EhSvc Bypass 2013

Está ai pessoal agora é com vocês! /baba

Code:

---

#define DisableValidation 0X77BC01C5 
#define DisableLookaside  0X77BC0251 
#define ShutdownFlags    0X77BC0266 
#define DisableEscalation    0X77BC2B32

VOID EhSvcBypass(VOID)
{
    DWORD dwEhSvc;

    do {
  dwEhSvc = FindDll("EhSvc.dll");
        Sleep(30);
    } while(!dwEhSvc);

 WriteOpCode((PVOID)(dwEhSvc + DisableValidation),"\x68\x02\x89\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableLookaside), "\x68\xD8\x88\xB8\x77", 5);
 WriteOpCode((PVOID)(dwEhSvc + ShutdownFlags), "\x68\xBC\x88\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableEscalation), "\x68\x08\xAB\xB8\x77", 5);
}

---

Créditos:
debug -> dump da EhSvc.dll
Gellin
kssiobr

Legal esse bypass mas ele vai funfa ainda amanha se o CA atualiza?

Quote:

---

Originally Posted by Hackerlog

Legal esse bypass mas ele vai funfa ainda amanha se o CA atualiza?

---

Certeza Que Não. Se Acha Pq Ele Foi Posta Hj ? heuehuehu '-'

KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKK #PraqueFazerIsso

Quote:

---

Originally Posted by KillerPX

Está ai pessoal agora é com vocês! /baba

Code:

---

#define DisableValidation 0X77BC01C5 
#define DisableLookaside  0X77BC0251 
#define ShutdownFlags    0X77BC0266 
#define DisableEscalation    0X77BC2B32

VOID EhSvcBypass(VOID)
{
    DWORD dwEhSvc;

    do {
  dwEhSvc = FindDll("EhSvc.dll");
        Sleep(30);
    } while(!dwEhSvc);

 WriteOpCode((PVOID)(dwEhSvc + DisableValidation),"\x68\x02\x89\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableLookaside), "\x68\xD8\x88\xB8\x77", 5);
 WriteOpCode((PVOID)(dwEhSvc + ShutdownFlags), "\x68\xBC\x88\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableEscalation), "\x68\x08\xAB\xB8\x77", 5);
}

---

Créditos:
debug -> dump da EhSvc.dll
Gellin
kssiobr

---

vc é engraçado :) !!!

Prefiro nem comentar ... tehe
OoOoO Grande "Bypass" sqñ

Quote:

---

Originally Posted by KillerPX

Está ai pessoal agora é com vocês! /baba

Code:

---

#define DisableValidation 0X77BC01C5 
#define DisableLookaside  0X77BC0251 
#define ShutdownFlags    0X77BC0266 
#define DisableEscalation    0X77BC2B32

VOID EhSvcBypass(VOID)
{
    DWORD dwEhSvc;

    do {
  dwEhSvc = FindDll("EhSvc.dll");
        Sleep(30);
    } while(!dwEhSvc);

 WriteOpCode((PVOID)(dwEhSvc + DisableValidation),"\x68\x02\x89\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableLookaside), "\x68\xD8\x88\xB8\x77", 5);
 WriteOpCode((PVOID)(dwEhSvc + ShutdownFlags), "\x68\xBC\x88\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableEscalation), "\x68\x08\xAB\xB8\x77", 5);
}

---

Créditos:
debug -> dump da EhSvc.dll
Gellin
kssiobr

---

https://geradormemes.com/media/created/5751nq.jpg

Quote:

---

Originally Posted by KillerPX

Está ai pessoal agora é com vocês! /baba

Code:

---

#define DisableValidation 0X77BC01C5 
#define DisableLookaside  0X77BC0251 
#define ShutdownFlags    0X77BC0266 
#define DisableEscalation    0X77BC2B32

VOID EhSvcBypass(VOID)
{
    DWORD dwEhSvc;

    do {
  dwEhSvc = FindDll("EhSvc.dll");
        Sleep(30);
    } while(!dwEhSvc);

 WriteOpCode((PVOID)(dwEhSvc + DisableValidation),"\x68\x02\x89\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableLookaside), "\x68\xD8\x88\xB8\x77", 5);
 WriteOpCode((PVOID)(dwEhSvc + ShutdownFlags), "\x68\xBC\x88\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableEscalation), "\x68\x08\xAB\xB8\x77", 5);
}

---

Créditos:
debug -> dump da EhSvc.dll
Gellin
kssiobr

---

Só impressão minha né ? kkkk
isso vai desliga o PC u.u
#Sou novo nissu joven '-'

Quote:

---

Originally Posted by ulquiorraj

Só impressão minha né ? kkkk
isso vai desliga o PC u.u
#Sou novo nissu joven '-'

---

https://geradormemes.com/media/created/rp1bim.jpg

Quote:

---

Originally Posted by demtrios

https://geradormemes.com/media/created/rp1bim.jpg

---

pega leve fera u.u relaxe

---------- Post added at 09:59 PM ---------- Previous post was at 09:54 PM ----------

Quote:

---

Originally Posted by KillerPX

Está ai pessoal agora é com vocês! /baba

Code:

---

#define DisableValidation 0X77BC01C5 
#define DisableLookaside  0X77BC0251 
#define ShutdownFlags    0X77BC0266 
#define DisableEscalation    0X77BC2B32

VOID EhSvcBypass(VOID)
{
    DWORD dwEhSvc;

    do {
  dwEhSvc = FindDll("EhSvc.dll");
        Sleep(30);
    } while(!dwEhSvc);

 WriteOpCode((PVOID)(dwEhSvc + DisableValidation),"\x68\x02\x89\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableLookaside), "\x68\xD8\x88\xB8\x77", 5);
 WriteOpCode((PVOID)(dwEhSvc + ShutdownFlags), "\x68\xBC\x88\xB8\x77", 5);
    WriteOpCode((PVOID)(dwEhSvc + DisableEscalation), "\x68\x08\xAB\xB8\x77", 5);
}

---

Créditos:
debug -> dump da EhSvc.dll
Gellin
kssiobr

---

Nice Bypass em kkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
e esse #define ShutdownFlags 0X77BC0266 esse nome é meio familiar não??? tehe

Nossa da bobeira n filho

So olhando ja da para saber que não funciona porque tem que parar algumas CRCs

Use isso se quiser desligar o PC (suspeito) ou se quiser tomar um ban na sua Conta !