Hard disk protection card crack - a small piece of the Sentinel: Ym 2002.6.15 23:43:50 email: yaomingmail@sina.com
Now the hard disk protection card is growing, Internet cafes, the school can be seen everywhere, I encountered several types and brands, the small sentinel is one of the relatively perfect technologies. The watchdog encountered in the school room is serious. Technical defects, as long as the hard disk parameters in the CMOS can be broken, so I want to focus on the solution of the little sentinel, and of course, the method of dealing with the dog is not working here, I have a long time, until I don't have it. I saw an article that crack the hard disk protection card on the Internet a few days ago, giving me a brand new crack thinking, but in fact, according to the original method, I can't crack the little sentinel, but only one step away from success, this article It is a supplementary note, I hope to help everyone. First, by reading that article, I know that the protection card is to achieve the protection of the interrupt vector to protect the hard disk is not true, where INT13 is the key, and also modified The clock interruption to reach the reverse track, restore the purpose of the interrupt vector table. The little sentry intercepts the INT13 handler, hung it to the above, which is also the reason why you can't write data, you know this, you will say we will say we Just put the BIOS's INT13 program address, in DOS, the interrupt vector table does not have a lot of work, in fact, the little sentinel is early to think of this, it will take advantage of the clock to be modified by it, check the interrupt vector. Table, once it finds 0000: 4C 3, it will be modified to other values. The original article is to restore the clock to the clock, I feel too cumbersome, and the possibility of error is large, not for it. After passing Try to change the first statement of the original interrupt handler to 0255: 0148 (this is not necessarily) JMP F000: XXXX here. Here you still talk about XXXX acquisition, this step is also the key, I started with Debug T. A few times have a dead machine. By observing each dead address is different, the suspected that the little sentry uses the clock to break back, but each track is given a time after a time, so after entering INT13, you have to be in this time. Take the fastest speed, T to F000: XXXX, when T out of the first F000 on the screen, the late offset is the xxxx we are looking for. Remember it, believe you It has been dead, restart, F8 into DOS.
Debug-d 0: 4C0000: 004C 48 01 55 02-A 0255: 0148-0255: 0148 JMP F000: XXXX-Q
C: /> cd windows
C: / windows> win
OK, now change a desktop, copy a game go in, restart and try it, still, the game is hidden, I wish you a happy!
