Dion
TASK 3 (NOP JNZ) 2 bytes!!
Fri Dec 18 10:13:07 1998



:0043F9FB E8B4D6FDFF call 0041D0B4
:0043FA00 8B55F8 mov edx, dword ptr [ebp-08] <-- Real Code Here
:0043FA03 58 pop eax
:0043FA04 E8FB41FCFF call 00403C04 <-- Check against Fake
:0043FA09 752E jne 0043FA39 (NOP) HERE <-- Jump if not Equal
<-- if equal no jump
:0043FA0B A1209B4400 mov eax, dword ptr [00449B20]
:0043FA10 8B00 mov eax, dword ptr [eax]
:0043FA12 E8D5AFFEFF call 0042A9EC
:0043FA17 A1109D4400 mov eax, dword ptr [00449D10]
:0043FA1C 803800 cmp byte ptr [eax], 00
:0043FA1F 750C jne 0043FA2D
:0043FA21 A1089D4400 mov eax, dword ptr [00449D08]
:0043FA26 8B00 mov eax, dword ptr [eax]
:0043FA28 E863ADFEFF call 0042A790

* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:0043FA1F(C)
|
:0043FA2D A1CCA74400 mov eax, dword ptr [0044A7CC]
:0043FA32 E859ADFEFF call 0042A790
:0043FA37 EB26 jmp 0043FA5F

* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:0043FA09(C)
| <-- from 0043FA09
:0043FA39 A1649C4400 mov eax, dword ptr [00449C64] <-- If NOT equal we land here
:0043FA3E 8B00 mov eax, dword ptr [eax]


Bytes to Patch in CYT.EXE

0003EE00 8B55 F858 E8FB 41FC FF75 2EA1 209B 4400 <-- unpatched CYT.EXE
0003EE00 8B55 F858 E8FB 41FC FF90 90A1 209B 4400 <-- Patched File CYT.EXE