|
DVDRegionFree 3.25 Stolen bytes
it was easy to find OEP + fix IAT. but i have problems with stolen bytes. i know, i must look at the stack, but i've found only the first startup bytes
push ebp mov ebp,esp push 0 push 421D08 push 41B640 then i got stuck (now there should be references to aspr-code which is removed) |
Its a visual C++ App, just copy and paste a startup routine from another visual C++ app, the only part u needs, is the part you found:
but the PUSH 0 should be PUSH -1 watch from a app i found in my hard drive Code:
00896F9E >/$ 55 PUSH EBPEnjoy. Btw when u patch the Pointer, and it says its Registered , its *NOT* Working still, i didnt get a chance to finish playing with it, but if u use the trial version with a dvd, it will work fine, and with any region, however after dumping / fixing the registration pointer it doesnt work at all, says registered all nags are gone but not working :) Maybe britedream wants to take a look at it ? i dont have time atm. |
stolen bytes
here are the stolen bytes
PUSH EBP MOV EBP,ESP PUSH -1 PUSH 421D08 PUSH 41B640 MOV EAX,DWORD PTR FS:[0] PUSH EAX MOV DWORD PTR FS:[0],ESP SUB ESP,68 PUSH EBX PUSH ESI PUSH EDI MOV DWORD PTR SS:[EBP-18],ESP XOR EBX,EBX MOV DWORD PTR SS:[EBP-4],EBX PUSH 2 just do a trace from the last exception when eip is in the code section. If you look in your trace log you'll see the above stolen bytes Regards lownoise |
| All times are GMT +8. The time now is 08:02. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX