Hey guys, I'm back after a long time. Anyways, I happen to find the original Vindictus CBT (Closed Beta Testing) setup, after I installed it, I took the Vindictus.exe file and replaced it into the latest update, which surprisingly ran
. The original CBT version of Vindictus doesn't initialize HackShield
(a Nexon mistake), completely bypassing it. It runs perfectly in the original setup files (with the CurrentInfo.txt replaced with the latest patch), and works when the HShield folder is deleted.
However, when placed into the latest patch, it runs without HackShield, and loads half-way, before spitting a message box saying:
While it was still in the loading page. After clicking OK, it closes, but hangs there if it isn't pressed. Since the Vindictus client is mostly based upon the .dll files in the bin folder (2010 client can still run a 2012 patch), I messed around with MHS, and OllyDBG, and found that it calls ntdll.dll to write the message, which is unhelpful cause I couldn't just remove ntdll.dll. You guys can mess around with this, the possibilities are limitless, and may fully bypasses HackShield.
This is just the original client, no modifications; it seems like Nexon packed it with UPX, which gives a virus warning.
VindictusCBTClient.zip - Jotti's malware scan