Domain Manage

reverse engineer a driver?

Discussion in 'General Board' started by scooter, Sep 2, 2011.

Thread Status:
Not open for further replies.
  1. scooter United Kingdom

    scooter Well-Known Member

    Joined:
    Apr 2006
    Posts:
    2,022
    Likes Received:
    41
    I have a driver when installed shows a non descript name
    USB Video Device

    I would really like it to show as something else after installation.
    websitename.com Video Device

    Is this possible? Can some techie here help or point me in the right direction?

    I am happy to pay for this.



    .
     
  2. Domain Forum

    Acorn Domains Elite Member

    Joined:
    1999
    Messages:
    Many
    Likes Received:
    Lots
     
  3. Skinner

    Skinner Well-Known Member

    Joined:
    Jul 2008
    Posts:
    4,325
    Likes Received:
    81
    Not technically res-eng, more like res-hacking.

    Quick and dirty way, get a Get a hex editor search for the current string and swap out the old for the new.

    More accurate and less likely to cause corruption, get a Resource Editor like Res Hacker or PE Explorer and just edit the strings.

    I was a bugger for leaving code-names and internal descs in there while knocking up ocx and dll's.
     
  4. expertc

    expertc Well-Known Member

    Joined:
    Apr 2009
    Posts:
    1,009
    Likes Received:
    16
    If everything is stored in a separate dll (e.g. resource.dll) the hex editor, like suggested by Skinner, will do the job.

    Some coders store the sting in the executable itself (bad-bad) and you can corrupt the file by editing unless you know what you are doing.

    And yes, check the installation script first. Name might be just there and not in the driver itself.
     
  5. Skinner

    Skinner Well-Known Member

    Joined:
    Jul 2008
    Posts:
    4,325
    Likes Received:
    81
    Welcome to Visual Basic, The language with rubber band rules :p

    You can minimise the odds of corruption by keeping the replacement text the same length as the original text.

    IF you replace it with longer text be aware that just because the dll appears to be working doesn't mean its not corrupted. Think about it like a cylinder being misaligned in an industrial power generator. The gen runs fine but sooner or later your going to run hard / fast enough and the misalignment blows a 50kg connecting rod 120ft into a field killing a tractor. Not that this ever happened to a certain engineering company :p
     
  6. expertc

    expertc Well-Known Member

    Joined:
    Apr 2009
    Posts:
    1,009
    Likes Received:
    16
    VB??? Yuck! C++ here, mate :cool:
     
  7. Skinner

    Skinner Well-Known Member

    Joined:
    Jul 2008
    Posts:
    4,325
    Likes Received:
    81
    I mean its with VB where we do things like that.

    I knock up prototypes and pocs in VB before moving to VC.

    Thank the lord for RAD with GUI Designers.

    40 minutes in VB to prove it works or 8 hours in C, time is money ;)
     
  8. scooter United Kingdom

    scooter Well-Known Member

    Joined:
    Apr 2006
    Posts:
    2,022
    Likes Received:
    41
    Thanks, but i'm completely lost. I downloaded a hex editor but could not see what i am looking for.

    What i need to do is change it in the .exe file before installation so i can distrubute to others.

    As i say, i am no techie and would gladly pay someone for their time to do this.


    .
     
  9. Skinner

    Skinner Well-Known Member

    Joined:
    Jul 2008
    Posts:
    4,325
    Likes Received:
    81
    Is it part of the installer you want change ?

    90% of the text in an installer is from a config file, have you tried opening the exe with something like WinRar ?
     
  10. scooter United Kingdom

    scooter Well-Known Member

    Joined:
    Apr 2006
    Posts:
    2,022
    Likes Received:
    41
    I can change that name ok. It is when you download, click on .exe and off it goes and installs.

    Once it has installed, when you go into device manager it shows as
    "USB Video Device"

    I want it to say once they have installed:
    domainname.com Video Device"




    .
     
  11. Skinner

    Skinner Well-Known Member

    Joined:
    Jul 2008
    Posts:
    4,325
    Likes Received:
    81
    Right, I assume its installing an OCX or DLL ?

    So you need to hex edit the DLL/OCX, search for Video Device, odds are it will be towards the end of the file. It will probably show like V.i.d.e.o..D.e.v.i.c.e....... rather than as you search, sometimes its better to just scroll down the file and look for english letters rather and search.
     
  12. scooter United Kingdom

    scooter Well-Known Member

    Joined:
    Apr 2006
    Posts:
    2,022
    Likes Received:
    41
    I have sent you a pm.
     
  13. expertc

    expertc Well-Known Member

    Joined:
    Apr 2009
    Posts:
    1,009
    Likes Received:
    16
    I am also guilty of using VB :oops: Even released two shareware titles (still around ;)) But when it comes to serious coding then C++ plus zillions of debugging hours. Well, it was quite a few years ago.

    I would also advise to check the installer first. Looks like config file entry as it is going to the registry and shows as a device.
     
  14. scooter United Kingdom

    scooter Well-Known Member

    Joined:
    Apr 2006
    Posts:
    2,022
    Likes Received:
    41
    Thanks for the advice but i have given up. Too techie for me to do.

    I will post on scriptlance and let someone else do it.
    (unless you want to? Paid of course)




    .
     
  15. expertc

    expertc Well-Known Member

    Joined:
    Apr 2009
    Posts:
    1,009
    Likes Received:
    16
    Sorry, mate, I gave up coding for quite a while now. My computer hasn't even got a necessary setup :(

    Good luck anyway.
     
  16. scooter United Kingdom

    scooter Well-Known Member

    Joined:
    Apr 2006
    Posts:
    2,022
    Likes Received:
    41
    No problem. I have had a pm and someone is taking a look.

    Thanks again for all the help. (skinner too!)
     
Thread Status:
Not open for further replies.

Share This Page