ROM101_disassembly-BETA-2005 [Archive]

marsoto

08-31-2005, 04:11 AM

Just trying to help.

dbDan

09-01-2005, 09:29 AM

c/p from within the file that contradicts the file name.

RAM:0063 STATS1: CAM status flags byte 1:
RAM:0063 ; Bit 0=Database has been updated
RAM:0063 ; (CAM suggests $C1 command)
RAM:0063 ; Bit 1=CAM has been reset
RAM:0063 ; Bit 2=eeprom full
RAM:0063 ; Bit 3=
RAM:0063 ; Bit 4=
RAM:0063 ; Bit 5=Last ECM insane
RAM:0063 ; Bit 6= ?????
RAM:0063 ; Bit 7=

RAM:0064 STATS2: CAM status flags byte 2:
RAM:0064 ; Bit 0= ?????
RAM:0064 ; Bit 1= ?????
RAM:0064 ; Bit 2=
RAM:0064 ; Bit 3= Callback req being processed
RAM:0064 ; (Command $30 in progress)
RAM:0064 ; Bit 4= Callback req processing done
RAM:0064 ; (CAM suggests command $31)
RAM:0064 ; Bit 5= IRD Command Waiting
RAM:0064 ; Bit 6=
RAM:0064 ; Bit 7=

RAM:0065 STATS3: CAM status flags byte 3:
RAM:0065 ; Bit 0=?????
RAM:0065 ; Bit 1=?????
RAM:0065 ; Bit 2=
RAM:0065 ; Bit 3=
RAM:0065 ; Bit 4=
RAM:0065 ; Bit 5=?????
RAM:0065 ; Bit 6=
RAM:0065 ; Bit 7=

RAM:0066 DBFLAGSH:
RAM:0066 ; Bit 0=TYPE $09 (BLANKET PPV) CHANGED
RAM:0066 ; Bit 1=TYPE $0A (PREPAID PPV) CHANGED
RAM:0066 ; Bit 2=TYPE $0B (PPV TIER) CHANGED
RAM:0066 ; Bit 3=TYPE $0C (SPENDING LIMITS) CHANGED
RAM:0066 ; Bit 4=
RAM:0066 ; Bit 5=
RAM:0066 ; Bit 6=type $11 (PPVTEXT) changed
RAM:0066 ; Bit 7=type $10 (EMAIL) changed

RAM:0067 DBFLAGSL:
RAM:0067 ; Bit 0=TYPE $01 (IRD INFO) CHANGED
RAM:0067 ; Bit 1=TYPE $02 (PROVIDER FILTER) CHANGED
RAM:0067 ; Bit 2=TYPE $03 (LAST PAID PPV) CHANGED
RAM:0067 ; Bit 3=TYPE $04 (CHANNEL ALIASING) CHANGED
RAM:0067 ; Bit 4=TYPE $05 (DATE RECORD) CHANGED
RAM:0067 ; Bit 5=TYPE $06 (PROVIDER INFO) CHANGED
RAM:0067 ; Bit 6=TYPE $07 (DECRYPT KEYS) CHANGED
RAM:0067 ; Bit 7=TYPE $08 (STANDARD TIER) CHANGED

4ABA: DATA_ATR_STRING - DATA 3F FF 95 00 FF 91 81 71
4AC2: - DATA A0 47 00 44 4E 41 53 50
4ACA: - DATA 30 31 31 20

C000: START_OF_EEPROM
C000 OTP_AREA_00
C001 OTP_AREA_01
C002 OTP_AREA_02
C003 OTP_AREA_03
C004 OTP_AREA_04
C005 OTP_AREA_05
C006 OTP_AREA_06
C007 OTP_AREA_07
C008 OTP_AREA_08
C009 OTP_AREA_09
C00A OTP_AREA_0A
C00B OTP_AREA_0B
C00C OTP_AREA_0C
C00D OTP_AREA_0D
C00E OTP_AREA_0E
C00F OTP_AREA_0F
C010 OTP_AREA_10
C011 OTP_AREA_11
C012 OTP_AREA_12
C013 OTP_AREA_13
C014 OTP_AREA_14
C015 OTP_AREA_15
C016 OTP_AREA_16
C017 OTP_AREA_17
C018 OTP_AREA_18
C019 OTP_AREA_19
C01A OTP_AREA_1A
C01B OTP_AREA_1B
C01C OTP_AREA_1C
C01D OTP_AREA_1D
C01E OTP_AREA_1E
C01F OTP_AREA_1F
C020 FLAG_SOFTLOOP1
C021 FLAG_SOFTLOOP2
C03E FLAG_SOFTLOOP3
C03F FLAG_SOFTLOOP4
C040 BackDoor0
C050 BackDoor1
C060 BackDoor2
C070 BackDoor3
C080 DATAAREAPTR_H
C081 DATAAREAPTR_L
C082 REVLEVEL
C083 REVLEVEL+1
C084 REVLEVEL+2
C085 REVLEVEL+3
C086 REVLEVEL+4
C087 REVLEVEL+5
C088 CAMID
C08C CURRENTDATE_H
C08D CURRENTDATE_L
C08E DATAITEM_01_LEN
C08F DATAITEM_02_LEN
C090 DATAITEM_03_LEN
C091 DATAITEM_04_LEN
C092 DATAITEM_05_LEN
C093 DATAITEM_06_LEN
C094 DATAITEM_07_LEN
C095 DATAITEM_08_LEN
C096 DATAITEM_09_LEN
C097 DATAITEM_0A_LEN
C098 DATAITEM_0B_LEN
C099 DATAITEM_0C_LEN
C09C ??C09C??
C0A0 SOFTWARE_VERSION
C0A1 NUMBUGS
C0A2 Nipper
C0C2 PUBKEYPRIME
C0C7 FREESPACE_FLAG
C0C8 BACKDOOR_FLAG
C0C9 ???C0C9???
C0CA ???C0CA???
C0CB ???C0CB???
C0CC RESET_ACTION_FLAG
C0CD ???C0CD???
C0CE RST_DLY_SEED
C0D0 CMD30_PROCESSED_H
C0D1 CMD30_PROCESSED_L
C0D3 BUGS_SRC_H
C0D4 BUGS_SRC_L
C0D5 BUGS_TRGT_L
C0D6 BUGS_TRGT_H
D000: START_OF_DATA_AREA
DFFF: END_OF_EEPROM

yeku

09-04-2005, 04:21 AM

4ABA: DATA_ATR_STRING - DATA 3F FF 95 00 FF 91 81 71
4AC2: - DATA A0 47 00 44 4E 41 53 50
4ACA: - DATA 30 31 31 20

Perdonad que no escriba en inglés, pero os digo, eso es el dump de una
rom11, ya sea española o de otro pais.

Los dígitos que os señalo en rojo, indican sin equívoco que es una rom11

salu2

alex5213

09-04-2005, 04:32 AM

Perdonad que no escriba en inglés, pero os digo, eso es el dump de una
rom11, ya sea española o de otro pais.

Los dígitos que os señalo en rojo, indican sin equívoco que es una rom11

salu2

Translation : sorry that i post in spanish, but i must say that this is a rom11 dump, i don´t know if from spain or other country.

The digits that i remark in red, means that is a Rom11 dump, i´m shure.

#40Fan

09-04-2005, 04:56 AM

Translate his other two posts if you could, Alex5213.

alex5213

09-05-2005, 05:45 AM

Translate his other two posts if you could, Alex5213.

Link : http://dssftp.com/forum/showthread.php?p=284137#post284137
Spanish : He subido el primero y:
o no me deja porque sale diciendo algo sobre 250 post o algo asi, o si ha entrado en el upload, no tengo ni idea donde está porque lo busco y no doy con el....

Lo siento

Translation : i get an error when i try to upload the firmware, i get an error that say something about 250 post or something like that, i don´t have any idea how to upload this file . . . . .

i´m sorry

Link : http://dssftp.com/forum/showthread.php?p=284078#post284078
Spanish : Bien, con respecto a este sistema también os puedo decir que con los siguientes Software y Hardware se puede visualizar ya Nagra2:

Software ---------> Capi_N2 o, KrasnalTM - Nagra2 Release
Software----------> ProgDVB para Skystar2 - MyTheatre
Hardware---------> Tarjeta PcSat Sky-Star_2

Hay unos manuales específicos para cada uno de ellos, con imágenes de como configurar vuestro pc y la sky star2.

Abierto tanto por Astra como por Hispasat Nagra2.

Translation : ok, about this system also i can say that is possible to get nagra2 with the following software and hardware :

Software ---------> Capi_N2 o, KrasnalTM - Nagra2 Release
Software----------> ProgDVB para Skystar2 - MyTheatre
Hardware---------> Tarjeta PcSat Sky-Star_2

There´s some specific manuals for each one with images that show how yo can configure your PC and the Sky Star2.

Link : http://dssftp.com/forum/showthread.php?p=284074#post284074
Spanish : Es posible poner aquí firmwares para poder visionar nagra2?? No quiero incumplir ninguna norma del foro.

Hay en España ya la posibilidad de ver con los siguientes decodificadores mediante Hispasat y Astra:

Philips 6071 - 6072
Pioneer: 1510 - 1610
Galaxis: 7000 fcis - f3S

y alguno mas, como Strong y Fortec.

El mosc se ha conseguido mediante unlooper t911, sólo en rom101 por lo que ya es posible hacer mosc.

Si alguien desea que le pase algun firmware, por favor que postee y se lo envío.

Translation : it is possible to post firmware to open nagra2 ? i don´t want to break any law in this forum

You can see nagra2 in spain with the following FTA receivers thru hispasat and astra :
Philips 6071 - 6072
Pioneer: 1510 - 1610
Galaxis: 7000 fcis - f3S

and some more, like Strong and Fortec.
The Mosc is done thru unlooper t911, only in Rom101 and now is possible to do mosc

If someone want a firmware, please post and i send it.

alex5213

09-05-2005, 05:50 AM

#40 fan
Let me know if you need something else to be translated .
Exactly what your looking for ?, i can make a search on europe-spanish forums to looking for . . .