Ok so what it seems like to me is the GM's prob have a copy of Ryftomate and so they study it and decide the best way to detect it. so here is a list of idea's to help this from happening. 1. Totally hide the process from all programs and even the task manager.... great guide here this is in VB but you should be able to easily convert the code to C# which if im not mistaken is what ryftomate is programmed in... Breakthrough !! UPDATED - Completely hiding a process from the task manager in 9x and NT! by Islam Adel 2. Change the point of injection every few days... any good programmer knows you need maintainability i havent seen the source code of ryftomate but this should be a short and easy update... 3. a game i used to play and bot in simply hijacked the packets sent from the game and then would send the packets for moving, attacking, picking, ect.... maybe look into doing something like this instead of doing injections.... i have found it to be safer personally those are my thoughts so far.... but then again its 3am and im not fully awake yet so i may throw some in there later..... anyways good luck
packet sniffing can easily be detected point of injection ... it's more than just a point, Rift has a lot more threads vs wow hiding the process is not the issue
