Lord Soth
My answers to questions 1-4, if u will :)
Sun Dec 6 12:46:32 1998


Hi Sandman, fellow crackers..

Here are my answers..

1. Using Regmon easily showed that the main program settings are located at HkeyLocalMachineSoftware4Developer rawler
In there, there are several other 'folders' ,if u like to call'em that :)
Bookmarks, which specify which parts of the Registry u can access by a dbl-click from RegCrawler
History, I never tried figuring this out, since I almost never done anything with the proggy itself..
Options, are for hotkeys and such
Position , probly related to the window and that little icon at the bottom right corner.
Settings, which have all sorts of nice values, but irrelevant to the protection.

2. This program does'nt have a 'counter' per se. I discovered that it remembers the installation date, and then checks the current date. If the date is before the install date, or 30 days ahead of it, the programs does'nt allow u to pass the nag. This 'value' of the installation date I found at HkeyClassRootRCW
There you'll find a value which is the number of days from year 0 hehe, to this date :)
I found out about it by deleting that key and reinstalling, with a date 1 year later, and that number jumped by 365 :)

3. This program uses a nag, and has a serial reg area, and has 30 days time limit (obviously hehe)..
Another nag pops up after 30 days though..

4. This program writes a file called rcw.d98 into Windows dir, which holds the value of the install date, and if the program expires, it deletes it.

That's all, thanks for the time, sorry for the long message hehe, its my 1st time on this board..

Cya all.

Lord Soth