Bypassing Esro game guard

06/29/2011 14:01 ÑõÑ_Ŝŧóp#1
I've found the packet which server send to the client to check if gg is running or not
then the client send another one if not you will get dc
but i couldn't analyze it (am not so good analyzer :p)
at example
s -> c [2110]
018F31A482A3A1753604219C35FD8D3FED
c -> s [2110]
02D1935091E88E513C617EAC00B3C6D6C2

my idea was if some1 made a lil tool to receive the server's packet then send another packet to the server
but i couldn't know the data to send

if some1 can do it, it would be great :D i hate this gg too much :D
06/29/2011 16:09 Kazuya¹#2
the opcode maybe the same every time(2110) but the data is randomly generated
every time the packet is sent. good luck ;)

the only reason you would need to remove nProtect, is for memory stuff.
what are you trying to do?
06/29/2011 16:10 ÑõÑ_Ŝŧóp#3
Quote:
Originally Posted by Kazuya¹ View Post
the opcode maybe the same every time(2110) but the data is randomly generated
every time the packet is sent. good luck ;)

the only reason you would need to remove nProtect, is for memory stuff.
what are you trying to do?
true
the opcode is the same every time
the problem is if i entered wrong data i will dc -.-

edit: not only the memory stuff
this gg is annoying
it lags like hell ..
i can open 3 elite silkroad and its my max
and i can open +6 isro clients...
this nProtect is so annoying ..
06/29/2011 16:13 kevin_owner#4
The data of the gameguard were 4 x DWORD if i'm correct.
which is generated with the packet from the server.
07/04/2011 02:55 ZeraPain#5
hm someone who is experienced with olly should do it.
i got only limited skills with it...
drew where are you ^_^
07/04/2011 07:53 lesderid#6
Quote:
Originally Posted by ZeraPain View Post
hm someone who is experienced with olly should do it.
Pretty sure GameGuard is heavily packed.
07/04/2011 09:44 ZeraPain#7
sure but not impossible :>
07/04/2011 09:50 kevin_owner#8
Wasn't gameguard also very hard to reverse? there was something with it which made it harder than just normal reversing. eventually it is an anti hacking system so it got to be hard:)

btw why do you need it gone. The only reason I can think of is that gameguard doesn't block the debug mode in visual studio xD
07/04/2011 10:06 ZeraPain#9
well e.g. for a clientless stall or for some tools for which it would be easier to access the memory than using a proxy all the time.

also GG messed with my pc more than one time e.g. automatic updates
07/05/2011 21:12 Kazuya¹#10
Quote:
Originally Posted by lesderid View Post
Pretty sure GameGuard is heavily packed.
moded upx + themida
07/06/2011 07:44 lesderid#11
Quote:
Originally Posted by Kazuya¹ View Post
moded upx + themida
Well, UPX is easy. :D
But, if the version of Themida they used is anything new, it will take a while to unpack.