How is your reverse engineering skills?
You need to disassemble rohanclient.exe to find the callouts to gameguard. Once you find those determine the return value you need to satisfy the calls.
Find blocks of free data space to use as a sandbox for your modified function calls.
When you have that information use an editor to change each gameguard callout target to a call to some data space. inside that data space write code that sets up that satisfactory return value and return.
You need to repeat that for each gameguard function call.
Once done, the rohanclient will appear to be infected with a virus. Also you will only be able to run it in machines that allow data execution (windows will throw an exception otherwise).




Reply With Quote

