Jump to content

Update Of System To Avoid Bots


Recommended Posts

I use eressea system + my 2 files, simple.

Just like you should - if it doesn't work you can't copy paste correctly.

 

And you should really quit computers if so.

I did it correctly, but it seems problem will be in my computer, some of that files cannot be turned on, because some files are missing...

Link to comment
Share on other sites

Files missing ? That sounds like a antivirus removing files due to detection of a packing program. If its the tower instead, well updating to last version of .NET and updating the bot itself, it should work.

Edited by Sighed
Link to comment
Share on other sites

Files missing ? That sounds like a antivirus removing files due to detection of a packing program. If its the tower instead, well updating to last version of .NET and updating the bot itself, it should work.

I will try and then let you know, probably my antivirus deleted some files from new downloaded .net framework...because bypass of bot has been downloaded corectly.

Link to comment
Share on other sites

Administator like challenges, he just updated his "antibot" and wrote me "you are not able to bypass this". Of course he is right, cause I cant bypass anything, anyway I hope some of you help me :-D  There is updated system : http://eressea.cz/downloads/system.zip Advertisement on my website ( http://l2servers.webnode.cz/ ) for anyone who will bypass and share it with me or here with us :-)

Edited by Warendo
Link to comment
Share on other sites

Simpler method - with just modifying his own fire3.dll:

 

http://www44.zippyshare.com/v/88600500/file.html

 

PS:

Banning my IP - does nothing when even my grandma has 50 proxies or VPNs.

 

qhVZlB9.jpg

Edited by mcbigmac
Link to comment
Share on other sites

It's not an antibot solution.

 

It's changing blowfish key and creating a thread to check for bad stuff.

 

 

It's a cheap patchwork imitating a proper way to break botting.

It doesn't stop Sniffing\PHX for example in anyway.

 

Altho it beats just putting virtualprot on ws32.connect\nophx in your system - so the owner guy is atleast trying which is kinda cool :P

Link to comment
Share on other sites

Hi guys, here the hated lame admin :)

 

I can't give you link to system.zip, cause we're not using it anymore, so you'll have to use http://eressea.cz/Launcher.exe, I'm pretty sure you'll figure out what to do.

 

I'm curious how much time will you need to break in ;)

Link to comment
Share on other sites

Already broke it - but didn't share it since warendo seem to left.

Can if you want later.

 

Your concept is the same as before, using some lame crypto library because you think that will make it harder is stupid - and will not stop anyone like me.

 

 

You do Y to stop bots - but do X to require users to connect.

Flawed methology - blowfish is going to be at the same place no matter how much poopness you do from fire3 with ARG stacks or not -  before calling fyyre's work.

 

 

BREAK the ability for all bots\sniffers to function - don't hunt them.

 

EDIT:

 

To break your current stategy of executing keys from fire3 - you need to litterally change 1 byte.

No need to write my own dll and call fire2 with correct keys or similar.

Edited by mcbigmac
Link to comment
Share on other sites

Read what i wrote.

 

And yes it works - the only thing stopping a normal client from connecting is changed Blowfish.

 

 

If you don't believe that -  your in denial  and\or severely brain-damaged.

Your entire concept is based upon fire2 getting the correct ARGs - if it does that who gives a shit what fire3 does?

 

Thirdly - when i have atleast 4 or 5 options of disabling fire3.dll by it's "thread" and\or closing of active process it also fails miserably.

Some of which only require jmps or nops.

Edited by mcbigmac
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



  • Posts

    • So excited to announce 3x Telegram Premium (6 months)   Join our official TG and participate to win!   Asocks.com - trusted proxy service providing mobile and residential proxies with a single price of $3 per 1GB   A huge locations pool and high speed will help complete all tasks    
    • Well, sorry not sorry for resurrecting old topic, but I believe it's ultimately stupid to implement license checks like Vilmis did 🙂   private static String url = "jdbc:mysql://185.80.128.233/" + getData("Zm9ydW1fZGI="); private static String username = getData("bXJjb3B5cmlnaHQ="); private static String password = getData("Y29weXJpZ2h0XzEyMw=="); con = GlobalDB.getInstance().getConnection(); PreparedStatement statement; statement = con.prepareStatement("SELECT field_6 from core_pfields_content WHERE member_id = ?"); statement.setInt(1, Config.FORUM_USER_ID); ResultSet rset = statement.executeQuery();   This awesome way of coding things leaves us with base64-encoded credentials and DB exposed and accessible globally 😉 Btw he checks his licensing data from some plugin generated table his forum uses. Vilmis took action and ensured that mrcopyright user would have only needed accesses and rights for this operation. But he forgot to ensure that his INFORMATION_SCHEMA database would not be exposed and readable... That leads us to fully readable server variables like version used (10.1.26-MariaDB-0+deb9u1 - pretty ancient DB and OS, I'd assume). From here you can go south and do some kinky stuff, if you want and have knowledge for that. But who cares, right?   Ooh, table core_pfields_content field_6 is IP address which is checked by FORUM_USER_ID. Yep, you can query all IP addresses there (124 of them right now) and also do whatever you want with them! 🙂  The most fun part? Files source has been shared what, more than 2 years ago?  Vilmis still uses very same credentials and never changed it after sources exposure - who cares. Although, "sources" may be way too strong word here. If anyone still use paid Orion versions, I'd suggest packing your shit and leaving immediately, or at least fix this incompetent fool caused problems. It's obvious Vilmis don't care or maybe doesn't even know from the first place how to solve this problem (hint hint - tiny PHP Rest API microservice which would do absolutely the same but without exposing sensitive data?). By doing that, he exposes his infrastructure and YOUR data, and he does that for more than 2 years now 🙂 Developer of century!    
    • rename the l2.bin into l2.exe
    • L2LIVE.PRO- Dynamic Mid-rates Essence Seven Signs GRAND OPENING - July 5, 20:00 GMT+3 (EEST) TEST SERVER IS OPEN - COME AND CHECK IT OUT TODAY! Join our community and be part of it at: https://www.l2live.pro https://discord.gg/k3NMgR4Dmu   Server description * EXP/SP: Dynamic (x1- x100 based on your level, *before* Sayha and EXP buffs * Adena: x50 / Item Drop: x10 / Fishing EXP increased / Attribute EXP increased * Simplified gameplay to stay in the loop while not spending hours and hours farming * Starter Pack containing very useful items for beginners * MP replenishing potions with auto-consumption * No overpowered donations L2LIVE shop * All spellbook coupons, pet spellbook coupons and master books are sold via Game Assistant * Additionally you can buy SP pouches, enchanted talismans, pet training guides and various other consumables for Adena and L-Coin * More items such as cloaks, more talismans, agathions, belts, pendants, enchantment scrolls of various grades, evolution stones, etc will be added! Shop server as a shortcut, and all retail-like ways of earning items are still here! L-Coins * Drops with small change and in random amounts from Lv60+ monsters  * All raidbosses drop random amount of L-Coin Pouches generating up to 420 Lcoin per unit. **Grand Olympiad and Events** * Grand Olympiad is held week day * Format is 1v1, unlimited weekly fights  * Heroes are declared weekly at Sunday * There are three automated events - TvT, CTF and Deathmatch, running at evenings * Orc Fortress, Battle with Balok, Keber Hunter, Archievements Box, Daily Gift Calendar provisional events are active too Custom user commands * .offlineplay command, your character will keep playing till death or server restart * .offlineshop command, keeps your shop sitting until all items are purchased * .apon / .apoff - enable/disable HP/MP autoconsume And lots of other small improvements are waiting for you!   Join our community and be part of it at: https://www.l2live.pro https://discord.gg/k3NMgR4Dmu
  • Topics

×
×
  • Create New...