Originally Posted by
Departure
I agree with what you say, And this it self is a whole different topic, I only have one problem with this theory... How is it that ever since I have been on this forum the "programmers" are all hooking DirectX function to over come this but yet they still get detected, Doesn't matter if you changed x amount of lines in your hooking method it still hooking a directx function, and still is getting detected after awhile, So with that in mind how come its possible to change a couple of lines yet use the same Directx function and its suddenly undetected, If what you said is 100% true then it makes no sense that the same Hooked Directx function can be undetected after a few byte changes. Why is it detected in the first place? the directx function is a module that it recognize and therefor should not be detected.
Conclusion, CA uses more than just this to detect if user is hacking or not. I also believe Nexon would not be so stupid to depended on hack shield it self as its only form of protection, Hence the reason for changing image size and hash of dll