[ReQuest]How to Nop GameGard For EliteSro

~~blackdemon0~~ · 05/24/2011, 19:19

i want a Loader or to Remove Gamegard or anything

XchangliiX · 05/24/2011, 19:22

if(bDoSecuritySeed)
{
do
{
BYTE securitySeedSig[] =
{
0x75, 0x2B, 0x6A, 0x01, 0x6A, 0x22, 0x8B, 0xCB,
0xE8, 0x94
};
results = FindSignature(securitySeedSig, 0, sizeof(securitySeedSig), codePtr, codeSize);
if(results.size() != 1)
{
printf("%i results were returned. Only %i were expected. Please use an updated signature.\n", results.size(), 1);
break;
}

DWORD secSeedAddr = (DWORD)(results[0] + codeStart);
printf("secSeedAddr: 0x%X\n", secSeedAddr);

BYTE patch1[] = {0xEB, 0x2B, 0x6A, 0x01, 0x6A, 0x22, 0x8B, 0xCB,
0xE8, 0x94};
WriteBytes(secSeedAddr, patch1, sizeof(patch1));

printf("\n");
} while(false);
}

Disco Teka · 05/24/2011, 19:23

KingLi has already tried it and i think he didn't success.

Wait for his reply here ...

XchangliiX · 05/24/2011, 19:25

Quote:

Originally Posted by Disco Teka

KingLi has already tried it and i think he didn't success.

Wait for his reply here ...

succeeded

kundzior · 05/24/2011, 19:25

When we block GameGuard we can try make bot...

Shadowz75 · 05/24/2011, 19:26

I guess the problem is that its a real gameguard, not the gameguard back in old isro times. So it works like hackshield -> you deactivate it -> a necessary security packet isnt send to the server -> disconnect after some minutes. Im not sure, cause i didnt looked at it, but the solution would be a gameguard emulator

XchangliiX · 05/24/2011, 19:30

Quote:

Originally Posted by Shadowz75

I guess the problem is that its a real gameguard, not the gameguard back in old isro times. So it works like hackshield -> you deactivate it -> a necessary security packet isnt send to the server -> disconnect after some minutes. Im not sure, cause i didnt looked at it, but the solution would be a gameguard emulator

I really dont think that ESRO checks this kind of packets. And if it necessary to verify it throu this packet, we could inject it cuz the GameGuard is down before the server wants it, very simple.

~~lorveth~~ · 05/24/2011, 19:30

Quote:

Originally Posted by Shadowz75

I guess the problem is that its a real gameguard, not the gameguard back in old isro times. So it works like hackshield -> you deactivate it -> a necessary security packet isnt send to the server -> disconnect after some minutes. Im not sure, cause i didnt looked at it, but the solution would be a gameguard emulator

as you said, like that its works.

vorosmihaly · 05/24/2011, 19:36

well,I took a look at it and it waits for ~10 minutes for the answer,the opcode is 0x2110..
I just disabled the gameguard right on the day the game came out cause I wanted to test things and such,but I were keep getting disconnected after like 10 minutes cause I didn't send an answer for the hackshield packet...

XchangliiX · 05/24/2011, 19:38

I am sure it was 0x2114, still not in the Login server packet transfer.

BTW: With gameguard i get many many DC's too.

vorosmihaly · 05/24/2011, 19:45

Quote:

Originally Posted by XchangliiX

I am sure it was 0x2114, still not in the Login server packet transfer.

BTW: With gameguard i get many many DC's too.

0x2114 is at isro
here it's 0x2110
also you get one gameguard packet right at the char listing screen,here's one of my logs:

Code:

[-2_7][C -> S][7007][1 bytes]
02                                                ................

[-2_7][S -> C][2110][17 bytes][Enc]
01 98 E6 BC 37 DB 81 0E C0 48 D5 A5 0A DB A1 F3   ....7....H......
F1                                                ................

XchangliiX · 05/24/2011, 19:50

Quote:
Originally Posted by vorosmihaly
0x2114 is at isro
here it's 0x2110
also you get one gameguard packet right at the char listing screen,here's one of my logs:
Code:
[-2_7][C -> S][7007][1 bytes]
02                                                ................

[-2_7][S -> C][2110][17 bytes][Enc]
01 98 E6 BC 37 DB 81 0E C0 48 D5 A5 0A DB A1 F3   ....7....H......
F1                                                ................

In game??? so the client just has to answer with 0x7007 0x02 ???
I checked the login process, untill there, there is no GameGuard activitie.
It's possible to make a little tool that answers with 02 but i dont think that this is all...

**** I just didn't pay the 2€so i cant check it ingame ;DD

Haxor · 05/24/2011, 19:53

Quote:

Originally Posted by XchangliiX

**** I just didn't pay the 2€so i cant check it ingame ;DD

register back free

vorosmihaly · 05/24/2011, 19:53

no,it's not all..so basicly,the client sends 0x7007 --> it receives 0x2110 and the charlisting packet aswell (0xB007),but you'll get gameguard packets regularly ingame,idk when exactly

XchangliiX · 05/24/2011, 20:22

Quote:

Originally Posted by vorosmihaly

no,it's not all..so basicly,the client sends 0x7007 --> it receives 0x2110 and the charlisting packet aswell (0xB007),but you'll get gameguard packets regularly ingame,idk when exactly

I could try to edit the HS server of iBot, just editing the ip, i didn't find any port maybe cuz decompiler xD haha lawl but maybe it will help. yes but the client doesnt send the packet when it wants to ;D

EDIT: now i noticed there is 100% no security like the new one at isro now. isro vertys on port 15777 HS nothing here, and nothing on 15779 at login... so we just have the problem in game like you all are saying.

Now what i wanted to know, is it possible to login without activated/paid 2€?