Posted by +Sandman on 1/14/2000, 11:00 pm
, in reply to "T1.1(Registry)"
212.139.131.132
Very Good!.. Therefore, from this we -could- assume (for the time being) the following..
1. The value for Cross holds our -30 day evaluation period-, in a format we are not sure of as yet.
2. We can also assume that this registry -value- is ONLY created at -Install time-. This makes sense considering the way this protection system works in -this- program. Meaning it's not new, is extremley weak because it can be -fooled- easily.
3. The programmer has attempted to -hide- where the evaluation period is stored in our registry file by the fact that he uses a word, in this case "Cross" to mean evaulation date. Perhaps in the next task we might begin work on figuring out the format used to store this date.
Keep looking & questioning..:)
+Sandman