Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

MessageBox when closing procomm via an aspect script

Status
Not open for further replies.
WilliamA

WilliamA

Technical User
Jun 10, 2002
17
US
Iirc, there were a couple posts about that darn message box that pops up to confirm closing procomm from an aspect script. This morning was the first time I've run across that problem for the first time. Yesterday I tried the procomm scheduler for the first time, to launch a file capture script every morning so that the files will be ready for my viewing each morning when I get in. But that darn message box came up and wasn't handled.

That sort of idiot proofing ("are you sure you want to close this program?????") is not needed, at least in my opinion. So I located the message box code in aspect32.dll and patched it out. The last thing that I want to do is post information that could be miscontrued as illegal, but if I get the go ahead I'll post the info for anyone else that may want to implement this as well.


cheers,
will
 
Sort by date Sort by votes
....as usual, I did things the hard way. Thanks for making me feel stupid. :) Oh well, I managed to have fun for a few minutes this morning doing this. :)


cheers,
will
 
Upvote 0 Downvote
Well that, and it's coded in vc++ which is a bit strange. However it was done, the messagebox call was actually a call to a function address (maybe a lookup table of addresses). I didn't really spend a whole lot of time on it. I just followed a couple of calls and found a cmp eax,6 (6 is the value of IDYES, the yes button on a yes/no messagebox). Then I overwrote the call right before that compare with a jump to the je location specified right after the compare. (There was also a manipulation of the esp register as well that I patched in -- add esp,18 if I remember right.) I left the rest of the code in place as it wouldn't be executed anyways due to the added jump.
It was a bit fun, and that info should be enough for anyone wanting to do this themselves. ....even though you've provided a much quicker and easier method. ;)


cheers,
will
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Adam Ts
  • Locked
  • Question
Procomm ASPECT guides/resources - 2023
Replies
0
Views
155
Adam Ts
Adam Ts
Rmartin72
  • Locked
  • Question
aspectscripting.com still available at archive.org
Replies
0
Views
216
Rmartin72
Rmartin72
SherWat
  • Locked
  • Question
Closing Procomm reboots Windows 10 PC
Replies
1
Views
143
Firebird Scrambler
Firebird Scrambler
TNieland
  • Locked
  • Question
Procomm capture script stopped capturing data
Replies
0
Views
130
TNieland
TNieland
mrgmhale
  • Locked
  • Question
ProComm and SSH, KXBoy CygWin solution
Replies
4
Views
191
mrgmhale
mrgmhale

Part and Inventory Search

Sponsor

Back
Top