MShield

Printable View

19-10-19
sasuke

MShield

how can I remove MShield from the client?
19-10-19
RGaming

Re: MShield

mshield wont remove that you need to remove it by yourself use olly
19-10-19
Myster Dev

Re: MShield

or maybe if you have a backup on your cabalmain :)
19-10-19
sasuke

Re: MShield

is there a guide how to remove it?
19-10-19
Myster Dev

Re: MShield

Quote:

Originally Posted by sasuke

is there a guide how to remove it?

it's all about hacking :D
19-10-19
HariSeldon

Re: MShield

It depends on how Mshield is attached. Most likely, the entry point in cabalmain has been changed and the dll is attached immediately from the new entry point. In this case you need to replace "PUSH cabalmain.00A389E3" with "JMP 00A2232E".
http://www.image-share.com/upload/4007/115m.jpg :http://www.image-share.com/upload/4007/116m.jpg
It is advisable to clear the remains of this function below by replacing all the lines with INT3. But this is not necessary, just extra garbage in the file is undesirable.
http://www.image-share.com/upload/4007/117m.jpg
Removing Msheld for hacking does not make sense, because you still can not find out the real XOR keys.
19-10-19
sasuke

Re: MShield

I don't need it for hacking I need it for my client but it has MShield which I want to remove
20-10-19
KaitoDaumoto

Re: MShield

use lordpe find the dll that load mshield. easy way

All times are GMT +1. The time now is 03:30 AM.

Secured by Imperva , powered by LiteSpeed.
Sponsored by HyperFilter DDoS Protection Solutions

RaGEZONE® 2001-2023