Register for your free account! | Forgot your password?

Go Back   elitepvpers > Popular Games > Metin2
Some help at ASM & HackShield remove Some help at ASM & HackShield remove
You last visited: Today at 00:02

  • Please register to post and access all features, it's quick, easy and FREE!

Advertisement


Advertise with us!

Some help at ASM & HackShield remove

Discussion on Some help at ASM & HackShield remove within the Metin2 forum part of the Popular Games category.

Reply
 
Old   #1
 
sheik_gray's Avatar
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Dec 2008
Posts: 367
Received Thanks: 124
Lightbulb Some help at ASM & HackShield remove

hi im trygin to remove HS from somegame... but i post here because the section of this game is almost dead... i just need some hint with this code just to start... i just know this part load th driver and then when i patch this part i need to patch the part who check if is loaded or not and do a conditional jump but the example i have study is more simple, because i think is a old version of Hackhield... i know this section is for metin but i think this can help more ppl to learn something about how works the HS

Thanks

Code:
unpacked:007DC7BD                 push    offset aHshieldEhsvc_d ; "\\HShield\\EhSvc.dll"
unpacked:007DC7C2                 rep stosd
unpacked:007DC7C4                 mov     edi, offset unk_174C054
unpacked:007DC7C9                 or      ecx, 0FFFFFFFFh
unpacked:007DC7CC                 repne scasb
unpacked:007DC7CE                 not     ecx
unpacked:007DC7D0                 sub     edi, ecx
unpacked:007DC7D2                 mov     eax, ecx
unpacked:007DC7D4                 mov     esi, edi
unpacked:007DC7D6                 mov     edi, edx
unpacked:007DC7D8                 shr     ecx, 2
unpacked:007DC7DB                 rep movsd
unpacked:007DC7DD                 mov     ecx, eax
unpacked:007DC7DF                 and     ecx, 3
unpacked:007DC7E2                 rep movsb
unpacked:007DC7E4                 lea     ecx, [esp+214h+var_104]
unpacked:007DC7EB                 push    ecx
unpacked:007DC7EC                 call    ds:dword_87B170
unpacked:007DC7F2                 push    4
unpacked:007DC7F4                 push    2883DBEh
unpacked:007DC7F9                 push    offset aE6e29374943cf6 ; "E6E29374943CF660DBEC8E62"
unpacked:007DC7FE                 push    17B1h
unpacked:007DC803                 lea     edx, [esp+220h+var_104]
unpacked:007DC80A                 push    offset sub_7DCC10
unpacked:007DC80F                 push    edx
unpacked:007DC810                 call    sub_859C92
unpacked:007DC815                 push    offset unk_8CC4A0
unpacked:007DC81A                 mov     esi, eax
unpacked:007DC81C                 call    sub_7ACAA0
unpacked:007DC821                 add     esp, 4
unpacked:007DC824                 test    esi, esi
unpacked:007DC826                 jz      loc_7DC93B
unpacked:007DC82C                 cmp     esi, 103h
unpacked:007DC832                 jg      short loc_7DC8A2
unpacked:007DC834                 jz      short loc_7DC891
unpacked:007DC836                 cmp     esi, 100h
unpacked:007DC83C                 jg      short loc_7DC882
unpacked:007DC83E                 jz      short loc_7DC86E
unpacked:007DC840                 mov     eax, esi
unpacked:007DC842                 sub     eax, 2
unpacked:007DC845                 jz      short loc_7DC85A
unpacked:007DC847                 sub     eax, 2
unpacked:007DC84A                 jnz     loc_7DC8E9
unpacked:007DC850                 push    offset unk_8CC478
unpacked:007DC855                 jmp     loc_7DC909
sheik_gray is offline  
Old 07/11/2012, 08:51   #2
 
Mi4uric3's Avatar
 
elite*gold: 405
The Black Market: 0/0/0
Join Date: Dec 2007
Posts: 6,615
Received Thanks: 6,358
Does this Version of Hackshield support Heartbeats (Pings from Server)?
If yes, you can't just remove the Hackshield.
If no, then you just need to delete the EhSvc.dll in the hshield\-Folder.
Start your game, and then some Error-Messages will appear. That are the only things you need to patch. Since it are MessageBoxes, they are easy to find
Mi4uric3 is offline  
Reply

« Helpp me | Probleme mit einem acc »

Similar Threads Similar Threads
Remove HackShield from Dragonica v1.3.5
07/02/2010 - Dragonica - 14 Replies
Using tools : Olly :) Dragonica Client v1.3.5 1) Run Olly 2) Open DRAGONICA.EXE 3) Right click -> Search for -> All referenced text strings http://img94.imageshack.us/img94/3153/img1f.png
How to Remove HackShield Patch
10/20/2009 - WarRock Hacks, Bots, Cheats & Exploits - 4 Replies
Intro: Some of the members here get hack detected and don't know why.. The our hacks are UNDETECTED and the problem is that our hacks don't work with the patch cause that patch patch it's used from the n00b that don't know how to bypass the hackshield for use old pointer: Follow This guide and you will remove the annoying patch. TUT: 1Go where do you have installed warrock then data and delete the folder called hackshield. 2Download this file: Here 3Put it in warrock/data/



All times are GMT +1. The time now is 00:03.

elitepvpers - play less, get more - Top

Powered by vBulletin®
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Support | Contact Us | FAQ | Advertising | Privacy Policy | Terms of Service | Abuse
Copyright ©2025 elitepvpers All Rights Reserved.