B00tDump by WarGame/DoomRiderz
Visit for more info: http://vx.netlux.org/wargamevx
Contact me at wargame89@yahoo.it

\\.\PHYSICALDRIVE0 -> got handle
MBR -> read
MBR -> signature: 0xaa55
MBR -> written to file mbr.bin
--- MBR DiSaSm ---
jmp 0x7c4a
nop 
add [di+0x4c01],si
dec cx
dec sp
dec di
push ss
push es
pop es
mov al,[0x4606]
add [bx+si],al
add [bx+si],al
sar [bp+di+0x4606],0x1
ss add al,0x36
add al,0x81
add [bx+si-0x56a0],al
lock jpo 0x7c0f
mov ax,0x7c0
mov ss,ax
mov sp,0x800
sti 
push dx
push bx
push es
push si
cld 
mov ds,ax
xor bp,bp
pusha 
mov ax,0x1200
mov bl,0x36
int 0x10
add ax,[bp+si]
add byte [bx+si],0x0
or byte [bp+di],0x39
xor [bx+si],dx
add [bx+si],cl
cli 
nop 
nop 
test dl,0x80
jnz 0x7c04
mov dl,0x80
jmpf 0x0:0x7c59
xor ax,ax
mov ds,ax
mov ss,ax
mov sp,0x2000
sti 
mov al,[0x7c40]
cmp al,0xff
jz 0x7c04
mov dl,al
push dx
mov si,0x7d7f
call 0x7d37
test dl,0x80
jz 0x7c56
mov ah,0x41
mov bx,0x55aa
int 0x13
pop dx
push dx
jc 0x7c4b
cmp bx,0xaa55
jnz 0x7c45
mov al,[0x7c41]
test al,al
jnz 0x7c07
and cx,0x1
jz 0x7c39
mov ecx,[si+0x10]
mov si,0x7c05
mov byte [si-0x1],0x1
mov ebx,[0x7c44]
mov word [si],0x10
mov word [si+0x2],0x1
mov [si+0x8],ebx
mov word [si+0x6],0x7000
xor eax,eax
mov [si+0x4],ax
mov [si+0xc],eax
mov ah,0x42
int 0x13
jc 0x7c07
mov bx,0x7000
jmp 0x7c7f
mov ah,0x8
int 0x13
jnc 0x7c0c
test dl,0x80
jz 0x7cee
jmp 0x7c90
mov si,0x7c05
mov byte [si-0x1],0x0
xor eax,eax
mov al,dh
inc ax
mov [si+0x4],eax
xor dx,dx
mov dl,cl
shl dx,0x2
mov al,ch
mov ah,dh
inc ax
mov [si+0x8],ax
xor ax,ax
mov al,dl
shr al,0x2
mov [si],eax
mov eax,[0x7c44]
xor edx,edx
div [si]
mov [si+0xa],dl
xor edx,edx
div [si+0x4]
mov [si+0xb],dl
mov [si+0xc],ax
cmp ax,[si+0x8]
jnl 0x7c3e
mov dl,[si+0xd]
shl dl,0x6
mov cl,[si+0xa]
inc cl
or cl,dl
mov ch,[si+0xc]
pop dx
mov dh,[si+0xb]
mov bx,0x7000
mov es,bx
xor bx,bx
mov ax,0x201
int 0x13
jc 0x7c2c
mov bx,es
mov es,[0x7c48]
pusha 
push ds
mov cx,0x100
mov ds,bx
xor si,si
xor di,di
cld 
rep movsd 
pop ds
popa 
jmp [0x7c42]
mov si,0x7d85
call 0x7c43
jmp 0x7c10
mov si,0x7d8a
call 0x7c3b
jmp 0x7c08
mov si,0x7d94
call 0x7c33
mov si,0x7d99
call 0x7c2d
jmp 0x7c00
inc di
push dx
push bp
inc dx
and [bx+si],al
inc di
gs outsv 
insv 
add [bx+si+0x61],cl
jc 0x7c66
and [si+0x69],al
jnc 0x7c6d
add [bp+si+0x65],dl
popa 
add fs:[bx+si],ah
inc bp
jc 0x7c74
outsv 
jc 0x7c02
mov bx,0x1
mov ah,0xe
int 0x10
lodsb 
cmp al,0x0
jnz 0x7bf6
ret 
add [bx+si],al
add [bx+si],al
add [bx+si],al
add [bx+si],al
add [bx+si],al
add [0x3604],dh
add al,0x0
add [bx+si+0x101],al
------------------