Newbie Spellweaver
- Joined
- Apr 22, 2024
- Messages
- 12
- Reaction score
- 19
tested and available on the
KMST 1.2.1175/1176 & GMS 249.2/251.2 & CMS 208.1 & TMS 194.1/261.4 & JMS 424.1/425.1
simple explains how this works
CMS needs to use retaddr of step 4
since CMS also uses other anticheat in addition to XC/NGS, the startup sequence is a little different
-
some versions addr
KMST 1.2.1175/1176 & GMS 249.2/251.2 & CMS 208.1 & TMS 194.1/261.4 & JMS 424.1/425.1
simple explains how this works
C++:
void(__thiscall* _SendWvsSetUpStep)(int, int);
void __fastcall SendWvsSetUpStep_Hook(int Step, int a2) {
// if (Step == 4) {//CMS
if (Step == 12) {// log step 12 retaddr
ULONG_PTR retaddr = (ULONG_PTR)_ReturnAddress();
SCANRES(retaddr);
} else if (Step == 1) {//modify to step 12 retaddr
*(ULONG_PTR*)_AddressOfReturnAddress() = 0x1472B7A2A;// << Step 12's retaddr(it's inside VM block)
}
return _SendWvsSetUpStep(Step, a2);
}
CMS needs to use retaddr of step 4
since CMS also uses other anticheat in addition to XC/NGS, the startup sequence is a little different
-
some versions addr
Code:
CMS 208.1
SendWvsSetupStep = 143FB7250
step 4 retaddr = 149660519
GMS 251.2
SendWvsSetupStep = 144953C70
step 12 retaddr = 14A055B1C
KMST 1.2.1175
SendWvsSetupStep = 144B368D0
step 12 retaddr = 1472B7A2A
JMS 424.1
SendWvsSetUpStep = 1445D1D40
Step 12 retaddr = 1497DB94C
JMS 425.1
SendWvsSetUpStep = 144803A40
step 12 retaddr = 149BBB92A
KMST 1.2.1176
SendWvsSetupStep = 144CCFC40
step 12 retaddr = 1474B64F3
Last edited: