l2tower

1. WARNING! Never give the player with information about protection!
2. WARNING! NEVER LET PLAYERS STATISTICS ACCESS PROTECTION!
3. WARNING! THINK HUNDRED TIMES BEFORE SWITCHING ON THE SECOND REGIME!
4.  
5. ----------------
6. Setting the protection
7. ----------------
8.  
9. 1. Change hAuthD.ini
10.  
11. Change the value of guard:
12. [Ext]
13. guard = 1
14.  
15. Add the line:
16. [Guard]
17. ClientCRC =
18. GuardCRC =
19. Mode = 0
20. Cheaters = 5
21. AutoBan = 0
22. HotToBlack = 0
23. MaxWin = 0
24.  
25.  
26. 2. Change databases
27.  
28. Add a table user_account fields:
29. hkey - varchar (16)
30. cheat - int (default 0)
31. mask - varchar (15)
32.  
33. Script:
34. USE lin2db
35. ALTER TABLE user_account ADD hkey varchar (16)
36. ALTER TABLE user_account ADD cheat INT NOT NULL DEFAULT (0)
37. ALTER TABLE user_account ADD mask varchar (15)
38.  
39.  
40. 3. Changing the client files
41.  
42. Copy and fire.dll msxml4g.dll in the folder system (replacing the old files)
43.  
44. msxml4g.dll - a renamed file fire.dll (from the original client).
45. The archive is version for Hellbound.
46. If you are using another client (C4, Interlude, Gracia, etc.), then take
47. original fire.dll (not to be confused with file security) and rename msxml4g.dll.
48. Otherwise, the client in some locations will fly with the error:
49. Can't bind to native class Fire.FractalTexture
50.  
51.  
52.  
53. -------------------
54. Description of parameters
55. -------------------
56.  
57. ClientCRC - CRC file L2.exe (if not specified, it is not checked)
58. GuardCRC - CRC file fire.dll (if not specified, it is not checked)
59. You can enter multiple CRC separated by commas.
60. CRC files can be found using the utility crc32.exe or look in the archives WinRAR
61.  
62.  
63.  
64. Mode - mode of protection. Possible values ​​are 0, 1 and 2.
65.  
66. Mode 0:
67. Input is possible as usual client and secure.
68. The rest of the 0 mode is the same as Mode 1.
69.  
70. Mode 1:
71. Allowed only protected by the client.
72. If you find illegal software or prohibited activities:
73. - A message in the log (the same in the file)
74. - Changing the field value tables user_account cheat for this account
75. - ENTER THE GAME ALLOWED
76. This is the recommended mode!
77.  
78. Mode 2:
79. Differences from Mode 1:
80. - ENTER THE GAME IS DENIED
81. - HKey added to the temporary list Hot_hKeys
82. Hot_hKeys:
83. - The list is not saved when closing the program
84. - Entering the game with a key from the list of banned
85.  
86.  
87. Cheaters - minimum value of the cheat in which the account
88. is locked (either automatically or manually).
89. Use the menu 'cheaters' (block all / show list) and function
90. Autobahn (parameter autoban under guard).
91. A value of 0 associated with the parameter functions are not available.
92. Attention! Accounts are locked in a table on the field block_flag2!
93.  
94. AutoBan - the interval in minutes between calls automatically
95. locking accounts (actually there pressing the 'block all').
96. A value of 0 is disabled. The minimum value of - 60.
97.  
98. HotToBlack - add all hKey from the list of file Hot_hKeys Black_hKeys.txt
99. Actually only the second protection mode (mode = 2).
100.  
101. MaxWin - allowed number of simultaneously running clients Lineage.
102.  
103.  
104.  
105. -------------
106. Section CHEATS
107. -------------
108.  
109. Add to hAuthD.ini:
110. [Cheats]
111. ; Wicked Patcher
112. 1 = 1
113. ; L2Walker
114. 2 = 1
115. ; L2Walker IG
116. 3 = 1
117. ; WS2_32.dll
118. 4 = 0
119. ; Dead thread
120. 5 = 0
121. ; MiniProxer
122. 6 = 1
123. ; L2Control
124. 7 = 1
125. ; Blocked explorer
126. 8 = 0
127. ; L2PacketHack
128. 9 = 1
129. ; WinAPI Hack
130. 10 = 1
131. ; Wicked Patcher (ports)
132. 11 = 0
133. ; L2Walker VerifyServer (ports)
134. 12 = 1
135. ; Fake Login Server (ports)
136. 13 = 1
137. ; L2PacketHack (ports)
138. 14 = 1
139. ; ZRanger
140. 15 = 1
141.  
142. Section allows you to adjust the response guard-server module authorization
143. the various cheats. The name parameter - the number of readers. Value - how much
144. increase the value of a particular field cheat account at
145. detection reader (default - 1). If you specify 0, the field remains a cheat
146. unchanged, but the information is displayed in the log. If -1, then all cheat
147. ignored.
148.  
149. Attention! When you work in security mode 2 (mode = 2), enter the game banned
150. only if the amount of 'cheat' the current session is greater than zero!
151.  
152.  
153. The example partition configuration ensures that no false
154. operations security (details below).
155.  
156. Description of "cheating":
157.  
158. Wicked Patcher - running Sauron'a "WP PPC".
159. Is a proxy server (full access to the traffic analysis and intercept).
160. Link: http://sauron.x33.ru
161.  
162. L2Walker - on your computer is running a bot (OOG or IG).
163. Attention! This does not mean that you are logged into the game by a bot!
164. Link: http://towalker.com
165.  
166. L2Walker IG - in the current process L2.exe embedded module ingeym bot.
167. Attention! In contrast to the messages 'L2Walker' which means that
168. boat used by this account!
169. Link: http://towalker.com
170.  
171. WS2_32.dll - a folder containing the file is located L2.exe ws2_32.dll.
172. This DLL is used for intercepting calls to the standard
173. Windows libraries to work with the network.
174. Attackers using ws2_32.dll can perform analysis and
175. interception game packages. Also, this library is used
176. L2Helper bot to redirect the client to the fake-server.
177.  
178. Dead Thread - dead stream protection.
179. Fire.dll at the beginning of his work starts two threads, which
180. are an integral part of the defense. This message means
181. that at least one thread was not started or was stopped.
182.  
183. MiniProxer - running proksifikator Sauron'a.
184. The program performs redirection of traffic.
185. Usually used in conjunction with "WP PPC".
186. Link: http://sauron.x33.ru
187.  
188. L2Control - running L2Control (radar, pilot, etc.).
189. Website: http://www.l2control.com/
190.  
191. Blocked Explorer - the system is running the explorer.exe process to which
192. no access, and this suggests that:
193. 1. the system operates another user
194. 2. do not have access to the processes of this user
195. Criminals create a new account with the rights of guest and
196. L2.exe runs as this user. As a result, DLL can not
197. access to other processes and exercise some control.
198.  
199. L2PacketHack - running xkor'a L2PacketHack
200. Is a proxy server (full access to the traffic analysis and intercept).
201. Website: http://coderx.ru/
202.  
203. WinAPI Hack - found interference in the WinAPI functions.
204. Protection has a number of tests to validate the use WinAPI fuktsy.
205. This message means that during the inspection it was found
206. that some functions will not work properly.
207. It may also mean finding the program HideToolz.
208.  
209. Wicked Patcher (ports) - listening TCP ports Wicked Patcher
210. Verification is one port, so it is possible matches.
211.  
212. L2Walker VerifyServer (ports) - listening TCP ports L2Walker VerifyServer
213. Verification is on two ports, the coincidence is unlikely.
214.  
215. Fake Login Server (ports) - listening TCP ports Fake Login Server
216. Verification is on two ports, the coincidence is unlikely.
217.  
218. L2PacketHack (ports) - listening TCP ports L2PacketHack
219.  
220. ZRanger - running ZRanger (radar, pilot, etc.).
221. Website: http://zranger.net/