Hi everyone,

I am trying to learn how to patch the programme code from an EPROM that is from my TV system, although I am completely new to this stuff I have managed to buy a programmer and read the EPROM which produced a file that I loaded into IDA successfully. The problem is there is so much code that I am having problems finding the section I need (the pin code) before I can even think about patching the file or creating a jump point.

Can anyone point me to a tutorial or some help in this type of thing please?

Regards

Phil K

There is no need to do that
there is always a way to reset the TV pin codes
if u have access to engineers manuals it will tell u how

And I don't suppose you bothered to try searching on the net for answers to your questions, or at the very least, you have not followed the posting guidelines and indicated that you have. Please go back and actually read the FAQ, like you were supposed to have done and indicated that you actually did.

Regards,

Cyberbarty,
Many thanks for your reply... I have had a good look round on the net for information about resetting the pin but it has only produced an engineers code that lets me power-up the TV for a few hours in a fault finding mode and although there may be a way to reset the pin I have not yet found it : (

JMI,
I am surprised at your attitude to my post as a moderator, I have extensively searched for information on this problem for about 4months and that is how I have managed to get this far. Also for your information I have searched this forum for information about EPROM’s but as my question suggests I would like some help in what direction to learn more.

Regards
Phil K

philkin:

Why would you be suprised by my comments? Do you feel that you have a special dispensation to ignore the Rules? Those Rules DO require that you make an effort to help yourself before you post.

Do you assume that we are mind readers and can intuit that you have made that effort when you do NOT state that you did make such an effort by searching for answers on the net? Are we left to just guess you have actually read the FAQ when you do not indicate that you have and your post indicates that you have not? We were also left to assume you had used the SEARCH function here, because, as I pointed out in my original post, you again did not indicate you had done so.

So let's be clear. It's my job to put new posters on the right path. You may have had information in your head confirming you had done some of the things required here, but you first post clearly fails to state the things I discussed and that is the reason why they were mentioned. I do not believe if you actually re-read your first post you could disagree. That is also why my response was stated in the "conditional" mode, indicating that I was forced to make assumption, based upon your lack of information.

If you had spent any time actually reading these Forums, you would already have been aware of what response you could expect from the way you phrased your post and would have also know to expect my response to what you did write. You still have not indicated that you have actually read the FAQ.

Regards,

Howdy,

Without getting into the particulars about sat tv protections.............

There are plenty of places out there that have all the information you could possibly need about this subject. If you do not know how to read the code in regards to what the EPROM wants, you have no chance to do this.
Every system is different and they change just like commercial software protection.

I dont think you will find many people here who are into sat tv reversing.

Good luck,

Woodmann

Many thanks Woodmann,

My work is analogue RF (for 30years) and as you can imagine is worlds away from binary data but I am always willing to have a go but sometimes that's not good enough and I try to find the right people to talk with as I do for other people in my work.

This is not a satellite TV decrypt problem it is simply a pin code stored in some binary data that I need help with, but many thanks for your time and as you suggest I will look to other areas.

Regards
Phil K
Essex UK

Philkin,

As a suggetion, have you tried looking for any EEproms?

Yes, EProms are used for MPU code, but they can generally be only written to once without UV to erase.

The pin numbers can usually be changed (by the user), so require rewritable memory hence an EEprom.

Try searching for the normall 24lcXX,24Lxx, 93cxx, etc ranged.

Then backup the contents and erase (or swap for a blank eeprom). This trick works for Dell laptops which prompt for a new bios password.

+Phantasm

Phantasm,

That’s very helpful and I see what you are saying is that if the EPROM is blank then the microcontroller may reset to a default set-up mode (we hope) and that could give me just what I need so I can get to the installation menu. I will try to get a new blank 28C64 and give it a go.


Much Appreciated

Phil K

Howdy,

A 28C64 is re-writable, you dont need a blank one.
Then again, $4.00 will get you a new one.

Woodmann

Thanks for your help here guys,

I have fitted a new 28C64 but the result is no power-up so there must be some other code in the device apart from settings pins etc.

All the best

Phil K

well, indeed, like phantasm said, it is imho not very likely that the pincode is stored in the same memory where the program code resides. don't you have an identical tv? (not very likely, but that would help you for sure )

ideas that pop-up in my mind is hot swapping the eeprom and other nasty things

first, i think you should know the program in eeprom is compiled by which kind of mcu.then maybe you can revserse it. I think you would not read the X86 deassembled code which is compiled by PowerPC compiler. You can find the mcu type in your motherboard.