Jump to content

MDGx

Patron
  • Posts

    2,692
  • Joined

  • Last visited

  • Donations

    0.00 USD 
  • Country

    United States

Everything posted by MDGx

  1. I believe he's using Infex [free tool created by Gape for 98SE SP2], which is just an installer menu with choices, the actual compiling is done by MS IExpress 6.0 SP1: HTH
  2. Here are all versions of Orca, including the older ones, supported in 98/ME: http://www.mdgx.com/add.htm#ORCA HTH
  3. @ jaclaz Oh, man, if you've got such mean jokes in English, I'd be terrified to learn your Italian ones. P.S.: English is my 2nd language too, but I g0t n0ne 0'them j0kes. {LoL} P.S. #2: I just noticed you're here for 6 (s-i-x) full years (well, 2 days ago), so please accept my happy MSFN B-day congratulations, + keep up the good work!
  4. A user-created shortcut in XP is practically identical to a shortcut created in win-98 (biggest difference is ANSI vs Unicode in specifying the target). Win-98 understands how to execute shortcut files created by XP (perhaps only shortcuts with simple paths, and perhaps only if unicode support has been installed). Perhaps there are enhanced or advanced features of "XP-style" lnk files that a win-98 system would fall-over if exposed to, but I wonder how common or useful those features really are.You've actually made my point...User created shortcuts are pretty much similar, *except* (and that's the keyword here) for the Unicode (mostly for special symbols, special chars for languages other than English and for registry complex strings/multi-strings values) and standard (backslash divider) UNC path part { http://en.wikipedia.org/wiki/Path_%28computing%29#Uniform_Naming_Convention } which are not understood by 9x OSes without additional 3rd party programs installed (and then, only partial support is provided, and only for specific apps). And to my knowledge, 9x OSes do not have MUI (Multilingual User Interface) Unicode packs, like XP/2003/Vista/2008/7 do. Example: open the "Run..." box in Win95/88/ME and type something using extended characters, you'll get an error message: http://support.microsoft.com/?kbid=192109 Same, the "Run..." box in 9x/ME does not understand %windir% or similar environment variables: you'll get an error message. Also, share names longer than 12 chars are not understood by 9x OSes: http://support.microsoft.com/kb/160843 List of unicode specific REG values (NTx OSes only): REG_EXPAND_SZ REG_LINK REG_MULTI_SZ REG_RESOURCE_LIST REG_FULL_RESOURCE_DESCRIPTOR REG_RESOURCE_REQUIREMENTS_LIST More details here: http://www.mdgx.com/reg.htm#RTS Another example: the rundll + rundll32 commands have different behaviour on 9x and NTx OSes: http://support.microsoft.com/kb/164787 Also, when creating (default in XP/2003) shortcuts to "registered" apps that reside in the %systemroot% / %windir% / %programfiles% / %userprofile% / etc paths, the environment strings (opposite to hard-linked actual drive letters + directories) are added, something that 9x OSes do not understand either. And besides, 9x OSes do not understand %systemroot%, %programfiles% or %userprofile% environment variables, those have been introduced beginning with NT4/2000, but not in 98/ME, unless you install a 3rd party networking app to "translate" such variables for 9x OSes (and that with limited availability): http://www.wilsonmar.com/1envvars.htm http://wsh2.uw.hu/ch07c.html Another "glitch": "set <variable>" commands can't be added in 95/98 OSes while running, one must add them to autoexec.bat or config.sys, and then reboot. WinME has a way of doing this (regenv32.exe + msconfig.exe) while the GUI is running [and writes them into the registry, similar to NTx Windows], but a reboot is still needed for such changes to take effect. http://www.chem.gla.ac.uk/~louis/software/faq/q1.html In comparison, WinNTx accepts SET <VARIABLE> commands "on-the-fly" (written into the registry), no reboot needed, in some cases a logoff and a log back in is required. Without 3rd party software installed there is no way to add captured variables into the environment in Win9x, which run MS-DOS 7 [Win95/98] or 8 [WinME]: http://www.pement.org/sed/bat_env.htm The fact that some implimentations of this exploit might try to plant a rootkit on a system doesn't mean that a rootkit is part of the exploit. Any system that already has a rootkit installed and functioning on it doesn't need to be exposed to this exploit in order to gain control of the system. I don't know why or how some people are linking vulnerability to this exploit with vulnerability to rootkits. The two are totally different things.My point exactly...Some rogue code is delivered + loaded via disguised rootkit TSRs, some is not. That's why I started the phrase with "In case (...)". Of course, the underlying code has nothing to do with the delivery system. ;_) And just how would someone implement those registry settings on a win-98 system in order to then exploit the system?If I could remotely modify the registry on a win-98 system according to your example, then presumably I'd have enough control of the system to do other things (like install botnet software) and I wouldn't bother making those registry changes. There are numerous methods one can use to write to the registry remotely. These come to mind on a short notice (most of these APIs/functions are already built into Windows):REG: NTx OSes all come with the built-in external DOS console command called reg.exe, which can do practically anything to the registry, just create a few batch [bAT or CMD] files. 9x OSes do not have such handy tool; regedit.exe works, but it is more primitive and limited to merging REG files, which can only add, modify or delete values or subkeys, never hive keys, and Win9x does not understand or misinterprets complex/multi-strings/unicode values: http://www.mdgx.com/reg.htm#ODD And CMD does not work as executable in 9x OSes, unless one adds ".CMD;" to the "PATHEXT" environment (registry value), and even then, there are inherent limitations, because 9x OSes were never designed to run CMD batches. HTA (HyperText Applications): http://msdn.microsoft.com/en-us/library/ms536496.aspx which works only if Internet Explorer core is installed, and that applies to all WinOSes, except Win95 retail: http://articles.techrepublic.com.com/5100-10878_11-5194791.html Microsoft actually provides a free tool just for this purpose: http://technet.microsoft.com/en-us/scriptcenter/dd939960.aspx Tweakomatic uses VBS scripting and WMI delivery in HTA format. VBS (Visual Basic Scripting): http://en.wikipedia.org/wiki/VBScript How to read from + write to the registry remotely: http://www.ehow.com/how_4891454_usersystem-environment-variable-using-vbscript.html http://www.bigresource.com/VB-write-registry-key-to-remote-computer-wCJMvLOYru.html VBasic, VC++, VSCript, VJscript are built into all Windows editions beginning with Win95 retail (more or less, very primitive in 95 + NT4). Microsoft has extensive material on how to use VBS: http://msdn.microsoft.com/en-us/library/sx7b3k7y.aspx Plain old Javascript combined with VBScript. Debuggers (usually part of free developer kits: SDKs, DDKs etc): http://kipirvine.com/asm/4th/debug/windbg/index.htm PERL scripting: http://docs.activestate.com/activeperl/5.10/faq/Windows/ActivePerl-Winfaq4.html Java programming language uses (for example) CLASSPATH as environment variable to find any program in any path registered by the OS: http://cs.colgate.edu/APCS/Java/JavaSystemsPages/classpath.htm http://www.roseindia.net/java/java-classpath.shtml N.B.: Please keep in mind I'm not a hacker nor a security expert, and all this is a purely theoretical rambling on my part. ... and now I need to stop... this... rambling... ;_) HTH Best wishes.
  5. Also linked here + here... * Unofficial Internet Explorer 6.0 SP1 Component Update (MDIE6CU) 3.4 for Windows 98 SE installs all current MS IE 6.0 SP1 updates + security fixes: MDIE6CU 3.4 [13.7 MB, English]: http://www.mdgx.com/spx/MDIE6CU.EXE MDIE6CU 3.4 [13.7 MB, Russian]: http://www.mdgx.com/spx/IE6CU_RU.EXE More info (Russian). OLD MDIE6CU 2.9 [13.6 MB, German]: http://www.mdgx.com/spx/IE6CU_DE.EXE More info (German). HTH
  6. Windows 9x [95, 98 + ME] OSes cannot be vulnerable to this kind of code "injection": 1. All newer lnk files [from WinXP on] have different code than all older Win9x OSes, because new features have been introduced back in 2001 [beginning with XP Gold RTM]: native Unicode support, complex/long text strings [i.e. long local or UNC paths / combined with long filenames] can be used as local/URL shortcuts. 2. SHELL32.DLL APIs code [specific only to NTx OSes] was "revamped" accordingly to accommodate new lnk features. 3. In case the back-door "infection" mechanism is via rootkit delivery, that's a no-no, 9x OSes cannot be affected. ... And actually the only way [i know of] to run something like this on 9x OSes is thru a modded PIF file [MS-DOS ANSI link = simple shortcut to an executable], with a properly attached BAT file [CMD files don't work on 9x OSes either]. Also, please notice that all MS Windows OSes [starting with Win95] have another vulnerability: the list of file extensions that can be added as executables is a plain REG_SZ value [registry ANSI string], and any1 can add more extensions to it at will. Example: - Win9x version: [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager\Environment] "PATHEXT"=".COM;.EXE;.BAT;.SCR;.PIF;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;"Theoretically [i have not tested this] this would allow CMD files [for example] to be run as executables on 9x OSes. - WinNTx version [current user + global]: [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager\Environment] "PATHEXT"=".COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment] "PATHEXT"=".COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH" Also [beginning with Win2000 SP2 I believe], there is another way to run "protected" files by extension, by modifying the GPO [Group Policy Editor] value in the registry from "medium-risk" [XP/2003 default] to "low-risk" [custom], thus disabling the security warning. This works only on NTx OSes. Example: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations] "LowRiskFileTypes"=".js;.zip;.rar;.nfo;.txt;.ini;.inf;.exe;.bat;.com;.cmd;.reg;.msi;.msu;.msc;.hta;.htc;.htm;.html;.gif;.bmp;.jpg;.jpeg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.mkv;.wav;.7z;.cab;.php;.pif;.png;.hlp;.cnt;.chm;.vbs;.vb;.sc;.scr;.rtf;.wri;.doc;.cdf;.url;.lnk;.pif;" On a related note, there is a way to run remote executables, just add this to the environment in the registry: SEE_MASK_NOZONECHECKS=1 either under HKLM or HKCU or HKU\.Default . More info @ MSKB. And how to disable the warning for running remote apps: Open Control Panel. Open Internet Options. Click the Security Tab. Click on Local Intranet. Click on Sites. Click Advanced. Type respective drive letter of server address where your apps are located in the "Add this website to this zone" box. Click Add. Click Close. Click OK/Apply. Ok, I'm gonna stop this rambling now. HTH
  7. UPDATED · 7-24-2010 ___________________________________ Updates: * see post above.
  8. UPDATED · 7-24-2010 Updated: New 98 FE SP2 2.5.7: Full + Lite (English). New MS IE 6.0 SP1 Cumulative Updates Q982381 (MS10-035): English, German + Italian. New MDIE6CU 3.4: Cumulative Update Q982381 (MS10-035) + AKB Update Q980195 (MS10-034). New TTFPAK: added 32 TTFs from XP SP3. New 98DDK.RAR: fixed installation "dvol.exe not found" error message [replaced files in \I386 with the 1s @ vckbase.com], added 3 MS patches + Read1st.txt guide. New SP30B4CZ: 98 SE SP2 3.0 beta 4 Czech Edition. New 98SE2ME: added msacm.drv + shimgvw.dll. New MS IE 5/6/7/8/9 AKB Update: Q980195 (MS10-034). New RP 9.6.5. New versions of UIDE + XMGR + RDISK: native DOS HD/CD/DVD/RAM drivers. New VIDE-CDD.SYS 2.15: native DOS CD/DVD universal driver. HTH
  9. I hate to quote myself but this must have been missed. I just need a yes or no to this question. Thanks I have added modded MSACM.DRV [from WDM Capture driver website] + SHINGVW.DLL [from WinME CD] to 98SE2ME.All details should be on the 98SE2ME page: http://www.mdgx.com/9s2m/ File [4.4 MB]: http://www.mdgx.com/4 Read1st guide: http://www.mdgx.com/9s2m/read1st.php Updates: http://www.mdgx.com/9s2m/updates.php HTH
  10. You've read my mind... your wish is my command, young padawan. * Unofficial Windows 9x/NT4/2000/ME/XP/2003 67 True Type Fonts (TTF) Pack [5.77 MB, English]: http://www.mdgx.com/files/TTFPAK.EXE [32 TTFs updated from XP SP3] Found here: http://www.mdgx.com/add.htm#TTF HTH
  11. Posted + linked... * Unofficial Windows 98 Service Pack 2 (SP2) 2.5.7 upgrades Windows 98 Standard Edition [First Edition (FE)/retail/final/gamma/Gold/RTM/OEM/MSDN] to Windows 98 Service Pack 2 (SP2) and installs ALL previously released Hotfixes, Patches + Updates (free): http://www.msfn.org/board/index.php?showtopic=44732 - 98 SP2 2.5.7 Full [55.4 MB, English]: http://www.mdgx.com/spx/98FESP2.EXE - 98 SP2 2.5.7 Lite [30.1 MB, English]: http://www.mdgx.com/spx/98FESP2L.EXE - OLD 98 SP2 2.3.0 [21.7 MB, French]: http://www.mdgx.com/spx/98SP2FR.EXE HTH
  12. Try the 3 versions of USBSTOR.SYS attached here [they're all from XP]:USBSTOR.SY2 5.1.2600.2180 [XP SP2 final] USBSTOR.SY3 5.1.2600.3205 [XP SP3 beta build 3205] USBSTOR.SYS 5.1.2600.5512 [XP SP3 final] Just rename the one you wish to USBSTOR.SYS (from *.SY2 or *.SY3) and copy it to %windir%\SYSTEM32\DRIVERS [you should backup the one you're using now and which works properly]. Hopefully one will work for you. If one does, pls e-mail me, so I know which one, to update USB20DRV.EXE accordingly. Thanks. Best wishes, MDGx USB_STOR.ZIP
  13. This may have to do with their server-side scripts.I don't think it has anything to do with the aspx file extension, like Tripredacus said. They may have blocked IE 6.xx/older from accessing their secure [https protocol] server as a security measure. [?] Have you tried to access those web pages using Firefox or Opera? It may work, if their server-side scripts allow those browsers. HTH BTW... aspx is used on servers running usually MS Windows 200x Server + IIS 5/6 + Active Directory. asp = http [default (insecure) hypertext protocol] aspx = https [secure hypertext protocol]
  14. Newest DST updates for all Windows OSes [as of May 2010]... http://www.mdgx.com/add.htm#TZU and linked here [as "Time Zone (TZ) DST"]: http://www.mdgx.com/upd98me.php HTH
  15. UPDATED · 5-27-2010 These updates have a new home. Enjoy _________________________ Updated: * New DST Time Zone Update as of May 2010. * RP 9.6 RC. HTH
  16. Must be KernelEx that adds necessary NTx API functions for the newer DX installers to work properly. But even if those installers work ok [with help from KernelEx], that doesn't mean that DX libraries [DLLs] actually install, because 9x [98/98SE/ME] DLLs have been removed by M$. "Virgin" [without any "tweaks" installed] 98/98SE/ME OSes stop with an error [OS not supported] message and do not proceed with installation. This is the default behaviour built into the installer by M$ to detect 9x OSes and abort. FYI, all DX installers newer than Dec 2006 do not add anything to 9x [98/98SE/ME] OSes. All DX installers past Dec 2006 removed support for all 9x [98/98SE/ME] OSes. More info here: http://www.mdgx.com/dx.htm#DX9 And even if one gets some newer DLLs [the MDX ones newer than D3DX9_32.DLL] extracted and copied manually into %windir%\SYSTEM , those will not work with 9x OSes, because they are designed specifically for NTx OSes [2000/XP/2003/Vista/newer], and I don't believe KernelEx has those functions implemented [pls correct me if I'm wrong] to make them work. But there's hope, maybe there are ways KernelEx can implement those APIs in the future. HTH
  17. Links to current OSR2 SP1 editions: http://www.mdgx.com/web.htm#OS1 * Unofficial Windows 95B/95C OSR 2.0/2.1/2.5 Service Pack 1 (SP1) 1.05 installs ALL previously released Hotfixes, Patches + Updates (English, free): http://www.msfn.org/board/index.php?showtopic=129504 - OSR2 SP1 1.05 Full [51.1 MB]: http://www.mdgx.com/spx/OSR2SP1.EXE - OSR2 SP1 1.05 Lite [27.8 MB]: http://www.mdgx.com/spx/OSR2SP1L.EXE HTH
  18. found a new working link to the Win98 DDK pack [25.1Mb in size]:http://www.vckbase.com/tools/drv/98ddk.exe Thanks 4 the heads up.Added it here: http://www.mdgx.com/add.htm#DDK Best.
  19. FYI... LFNFOR is an internal batch command, and enables the use of LFNs strictly for the "FOR" batch command. Wikipedia: http://en.wikipedia.org/wiki/COMMAND.COM BATutil (with practical examples): http://users.cybercity.dk/~bse26236/batutil/help/how/VARIOUS.HTM#jerry Can be enabled system-wide every time upon (re)boot [no matter if it is native DOS mode or Windows 9x GUI mode or DOS box/console mode] by adding a line for it in AUTOEXEC.BAT: LFNFOR ON Windows ME users must add it in each separate MS-DOS Configuration File (PIF) shortcut Properties [which makes it available only for that particular DOS box/session/console], since MS removed autoexec.bat + config.sys (boot files) support from WinME. If one cares to restore native DOS mode, autoexec.bat + config.sys support in WinME, please use 1 of these free tools: http://www.mdgx.com/dos.htm#ME HTH
  20. SCR579X = updated today, May 14 2010: http://www.mdgx.com/upd98me.php#051410 HTH
  21. Unofficial updates are still being updated with up-to-date files. [used "update" toooo many times ]Here: http://www.msfn.org/board/index.php?showtopic=46581 which points to this page: http://www.mdgx.com/upd98me.php Today's [May 14 2010] update is here: http://www.mdgx.com/upd98me.php#051410 A complete list is here: http://www.mdgx.com/web.htm If you know of other 98/98SE/ME updates/fixes/projects/packages/etc actively maintained [and not mentioned above], please PM me so I can add them to the list. I can also mirror whatever project files at my site. Thanks. HTH
  22. UPDATED · 5-14-2010 Enjoy _________________________ Updated: * SCR579X * SCR569X: added source MSKB hotfix list for each file; added more links to "MORE INFO:" section of ReadMe * MDIE6CU + IE6CU_RU * Root certificates * New link for 98DDK.EXE HTH _________________________ SCR579X: Reverted back to older (better) Jscript.dll.Thanks for all your time + concern. Best wishes.
  23. They should work, but you must register them properly by running all these commands [from the Run... menu or a DOS box]:C:\WINDOWS\INF\UNREGMP2.EXE /RegUniv C:\WINDOWS\INF\UNREGMP2.EXE /UpdateWMP REGSVR32.EXE /S C:\WINDOWS\SYSTEM\WMV8DS32.AX REGSVR32.EXE /S C:\WINDOWS\SYSTEM\WMVDS32.AX REGSVR32.EXE /S C:\WINDOWS\SYSTEM\WMADMOD.DLL REGSVR32.EXE /S C:\WINDOWS\SYSTEM\WMSDMOD.DLL REGSVR32.EXE /S C:\WINDOWS\SYSTEM\WMVDMOD.DLL Change drive letter +/- directory names if different on your computer, or use system variables from a DOS box [eventually paste all lines into a batch file]: %windir%\INF\UNREGMP2.EXE /RegUniv %windir%\INF\UNREGMP2.EXE /UpdateWMP REGSVR32.EXE /S %windir%\SYSTEM\WMV8DS32.AX REGSVR32.EXE /S %windir%\SYSTEM\WMVDS32.AX REGSVR32.EXE /S %windir%\SYSTEM\WMADMOD.DLL REGSVR32.EXE /S %windir%\SYSTEM\WMSDMOD.DLL REGSVR32.EXE /S %windir%\SYSTEM\WMVDMOD.DLL 98MP10 does the same during install [see the INF file if you want details: 98MP10.INF]. HTH
  24. I guess I will have to revert back to older 5.7.0.16535 build : I'll post them here when done:http://www.msfn.org/board/index.php?showtopic=46581 erpdude8 sent me those updates, and I've also seen them posted here in these forums. I'll tell erpdude8 to update MP9URP9X with latest updates. Thanks a lot for your hard work. Best, MDGx
  25. I have some stuff on IExpress at my site, if any1 wants to try: http://www.mdgx.com/add.htm#IEA INF tools + guides: http://www.mdgx.com/add.htm#INF CAB SDK: http://www.mdgx.com/add.htm#CAB IEAK main components: iexpress.exe is the main executable (compiler), and needs also [not necessarily the same versions/builds of] makecab.exe, wextract.exe and also W95INF16.DLL + W95INF32.DLL [especially if using advpack.dll wrapper/installer database DLL, usually present in all Win32 OSes in %windir%\system(32)]. Advpack.dll is also included with IEAK developer kit. IEAK is a developer kit designed by Microsoft and freely distributed on their website [from way back, I believe MS IE 3.0 had the 1st edition they ever made] to create self-installing setup executables based on the INF(ormation) file model, and using Diamond SED source files. FYI: All my Microsoft-based + unofficial updates/installers are created using Iexpress. All these updates/packs/enhancements are also compiled using iexpress: ME SP1+SP2, WMP9 updates, 98MP10, MDIE6CU, MDDACU, NUSB, and many others found at MSFN forums. 98SE SP2 2.x + 3.x (all editions) use a custom installer (infex) created by Gape: http://exuberant.ms11.net/infex.html To compile the installer for 98SE2ME I use Inno Setup (freeware installer tool): http://www.jrsoftware.org/isinfo.php HTH
×
×
  • Create New...