Page 4 of 8 FirstFirst ... 23456 ... LastLast
Results 31 to 40 of 79
  1. #31
    b1shop
    b1shop is offline
    New member
    Join Date
    2012 Jan
    Location
    Mcz
    Posts
    10
    Thanks Thanks Given 
    4
    Thanks Thanks Received 
    1
    Thanked in
    1 Post
    Rep Power
    0
    i tried to do exactly like the pictures.. but i got different values and now i don't know how to discover the right oep and size to use in importREC. if someone can answer i would be grateful

  2. #32
    shemgwapo
    shemgwapo is offline
    Member-in-training shemgwapo's Avatar
    Join Date
    2010 Sep
    Location
    www.animebio.com
    Posts
    51
    Thanks Thanks Given 
    27
    Thanks Thanks Received 
    19
    Thanked in
    8 Posts
    Rep Power
    0
    all we can do right now is wait for S4R4H. i cant seem to make a bp at [0x2D53A30] since it will run the game and the debugger gets detected. i can find the same values if i bp at [0x2D53A29] but encounters a problem at "run trace". i cant seem to find the EBP=[0x12FFC0].

  3. #33
    justwenz
    justwenz is offline
    New member justwenz's Avatar
    Join Date
    2011 Dec
    Posts
    40
    Thanks Thanks Given 
    10
    Thanks Thanks Received 
    18
    Thanked in
    3 Posts
    Rep Power
    0

    Help

    i try it at AikaIn, when i shit+f9 5x it show up :

    https://progamercity.net/attachment....1&d=1326458124

    anyone can help me?? >.<

    Please register or login to download attachments.


  4. #34
    emoisback
    emoisback is offline
    Full member
    Join Date
    2011 Dec
    Location
    Indonesia there i'm
    Posts
    508
    Thanks Thanks Given 
    83
    Thanks Thanks Received 
    244
    Thanked in
    68 Posts
    Rep Power
    13
    just read carefuly, what s4r4h say, what he plugin used..

    have u have plugin anti-anti debuger.
    Learn from PGC for Share on PGC..


    For another Stuff i have make try to find it [Please, register to view links]
    If i have help you, please thanks and respect ..

  5. #35
    shemgwapo
    shemgwapo is offline
    Member-in-training shemgwapo's Avatar
    Join Date
    2010 Sep
    Location
    www.animebio.com
    Posts
    51
    Thanks Thanks Given 
    27
    Thanks Thanks Received 
    19
    Thanked in
    8 Posts
    Rep Power
    0
    i having a hard time looking for the right stolen codes for aikasm.exe can someone update the tut? i think the values changed after the update.

  6. The Following User Says Thank You to shemgwapo For This Useful Post:


  7. #36
    S4R4H
    S4R4H is offline
    New member S4R4H's Avatar
    Join Date
    2011 Jun
    Posts
    28
    Thanks Thanks Given 
    12
    Thanks Thanks Received 
    33
    Thanked in
    8 Posts
    Rep Power
    0

    Unhappy

    well after looking at all the problems you guys posted I realized that I have made a mistake, placing BP at the wrong place earlier in the guide..

    so I went over and over again trying to unpack the client, this time the BP is on the first RETN, unsuccessful..

    the number of stolen bytes are larger than the code cave..

    what I got.. (excluding all the JMP SHORTs)

    LEA ESP,DWORD PTR SS:[ESP+4]
    MOV EBP,ESP
    PUSH -1
    PUSH 623730
    PUSH 5EF620
    MOV EAX,DWORD PTR FS:[0]
    SUB WORD PTR DS:[2E562AF],57AB
    PUSH 5F
    PUSH D07337EF
    MOV DWORD PTR SS:[ESP+4],EAX
    LEA ESP, DWORD PTR SS:[ESP+4]
    MOV DWORD PTR FS:[0],ESP
    SUB ESP,58
    SUB WORD PTR DS:[2E562DD],57AB
    PUSH 5F
    PUSH D07337EF
    MOV DWORD PTR SS:[ESP+4],EBX
    LEA ESP,DWORD PTR SS:[ESP+4]
    SUB WORD PTR DS:[2E56301],57AB
    PUSH 5F
    PUSH D07337EF
    MOV DWORD PTR SS:[ESP+4],ESI
    LEA ESP,DWORD PTR SS:[ESP+4]
    SUB WORD PTR DS:[2E56325],57AB
    PUSH 5F
    PUSH D07337EF
    MOV DWORD PTR SS:[ESP+4],EDI
    LEA ESP,DWORD PTR SS:[ESP+4]
    MOV DWORD PTR SS:[EBP-18],ESP
    the replacements went over the original OEP, after finishing with LordPE the whole thing just would not run anymore..

    I am so sorry guys.. the guide is my first time in trying to unpack a client and it looks like I have failed
    I like to make stupid theories and asssumptions..

  8. The Following User Says Thank You to S4R4H For This Useful Post:


  9. #37
    shemgwapo
    shemgwapo is offline
    Member-in-training shemgwapo's Avatar
    Join Date
    2010 Sep
    Location
    www.animebio.com
    Posts
    51
    Thanks Thanks Given 
    27
    Thanks Thanks Received 
    19
    Thanked in
    8 Posts
    Rep Power
    0
    i got the same problem as you. i manage to finish unpacking the client but after running it i can see aikasm.exe in process but disappers in a few secs. and "PUSH D07337EF" seems to be an unknown identifier when you try putting it in. thank you for you efforts though.

  10. #38
    justwenz
    justwenz is offline
    New member justwenz's Avatar
    Join Date
    2011 Dec
    Posts
    40
    Thanks Thanks Given 
    10
    Thanks Thanks Received 
    18
    Thanked in
    3 Posts
    Rep Power
    0
    Quote Originally Posted by emoisback View Post
    just read carefuly, what s4r4h say, what he plugin used..

    have u have plugin anti-anti debuger.
    sure i have same plugin with S4R4H, that exe is AIKA Online Indonesia New Patch 3.3.1.
    now i try full instaler from the aika in web its 3.0.4.. and i passed the error shift f9 16x.
    Last edited by justwenz; 2012-01-14 at 05:02 AM.

  11. #39
    fennes
    fennes is offline
    New member fennes's Avatar
    Join Date
    2012 Jan
    Posts
    22
    Thanks Thanks Given 
    2
    Thanks Thanks Received 
    32
    Thanked in
    6 Posts
    Rep Power
    0
    Quote Originally Posted by justwenz View Post
    sure i have same plugin with S4R4H, that exe is AIKA Online Indonesia New Patch 3.3.1.
    now i try full instaler from the aika in web its 3.0.4.. and i passed the error shift f9 16x.
    Dont Unpack The Old Client, If You Succeed Unpacking It Wont Work On Latest Patch 3.3.1

    For Latest AIKAIN,

    Do Shift + F9 ; 18 Times

    Until You Find This Sequence Code :

    03C439EC 3100 XOR [EAX],EAX
    03C439EE 64:8F05 00000000 POP DWORD PTR FS:[0]
    03C439F5 58 POP EAX
    03C439F6 833D B07EC403 00 CMP DWORD PTR [3C47EB0],0
    03C439FD 74 14 JE SHORT 03C43A13
    03C439FF 6A 0C PUSH 0C
    03C43A01 B9 B07EC403 MOV ECX,3C47EB0
    03C43A06 8D45 F8 LEA EAX,[EBP-8]
    03C43A09 BA 04000000 MOV EDX,4
    03C43A0E E8 2DD1FFFF CALL 03C40B40
    03C43A13 FF75 FC PUSH DWORD PTR [EBP-4]
    03C43A16 FF75 F8 PUSH DWORD PTR [EBP-8]
    03C43A19 8B45 F4 MOV EAX,[EBP-C]
    03C43A1C 8338 00 CMP DWORD PTR [EAX],0
    03C43A1F 74 02 JE SHORT 03C43A23
    03C43A21 FF30 PUSH DWORD PTR [EAX]
    03C43A23 FF75 F0 PUSH DWORD PTR [EBP-10]
    03C43A26 FF75 EC PUSH DWORD PTR [EBP-14]
    03C43A29 C3 RET <<<<< Put BreakpOINT Here....

    Shift + F9 1 Time

    And Olly Will Stop on BreakPoint,
    Just Push ALT + M ;
    Look at Pop Up Windows

    00400000 00001000 AIKAIN 00400000 (itself) PE header Imag 01001002 R RWE
    00401000 0020E000 AIKAIN 00400000 code Imag 01001002 R RWE <<<<< Put BreakpOINT on access Here

    0060F000 0001D000 AIKAIN 00400000 Imag 01001002 R RWE
    0062C000 02178000 AIKAIN 00400000 Imag 01001002 R RWE
    027A4000 0001A000 AIKAIN 00400000 .rsrc resources Imag 01001002 R RWE
    027BE000 00013000 AIKAIN 00400000 .data data,imports,relocations Imag 01001002 R RWE
    027D1000 00002000 AIKAIN 00400000 .adata Imag 01001002 R RWE

    Push CTRL + T, thick box "Command is one of" put this in the right box "REP STOS BYTE PTR ES:[EDI]
    "
    Press OK and Then CTRL + F11.

    Wait Until olly Stop Tracing...

    tx

  12. The Following User Says Thank You to fennes For This Useful Post:


  13. #40
    emoisback
    emoisback is offline
    Full member
    Join Date
    2011 Dec
    Location
    Indonesia there i'm
    Posts
    508
    Thanks Thanks Given 
    83
    Thanks Thanks Received 
    244
    Thanked in
    68 Posts
    Rep Power
    13
    Dont used old client if u used it, when you chose aeris, calpar or other they will say if your client version is wrong.

    just do what fennes say..

    for 16x or 18x its doesnt metter just press shift + f9 until you find a similiar code..

    what fennes post is a half way to unpack the client..

    just say thanks to him if its help you..
    Learn from PGC for Share on PGC..


    For another Stuff i have make try to find it [Please, register to view links]
    If i have help you, please thanks and respect ..

  14. The Following User Says Thank You to emoisback For This Useful Post:


Page 4 of 8 FirstFirst ... 23456 ... LastLast

Similar Threads

  1. [Info] Manual Patching, patch info
    By Dwar in forum Requiem Online
    Replies: 25
    Last Post: 2018-11-06, 02:37 PM
  2. [Dev] Cabal EU Yoda-ASProtect Unpacked
    By Grooguz in forum Cabal Bots, Hacks, Cheats
    Replies: 8
    Last Post: 2013-05-31, 01:31 PM
  3. GameShield Manual Unpacking and Modifying Licenses
    By h4x0r in forum Anti-Cheat Systems
    Replies: 0
    Last Post: 2011-10-12, 10:13 PM
  4. [Info] Dragon Nest CN manual unpacking zip archive
    By Dwar in forum Other MMO
    Replies: 0
    Last Post: 2011-06-29, 06:12 AM
  5. [Info] ARGO Online manual updating
    By Dwar in forum Other MMO
    Replies: 0
    Last Post: 2011-06-12, 09:22 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •