I am endeavouring to find the place in the Softsentry DLL where the password is checked. The builders of the app appear to have gone out of business so I have no problem with endeavouring to crack it.

The app is known as Route Tracker, the executable is RouteT.exe, and it has a DLL called RouteT.DLL. All the SS code appears to be in the DLL, giving the option of a 30 day trial, or registering it.

I does not seem to have the registration window as a resource however. This has me wondering how a window can be set up and displayed. If I have the window on screen then Softice says there is no window to report an HWND value under NT4.

I am just wondering how this window gets built and displayed, and the button events detected. Otherwise I am still stepping through the code to endeavour to find out. It has a lot of code which appears to be reading itself, I suspect from memory, to see if the dll has been patched.

I am not an experienced reverser but if the window in not a resource, it is probably created in the program using RegisterClass and CreateWindow.

Can't you find the window handle using Micro$ofts Spy++ or Borland's WinSight?

Hullo,

Softice on NT4/2000 has a nasty habit...

Whenever you want to poinpoint a window, from you app (say SOFTSEN.EXE0 then:

1) Ensure that the window is active

2) type in command: ADDR SOFTAPP

3) THEN, type in command: HWND

And you should see all of them in their glory...

AND,

if that still DOES not work (it does not, sometimes), then you can always (as dinsum says):

BPX CreateWindowA
BPX CreateWindowExA
BPX CreateWindowExW

Have Phun Forever,

Great thanks guys. I haven't tried Spy++ or the Borland one.

The BPX list gives me what look like some good pointers though. Will try that and see.

Let you know what happens, might even get a TUT out of it yet on the "how to" for some of our other beginners.