Well - it basically exploits the fact that GameGuard doesn't categorise JoyToKey as a threat. Hence we saw a trainer named 'pinnacle.exe' (a video-editing software), which
was also considered by GameGuard as > no threat: so it was able to use the SendInput ().
Now what did GameGuard patch...?

exactly. Actually nothing just the process name.