madshi.net

The VCL is the "visual component library". All that you can do with the object inspector, the units "Classes", "Forms", "Controls" and that stuff are VCL. Check the size of your DLL, it should be quite big. A good size for a typical madCodeHook hook dll is < 1...

I guess you need to hook recv / WSARecv, but maybe I misunderstood you? For sure you shouldn't use the VCL in a hook dll, as nildo said.

You can hide a process by hooking NtQuerySystemInformation in the NT family and by hooking the toolhelp functions in win9x. However, the non-commercial version of madCodeHook doesn't allow that. The reason is simple: Trojans, viruses and backdoors usually try to hide themselves. But I don't want mad...

nildo is right, don't use the VCL. Instead use MessageBox. Or build your own dialogs by using CreateWindow and that stuff. It's quite hard work, though. What do you mean with "when you have injected the DLL, how do you call the functions within the injected DLL"? What exactly do you want t...

You can disable the gimmicky buttons by doing: madExcept.OwnerDrawButtons := false; The SMTP sending code has a timeout of 7 seconds for each receive. It's strange that it seems to fail for you with only 1 second delay! The SMTP client code should work through firewalls, I believe. However, I know t...

Nice...

Or show us the new code after you corrected all the things Nildo mentioned.

How does your code look like?

legion is right, there's a demo which does exactly that.

But it doesn't hide files in DOS boxes (at least not in win9x), because madCodeHook only hooks 32bit processes.

Now how does it feel to have written the code yourself? I'm sure you really understand that code now!

If the first letter is missing, probably the string stable has a 2 byte header. Maybe the index of the string table must come before the string. Or maybe the length must come before the string data. strVar[0] does not exist!! The first characters is strVar[1].

I'd try this: function MAKELANGID(sPrimaryLanguage : Word; sSubLanguage : Word) : Word; begin result := (sSubLanguage shl 10) or sPrimaryLanguage; end; procedure WriteStr(exeFullPath:PWideChar; ResName: integer; S:String); var update : dword; begin update := BeginUpdateResourceW(exeFullPath, false);...

Don't use "sizeof(strVar)". A Delphi dynamic string is a kind of pointer, so "sizeof" always returns 4. Instead you need to use "Length(strVar)".

Do not use "@strVar". That gives you the address of where the string variable itself is stored. Instead use "pointer(strVar)" or "@strVar[1]".

Perhaps you can find something here:

http://www.wilsonc.demon.co.uk/delphi.htm