Version 45

Kittymew · 07/23/2009, 18:16

It looks like the update to Mabinogi has broken almost everything. Also...why did EagleNT, without any admin permissions, manage to give itself root access again during the patch process? It sounds like we have some very dangerous software coming in with this game now.

Aside from manually denying that (which still won't let me play with Moonshine or anything else interesting anymore) what've you guys got for workarounds? I haven't found anything yet.

Kipkipx3 · 07/23/2009, 18:22

nothing yet. I'm sad toooo x_x

Kittymew · 07/23/2009, 18:28

I'm more worried about the fact that given how ****** Windows permissions are this probably gives Nexon, or anyone who can crack remote access through hackshit, access to thousands of credit cards.

Sasorikun · 07/23/2009, 19:13

[Double Post sponsored by some retarded bug that was probably not the fault of my wifi]

Sasorikun · 07/23/2009, 19:13

Hi, how are you guys? o.o

Anyway an update process it remotley like a setup which actually can update your registry o.o
EagleNT was probably rewritten or something.
Don't get paranoid guys, thats what I'm here for.

Once I get back to playing Mabi I'll hook directly into my router and sniff out all sent packets and see what our eagle is doing anyway... well maybe I'll just find an easier software way to do that...

Kittymew · 07/23/2009, 19:19

Good news: EagleNT is _NOT A ROOTKIT_.

Bad News: It is, however, live-updating itself in the registry now. This is enough for a remote attacker to get root on your computer.

Good News: My crew found a workaround to get the game working again.

I'd still love to see what all hackshield is doing when it phones home. If you find anything good enough to get the feds on them, let me know, I can hook them up with some trouble.

argentino · 07/23/2009, 21:06

Well Hackshield has become a trojan now thats for sure x3, but i guess its what we agree to in all those shady games ToS.

Changes that are new and others where there but not turned on are:

- Ability to detect dll changes (this was in before but not active).
- Runtime detection of missing/non matching HS files.
- Runtime detection of host files redirecting HS update.
- Ability to detect file changes.
- Memory modification detection hardened.

Kittymew · 07/23/2009, 21:27

Argentino, actually a contract specifying illegal activity is null and void. The ToS of every MMO I've ever played constitutes invasion of privacy, computer misuse, and usually involves some form of theft.

It's definitely enough to push prosecution on them, especially with the bad press the FBI is getting for failing to stop all these botnets. We just need some more proof.

argentino · 07/23/2009, 21:42

Is not a service so it wont work, if you like it you must accept HS installation, if you dont like it just dont play the game, they arent forcing you to play anyhting nor is vital for anyone to do so, see? totally optional.

Kittymew · 07/23/2009, 22:03

Argentino, by that logic packaging a computer virus with a piece of software is legal. You're an idiot. Anyway, let's get back to the threads that involve FIXING this, hm?

argentino · 07/23/2009, 22:17

Quote:

Originally Posted by Kittymew

Argentino, by that logic packaging a computer virus with a piece of software is legal. You're an idiot. Anyway, let's get back to the threads that involve FIXING this, hm?

Mr idiotmew, by your reasoning your antivirus software is illegal =/ (since it sends back and for info of ur computar zomg) and so do a lot of adobe, windows, etc apps =/ if i where you ill just format my pc and look to a black screen all day, is the only way to be secure these days, and is easier for your challenged brain.

Sasorikun · 07/23/2009, 23:43

Ok guys, thats enought.

Kittymew, you have a cute name, I like you but don't call people here idiots dude...
There are much more creative, subtle and sarcastic ways to tell someone what you think.

Argentino calling him an idiotmew was more creative but still inappropriate. Don't.

Don't make me let Darki off the leash guys, or its gonna be trouble. (He'll probably kick your ***** anyways since he lacks obediance somehow.)

Service or not, if any task performed by HS can be associated with Digital Espionage, Identity Theft or similar, they can get serious trouble.

You can't say its ok because its an "optional service".
Take Assassination for example. You can't just offer a service and include things like:
"The person named in the contract below might die in the process of the service" in your ToS and say its legit. If you could I'd be making ungodly amounts of cash.

By using antivirus software you are NOT forced to send back reports to the company. And even if you decide to do so you can take a look at WHAT you are sending first.

What windows is doing we never know for sure, but remember they already had trouble for sending "too much".

So if Nexon is getting any data that would break laws for protection of privacy, AND does this without us knowing, what and when is sent, you can have their ***** sued to valhalla.

Oh not that you think I'm taking sides here... nooooo, I hate both of you, I'm just telling you what IS in fact the status quo so you can stop whining and flaming and bragging about who of you is the bigger idiot here. So no that we're thru with this how about we get to work on a solution? Whaddya say?

argentino · 07/24/2009, 00:13

Sorry for being childish back there ;-;, anyhow by playing mabinogi you agree to this:

2.4 Hardware and Software Access. You hereby acknowledge that:
2.4.1 The Company has the right to obtain, without notification to you, certain information about your computer or software, including, but not limited to, your operating system, identification of your hard drives, central processing unit, IP address, and Internet browser for purposes of identification.
2.4.2 The Company has the right to obtain, without notification to you, non-personal information from your connection to the Service or Site for demographic purposes.
2.4.3 The Company has the right to obtain, without notification to you, information from your computer, software, and parts or portions thereof, including, without limitation, your computer's random access memory, video card, central processing unit, hard drive(s) and any other storage devices to assist our efforts in policing users who may develop and/or use "hacks" and/or "cheats" to gain advantage over other users. The information obtained in this Section will only be used for the purpose of identifying persons or entities not in compliance or believed by the Company to not be in compliance with this Agreement and any and all other Company rules, policies, notices and/or agreements.

All from their ToS, of curse there are other laws that are over this ToS but you are forced to provide solid proof that for example Nexon (company) and or employee stole your credit card, your Hd ****, or we. Long process, nothing can really be proven on internet (unless is pedo stoof or serious bissniss), etc. Trying to sue on of these companys is like trying to *** because you got brown eyes instead of blue.

~~Dark Raccoon~~ · 07/24/2009, 00:38

Quote:

Originally Posted by Sasorikun

Ok guys, thats enought.

Kittymew, you have a cute name, I like you but don't call people here idiots dude...
There are much more creative, subtle and sarcastic ways to tell someone what you think.

Argentino calling him an idiotmew was more creative but still inappropriate. Don't.

Don't make me let Darki off the leash guys, or its gonna be trouble.

Rawr! ;D

Quote:

(He'll probably kick your asses anyways since he lacks obediance somehow.)

SAY WHA-?!

I'm just bored! The people in this section behave so well, the last Infraction I gave was about 3 Months ago! I'm just looking for some PewPew-Action. :P

Quote:

2.4 Hardware and Software Access. You hereby acknowledge that:
2.4.1 The Company has the right to obtain, without notification to you, certain information about your computer or software, including, but not limited to, your operating system, identification of your hard drives, central processing unit, IP address, and Internet browser for purposes of identification.
2.4.2 The Company has the right to obtain, without notification to you, non-personal information from your connection to the Service or Site for demographic purposes.
2.4.3 The Company has the right to obtain, without notification to you, information from your computer, software, and parts or portions thereof, including, without limitation, your computer's random access memory, video card, central processing unit, hard drive(s) and any other storage devices to assist our efforts in policing users who may develop and/or use "hacks" and/or "cheats" to gain advantage over other users. The information obtained in this Section will only be used for the purpose of identifying persons or entities not in compliance or believed by the Company to not be in compliance with this Agreement and any and all other Company rules, policies, notices and/or agreements.

If they don't want to obey, we just break them - Lets make a Bypass! ;D

No, seriously, this isn't anything special, HackShield isn't the only Bypass retrieving Information from the users computer.

Sasorikun · 07/24/2009, 00:42

Yes, I know the content of their ToS.
And I think we're moving in a grayzone here.

But this topic has been discussed in every form on Nexon Forums.
We all know it sucks but we can't do anything about it by all means.

We're basically handing them the Information they take liberty to save. If we don't have any Personal information on our computers, they can't take them. So we're providing what they are allowed to see and whatnot.

But since we're THE community who wants to play the game without having to agree with this... bullshit... its up to US to by all means do something about it.
First step is to find out what information they collect or are able to collect.
If we find out its nothing, we don't need to give a ****. If we find out they're taking more than we're comfortable with, we should let everybody know. Then develop means to prevent that, and have those who care take part in it.