03-08-2006, 12:51 PM
(This post was last modified: 03-08-2006, 01:34 PM by GodandRock.)
Hi people...everyone please come here and post all about theories about warden, ways to fight warden, etc. To start out I'll tell what I think warden does and how you might fight against it!
DONT IGNORE THIS BECAUSE IT IS LONG, IT IS HELPFUL INFORMATION!
These are my theories to how warden catches hackers: First of all, when warden scans, it will most likely scan D2 memory and check for unusual memory modifications or memory injections. After that, warden will probably scan D2 directory and the .mpq files to make sure everything is intact. That directory part makes me think about mmbot and rgx-mod, because they both make you put the "data" folder in your D2 directory, which is EASILY detectable in my opinion. Now these are the "obvious" anti-hacking methods they probably use.
Then maybe warden will dig in a little deeper occasionaly to catch hackers. For example. It will scan your process list and window titles (Press CTRL+ALT+DELETE then click on "processes" tab to see al the programs currently running on your computer). Well if you have Sting's or C3PO running, in the process list it will show sumthing like "Sting's mh.exe" and warden will ban you. Remember, these are only theories of what blizzard might be up to! Even if you change the .exe name, warden can still scan for window titles and see the window "Stings Maphack v3.1" or something like that and ban you.
Now I'll talk about autoit scripts. Hopefully people know about that. When you are running autoit scripts, they all create an INVISIBLE window, like many other programs, and the title is a particular one, so if warden is scanning and finds a title something like "Autoit3 script", then there's another ban because I think blizzard is against autoit. I talked to blizzard one time about autoit and I dont remember correctly, but the guy said anything that messes with D2 is bannable. He was kinda unclear so w/e. But to avoid this problem, when making autoit programs, you can change the window title to avoid warden scans. Also, if you run an autoit script UNCOMPILED, it will show "autoit3.exe" or something like that in the process list. Only if you compile the script then it will show the name you specified in the process list. That is because when you run a script uncompiled, the computer can't understand the program so an autoit program translates it so that the computer can understand it. But compiling the script makes it so that it comes in ready for the computer. So if you run an autoit script without first compiling it, it will probably be detected by warden if Blizz is against autoit. Remember, these aren't FACTS about warden, just some welleducated guesses to how blizzard might be catching hackers. If me, a 14-year old kid can thnik of these anti-hacking methods, I'm sure a huge company like blizzard with computer professionals can do a whole lot more against hackers!
Now about the things we can do to stop warden from banning our asses. First of all, you shouldn't use hacks that use plugins, becuase that is clearly editing D2 memory, and that is the EASIEST ban imaginable lol. I saw a post on blizzhackers.com/edgeofnowhere.cc about doing huge things to warden so that you can even use plugins and stuff. I'm not going to discuss that becuase they were talking about very advanced programming lol. Also, another small step you can take is changing the file name of your hack. This takes care of the process list scan problem. Also, you have to change the titles of your windows. I don't know if there is a program that lets you do that, but I can make one myself and I might, and put it up where you guys can get it. Also, about he "data" folder in D2, I don't know what we can do to stop warden from catching that folder.
Well, that concludes my theories and ideas about warden. I'm not sure if warden really does scan processes and window titles, but I'm sure that it scans memory, .mpq files, and probably the directory! It would help me, and other people if you can contribute your ideas about warden and what we can do to fight against warden. Thank you.
PS. You have to have some computer knowledge to know what I'm talking about about in certain things. I hope I helped people and made you guys think about this warden problem!
DONT IGNORE THIS BECAUSE IT IS LONG, IT IS HELPFUL INFORMATION!
These are my theories to how warden catches hackers: First of all, when warden scans, it will most likely scan D2 memory and check for unusual memory modifications or memory injections. After that, warden will probably scan D2 directory and the .mpq files to make sure everything is intact. That directory part makes me think about mmbot and rgx-mod, because they both make you put the "data" folder in your D2 directory, which is EASILY detectable in my opinion. Now these are the "obvious" anti-hacking methods they probably use.
Then maybe warden will dig in a little deeper occasionaly to catch hackers. For example. It will scan your process list and window titles (Press CTRL+ALT+DELETE then click on "processes" tab to see al the programs currently running on your computer). Well if you have Sting's or C3PO running, in the process list it will show sumthing like "Sting's mh.exe" and warden will ban you. Remember, these are only theories of what blizzard might be up to! Even if you change the .exe name, warden can still scan for window titles and see the window "Stings Maphack v3.1" or something like that and ban you.
Now I'll talk about autoit scripts. Hopefully people know about that. When you are running autoit scripts, they all create an INVISIBLE window, like many other programs, and the title is a particular one, so if warden is scanning and finds a title something like "Autoit3 script", then there's another ban because I think blizzard is against autoit. I talked to blizzard one time about autoit and I dont remember correctly, but the guy said anything that messes with D2 is bannable. He was kinda unclear so w/e. But to avoid this problem, when making autoit programs, you can change the window title to avoid warden scans. Also, if you run an autoit script UNCOMPILED, it will show "autoit3.exe" or something like that in the process list. Only if you compile the script then it will show the name you specified in the process list. That is because when you run a script uncompiled, the computer can't understand the program so an autoit program translates it so that the computer can understand it. But compiling the script makes it so that it comes in ready for the computer. So if you run an autoit script without first compiling it, it will probably be detected by warden if Blizz is against autoit. Remember, these aren't FACTS about warden, just some welleducated guesses to how blizzard might be catching hackers. If me, a 14-year old kid can thnik of these anti-hacking methods, I'm sure a huge company like blizzard with computer professionals can do a whole lot more against hackers!
Now about the things we can do to stop warden from banning our asses. First of all, you shouldn't use hacks that use plugins, becuase that is clearly editing D2 memory, and that is the EASIEST ban imaginable lol. I saw a post on blizzhackers.com/edgeofnowhere.cc about doing huge things to warden so that you can even use plugins and stuff. I'm not going to discuss that becuase they were talking about very advanced programming lol. Also, another small step you can take is changing the file name of your hack. This takes care of the process list scan problem. Also, you have to change the titles of your windows. I don't know if there is a program that lets you do that, but I can make one myself and I might, and put it up where you guys can get it. Also, about he "data" folder in D2, I don't know what we can do to stop warden from catching that folder.
Well, that concludes my theories and ideas about warden. I'm not sure if warden really does scan processes and window titles, but I'm sure that it scans memory, .mpq files, and probably the directory! It would help me, and other people if you can contribute your ideas about warden and what we can do to fight against warden. Thank you.
PS. You have to have some computer knowledge to know what I'm talking about about in certain things. I hope I helped people and made you guys think about this warden problem!