you cannot debug gwes.exe sadly??
what do you mean?
you mean we can not Dynamic anti-compilation ?
IDA debug gwes.exe ,
some functions
sub_975CC ; CODE XREF: sub_66DF8+98p
.text:000975CC
.text:000975CC var_1C = -0x1C
.text:000975CC var_18 = -0x18
.text:000975CC var_14 = -0x14
.text:000975CC
.text:000975CC STMFD SP!, {R4-R6,LR}
.text:000975D0 SUB SP, SP, #0xC
.text:000975D4 MOV R1, R0
.text:000975D8 LDR R0, =unk_C3FDC
.text:000975DC MOV R6, #0
.text:000975E0 STR R6, [SP,#0x1C+var_14]
.text:000975E4 STR R1, [R0]
.text:000975E8 MOV R0, #0
.text:000975EC MOV R4, R6
.text:000975F0 BL CheckPassword
.text:000975F0
.text:000975F4 MOV R5, #1
.text:000975F8 CMP R0, #0
.text:000975FC BNE loc_97610
.text:000975FC
.text:00097600 LDR R0, =dword_11B30
.text:00097604 BL CheckPassword
.text:00097604
.text:00097608 CMP R0, #0
.text:0009760C BEQ loc_97614
.text:0009760C
.text:00097610
.text:00097610 loc_97610 ; CODE XREF: sub_975CC+30j
.text:00097610 MOV R4, R5
.text:00097610
.text:00097614
.text:00097614 loc_97614 ; CODE XREF: sub_975CC+40j
.text:00097614 BL sub_967C0
.text:00097614
.text:00097618 CMP R0, #0
.text:0009761C BNE loc_97668
.text:0009761C
.text:00097620 BL sub_96908
.text:00097620
.text:00097624 CMP R0, #0
.text:00097628 LDREQ R0, =s_ErrorCouldNot
.text:0009762C BLEQ NKDbgPrintfW
.text:0009762C
.text:00097630 CMP R4, #0
.text:00097634 BNE loc_97660
.text:00097634
.text:00097638 LDR R0, =s_Initalizepass
.text:0009763C BL NKDbgPrintfW
.text:0009763C
.text:00097640 MOV R0, #0x3040
.text:00097644 MOV R3, #0
.text:00097648 MOV R2, #0
.text:0009764C MOV R1, #0
.text:00097650 ORR R0, R0, #0x3E
.text:00097654 STR R6, [SP,#0x1C+var_18]
.text:00097658 STR R6, [SP,#0x1C+var_1C]
.text:0009765C BL KernelIoControl
.text:0009765C
.text:00097660
.text:00097660 loc_97660 ; CODE XREF: sub_975CC+68j
.text:00097660 ; sub_975CC+ACj
.text:00097660 MOV R0, R6
.text:00097664 B loc_976BC
.text:00097664
.text:00097668 ; ---------------------------------------------------------------------------
.text:00097668
.text:00097668 loc_97668 ; CODE XREF: sub_975CC+50j
.text:00097668 BL sub_969E8
.text:00097668
.text:0009766C CMP R0, #0
.text:00097670 BEQ loc_9767C
.text:00097670
.text:00097674 CMP R4, #0
.text:00097678 BNE loc_97660
.text:00097678
.text:0009767C
.text:0009767C loc_9767C ; CODE XREF: sub_975CC+A4j
.text:0009767C ADD R0, SP, #0x1C+var_14
.text:00097680 BL sub_96AFC
.text:00097680
.text:00097684 CMP R0, #0
.text:00097688 MOVEQ R0, R5
.text:0009768C STREQ R0, [SP,#0x1C+var_14]
.text:00097690 LDRNE R0, [SP,#0x1C+var_14]
.text:00097694 CMP R0, #0
.text:00097698 BNE loc_976BC
.text:00097698
.text:0009769C BL GetPasswordStatus
.text:0009769C
.text:000976A0 TST R0, #1
.text:000976A4 BEQ loc_976B8
.text:000976A4
.text:000976A8 BL GetPasswordStatus
.text:000976A8
.text:000976AC TST R0, #2
.text:000976B0 MOV R0, R6
.text:000976B4 BEQ loc_976BC
.text:000976B4
.text:000976B8
.text:000976B8 loc_976B8 ; CODE XREF: sub_975CC+D8j
.text:000976B8 MOV R0, R5
.text:000976B8
.text:000976BC
.text:000976BC loc_976BC ; CODE XREF: sub_975CC+98j
.text:000976BC ; sub_975CC+CCj
.text:000976BC ; sub_975CC+E8j
.text:000976BC ADD SP, SP, #0xC
.text:000976C0 LDMFD SP!, {R4-R6,LR}
.text:000976C4 BX LR
.text:000976C4
.text:000976C4 ; End of function sub_975CC
.text:000976C4
.text:000976C4 ; ---------------------------------------------------------------------------
.text:000976C8 off_976C8 DCD s_Initalizepass ; DATA XREF: sub_975CC+6Cr
.text:000976C8 ; "InitalizePasswordStatus: Call to reset "...
.text:000976CC off_976CC DCD s_ErrorCouldNot ; DATA XREF: sub_975CC+5Cr
.text:000976CC ; "ERROR: Could not intalize the NV passwo"...
.text:000976D0 off_976D0 DCD dword_11B30 ; DATA XREF: sub_975CC+34r
.text:000976D4 off_976D4 DCD unk_C3FDC ; DATA XREF: sub_975CC+Cr
.text:000976D8
.text:000976D8 ; *************** S U B R O U T I N E ***************************************
.text:000976D8
.text:000976D8
.text:000976D8 sub_976D8 ; CODE XREF: sub_66DF8+D0p
.text:000976D8
.text:000976D8 var_4 = -4
.text:000976D8
.text:000976D8 STR LR, [SP,#var_4]!
.text:000976DC MOV R0, #0
.text:000976E0 BL CheckPassword
.text:000976E0
.text:000976E4 CMP R0, #0
.text:000976E8 BNE loc_976FC
.text:000976E8
.text:000976EC LDR R0, =dword_11B30
.text:000976F0 BL CheckPassword
.text:000976F0
.text:000976F4 CMP R0, #0
.text:000976F8 BEQ loc_97724
.text:000976F8
.text:000976FC
.text:000976FC loc_976FC ; CODE XREF: sub_976D8+10j
.text:000976FC LDR R1, byte_9772C
.text:00097700 MOV R0, #0
.text:00097704 BL SetPassword
.text:00097704
.text:00097708 CMP R0, #0
.text:0009770C LDREQ R1, byte_9772C
.text:00097710 LDREQ R0, =dword_11B30
.text:00097714 BLEQ SetPassword
.text:00097714
.text:00097718 LDR R1, byte_9772C
.text:0009771C MOV R0, #3
.text:00097720 BL SetPasswordStatus
.text:00097720
.text:00097724
.text:00097724 loc_97724 ; CODE XREF: sub_976D8+20j
.text:00097724 LDMFD SP!, {LR}
.text:00097728 BX LR
.text:00097728
.text:00097728 ; End of function sub_976D8
.text:00097728
.text:00097728 ; ---------------------------------------------------------------------------
.text:0009772C byte_9772C DCB 0x20 ; DATA XREF: sub_976D8:loc_976FCr
.text:0009772C ; sub_976D8+34r
.text:0009772C ; sub_976D8+40r
.text:0009772D DCB 0xF1 ; ?
.text:0009772E DCB 0xB
.text:0009772F DCB 0
.text:00097730 off_97730 DCD dword_11B30 ; DATA XREF: sub_976D8+14r
.text:00097730 ; sub_976D8+38r
.text:00097734
.text:00097734 ; *************** S U B R O U T I N E ***************************************
.text:00097734
.text:00097734
.text:00097734 sub_97734 ; CODE XREF: sub_977BC+58p
.text:00097734
.text:00097734 var_10 = -0x10
.text:00097734
.text:00097734 STMFD SP!, {R4,R5,LR}
.text:00097738 SUB SP, SP, #4
.text:0009773C LDR R5, =unk_BF134
.text:00097740 LDR R0, [R5]
.text:00097744 CMP R0, #0
.text:00097748 BEQ loc_97794
.text:00097748
.text:0009774C LDR R4, =unk_C3FDC
.text:00097750 MOV R2, #5
.text:00097754 MOV R1, #0x6D
.text:00097758 LDR R0, [R4]
.text:0009775C BL FindResourceW
.text:0009775C
.text:00097760 MOV R1, R0
.text:00097764 LDR R0, [R4]
.text:00097768 BL LoadResource
.text:00097768
.text:0009776C MOV R1, #0x154
.text:00097770 STR R1, [SP,#0x10+var_10]
.text:00097774 MOV R1, R0
.text:00097778 LDR R3, =sub_9751C
.text:0009777C LDR R0, [R4]
.text:00097780 MOV R2, #0
.text:00097784 BL DialogBoxIndirectParamW
.text:00097784
.text:00097788 LDR R3, [R5]
.text:0009778C CMP R3, #0
.text:00097790 BNE loc_9779C
.text:00097790
.text:00097794
.text:00097794 loc_97794 ; CODE XREF: sub_97734+14j
.text:00097794 MOV R0, #1
.text:00097798 B loc_977A0
.text:00097798
.text:0009779C ; ---------------------------------------------------------------------------
.text:0009779C
.text:0009779C loc_9779C ; CODE XREF: sub_97734+5Cj
.text:0009779C MOV R0, #0
.text:0009779C
.text:000977A0
.text:000977A0 loc_977A0 ; CODE XREF: sub_97734+64j
.text:000977A0 STR R0, [R5]
.text:000977A4 ADD SP, SP, #4
.text:000977A8 LDMFD SP!, {R4,R5,LR}
.text:000977AC BX LR
.text:000977AC
.text:000977AC ; End of function sub_97734
.text:000977AC
.text:000977AC ; ---------------------------------------------------------------------------
.text:000977B0 off_977B0 DCD sub_9751C ; DATA XREF: sub_97734+44r
.text:000977B4 off_977B4 DCD unk_C3FDC ; DATA XREF: sub_97734+18r
.text:000977B8 off_977B8 DCD unk_BF134 ; DATA XREF: sub_97734+8r
.text:000977BC
.text:000977BC ; *************** S U B R O U T I N E ***************************************
.text:000977BC
.text:000977BC
.text:000977BC sub_977BC ; CODE XREF: sub_66D10+38p
.text:000977BC
.text:000977BC var_14 = -0x14
.text:000977BC
.text:000977BC STMFD SP!, {R4-R6,LR} ; ?????
.text:000977C0 SUB SP, SP, #4
.text:000977C4 MOV R6, R0
.text:000977C8 BL CheckPassword
.text:000977C8
.text:000977CC MOV R5, R0
.text:000977D0 MOV R0, R6
.text:000977D4 BL sub_96920
.text:000977D4
.text:000977D8 MOVS R4, R0
.text:000977DC BEQ loc_97810
.text:000977DC
.text:000977E0 MOV R0, R6
.text:000977E4 BL sub_974D0
.text:000977E4
.text:000977E8 CMP R5, #0
.text:000977EC BNE loc_97810
.text:000977EC
.text:000977F0 LDR R0, =s_WqZrD
.text:000977F4 BL CheckPassword
.text:000977F4
.text:000977F8 MOVS R5, R0
.text:000977FC BEQ loc_97810
.text:000977FC
.text:00097800 LDR R0, =s_WqZrD
.text:00097804 MOV R1, R6
.text:00097808 BL SetPassword
.text:00097808
.text:0009780C MOV R5, R0
.text:0009780C
.text:00097810
.text:00097810 loc_97810 ; CODE XREF: sub_977BC+20j
.text:00097810 ; sub_977BC+30j
.text:00097810 ; sub_977BC+40j
.text:00097810 TEQ R5, R4
.text:00097814 BLNE sub_97734
.text:00097814
.text:00097818 CMP R4, #0
.text:0009781C BNE loc_9787C
.text:0009781C
.text:00097820 CMP R5, #0
.text:00097824 BNE loc_9787C
.text:00097824
.text:00097828 MOV R0, R6
.text:0009782C MOV R5, #0
.text:00097830 BL sub_96BAC
.text:00097830
.text:00097834 CMP R0, #0
.text:00097838 BEQ loc_97884
.text:00097838
.text:0009783C BL sub_96908
.text:0009783C
.text:00097840 LDR R1, =dword_11B30
.text:00097844 LDR R0, =s_WqZrD
.text:00097848 BL SetPassword
.text:00097848
.text:0009784C CMP R0, #0
.text:00097850 BNE loc_97870
.text:00097850
.text:00097854 LDR R1, =dword_11B30
.text:00097858 MOV R0, R1
.text:0009785C BL SetPassword
.text:0009785C
.text:00097860 CMP R0, #0
.text:00097864 LDREQ R1, =dword_11B30
.text:00097868 MOVEQ R0, #0
.text:0009786C BLEQ SetPassword
.text:0009786C
.text:00097870
.text:00097870 loc_97870 ; CODE XREF: sub_977BC+94j
.text:00097870 LDR R1, =dword_11B30
.text:00097874 MOV R0, #0
.text:00097878 BL SetPasswordStatus
.text:00097878
.text:0009787C
.text:0009787C loc_9787C ; CODE XREF: sub_977BC+60j
.text:0009787C ; sub_977BC+68j
.text:0009787C MOV R5, #1
.text:00097880 B loc_978C0
.text:00097880
.text:00097884 ; ---------------------------------------------------------------------------
.text:00097884
.text:00097884 loc_97884 ; CODE XREF: sub_977BC+7Cj
.text:00097884 LDR R4, =unk_C3FDC
.text:00097888 MOV R2, #5
.text:0009788C MOV R1, #0x6D
.text:00097890 LDR R0, [R4]
.text:00097894 BL FindResourceW
.text:00097894
.text:00097898 MOV R1, R0
.text:0009789C LDR R0, [R4]
.text:000978A0 BL LoadResource
.text:000978A0
.text:000978A4 MOV R1, #0x160
.text:000978A8 STR R1, [SP,#0x14+var_14]
.text:000978AC MOV R1, R0
.text:000978B0 LDR R3, =sub_9751C
.text:000978B4 LDR R0, [R4]
.text:000978B8 MOV R2, #0
.text:000978BC BL DialogBoxIndirectParamW
.text:000978BC
.text:000978C0
.text:000978C0 loc_978C0 ; CODE XREF: sub_977BC+C4j
.text:000978C0 MOV R0, R5
.text:000978C4 ADD SP, SP, #4
.text:000978C8 LDMFD SP!, {R4-R6,LR} ;
.text:000978CC BX LR
.text:000978CC
.text:000978CC ; End of function sub_977BC
Edited by leonwx 2007-12-27 1:37 AM