modded russian version, the game starts and runs. with random CTD and disconnects. do you guys have the same results with english version?
some advanced bot would be great, but I'll be satisfied with auto-<tab>-and-<f>-press (then place our char near respawn of a single mob), that works with HS OFF, and doesn't with HS ON.
for those interested, for tabbing (selecting next enemy), I use this code
//for key down
INPUT inp[1];
memset(inp,0,sizeof(INPUT));
inp[0].type = INPUT_KEYBOARD;
inp[0].ki.wScan = 0x040F;
inp[0].ki.wVk = VK_TAB;
SendInput(1, inp, sizeof(INPUT));
it's set on WM_TIMER, so every now and then we check for our next enemy to fight with.
to press other keys, check for scancodes DirectInput needs (DIKEYBOARD_F, for example. but use 2 first bytes, so for autopressing F, use 0x0421, and not 0x81000421). luck.
modded russian version, the game starts and runs. with random CTD and disconnects. do you guys have the same results with english version?
some advanced bot would be great, but I'll be satisfied with auto-<tab>-and-<f>-press (then place our char near respawn of a single mob), that works with HS OFF, and doesn't with HS ON.
for those interested, for tabbing (selecting next enemy), I use this code
//for key down
INPUT inp[1];
memset(inp,0,sizeof(INPUT));
inp[0].type = INPUT_KEYBOARD;
inp[0].ki.wScan = 0x040F;
inp[0].ki.wVk = VK_TAB;
SendInput(1, inp, sizeof(INPUT));
it's set on WM_TIMER, so every now and then we check for our next enemy to fight with.
to press other keys, check for scancodes DirectInput needs (DIKEYBOARD_F, for example. but use 2 first bytes, so for autopressing F, use 0x0421, and not 0x81000421). luck.
Requiem.rar:
Upload of file failed.
pm your email pls, i'll send it to you right away.
i've more to add, actually. there're plenty of checks in other places (at least 2 more i've found, and a thorough look through code gave a feeling that there are more), except those mentioned above. what's more, i've read that hackshield uses various crc verifications, even sends some data to server. if true, bypassing HS by jmp'ing over some checks isn't a solution. found even some sources emulating HS (need to replace HS with compiled dlls). then, did some research myself. found some hooks on Native APIs, in SSDT and Shadow System Service Table (NtUserSendInput, NtOpenProcess, NtWriteVirtualMemory etc). disabling hooks helps for some time, but looks like there are constant checks, so if done - HS detects it and disconnect occurs. found a solution to alike problem with game guard.
more research is needed. looks like in the end i'll have to write a driver to bypass ******* hooks.
the question for me right now is "is it possible to call NtUserSendInput bypassing a Hook from ring3". but to solve it - i can't find, which library exports this function? it must be win32k.sys, but it isn't there according to exports table (at least dumpbin.exe says so, dependecies walker says so, and LoadProcAddress() thinks so)!
[edited post]
modded russian version, the game starts and runs. with random CTD and disconnects. do you guys have the same results with english version?
I have same results with russian server, with original exe and with fixed exe, using same offests as for english version.
I reckon that problem is with russian server itself not with those
offest, offsets do work fine with russian exe.
another problem that server has problem with connection ,ans as u can see a lot of ppl on their unofficial game forum have the same problems -unable to connect to the server and every 5 secs DC.
i doubt that it's tech problems, more likely it's HS in work. original exe works fine, very rare CTDs and DCs. hacked exe crashes and disconnects in a few minutes.
of coz u can doubt ,
but myself i have same problems connecting and playing russian server with original exe and with fixed exe.
russian sever is just sucking all the way ,ive tried playing there, i have 26 lvl SH
and i cant play ther even with orig exe same **** happens DC - unable to connect etc
ill repeat myself its just a server, offsets working pretty nice,
[Release]Hackshield Bypass 02/28/2013 - Metin2 Hacks, Bots, Cheats, Exploits & Macros - 24 Replies so ehm, hier gibts nen release zum Hackshield Bypass (nur für dll's)!
wundert euch nich über den namen (Mod Manager), das soll später ein tool zum client modding werden ;)
dazu gibts mehr infos wenns soweit is!
have fun ;)
edit: hab ne kleinigkeit vergessen ;)
how to use:
[RELEASE]Hackshield Bypass 04/20/2011 - Coding Releases - 3 Replies hi leutzZ also ich habe hier mal so ein trick ich weis aber nich ob es funzt is only vista(ich hab leider kein vista und kann es nicht testen)
also geht in die Hs Folder in s4 league und löscht Hshield.dat und hsupdater dingsbums (macht aber vorher eine sicherheitskopie nicht das es nicht funzt)
wenn es klappt oder nicht bitte posten *ich wünsche euch mal das es klappt*
[Release] D3D Bypass (Hackshield) 05/20/2010 - WarRock Hacks, Bots, Cheats & Exploits - 20 Replies Ok, Since i whas vip coder for warrock and I quit I will release this,
*NOTE* If I have around 100 views and 10-20 thanks, I CLOSE THIS TRHEAD
Just bool it, (DONT MAKE A ON-OFF FUNCTION THAT WILL LAGG WARROCK)
if (Hack_Detected) // Hack detected
{
const BYTE Bypass = {0xE8, 0xFD, 0xC2, 0x3C, 0x00};
{
*Release Hackshield Bypass* 08/10/2009 - Dragonica Hacks, Bots, Cheats & Exploits - 13 Replies First off I take no credits in this, I did not make it, but I really can't remember where I got this, it has been on my desktop for a while now, So if anybody knows who to give credits to I will be more than willing to Give those credits =)
Instructions:
Open dragonica to patcher.........then open any injector, I recommend an auto injector, and inject bypass into DRAGONICA.EXE exactly like that with all capitals...............done
I was able to open CE 5.5 and scan that's all ive...
[Release]Loader/HackShield bypass 05/28/2009 - General Gaming Discussion - 48 Replies Put this in your Requiem\System folder and execute, it will load the game straight up bypassing the launcher and hackshield
Have fun
*M*
![[Release]: Hackshield bypass.](https://www.elitepvpers.com/forum/iconimages/general-gaming-releases/release-hackshield-bypass_ltr.gif){kind=small}
?
for scancodes DirectInput needs (DIKEYBOARD_F, for example. but use 2 first bytes, so for autopressing F, use 0x0421, and not 0x81000421). luck.
