openkore icon indicating copy to clipboard operation
openkore copied to clipboard
verified publisher icon OpenKore

How to prevent Poseidon server from being detected by nprotect gameguard

Open CloudMake opened this issue 3 years ago • 10 comments

------------------ Openkore Issues Template ------------------

  • Openkore version git:

latest

  • Server:

cRO

  • Bug Report / Feature Request:

Feature Request

  • Summary:

After the update on February 7, 23, the gameguard program of the cRO client was upgraded from version 2675 to version 2690. Now the client detects an illegal program after connecting to the poseidon server. Please help me to update the settings of cRO. Thank you very much!

CloudMake avatar Feb 09 '23 05:02 CloudMake

yep i got the same issue with cRO, posidon was working fine even running in the same OS with Ragexe client. After this new patch, posidon server has been detected by nProtect no matter it's in vm or different os. Would love to help and figure it out what's going on if core devs can give us a direction, cheers.

sOm2y avatar Feb 09 '23 05:02 sOm2y

Did some investigation and tried couple ways to setup poseidon but all failed:

  1. setup local poseidon(default port 6900) interacting with ragexe client in same OS (managed to get way working before) - Failed
  2. local vm(including vmware workstation, hyper v, default port 6900) using vpn like logmein, radmin, being detected by nprotect gameguard straightway - Failed
  3. remote vm(azure vm, setup networking with default port 6900 open) no vpn connection - Failed

It seems nprotect gameguard can detect poseidon no matter what OS you are on, this has to be gameguard changed the verification mechanism or the network packs changed.

Further investation: need to analysis the network packages between ragexer client and nprotect.

I'm still new to this area and would really appricate if there are still active devs/pros out there can help us. Funding will be provided :)

sOm2y avatar Feb 12 '23 23:02 sOm2y

The same problem occurred in XKORE3 mode.

console

error

TorresVan avatar Feb 17 '23 08:02 TorresVan

The same problem occurred in XKORE3 mode.

console

error

where did you guys download cRO? i cant seem to get the link to work

Fruitard avatar Apr 10 '23 14:04 Fruitard

where did you guys download cRO? i cant seem to get the link to work

http://ro.qiquanwl.com/download/game/default.html

TorresVan avatar Apr 10 '23 14:04 TorresVan

where did you guys download cRO? i cant seem to get the link to work

http://ro.qiquanwl.com/download/game/default.html

thank you, but i cant register as i verify my ID

Fruitard avatar Apr 11 '23 02:04 Fruitard

Hiding bypass detection

ghost avatar May 07 '23 20:05 ghost

Hiding bypass detection

How to do it specifically?

taxaser avatar Oct 12 '23 09:10 taxaser

yep i got the same issue with cRO, posidon was working fine even running in the same OS with Ragexe client. After this new patch, posidon server has been detected by nProtect no matter it's in vm or different os. Would love to help and figure it out what's going on if core devs can give us a direction, cheers.

Is now the problem solved?

CroJJJ avatar Dec 28 '23 17:12 CroJJJ

yep i got the same issue with cRO, posidon was working fine even running in the same OS with Ragexe client. After this new patch, posidon server has been detected by nProtect no matter it's in vm or different os. Would love to help and figure it out what's going on if core devs can give us a direction, cheers.

Is now the problem solved?

you could try this: https://github.com/zhaodice/qemu-anti-detection

sOm2y avatar Dec 28 '23 18:12 sOm2y

its not related to openkore, but related to methods to avoid nprotect detect changes, nothing in openkore code will change this

alisonrag avatar Dec 06 '24 13:12 alisonrag