/ d ko gets what you mean 13 pa kasi ako kuya ^^ pero gust ko matoto nang editing and programming ^^

jhejay01 · 08/28/2009, 15:08

bagong program?
i think c++ editor
^^
pero mas madli ata ung sa hackshield nlng
kasi un alam na natin dba??
hahaha

jhejay01 · 08/29/2009, 06:38

waaaaaaaaaaa
50 na ako weeeeeeeeeeeeeeeeee

joynad01 · 08/29/2009, 06:50

Pa help namn po. KAhit liit lng na info po.... plzz.

timekana · 08/29/2009, 20:11

Quote:

Originally Posted by shemgwapo

they're boasting that they discovered how to bypass hackshield and they're giving hints/clues which will lead to more hints/clues and this thread will become a begging thread where people will ask them to teach them and etc.

in tagalog:

nagpapansin lang.

sad but true

mosko_witz21 · 09/18/2009, 01:59

grabe naman may pa hide hide pa ^^.

sana naman share nyu blessings nyu sa iba......... it worth it^^,

jamesbomb · 09/19/2009, 10:57

e2 sobang dali lng mag bypss ng GG mag MLE kau no nid to bypass

senti619 · 09/25/2009, 07:34

wak nlng kau mg post kng d kau mgatututo kakainis!!

senti619 · 09/25/2009, 07:35

kakainis mgpopost ayaw nmn kmi 2ruan ..... wak nlng mg post !!!

~~friday13th~~ · 09/26/2009, 10:25

better to try it on your own..rather than leeching it from others.. from testing you can have more ideas, and with this ideas that you have you can now simply figure it out by yourself.