How QBASIC almost got me killed
Posted twelve years ago
Back in high school, I had too much free time, so I decided to play a joke on my computer teacher. I created an exact clone of the school's DOS system using QBasic. It would pretend to execute three commands: DIR, DEL *.*, and FORMAT. The simulation was so realistic that during development, I was kicked out of the lab. Usually students would be playing Secret Agent or Jill of the Jungle.
The day arrived when my project was ready to be unleashed upon the world. I waited until the teacher was hovering nearby and then I started my application, running the FORMAT command on the network drive. Some classmates were watching the screen and she hurried over to see what all the fuss was about.
The reaction was immediate. She stared at the screen, eyes wide open, and mouth agape, as the terrible seconds ticked by. At that moment I regretted my deception and tried to abort the demo. But QBasic didn't understand CTRL-C during the SLEEP command. Pressing CTRL-C just interrupted the current SLEEP, so it caused the percentage to advance faster. I had to hold down the abort keys and wait until it advanced to 100% before I could prove that everything was really okay.
But then it said:
Unable to read from drive X:
Abort, Retry, Fail?
Abort, Retry, Fail?
That was the closest I've ever come to being murdered.
- Source code for Fake DOS
- My QBASIC implementations of Pacman and Jumpman (with EXE, use speed 170)
- My QBASIC implementation
Steve Hanov makes a living working on
Rhymebrain.com,
PriceMonkey.ca,
www.websequencediagrams.com,
and Zwibbler.com. He lives in
Waterloo, Canada.
Post comment
edit
EARL
three days ago
I recently needed a private investigator or a hacker to help me pull one or two strings for the successful completion of my goal. Over the years I have came in contact with different types of scammers and users until I almost gave up then I heard of the name WHITEHATS- To my greatest surprise it came out that the WHITECOLLARS are all I have been searching for many years. Contact them for any hacking services for ease and fast delivery of any operation that involves a computer, other services like Phone Spy, Phone hack, Phone tracking, Credit boost up with all credit bureaus, Credit card top up, Bank Loading, Blank ATM cards, and many more. Mail- WhitehatspytechATcyberservicesDOTcom or WhitehatstechAtgmailDotcom, YOU WILL BE SURE TO THANK ME LATER
edit
Jon Stover
seven days ago
Each time I open my spouse messages starting from his WhatsApp messages, text messages and iMessages I always discover that my spouse always clear all the chats on those applications it was so so suspicious that I had to hire spyexpert0@gmail.com for a quick phone hack so as for me to get all my spouse deleted text messages, WhatsApp messages and imessages read. In less than 1 hour this hacker got me all I needed and I was Able to read all that my spouse has been hiding from me, am so so so thankful to you spyexpert0@gmail.com
edit
EARL
one month ago
I strongly recommend the service of a GREAT Hacker to you and his email is so I have used him quite a number of times and he has never disappointed me.
He does all types of mobile hacks, get unrestricted and unnoticeable access to your partner/spouse, Skype, Facebook Account, Email(s), Whatsapp, Instagram, Text messages, Snap Chat, Hang out, Twitter, Hangout, Bank accounts loading, Credit cards top up, office files, Boost credit scores to 750 plus with all credit bureaus etc
Contact this Great Computer wizard on WhitehatstechATgmailDOTcom or WhitehatspytechATcyberservicesDOTcom
edit
Dee Carr
one month ago
I caught my wife in an augment with her fuck mate via there conversations on text messages, iMessages and WhatsApp messages were her fuck mate has been threatening my wife to expose there hidden agendas and also leak there sex tap recorded through his cctv camera all thanks to jeajamhacker@gmail.com for helping me with this phone hack that made me found out about my cheating wife, this is really a big shock to me because I never believed my wife could do this to me because she looks and act all innocent thank you once again jeajamhacker@gmail.com
edit
Tabitha Gooden Flamestar
one month ago
Never knew my finance has been using me, indeed knowing verifiedprohackers@gmail.com really showed me a lot of things I never knew all along about my finance. All along I thought my finance has just me as his woman but I never knew my finance took me and sees me as a side chick and not his wife to be. I will never stop thanking you verifiedprohackers@gmail.com for the perfect investigations I got to see from my finance phone with the help of this hacker that my finance is planning his wedding with another woman its so so fucking heart breaking but thank verifiedprohackers@gmail.com
edit
Maria
two months ago
I got a blank ATM card to withdraw $5k daily for six months. I am so happy about this because i got the cloned atm card after i was scammed twice by fake hackers. I have used the card to withdraw $420k so far. Georg Bednorz Hackers is giving out the cards to help the poor and needy though it is illegal but it is something nice. No one gets caught when using this card. you can get it from Georg Bednorz Hackers today! He is kind, lovely, humble. Also, Georg Bednorz is an expert crypto trader through his trading signals, i made $1 million bitcoins, doubling my profit in 3 weeks.
Contact Email: georgbednorzhackers@gmail.com
WhatsApp/Text: +12623558285
edit
Tammy Inman Keeling
two months ago
I broke into my fiancé GPS just to know where and where is always up to because most times I feel he lies about his where about but this time was not a lucky one for him because I was able to monitor him with the help of verifiedprohackers@gmail.com and on that faithful day I traced my fiancé with his GPS and I caught him in the act of proposing to another woman and that was how I knew that this man has been playing with my heart ever since we started dating but all hope is not lost thanks to this wonderful team called verifiedprohackers@gmail.com
edit
wendydugger869@gmail.com
two months ago
A lot of men are so stupid despite the beautiful wife they got at home they still cheat well am so thankful to you jeajamhacker@gmail.com for helping me in catching my cheating husband red handed through his cell phone I was able to read a lot of unwanted text messages my husband has been keeping away from me. Now to the men out there you all are never safe anymore because with the help of hackers like jeajamhacker@gmail.com we will surly find out.
edit
David Killingback
seven months ago
I decided to run a phone hack on my spouse and you all won’t believe what I saw on her phone that is why most times its good to get access to your spouse phone if he or she doesn’t allow you access freely just email spyexpert0@gmail.com to get all you need without close contact with your spouse phone just like this hacker did for me. After the phone hack spyexpert0@gmail.com ran for me I saw so many nude pictures and videos my spouse sends to men just for fun.. men who are reading this right now if you have a partner and you have been overlooking things I will advise you try and get in contact with spyexpert0@gmail.com to know the kind of woman you are staying with.
edit
Simon Young
eight months ago
I came in contact with darkhatthacker@gmail.com just yesterday and am really impressed with the kind of results this hacker provided concerning my spouse iCloud… only God knows how happy I am.
edit
JOHN SNOW
ten months ago
All my years of pains and agony from many deceitful and wicked scammers ended when my friend referred me to the wonderful and genius group of hackers called WHITECOLLARS they made me believe that real hackers still exist and they delivered to me with total satisfaction and security in helping me in clearing my credit cards debts, bank transfer and also help me get the necessary documents I needed to file a divorce by hacking into my spouse phone,they are indeed exceptional. I really thank and MR WHITE and the whole WHITECOLLAR group of hackers. I appreciate you guys and I want the world to know that they are good hackers such as yourself. Feel free to contact them for help Email; WhitehatstecAtGmailDotCom or Whatsapp +18189256165
edit
Joe Engressia
two years ago
I am Joe Engressia, Certified Ethical Hacker (CEH) - Delivered By Leading Experts.
I major in...
Different Kinds of Games Hacking
Credit score increase and decrease
Upgrade University Grades
Facebook, Instagram, Twitter, WhatsApp, Line, Skype Hack
Delete unwanted online Pictures and Videos on any website
Remove Criminal Records
Tracing peoples background
Hack bank accounts
Apps hacking
Loading all MasterCard, Bank Accounts, PayPal, Bitcoin, WU, Money Gram with untraceable credit on it. etc.
We also develop hacked facebook, twitter, instagram, yahoo, gmail passwords etc.
Do you need to keep an eye on your spouse by gaining access to their emails?
As a parent do you want to know what your kids do on a daily basis on social networks.
Contact: digitaldawgpoundhackergroup@gmail.com
phone/whatsapp: +1(732) 639–1527
Regards..
edit
Damien O'Brien
four years ago
This reminds of my days at university, where I had a secret gaming club, where all the games I had collected were zipped on my student drive.
People were constantly unzipping the games in the home directory, or creating temporary directories and unzipping the game into it, but not removing directory after they finished with the game.
So I decided to write a program in Quick Basic, which would display a list of available games users could play, the program would then create a temporary directory, unzip their selected game in the new directory, then would execute the game, and after they had finished the program would remove that directory.
The program created the directory starting with the number "1", but if the directory already exists it incremented the number. After the program had created the directory, it would unzip the game into it, it would then check that the directory exists, if it appeared not to exist the program would incremented the number and try again.
This would have actually worked really well, save for one little of oversight and one major flaw of Quick Basic. The oversight was using the 'STR$' command to change a value to a string, and forgetting to remove trailing spaces. For example STR$(1000) would produce the string " 1000 ", thus you need to use the commands LTRIM$ and RTRIM$ too, which would have produced "1000" instead.
But the major flaw I found with Quick Basic, was the fact that the MKDIR (make directory) command would allow you to make directories with trailing spaces. But you can not remove them with the RMDIR (remove directory) command, and you can not remove them with windows explorer or any dos commands, It would also always says that the directory does not exist.
Thus when I first tested the program it got trapped within an endless loop, which I was unable to terminate or pause. Within a matter of seconds, the program created thousands of directories and kept going. Five minutes later, the university's student servers crashed due to the lack space available and the workload placed upon it.
Because of the crash all system logs were completely corrupted, so the tech guys could not figure out what had happened. They believed they had been attacked by a virus, so they decided to format all of the students drives, and restored them from clean backups. Nothing really bad came from this, but it did teach me be more vigilant when programming.
edit
jack
seven years ago
He made a program that LOOKED like a command prompt, and another
program that LOOKED like format. Not really format, or command prompt.
Pretty cool prank tho.
edit
Warren Reed
seven years ago
OMG. I did this same thing back when I was about 20... I had a friend that was very anal about his files on this PC... he wouldn't even let the machine boot into windows - he always had to start it manually - so I built a similar DOS emulation - complete with line buffer so edits were done in the program - and after running a random number of DOS commands via passthru, it would fake the format, reading a text file on the drive to make the light blink with each percentage, and once formatted it would intercept all commands and either give the file not found or for DIR commands, it gave a fake empty structure with the appropriate size in bytes for the drive. He freaked out and was ready to jump on me until I told him to just hit ctrl-c, and then he still was so angry he didn't talk to me for days... but the reaction was priceless nonetheless... Thanks for sharing this and letting me relive those glory days again lol
edit
Benjamin
seven years ago
During a maths exam when I was at school, we had these graphical calculators, and before the exam the teacher would come past and make sure we all cleared the memory, so we couldn´t store equation solutions and what not.
It had a simple form of basic, so I wrote an program that emulated the clear memory function. It worked like a charm, the teacher never suspected anything.
Still failed the exam though.
edit
Jason
eight years ago
I friend of mine stayed home from highschool one day (this was in '96, the days when a network printer driver could crash NT 4) and I was chatting with him via IRC while in the computer lab. Each computer had sequentially assigned public IP address. He asked me what my IP address was, after I told him, he said "look to your left". The 6 desktops all flashed a blur screen of death. Then he said, "now to the right". Again 6 workstations (the computers where all against the wall in a big U shape, the teacher was included in that IP address assignment scheme and I was sitting 5 seats away from her. I remember begging my friend to crash my computer. The sight of half the classroom with blue screens while I'm doing fine. I laugh about it now but man at the time I was so scared I would get blamed for it. Good times thouse 90's :)
edit
Michael Tiel
nine years ago
this is sooooo epic!!! haha reminds me of my teen years, i sort of did the same thing, recreating a dos shell in QBASIC. I named it ' kut-dos' which is dutch for 'cunt-dos' and auto-runned it on every computer in the school lol, they couldn't do anything without my password. It actually wrote a .bat script that rewrote the autoexec.bat after running the command (but not before the user typed the dutch equivalent to 'i give praise to Michael' :D
Got me sent to the dean and almost kicked out of school lol! Haha good times with QBASIC :D
edit
Jeff Geurts
ten years ago
Fun times! I did something similar in grade 11 to capture a user's password ... since my teacher assured me that if I could edit my grade to be 100%, she would let me keep the grade. My "program" emulated the login screen and continually gave the invalid username / password error, piping the entered username/pwd to a file on the network. But when I tested it on a fellow classmate, she freaked out and the teacher came over just in time to see me Ctrl-C : /
edit
Christopher
ten years ago
I did something similar with Visual Basic. It was a small popup that said something along the lines of "Are you sure you want to delete all files in C:Windows". The victim (my grandpa) naturally went for the cancel button but then the mouse would wig out and go straight for the OK button. I thought it was pretty funny to watch him yank the power cord from the wall in a panic as the progress bar worked it's magic. He didn't think that the two hours of work he lost in the prank was very funny and now I know just how volatile my grandpa's temper is.
edit
Mickael
eleven years ago
Damn, I did not realize so many people have done similar things using QBasic.
I did something similar, but the reason was different. We were using PS/2 machines as dumb terminals to connect to a terribly underpowered IBM RS6000 unix server where our source code, compilers, etc... were stored. Having to use VI to edit code on a machine with not enough memory was ok when only one or two students were connected, but as soon as the 15 of us were connected and compiling, it become a nightmare to edit and save. Easy solution: Run something like the Turbo Pascal editor to edit the Cobol sources, then copy to the unix server, launch the compilation and continue to edit the source code on the PC while it compiles.
Except we were not allowed to save anything on the PC at all, and we were forbidden to bring any floppies. My solution was to reprogram fake dos commands (like DIR and CD) using compiled QBasic, calling the real DIR command (patched to DYR in CMD.EXE) and filter the output to hide the location of a hidden folder deep in the IBM AIX software. I installed that one evening when the teacher was sick, and I've been able to use Turbo Pascal and other cool tools and games (to play while things compiled) for two years in a row :)
Funny thing is that I was storing the output of all commands in a log file, so I was able to see what people were typing on the computer, allowing me to see exactly how the teacher was looking for unauthorized software. One day I noticed that there was a lot of strange command, and remembered that the day before IBM people came to "upgrade the AIX version", I quickly found out they also were looking for unauthorized installations of IBM software, and based on the time stamp they spent about 3/4 of their (expensively billed) time doing that...
Damn, too long a post...
edit
ade2kay
eleven years ago
Back in college, a guy copied my QBasic program without permission.
So i wrote a QBasic fake. Once he typed QBasic at the command prompt, the program told him to insert his floppy disk, and when he inserted it, the program did a DIR on his floppy disk, and deleted my program if it found the filename.
The guy looked at me like someone from another planet henceforth...lol
edit
Marras
eleven years ago
Since everyone's telling old stories, in school a long time ago I made a DOS memory resident program that took over INT13 and ignored all disk write commands but passed through all read commands. And SmartDrive would cache all write commands thinking they worked.
The result was you could delete a file and it would appear to be lost if you entered "DIR", in real DOS, until smartdrive flushed it's cache or you rebooted the machine.
You could also run the actual FORMAT command, running for real, but the disk data would be intact afterwards.
Great times, great fun!
edit
me
eleven years ago
I did the same thing in high school except I made it appear I had hacked into the FBI's mainframe...and the authorities had traced the signal....and the teacher believed it.
edit
Brent Ashley
eleven years ago
In the early 90s I worked as a computer tech at Ontario Provincial Police headquarters, which was in downtown Toronto at that time.
OMPPAC (Ontario Municipal and Provincial Police Automation Cooperative) was rolled out during my tenure. It ran on XT-class PCs connected via token ring to communication servers and then to the tandem via 9600 baud async connections. It was a character-based application with an opening screen that spelled out OMPPAC diagonally across the screen in large letters composed of each character, and a bitmapped OPP symbol.
I wrote a QB4 program in 1989 or so that mimiced this screen in graphics mode. As soon as you hit a key, a pacman character appeared at the top left and started munching the screen up a row at a time, with pc speaker "Jaws" music. When it reached the end, the screen flashed postitve/negative a few times and then was overwritten with OMPPAC-MAN!!!, with accompanying musical "CCEG.EG!!" fanfare.
I installed this on the demonstration machine just before a meeting of some of the top brass, superintendents and inspectors. I subsequently discovered that this is a group of people particularly immune to humour.
Luckily for me as a civilian employee at the time the fallout was not significant, but there were a lot of red faces and blustering, sputtering rage from those accustomed to barking orders and not getting egg on their faces.
edit
Adelle
twelve years ago
@raoch
The beauty of remote code exploits is that you can potentially use them to do anything.
Our school had a network of Acorn BBC computers that had a ROM for networking, called "Econet". The Econet ROM had built-in routines for copying blocks of data to or from an arbitrary memory location on a another computer and another for remotely executing a JSR instruction to an arbitrary memory location.
In my more constructive moments, I started working on a system that would allow a program to use the the memory of any number of computers on the network. But I never finished it.
edit
Adelle
twelve years ago
I was terrible in high school. I figured out how to remotely raise BASIC errors, so I'd sit at the back of the computer room and send errors to people who were working on their programs. I'd use ridiculous phrases for errors, like "Incorrect number found" or "Text too short" or "Upper case E not valid at this location", and they'd be like "WTF, I never heard of that error! There isn't even an upper case E on that line!" (the error would break their program on whatever line happened to be executing at the time). Ahh, good times.
edit
schnalle
twelve years ago
ah, great times. it almost counted as a "sport" to write alt+255 programs at my school.
so, alt+255 is an invisible, space-like character, but the great thing is, you could name files/scripts alt+255.exe/bat. and if you put them in c:\, you could add them to the autoexec.bat without one noticing it.
i used this to write a mockup virus scanner, that reported a virus (tequila!), then faked a system error and begann formatting. additionally, it set the dir command to search for andiasjd.sdj files by default, so if you just wrote "dir" afterwards, the response was "no files found".
my younger cousin (always my first victim, uh, beta tester then) began to cry. i still feel bad for this.
uh, and i especially love my mockup format:
"really format drive c? all data will be lost! (y/n)"
user types "n"
"warning: are you really sure you want to delete all data on drive c:? (y/n)"
user types "n"
"formatting drive c:"
"format 1% ..."
the look on their face ...!
edit
Mathieu
twelve years ago
As far as I remember, it understands Ctrl+Break to jump back into debugging.
edit
Someone
twelve years ago
That was really cool. Reminds me of my college days where we were thrown out for creating a website for out department :P :P
edit
Michael Mol
twelve years ago
That's beautiful.
When I was a kid (10 years old or so), I came across a program called LOVEDOS.
LOVEDOS gave every impression of being the normal DOS shell, except that the directories shown by "dir" clearly weren't your own, the files clearly weren't your own—And the computer was coming on to you, in various subtle and not-so-subtle ways. The only way to exit the program was to type "I love you" at c:\>
I put it in my step-dad's autoexec.bat.
edit
Trey
twelve years ago
I did the same thing in Pascal in High School, great fun especially when I made it TSR.
edit
novakeraykee
twelve years ago
I did something like this during my junior high years...I learned this from my Step-Dad, who was a programmer. The difference is that I memorized some command lines and did it to the main computer in the computer lab...and BAMM...all computers down...oops.
edit
Aaron
twelve years ago
In high school, I was party to a VMS/VAX command line simulation written in DCL; I wasn't the original author, but I tweaked it and deployed it on a few VAX terminals in the computer science lab.
The purpose of the program was to simulate the login prompt, record entered login credentials in a flat file, spit out an "incorrect login" error, and drop the user to the real login prompt transparently.
One of the difficulties was that DCL had no "clear screen" command like DOS, so we got around it by launching and immediately terminating the built-in "phone" application (which allowed you to have a split-screen chat with another luser on the system).
Though there was an extremely momentary flicker of a line across the screen (the split screen divider), nobody was ever the wiser.
Eventually our CS teacher discovered the app, searched the entire VAX for it (by name) and suspended all of the accounts he found it in!
Those were good times.
edit
me too
twelve years ago
I created a QBasic program that was an exact replica of the school's ASCII login screen. It would get the password, store it on the network drive, prompt an error message for about 1 second about a token ring malfunction, then restart the computer. I only used it on a couple of friends just to screw with them.....ah, good times.
edit
Evan
twelve years ago
I did the same thing (in Pascal) back in high school. My app initially showed a generic error message and every Y/N or Abort/Retry/Fail response you made would eventually lead you to a fake disk format. I never ran it at school but did get my Dad with it.
edit
OldDog
twelve years ago
I once wrote a one line CP/M emulator for our PDP11. No matter what you typed it just said 'BDOS ERROR ON A:'
:)
edit
Steve Hanov
twelve years ago
The "unable to read from drive X:" prompt was actually simulated by the program as well. So no worries!
edit
me
twelve years ago
Wait, so... You said you created an exact clone. Does that mean you created the "unable to read from drive X:" error at the end? Or do you mean that you actually ran a real DOS prompt by mistake?
The simple and obvious way to walk through a graph
At some point in your programming career you may have to go through a graph of items and process them all exactly once. If you keep following neighbours, the path might loop back on itself, so you need to keep track of which ones have been processed already.Using the Acer Aspire One as a web server
A netbook can be ideal for a home web server. They are cheap, and use less power
than a CFL light bulb.
Usability Nightmare: Xfce Settings Manager
Rant: Why can't anyone make a good settings screen?
Cell Phone Secrets
How to choose a cell phone in 2006, if you want the best possible radio.Optimizing Ubuntu to run from a USB key or SD card
Fortunately, by following the tips below, you can make your USB or SD card based linux system fly!Bending over: How to sell your software to large companies
For a micro-ISV, selling to businesses can be more lucrative than selling to consumers. Instead of making a few dollars per sale and hoping for thousands of sales, you sell to only a few customers, and charge much higher rates. But the rates are high for a reason. It takes more time and money to sell to businesses.