From 73cbed632030f7f44d259dea1e2a1b00a17f95a5 Mon Sep 17 00:00:00 2001 From: boris Date: Wed, 26 Dec 2018 00:11:18 +1300 Subject: obje]se incomepeternt porogrammer wtieres cod SPWOOOOOoo --- legacy/loader/new 1.txt | 87 +++++++++++++++++++++++++++++++++++++++---------- 1 file changed, 69 insertions(+), 18 deletions(-) (limited to 'legacy/loader/new 1.txt') diff --git a/legacy/loader/new 1.txt b/legacy/loader/new 1.txt index 6985716..fde038e 100644 --- a/legacy/loader/new 1.txt +++ b/legacy/loader/new 1.txt @@ -1,37 +1,88 @@ +// todo: +// add .text hash checking, DbgUiRemoteBreakIn, DbgBreakPoint hooks +// hook recv/send on server, check if return address is valid +// (also check commonly abused functions for hooks) +// make release mode use themida macros :^) SecurityWrapper { Start( ) // Dispatch security thread to periodically check for blacklisted processes. Patch( ) // Bytepatch often abused functions to call ExitProcess directly. Check( ) // Check if dummy functions have been bytepatched (OpenProcess, WriteProcessMemory, VirtualQuery) } -RemoteCodeParameters { - m_dwEndScene - m_dwEndSceneOrig - //m_dwImportCode - m_dwEntryPoint - m_dwCheatHeader - m_dwVirtualProtect -} - -RemoteCodeServer { - Start( RemoteCodeParameters *Parameters ) - GetBytes( ) -} +// todo: +// make shellcode jump out to custom address (pass cheat header to it) +// cheat itself will be invoked via TLS callback +RemoteCodeClient { } +RemoteCodeServer { } -RemoteCodeClient { - Start( ByteArray &RemoteCode ) - Dispatch( ) -} +// todo: +// get this finished off tomorrow along with HWID RemoteInjectionServer { Start( ByteArray &DllData ) ProcessRelocation( uint32_t RemoteAddress ) ProcessHeader( RemoteHeader *Header ) + DumpImports( ) + ProcessImports( ImportHeader *Header ) GetBytes( ) } RemoteInjectionClient { Start( RemoteProcess &Process ) AllocateMap( uint32_t SizeOfImage ) + DumpImports( ImportRequest *Request ) WriteToMap( ByteArray &Data ) -} \ No newline at end of file +} + +// this section will be posted on forums: +[000F:xxxxxxxx] +The following error code indicates a critical loader failure. +Please ensure that Windows Firewall is allowing the loader to communicate over the Internet, +the Operating System you're using is supported and that no anti-virus software is blocking the loader. + +[000F:00001A00] +[000F:00001B00] +Your operating system is not supported. +Only 64-bit versions of Windows 8, 8.1 and 10 are officially supported by the loader. + +[000F:00002A00] +There was an issue connecting to the loader backend. +This could be due to numerous reasons, most usually it would be Windows Firewall blocking the client. + +[000F:00002B00] +The server decided to drop your connection. +Please make sure you are not running any blacklisted programs. + +[000F:00001C00] +There was an error with accessing a process. +Please make sure that anti-virus software is not blocking the loader. + +[000F:00002C00] +[000F:00003C00] +The integrity check on the process has failed. +Please make sure that the copy of the game is up to date and that you are not running any software +that could be tampering with the game's execution flow. + +[000A:xxxxxxxx] +The following error indicated that your client is either corrupted or outdated. +The error might appear if the loader is undergoing maintenance. + +If the problem persists, please download the latest version from here. + +[000G:xxxxxxxx] +The server does not recognize your subscription as valid. This could be due to numerous factors including: + - You do not have a subscription. + - You have attempted to tamper with the loader. + - Your machine is infected with malware that triggered a loader integrity check. + - You have another account on the same IP address/hardware ID. + +To trouble-shoot this issue, try changing your password on the forums to force a database update. +If the issue persists, contact an administator. + +[000C:xxxxxxxx] +The server does not recognize your credentials as valid. +To trouble-shoot this issue, please take note of the following: + - CAPS LOCK is not parsed as valid input by the loader. + - Pressing TAB will insert a character into the text input field. + +If the issue persists, contact an administrator. \ No newline at end of file -- cgit v1.2.3