Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 12-03-2004, 02:39
Numega Softice
 
Posts: n/a
[Query - Newbie] Which api gets the following window

hi,
I am trying to get a breakpoint on a program which brings up a follwing box (jpg file attached. what api's are used. I couldnt find a good breakpoint to set for this window /box.


any help with this will be appreciated.

thanks
Attached Images
File Type: jpg window.jpg (4.9 KB, 59 views)
Reply With Quote
  #2  
Old 12-03-2004, 16:55
amigo amigo is offline
Friend
 
Join Date: Dec 2002
Posts: 30
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 0
Thanks Rcvd at 1 Time in 1 Post
amigo Reputation: 0
Hi

Find the displayed string in IDA disassembly and then you will see references to it or set bpx when the string is loaded

Regards
amigo
Reply With Quote
  #3  
Old 12-03-2004, 19:58
hosiminh hosiminh is offline
Friend
 
Join Date: Aug 2004
Posts: 203
Rept. Given: 2
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 0
Thanks Rcvd at 4 Times in 4 Posts
hosiminh Reputation: 1
You can use ApiSpy v2.5 (hxxp://www.matcode.com/apis32.htm ) . It's usefull tool
Reply With Quote
  #4  
Old 12-03-2004, 22:34
taos's Avatar
taos taos is offline
The Art Of Silence
 
Join Date: Aug 2004
Location: In front of my screen
Posts: 580
Rept. Given: 65
Rept. Rcvd 54 Times in 19 Posts
Thanks Given: 69
Thanks Rcvd at 133 Times in 36 Posts
taos Reputation: 54
createwindow, showwindow,etc... or in Sice use WM_CREATE, WM_CLOSE events.
Reply With Quote
  #5  
Old 12-04-2004, 05:17
Numega Softice
 
Posts: n/a
I will try again and let you know. thanks for ur replies
Reply With Quote
  #6  
Old 12-06-2004, 19:41
xtreem.x
 
Posts: n/a
There is also "UpdateLayeredWindow" if it has the WS_EX_LAYERED bit set. This is used instead of ShowWindow in this case. (only available under win2000/xp).

Otherwise its likely to be CreateWindow or CreateWindowEx with WS_VISIBLE set, or WS_VISIBLE not set, but followed by ShowWindow.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Zip Plaintext Attack Query Numega Softice General Discussion 1 03-26-2004 01:30


All times are GMT +8. The time now is 18:24.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )