V3.3.5->EasyHook dll injection will be banned instantly!

[zys924]

As soon as the V3.3.5 client has been updated, i started my private .NET BOT programme. Just as a single injection operation is executed with the EasyHook Lib, my account get banned!@@!
All that i've done is to start a .NET thread and hook the EndScene which leads to the BAN.
So far as the bad fortune, the DLL injection is very risky. Anticipating any way out!

[Chinchy]

I'm currently injecting a dll and hooking EndScene with EasyHook and have yet to run into a ban. Been doing so since 3.3.5 was released in the US.

[caytchen]

Or you ****ed up. There are a shitload of programmes that inject dlls (and hook EndScene and other D3D related functions). From Xfire, Fraps to your favourite dual monitor program, not even considering all the malicious software. They won't ever instant-ban on that.

[zys924]

Perhaps there's a "white list" of injection? Other than those in the list, every plain dll injection will get banned.

Somehow we should find some way to conceal the dll module? even the thread created?

Whatever, the Warden 2 has done something against the in-process BOT. (the out-process seems remaining undetected)

[DrakeFish]

Perhaps there's a "white list" of injection? Other than those in the list, every plain dll injection will get banned.

Somehow we should find some way to conceal the dll module? even the thread created?

Whatever, the Warden 2 has done something against the in-process BOT. (the out-process seems remaining undetected)

I'd say there's a blacklist of structure/functions instead... Because if a new legit video recording program using EndScene hook went out without Blizzard to know about it would be banning lot of people.... Just my opinion.

[caytchen]

I'd say there's a blacklist of structure/functions instead...

Which is no difference to the 'old' Warden.

[Robske]

In truth, I do not understand what the big Warden 2.0 fuss is about.

[noctural]

In truth, I do not understand what the big Warden 2.0 fuss is about.

I think it's because no one has really said much about how warden 2.0 works...so it's just fear of the unknown.

[TOM_RUS]

Personally I don't see anything new in Warden at all after 3.3.5 on EU servers. May be they still running old warden in europe? The only difference is that they no more checking for mpq file modifications/known lua strings/speedhacks...

[~Jagris]

Call up blizz and see what you can do about it, lie. Then test your injections on trial accounts, and see if that yields the same result. I think it's strange that they banned you for that. The only thing I can think of is because of easyhook. But that is sooooooo unlikely.

[Apoc]

The only "big" difference in Warden 2.0, is the stolen SC2 anti-debugger stuff, and some other protections for the RealID stuff. Nothing entirely special. It's the same old Warden, with a few 'extra' things.

[Robske]

The only "big" difference in Warden 2.0, is the stolen SC2 anti-debugger stuff, and some other protections for the RealID stuff. Nothing entirely special. It's the same old Warden, with a few 'extra' things.

Way to spoil it!

[ferodod]

For the not so literate people, an explanation of what Apoc meant.

Warden had a boob job, this makes it better, obviously, but, it still has the same old ugly face. So, small difference, but, not big enough to make a huge difference.

[zys924]

Oh, Iv tried the same thing on a trial account.
OK, not banned at all this time. Perhaps it's because the CheatEngine software i run before I logoned to WOW though it's clearly closed but no restarting is implemented after that ...
Thx guys upon anyway, its not a very important account, best of all.

[Seifer]

I think it's because no one has really said much about how warden 2.0 works...so it's just fear of the unknown.

It's the devil you know story.