DarkEvil90
28-05-09, 05:31 AM
Hôm nay MU thua trận, lên RZ chơi thì thấy cái này. post cho anh em coi
First of all donwnload the 1.05D+ patch from here: FTP mukorea (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b> .co.kr%2Fpub%2Fmuonline%2F)
then you need ollydbg to continue. download it here (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>)
Ok extract the patch, open ollydbg and press F3 and locate the main.exe (and wait)
After finish loading, press dx mouse button, Search for->All referenced text string
after finshed search on new windows press home butto to go to start of the list
then ctrl+l or click dx mouse -> search for text
and write: mu.exe (without the marker on case sensitive) press ok and press three times ctrl+l
then double click on ascii mu.exe to go to thet offset.
here is the situation: change on the offset 005E5200 JNZ with JMP
""""""""" this step is for bypass mu.exe autoupdater. """""""""""
005E5200 . EB 55 JMP SHORT Main.005E5257
005E5202 . 68 04328500 PUSH Main.00853204 ; /Arg2 = 00853204
005E5207 . 68 D802FE07 PUSH Main.07FE02D8 ; |Arg1 = 07FE02D8
005E520C . E8 600D0C00 CALL Main.006A5F71 ; \Main.006A5F71
005E5211 . 83C4 08 ADD ESP,8
005E5214 . 68 142C8500 PUSH Main.00852C14 ; ASCII "mu.exe"
to do this just select the line and press space bar or double click it
after that press return, then close the little editor window and press ctrl+a for reanalize the code.
Now click with dx mouse button on the new code created and select:
copy to executable->Selection
in new window do the same, click with dx mouse button on selected line and click on save file.
Name it what you want ex: main_c.exe and click on save button.
ok press alt+F2 (this stop the debugging)
Press F3 and open your new saved main...
Next step is to disable resource guard (because if is enabled you can't play in most case)
ok here we go,
Search for->All referenced text string
in the window of the referenced text string press home button
then click dx mouse -> search for text and search for: resource
after locate: ascii resourceguard error double click on it to go to thet offset
here is the situation: change on the offset 0060112F JE with JMP
[QUOTE] Join Date: May 2006
Location: Italia
Posts: 301
01-25-2009, 10:58 PM
First of all donwnload the 1.05D+ patch from here: FTP mukorea (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b> .co.kr%2Fpub%2Fmuonline%2F)
then you need ollydbg to continue. download it here (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>)
Ok extract the patch, open ollydbg and press F3 and locate the main.exe (and wait)
After finish loading, press dx mouse button, Search for->All referenced text string
after finshed search on new windows press home butto to go to start of the list
then ctrl+l or click dx mouse -> search for text
and write: mu.exe (without the marker on case sensitive) press ok and press three times ctrl+l
then double click on ascii mu.exe to go to thet offset.
here is the situation: change on the offset 005E5200 JNZ with JMP
""""""""" this step is for bypass mu.exe autoupdater. """""""""""
Code:
005E5200 . EB 55 JMP SHORT Main.005E5257
005E5202 . 68 04328500 PUSH Main.00853204 ; /Arg2 = 00853204
005E5207 . 68 D802FE07 PUSH Main.07FE02D8 ; |Arg1 = 07FE02D8
005E520C . E8 600D0C00 CALL Main.006A5F71 ; \Main.006A5F71
005E5211 . 83C4 08 ADD ESP,8
005E5214 . 68 142C8500 PUSH Main.00852C14 ; ASCII "mu.exe"
to do this just select the line and press space bar or double click it
after that press return, then close the little editor window and press ctrl+a for reanalize the code.
Now click with dx mouse button on the new code created and select:
copy to executable->Selection
in new window do the same, click with dx mouse button on selected line and click on save file.
Name it what you want ex: main_c.exe and click on save button.
ok press alt+F2 (this stop the debugging)
Press F3 and open your new saved main...
Next step is to disable resource guard (because if is enabled you can't play in most case)
ok here we go,
Search for->All referenced text string
in the window of the referenced text string press home button
then click dx mouse -> search for text and search for: resource
after locate: ascii resourceguard error double click on it to go to thet offset
here is the situation: change on the offset 0060112F JE with JMP
Code:
0060112F . EB 47 JMP SHORT Main.00601178
00601131 . B9 C04BFE07 MOV ECX,Main.07FE4BC0
00601136 . E8 F55C0300 CALL Main.00636E30
0060113B . 8D9424 8C09000>LEA EDX,DWORD PTR SS:[ESP+98C]
00601142 . 52 PUSH EDX ; /Arg3
00601143 . 68 2C418500 PUSH Main.0085412C ; |Arg2 = 0085412C ASCII "> ResourceGuard Error!!(%s)
"
00601148 . 68 D802FE07 PUSH Main.07FE02D8 ; |Arg1 = 07FE02D8
0060114D . E8 1F4E0A00 CALL Main.006A5F71 ; \Main.006A5F71
00601152 . 83C4 0C ADD ESP,0C
00601155 . 8D4C24 54 LEA ECX,DWORD PTR SS:[ESP+54]
then do the same step to save this new mod.
now you have a cracked and working main with gameguard enabled.
here is the link to download (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b> rpmu%2FGameGuard_105D%2B.rar) the gameguard folder.
here is the link to download (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>) the main with gameguard enabled.
remember to use the file provided with every update named: GameGuard.des
if some one want to understand how to bypass gameguard too i can make another little guide.
P.S. sorry for error but i'm italian ;)
edited:
try to download all the dll needed by client: gg_and_client_dll (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>)
GameGuard don't work if main is packed
Anh em nào test thử đi xem sao
First of all donwnload the 1.05D+ patch from here: FTP mukorea (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b> .co.kr%2Fpub%2Fmuonline%2F)
then you need ollydbg to continue. download it here (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>)
Ok extract the patch, open ollydbg and press F3 and locate the main.exe (and wait)
After finish loading, press dx mouse button, Search for->All referenced text string
after finshed search on new windows press home butto to go to start of the list
then ctrl+l or click dx mouse -> search for text
and write: mu.exe (without the marker on case sensitive) press ok and press three times ctrl+l
then double click on ascii mu.exe to go to thet offset.
here is the situation: change on the offset 005E5200 JNZ with JMP
""""""""" this step is for bypass mu.exe autoupdater. """""""""""
005E5200 . EB 55 JMP SHORT Main.005E5257
005E5202 . 68 04328500 PUSH Main.00853204 ; /Arg2 = 00853204
005E5207 . 68 D802FE07 PUSH Main.07FE02D8 ; |Arg1 = 07FE02D8
005E520C . E8 600D0C00 CALL Main.006A5F71 ; \Main.006A5F71
005E5211 . 83C4 08 ADD ESP,8
005E5214 . 68 142C8500 PUSH Main.00852C14 ; ASCII "mu.exe"
to do this just select the line and press space bar or double click it
after that press return, then close the little editor window and press ctrl+a for reanalize the code.
Now click with dx mouse button on the new code created and select:
copy to executable->Selection
in new window do the same, click with dx mouse button on selected line and click on save file.
Name it what you want ex: main_c.exe and click on save button.
ok press alt+F2 (this stop the debugging)
Press F3 and open your new saved main...
Next step is to disable resource guard (because if is enabled you can't play in most case)
ok here we go,
Search for->All referenced text string
in the window of the referenced text string press home button
then click dx mouse -> search for text and search for: resource
after locate: ascii resourceguard error double click on it to go to thet offset
here is the situation: change on the offset 0060112F JE with JMP
[QUOTE] Join Date: May 2006
Location: Italia
Posts: 301
01-25-2009, 10:58 PM
First of all donwnload the 1.05D+ patch from here: FTP mukorea (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b> .co.kr%2Fpub%2Fmuonline%2F)
then you need ollydbg to continue. download it here (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>)
Ok extract the patch, open ollydbg and press F3 and locate the main.exe (and wait)
After finish loading, press dx mouse button, Search for->All referenced text string
after finshed search on new windows press home butto to go to start of the list
then ctrl+l or click dx mouse -> search for text
and write: mu.exe (without the marker on case sensitive) press ok and press three times ctrl+l
then double click on ascii mu.exe to go to thet offset.
here is the situation: change on the offset 005E5200 JNZ with JMP
""""""""" this step is for bypass mu.exe autoupdater. """""""""""
Code:
005E5200 . EB 55 JMP SHORT Main.005E5257
005E5202 . 68 04328500 PUSH Main.00853204 ; /Arg2 = 00853204
005E5207 . 68 D802FE07 PUSH Main.07FE02D8 ; |Arg1 = 07FE02D8
005E520C . E8 600D0C00 CALL Main.006A5F71 ; \Main.006A5F71
005E5211 . 83C4 08 ADD ESP,8
005E5214 . 68 142C8500 PUSH Main.00852C14 ; ASCII "mu.exe"
to do this just select the line and press space bar or double click it
after that press return, then close the little editor window and press ctrl+a for reanalize the code.
Now click with dx mouse button on the new code created and select:
copy to executable->Selection
in new window do the same, click with dx mouse button on selected line and click on save file.
Name it what you want ex: main_c.exe and click on save button.
ok press alt+F2 (this stop the debugging)
Press F3 and open your new saved main...
Next step is to disable resource guard (because if is enabled you can't play in most case)
ok here we go,
Search for->All referenced text string
in the window of the referenced text string press home button
then click dx mouse -> search for text and search for: resource
after locate: ascii resourceguard error double click on it to go to thet offset
here is the situation: change on the offset 0060112F JE with JMP
Code:
0060112F . EB 47 JMP SHORT Main.00601178
00601131 . B9 C04BFE07 MOV ECX,Main.07FE4BC0
00601136 . E8 F55C0300 CALL Main.00636E30
0060113B . 8D9424 8C09000>LEA EDX,DWORD PTR SS:[ESP+98C]
00601142 . 52 PUSH EDX ; /Arg3
00601143 . 68 2C418500 PUSH Main.0085412C ; |Arg2 = 0085412C ASCII "> ResourceGuard Error!!(%s)
"
00601148 . 68 D802FE07 PUSH Main.07FE02D8 ; |Arg1 = 07FE02D8
0060114D . E8 1F4E0A00 CALL Main.006A5F71 ; \Main.006A5F71
00601152 . 83C4 0C ADD ESP,0C
00601155 . 8D4C24 54 LEA ECX,DWORD PTR SS:[ESP+54]
then do the same step to save this new mod.
now you have a cracked and working main with gameguard enabled.
here is the link to download (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b> rpmu%2FGameGuard_105D%2B.rar) the gameguard folder.
here is the link to download (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>) the main with gameguard enabled.
remember to use the file provided with every update named: GameGuard.des
if some one want to understand how to bypass gameguard too i can make another little guide.
P.S. sorry for error but i'm italian ;)
edited:
try to download all the dll needed by client: gg_and_client_dll (<b><font color=red>[Chỉ có thành viên mới xem link được. <a href="register.php"> Nhấp đây để đăng ký thành viên......</a>]</font></b>)
GameGuard don't work if main is packed
Anh em nào test thử đi xem sao