NeoKwinto AntyTrial Version 2010.04.01

NeoKwinto is intended for clear the trial's protection and reset to initial state their counters. Reinstallation of unblocked programs isn't necessary and you can use your programs at once. All settings, projects will stay without changes. NeoKwinto removes only the timebombs.

This program is easy to use and has a simplified user interface, very useful for beginners. NeoKwinto scans system and finds timebombs. Next, it displays the list of founded protectors and the user can choose trials to reset. Whole operation lasts only several - a few dozen seconds.
NeoKwinto is compatible with Windows 98 / XP.

ChangeLog:
Version 2010.04.01 (freeware)

* Added new trials (e.g. WinRAR 3.93 , Ashampoo WinOptimizer 6 , Mortimer Beckett and the Time Paradox , Sokoban 3.0.6 , My Kingdom for the Princess > (screen) , GHOST Chronicles PotRF ).
* NeoKwinto 2010 resets 60-min games-trials from Reflexive Arcade, Oberon Media, Alawar Games and others.
* Clears the Armadillo protector (e.g. HyperSnap 6, PaintShop Pro 9, TibiaBot NG, and lots of others).
* ActiveMARK protection supported (games from TryGames, Yahoo!, AOL Games...)
* NeoKwinto is able to reset the ASProtect timebombs (e.g. Outlook Express Backup Wizard, TweakNow PowerPack 2006 Pro, PowerStrip 3.x and many, many others).
* Resets also trials of Ulead Software (e.g. Ulead VideoStudio 11, Ulead PhotoImpact 12) and others.
* Can reset the trial's counters in programs with Softwrap (e.g. Ulead PhotoImpact 10)
* Implemented functions of heuristic searching for some software protections.

Homepage: http://www.neokwinto.oz.pl/

innounp, the Inno Setup Unpacker 0.28

innounp, the Inno Setup Unpacker
Version 0.28
Supports Inno Setup versions 2.0.11 through 5.3.7
Inno Setup is a popular program for making software installations. Unfortunately, there is no official unpacker - the only method of getting the files out of the self-extracting executable is to run it. One piece of software that addresses this issue is Sergei Wanin's InstallExplorer, a plug-in for the FAR Manager that unpacks several types of installations, including Inno Setup (IS). But since it is not updated in a timely fashion, and so does not support the latest IS most of the time, this program was born. The advantages over InstallExplorer are:

• Innounp is open source and based on IS source. Therefore, it is more likely to support future IS versions.
• It recovers portions of the installation script (.iss file), including the registry changes and the compiled Innerfuse/RemObjects Pascal Script, if available.

Download  |  Forum  |  Project summary page on SF.net  |  Homepage

For using with UniExtract copy/replace innounp.exe to: \Universal Extractor\bin folder

VMunpacker 1.6 Latest Version

This tool based on the technology of virtual machine, it could unpack various known & unknown shells. It is suitable for unpacking the shelled Trojan horse in virus analyses, and because all codes are run under the virtual machine, so they will not take any danger to your system.

VM Unpack Engine SDK
The commercial VM Unpack Engine SDK will be provided solemnly (VM Unpack Engine SDK).
Use VM Unpack Engine SDK, the developer does not need to care about the unpacked course and method, only needs to transmit the data to VMUE SDK, VMUE will finish analyzing and unpacking automatically. VMUE supports to send the result of unpacking to the file and memory at the same time, and returns OEP after unpacking directly, It help you unpack shells in your products and tools.
Rebuild PE file after unpacking, such as repair the import table, Overlay, etc. offer the essential condition that rebuilding can running EXE program.
VMUE SDK includes the following part mainly:
Relevant dynamic or static libraries
VMUE SDK technological white paper and the document about the interface of SDK
Codes of calling VMUE SDK
Shell's signature library in binary
Other auxiliary routines and codes

Supported Packers:
upx 0.5x-3.00 All Version
BeRoEXEPacker
aspack 1.x - 2.x All Version
PEcompact 0.90--1.76 2.06--2.79 All Version
fsg v1.0 v1.1 v1.2 v1.3 v1.31 v1.33 v2.0 All Version
vgcrypt v0.75
nspack 1.4 - 4.1 All Version
expressor v1.0 v1.1 v1.2 v1.3 v1.4 v1.501
npack v1.5 v2.5 v3.0
dxpack v0.86 v1.0
!epack v1.0 !epack v1.4
bjfnt v1.2 v1.3
mew5 mew v1.0 v1.1
packman v1.0
PEDiminisher v0.1
pex v0.99
petite v1.2 v1.3 v1.4 v2.2 v2.3 All Version
winkript v1.0
pklite32
pepack v0.99 v1.0
pcshrinker v0.71
wwpack32 1.0 - 1.2
upack 0.1 - 0.32, 0.33- 0.399
rlpack 1.11 - 1.14, 1.15 - 1.18
exe32pack v1.42
kbys v0.22 v0.28
yoda's protector v1.02 v1.025 v1.03.2
yoda's crypt v1.1
yoda's crypt v1.2 v1.3 v1.xModify
XJ
exestealth 2.72--2.76
hidepe v1.0 v1.1
jdpack v1.01 v2.1 v2.13
jdprotect 0.9b
PEncrypt v3.0 v3.1 v4.0
Stone's PE Crypt v1.13
telock v0.42 v0.51 v0.60 v0.70 v0.71 v0.80 v0.85 v0.90 v0.92 v0.95 v0.96 v0.98 v0.99
ezip
hmimys_pack v1.0
lamecrypt v1.0
depack
polyene v0.01
dragonArmour
EP Protector v0.3
PackItBitch
trojan_protect
anti007 v2.5 v2.6
mkfpack
yzpack v1.1 v2.0
spack method1 spack method2
naked packer v1.0

upolyx v0.51
stealthPE v1.01 stealthPE v2.2
mslrh v0.31 v0.32
mslrh v0.2 == [G!X]'s Protect
morphine v1.3 morphine v1.6 morphine v2.7
rlpack full edition

Homepage: http://art-programming.blogspot.com/

VMunpacker.v1.6Fix..rar 979.17 KB

PROTECTiON iD v6.3.5

(c) http://pid.gamecopyworld.com CDKiLLER & TippeX [02/2003 - 12/2009]

'protectionid - we innovate, we dont replicate other peoples work'

Homepage: http://pid.gamecopyworld.com/


Features

- detection of every major PC ISO Game / Application protection
- currently covers 475 detections, including win32/64 exe protectors & packers, .net protectors, dongles, licenses & installers
- sector scanning CDs / DVDs for Copy Protections
- files / folders can simply be drag & droped into pid
- strong scanning routines allowing it to detect multiple protections
- easy scanning via shell context menu
- usefully misc tools included
- coded 100% in Win32 assembly language
- fully 32bit & 64bit compliant
- working from Win9x to Windows 7


PROTECTiON iD v6.3.5

We are proud to present you the next and most up2date version of protection id.
it was about time to bring this to the public, as the last version was released back in march.

During development of this version we ported it over to MASM v10,
using the latest compiler & linker available at the moment.

This version of pid features highly optimized scanning routines, resulting in very fast detections.
i.e. a 2 GB setup.exe in processed in less then 1 second (smart mode kicks in).


Download: http://pid.gamecopyworld.com/ProtectionID_v6.3.5.rar

Exeinfo PE ver.0.0.2.6 - 543 signatures by A.S.L.

ver.0.0.2.6 - 543 signatures - not tested / no time

Download
exeinfope.zip 654.29 KB

Exeinfo Pe 0.0.2.6 work ( 535 sign ) for test by A.S.L.

Program to check files how they are done (exe packer, archives, compiler,... and many more) Helpful info to unpack.

Exeinfo Pe v.0.0.2.6 ( 535 signatures ) - work version ! for test


- AVI info added movie size/fps
- new skins added
- non exe RTF text added
- removed anipacker - added Visual Basic fake signer for upx packer
- screenshot saver added ( bmp/jpg )
- new sign added
....


A.S.L

Homepage: http://www.exeinfo.xwp.pl/


Mirror: exeinfope.zip 624.35 KB

Exeinfo PE 0.0.2.5 - 12.10.2009 530 signatures

exeinfo - work version 12.10.2009 (530 signatures)



GUI changed:
- section view,
- about,
- config

two skin changed to color skin

save screenshot added

bug fixed

A.S.L

Homepage: www.exeinfo.xwp.pl

exeinfope.zip

Exeinfo PE v0.0.25 526 sign 30items by A.S.L.

Please redownload exeinfo



Mirror: Exeinfo_v0025_526sign30items.zip 579.17 KB

some tools for unpacking:
http://www.woodmann.com/collaborative/tools/index.php/Category:Unpacking_Tools
http://www.accessroot.com/arteam/site/download.php?list.9

Exeinfo PE ver.0.0.2.5 - 525 signatures

Exeinfo for Win32 by A.S.L.
Packer, compressor detector / unpack info / internal exe tools

Exeinfo PE ist ein Datei Identifizierungs Programm welches erkennt mit welchen Packer oder Protector eine Datei erstellt wurde. Zudem zeigt es hilfreiche Informationen um gepackte Dateien zurück in den Ursprung zu entpacken. Eine Vielzahl von integrierten Optionen ermöglichen weitaus mehr. Zur Zeit werden 525 unterschiedliche Packer/Protektoren wie auch Compiler erkannt. Das Programm ist sehr ausgereift und versteht den Unterschied zwischen falschen Signaturen und echten.
Die Bedienung ist einfach per Drag'n Drop der Datei(en) in die Programm Oberfläche.

Changelog:

Exeinfo PE ver.0.0.2.5 - 525 signatures

fixed : The Enigma Protector [1.70]

NOT EXE - eof check added for JPG format - Hidden exe data - HideMyArchive program.
NOT EXE - .RM Video/Audio format
NOT EXE - audio .MID format (MIDI)
NOT EXE - audio .XM tracker format ver: xx.xx
NOT EXE - audio .MOD Soundtracker/Protracker format (M.K. - only)

bug fixed - 0 item in listbox hangs exe no windows

added external run - detectors MENU - Ctrl key

Inno setup - version info added
Lindersoft SetupBuilder Developer - ver info added
ver from file added: Tarma® Installer v.5.6

Dasm added to Hex search window

Upx anti Fake sign added


510. WildTangent Game wrapper 2.2.0.xx - www.wildtangent.com www.wildgames.com
511. RealArcade Wrapper (.garr) www.realarcade.com
512. GPScript Programming Language v5.0 - 2007.11.20 - Copyright(C) 2001 - 2003, GPcH Soft - www.dotfix.net
513. QuickPack NT 0.1 alpha 07.09.2007 (aPlib)
514. NoobyProtect SE 1.5.8.0 (c) 2009 Nooby - www.safengine.com
515. Generic Detector : VMware ThinApp 4.0.x - 2009 - Copyright 2006-2009 VMware, Inc. thinstal.com / www.vmware.com
516. 4nCapsule PE protector v0.1g Copyright (C) 2007.7.17 [4NV|e] anvie_2194@yahoo.com
517. Fish PE v.1.04 (2009.01.20) - http://hellfish.ys168.com
518. KenPack v1.0 - Ken Soft (exe) - www.chken.com or http://i40.cn
519. Lame detector : KenPack vx.x - Ken Soft - www.chken.com
520. FakeNinja v2.8 Private Relase (11.2006)
521. InstallSimple v1.35/1.40 free 2007-2009 (upx stub) - www.installsimple.com - www.rnlogic.com
522. SecurePE v1.6 (13.09.2008) ThinkCore Research - www.thinkcore.com
523. DH Cripter 0.2 by DRIGIN (VB stub 6.0) 12.05.2009 www.descargashack.com
524. Helminth Crypter v.2 by AlC@p0n3 (VB 6.0 stub) 09.02.2009 www.lostdoor.forumup.dk
525. eXpressor PE Packer v1.7.0.1 (MODE: Protection) - www.cgsoftlabs.ro

Links to packer: http://www.woodmann.com/collaborative/tools/index.php/Category:Packers

Homepage: http://www.exeinfo.xwp.pl/

Exeinfo_v0025_525sign.zip 686.80 KB

Inno Setup Unpacker 0.22

Supports Inno Setup versions 2.0.18 through 5.3.4

Aug 20 2009 innounp 0.22

Inno Setup is a popular program for making software installations. Unfortunately, there is no official unpacker - the only method of getting the files out of the self-extracting executable is to run it. One piece of software that addresses this issue is Sergei Wanin's InstallExplorer, a plug-in for the FAR Manager that unpacks several types of installations, including Inno Setup (IS). But since it is not updated in a timely fashion, and so does not support the latest IS most of the time, this program was born. The advantages over InstallExplorer are:

* Innounp is open source and based on IS source. Therefore, it is more likely to support future IS versions.
* It recovers portions of the installation script (.iss file), including the registry changes and the compiled Innerfuse/RemObjects Pascal Script, if available.

0.22 (20.08.2009)
Added support for Unicode versions
Added support for IS versions 5.3.0 - 5.3.4 (both ANSI and Unicode)
Fixed rare issue with double backslashes in file path



Homepage & Downloads: http://sourceforge.net/projects/innounp/files/
http://innounp.sourceforge.net/


Скачать/Download (108 Kb)


other versions:

innounp, Inno Setup Unpacker 0.25 增强版(Build:090818)

This version of the source to enhance the roles according
This procedure updates the time being come to an end unless a newer inno version

Updated too dense, and many people may not meet the

Special thanks:
tracky, cwx

Note: The multi-language feature is not automatically switch the current operating system language, when language file does not exist, then the default, use the built-in Simplified Chinese language

Build :09-08-18
Because of previously published containing small pieces of virus code, and is now re-compiled to remove the virus
On the virus, please see the Forum Sticky paste.

Build :09-08-06
Update to be unpacked versions of Inno Setup 5.3.3

Build :09-05-23
Corrections Russian display garbled BUG
Revised Lang directory Languages
To increase support for version 2.0.18

Build :09-05-18
Corrected multi-language BUG
Modified to meet the right IsUnp support


Build :09-04-26
updated to unpack Inno Setup 5.2.5 beta
updated to unpack Inno Setup 5.3.0 beta
Since 5.2.3 version, the official will be sub-Ansi, Unicode 2 release
As the current changes in the official version of the large, this tool in dealing with Unicode, it might be a problem.
Therefore, this tool is also be updated innounp
innounp.exe Ansi version supports all versions after 2.0.8
Innounpu.exe Unicode version 5.2.3 only supports the Unicode version of the following

Build :08-12-06
Amendment language contained repeat
Increase in Russian
Revised language loading order

Download innounp+v0.25(2009-08-18).rar 185.40 KB

eMule 0.49c SBI Leecher 2.01

eMule 0.49c BSI Leecher v2.01
emule.exe Image is 32bit executable done with VMProtect 1.70.4 - 1.8 ( 2009.02/04 ) emule run in a virtual machine process nfo: PolyTech - www.vmprotect.ru , info says: find swf tutorial by Nooby www.google.com

v2.01
-fixed upload bug

v2.0
-add spooky mode [serverwindow/sbi controll]
-show users ip [transferwindow]
-add reconnect on low id [switchable]*
-add fake rank start value [switchable]*
-add fake rank update time [switchable]*
-add auto drop ranking QR>x [switchable]*
-add auto drop ranking time [switchable]*
-add ranking value for button & auto drop [switchable]*
-add file reask time [switchable]*
-add auto load/save sources[switchable]*
-add sources to save/load value [switchable]*
-add reload sources before save [switchable]*
-add show downloads in bold [switchable]*
-changed download in color code [switchable]*
-some fixes of previous version
-some other code changes

Name: eMule 0.49c SBI Leecher 2.01
Coder: Butcho
Date: 2009-07-07
Forum: www.s
Version: eMule 0.49c Original
Support: gentil_monsieur and sarutobi (thx)
Testing: hitman and anon (thx)


Most AV's doesn't scan proper through VM Protect encrypted executables.

uTorrent extreme LE 4.02 - Not crypted - Logo in Pogo eDiTioN

μTorrent Extreme Leecher Edition v4.02

"Back to the Future"

Changelog v4.0:
Neu! Basiert auf μTorrent 1.83 Final
Installsetup / Deinstall // buggy if D drive is not present
Eintrag ins Startmenü // installer set shortcut
Changelog / Liesmich // save as picture use ocr
Linkliste hinzugefügt // installer add a bunch of urls
Geänderte Oberfläche + Icon´s // extras optional general uT addon feature
Neu! Language Pack hinzugefügt // extras optional general uT addon feature
Neu! Länderflaggen vom 18.6.09 // extras optional general uT addon feature
Neu! integrierte Ipfilter von blocklistpro.com 13.06.09 // external use wget + batch to exe or replace download help/langpack url with download ipfilter.dat inside the ut.exe
Neu! Ozzy Ip-Filter Updater hinzugefügt // external prog use wget + batch to exe
Neu! Pawcio Ip-Filter Updater hinzugefügt // external use wget + batch 2 exe
Verzeichnissstruktur für Tempverzeichniss und Downloadverzeichniss // portable default settings see utorrent-deutsch.de
Desktopicon für Downloadverzeichniss hinzugefügt // installer shortcut option
μTorrent Extreme LE Original hinzugefügt // modded too
μTorrent Extreme LE (NoReport Tracker) hinzugefügt
μTorrent Extreme LE (Multi 10x) hinzugefügt
Neu! μTorrent Extreme LE (Reverse) hinzugefügt
Neu! μTorrent Extreme LE (FakeUpload 2x) hinzugefügt
Neu! μTorrent Extreme LE (FakeUpload 4x) hinzugefügt
Neu! Statistik an BitTorrent Inc. ausgeschaltet / entfernt
Autoupdate ausgeschaltet / entfernt // .dat uT settings file pre config
Settings werden gesondert gespeichert, somit kann der Modpack parallel zu anderen Modpacks // via uT settings file pre config
betrieben werden // how to in German: http://utorrent-deutsch.de/Anleitungen.html
integrierte Torrent Suche überarbeitet ( 13 Torrent-Suchmaschinen) // external settings file pre config + inst shortcuts
Autostop des Torrent wenn Download abgeschlossen
Name in der Titlebar und Aboutwindow geändert // simple hex name edit on title rater give per mod matching description in title
Verschiedene Einstellungen geändert (Vorbeugung zwecks Routerproblemen) // kidding :)) pre config uT dat file

As I downloaded, I thought it's some kind of a big joke. Some little hexediting + external config files bundled and altered with ASProtect/ASPack executable packer. Bundled into a setup using Install Creator.

However using dUP in inline mode on compressed (upx'ed) files or add upx.exe into patcher, a hacker can do some sort of an universal patcher working for all ut builds. // port from this exe samples

ALL EXE Files of UTorrent was Asprotect or Aspacked something like that. PDF was whatever could not easy print or copy if use adobe.

We do not suggest anyone to execute/run encrypted protected processes!
exe protectors are different than exe packers such as upx, xcomp, mpress, pec.

1. mem load is higher
2. cpu load may get greater
3. most protectors run 2 and more processes for one single exe program
4. never can know whats inside
5. some AV's have a high tolerance and don't scan properly inside some exe files done with protectors/packers as they are used for commercial software, keygens and cracks, which you execute and run for just a few minutes not as a background application like BT or Emule run over hours and even days.
More is not to say

here clean exe files:

* manual unpacked
* no install ( No Installer Errors if D Drive is not writable or not exist )
* made documents readme and changelog translatable for international users
* do your configuration by self as in ut-forums described how to use uT portable
= logo in pogo:


Readme

μTorrent Extreme Leecher Edition v4.0

Back to the Future
Die Mod´s
μTorrent Extreme LE (Original)
Der Mod ist ein ganz normaler.

μTorrent Extreme LE (Multi 10x)
Bei diesem Mod wird der Upload mal 10 multipliziert wird. Auf dem Tracker wird also 10mal soviel Upload angezeigt.

μTorrent Extreme LE (FakeUpload 2x)
Bei diesem Mod wird vor dem Upload eine 2 hinzugefügt. Auf dem Tracker wird also bei 8 KB Upload eine 28 gezählt bzw. angezeigt.

μTorrent Extreme LE (FakeUpload 4x)
Bei diesem Mod wird vor dem Upload eine 4 hinzugefügt. Auf dem Tracker wird also bei 8 KB Upload eine 48 gezählt bzw. angezeigt.

μTorrent Extreme LE (NoReport Tracker)
Der Mod ist wie die anderen 1 KB Upload Leecher, nur das du bei diesem Mod auf dem
Tracker überhaupt nicht angezeigt wirst. Inclusive NoComplete Feature, es wird zum
Tracker kein Status mehr gesendet, wenn das File vollständig geladen wurde. Achtung auf vielen Trackern geht der Mod nicht mehr.

μTorrent Extreme LE (Reverse)
Bei diesem Mod wird dir dein Upload auf dem Tracker als Download gezählt bzw. dein
Download als Upload gezählt. Es wird also wenn du 30 MB geladen hast dir 30 Upload
gutgeschrieben bzw. wenn du 5 MB hochgeladen hast 5 Download gezählt.

(Die Settings für diese Mod´s werden gesondert gespeichert. Der Mod kann somit parallel zum aktuellen μTorrent 1,x oder zu einem anderem Modpack betrieben werden.)

μTorrent Extreme Leecher Edition IP-Filter
Der Ozzy Ip-Filter Updater oder Pawcio Ip-Filter Updater lädt die IpFilter von Ozzy bzw Pawcio einfach aus dem Internet herunter. Vorschlagen würde ich den IpFilter von Ozzy.
Der Ozzy IpFilter enthält den IpFilter von Pawcio + die von blocklistpro.com. Der Ozzy IpFilter ist also etwas größer als der von Pawcio und wird auch öfters aktualisiert.
Aktualisiert werden beide Ip-Filter häufig am Anfang des Monat.

Viel Spass mit dem Mod wünscht euch
Logo in Pogo

Download not encrypted - No installer: uTorrent Extreme Leecher Edition v4.0.7z 3.22 MB | Mirror | Mirror


Homepage: http://f065.server.lu/..
utorrent-extreme-le-v4-0-based-utorrent-1-83-final-utorrent-extreme-le-v4.02.exe
files are ASPacked process cleaned (I hate the hichh in winsock)

Download Installer:
Install Creator Pro 2

related:
http://syd.nightmail.ru/stripper.dhtml
http://myweb.tiscali.co.uk/reverseengineering/html/stripper.html
http://www.ollydbg.de/
http://freemypdf.com/
http://unpack...

Change Log

Liesmich
For MoDs.sub.cc by Daniel

dissembling the uninstall.exe makes clear why access drive problem 'installer errors' shown up if D drive is for example a not writable cd/dvd device or does not exist :))

dht.dat.old . download.exe D:\Downloads Downloads.db + C:\Documents and Settings\All Users\Desktop
Downloads.lnk . flags.bmp .
flags.conf .\Hilfe
Changelog.pdf .\Hilfe Liesmich.pdf .\Hilfe, SB-Innovation - Leecher Mod Source Nr. 1.url . IE.ico . ipfilter.dat
.\LinkListe; .. speedtorrent.to - will boost your Torrent Traffic ...url
.\LinkListe) BITREACTOR.TO - YOUR TORRENT RESOURCE.url
.\LinkListe@ Mp3Nova.org - free mp3 torrent,high quality albums download..url
.\LinkListe Saugstube Torrent.url
.\LinkListe; The Pirate Bay - Der größte BitTorrent-Tracker der Welt.url
.\LinkListe Torrent Finder Search.url
.\LinkListe) Torrents Search Engine - Torrentz.com.url
.\LinkListeL www.torrent.to - Die besten und schnellsten BitTorrent Downloads im Netz.url . main.ico . Ozzy Ip-Filter Updater.exe . Pawcio Ip-Filter Updater.exe .
resume.dat . rss.dat . settingz.dat . settingz.dat.old . tabs.bmp 7 C:\Program Files\uTorrent Extreme Leecher Edition -Temp Temp.db .
toolbar.bmp . tray.ico .
tstatus.bmp .' uTorrent Extreme LE (FakeUpload 2x).exe .' uTorrent Extreme LE (FakeUpload 4x).exe .# uTorrent Extreme LE (Multi 10x).exe .* uTorrent Extreme LE (NoReport Tracker).exe .! uTorrent Extreme LE (Reverse).exe .! uTorrent Extrme LE (Original).exe . utorrent.ico . utorrent.lng 6 P
T C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition. Uninstall uTorrent Extreme Leecher Edition.lnk T C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition
Downloads.lnk Z C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Hilfe
Changelog.lnk Z C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Hilfe Liesmich.lnk Z C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Hilfe7 Support by SB-Innovation - Leecher Mod Source Nr. 1.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste SpeedTorrent.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste Bitreactor.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste
Mp3Nova.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste Saugstube Torrent.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste The Pirate Bay.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste Torrent Finder.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste) Torrents Search Engine - Torrentz.com.lnk ^ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\Linkliste Torrent.to.lnk ‡ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\µTorrent Extreme Leecher Edition IP-Filter Updater Ozzy Ip-Filter Updater.lnk ‡ C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition\µTorrent Extreme Leecher Edition IP-Filter Updater Pawcio Ip-Filter Updater.lnk T C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition' uTorrent Extreme LE (FakeUpload 2x).lnk T C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition' uTorrent Extreme LE (FakeUpload 4x).lnk T C:\Documents and Settings\...\Start Menu\Programs\µTorrent Extreme Leecher Edition# uTorrent Extreme LE (Multi 10x).lnk T C:\Documents and Settings\..\Start Menu\Programs\µTorrent Extreme Leecher Edition* uTorrent Extreme LE (NoReport Tracker).lnk T C:\Documents and Settings\..\Start Menu\Programs\µTorrent Extreme Leecher Edition! uTorrent Extreme LE (Reverse).lnk T C:\Documents and Settings\..\Start Menu\Programs\µTorrent Extreme Leecher Edition! uTorrent Extrme LE (Original).lnk: 7 k €a Software\Microsoft\Windows\CurrentVersion\Uninstall\µTorrent Extreme LE v4.0 (Back to the Future)

Maybe Seba14 can dig into it and remove the Ask Toolbar crap

or bundle it together to make from all LP the best mod
http://www.seba14.org/download/torrent/utorrent_1.8.3_15728_LP.rar + the some features from the Logo pack into one,
and maybe change or remove most useless links (offers,sb-inno...,yandex,...) which are embedded:

http://
http://%s%s%s
http://utorrent.com/webui/webui-%s-%s.zip
http://utorrent.com/webui/version-%s
http://utorrent.com/webui-guide.php">guide
http://schemas.xmlsoap.org/soap/envelope/"
http://schemas.xmlsoap.org/soap/encoding/">
http://%s:%d/%s
http://download.yandex.ru/yandex-pack/utorrent/YandexPackSetup.exe
http://
http://ll.download3.utorrent.com/offers/tb_ask-4.1.0.5.bmp
http://download.yandex.ru/yandex-pack/utorrent/yd_bar_illustration.bmp
http://www.utorrent.com/legal/eula.
www.utorrent.com/legal/eula.
http://www.utorrent.com/legal/eula.
www.utorrent.com/legal/eula.
http://forum.utorrent.com.
http://www.utorrent.com
www.utorrent.com
http://utorrent.com/download/langpacks/dl.php?build=15728&ref=client&sys_l=%s&sel
http://google.com/search?q=
http://www.bittorrent.com/search?client=%v&search=
www.bittorrent.com/search?client=%v&search=
http://www.utorrent.com?client=utorrent1830
www.utorrent.com?client=utorrent1830
http://www.sb-innovation.de/
www.sb-innovation.de/
http://www.utorrent.com/faq.php?client=utorrent1830
www.utorrent.com/faq.php?client=utorrent1830
http://download.utorrent.com/utorrent-help.zip
http://search.utorrent.com/search.php?q=%U&e=%U&u=1
http://utorrent.com/rsstutorial.php
http://www.utorrent.com/download.php
www.utorrent.com/download.php
http://www.dslreports.com/speedtest
www.dslreports.com/speedtest
http://www.utorrent.com/testport.php?port=%d
www.utorrent.com/testport.php?port=%d
www.dslreports.com
http://www.utorrent.com.
www.utorrent.com.
http://www.utorrent.com.
www.utorrent.com.
http://www.utorrent.com.
www.utorrent.com.
http://schemas.microsoft.com/SMI/2005/WindowsSettings">
...
--- End of file ---

Icons and graphic bar can be embedded ( no need 4 external file ) , ipfilter upd. url can be embedded - > see dl lang pack ( no need 4 external tool )
to better one!

diablo2oo2 Universal Patcher dUP 2.20 Beta 5 [24-Jun-2009]

diablo2oo2's Universal Patcher [dUP]
************************************
Version: 2.20

Features:
-multiple file patcher
-create Offset and Search&Replace patch/loader
-compare files (RawOffset and VirtualAddress) with different filesize
-text patcher
-registry patcher, also for loaders
-attach files to patcher
-get filepaths from registry
-usage of CRC32 and filesize checks
-patching packed files
-compress patcher with your favorite packer
-saving projects
-use custom skin in your patcher
-add music (Tracker Modules: xm,mod,it,s3m,mtm,umx,v2m,ahx,sid) to patcher
-multilanguage support
-and many more...


Version History
---------------
[2.20]
-added wildcard support for textpatch module
-windowresize bugs fixed
-minimize patcherwindow with rightmouseclick
-added new "event" module for patcher
-bugfixes in textpatch module
-bugfix: executing attached files
-bugfix: problem with nested environment variables

Homepage: http://diablo2oo2.di.funpic.de
Download:

dup2.beta.rar           24-Jun-2009 15:57  184K  | Mirror: dup2.beta.rar  184.07 KB  

submitted via post to blogger due TH www.blogger.com access problems   

File Format Identifier v1.4

Sucop virus analysis tool (File Format Identifier) v1.4

unnoo-dswlab products

It is an auxiliary tool for virus analysis, which includes various file format recognition engine code, sniffing packers, unpacking by virtual machine, editing PE file, rebuilding PE file, obtaining the import table(using virtual machine to decode the encode import table), dumping memory, processing the overlay, PE address conversion, supporting PEid plugins, computing MD5 and efficient use of third-party tools, and so on. It is also used for disposing the Trojan virus samples during virus analysis.

This software is free; you can download, install, copy and distribute it non commercially; For commercial sale, copy and distribute, you should get the warranty and permission of DSWLAB before (for example, if the anti-virus company want to use it to analysis the Trojan horse in batches, he must get mandate and permission of DSWLAB before).

v1.4 new features:
- add obtaining the import table function, for some encode import table, you can decode it by the virtual machine. (See section 9 following), welcome the contact us if you have more suggestions
- show more useful descriptions for the invalid pe file, thanks to Pedro Lopez for proposing it
- new skin to make more beautiful, you can switch skin style after hitting option button, thanks to fly (unpack.cn) for proposing it
- add the external signatures library which collected by fly (unpack.cn), thanks for the authorization
- correct several bugs

v1.3 new features:
- add a task view which supports three functions:
a. terminate the process
b. correct the image size of the module
c. dump the memory with three mode(Dump Full¡¢Dump Partial and Dump Region)

v1.2 new features:
- support PEid plugins
- add a feature for rebuilding PE

v1.1 new features:
- add VMUnpacker unpack engine for unpacking, the unpacking capacity is equal VMUnpacker v1.4
- add some external signatures from the internet
- add a feature for deleting overlay and saving overlay
- add PE Address Conversion(RAV < - > RAW)

First, Sniff Packers
Supporting file drag, directory drag, you can also install shell extensions to recognize file and directory. In order to recognize more packers, you can use the external signatures library (must named userdb.txt, the library format is as same as the PEid's external signatures library).

Note: A '*' will appear if this packers was sniffed by the external signatures.

Second, Unpack
You can unpack the packer if the "unpack" button can hit. The function based on the technology of virtual machine it could unpack various known & unknown packers. It is suitable for unpacking the protected Trojan horse in virus analysis and because all codes are run under the virtual machine so they will not take any danger to your system.

Third, PE Editor
Hit the button after "PE Section", you can edit the information of the sections.
The mainly functions are:
- Display section information
- Can modify section name, section size, section attributes and other related information
- Remove the selected section name
- Automatic fix of the section
- Load section from the disk
- Save section to disk
- Add a new section
- Delete section from PE file
- Delete section only from PE header
- Fill section with the specified char

Hit the SubSystem button can get the detailed PE information, you can editor them.

Fourth, Delete & Save Overlay
You can hit "Del Overlay" button to delete the overlay if the PE file has overlay, you also can hit "Save Overlay" button to save the overlay.

Fifth, Support PEid plugins
Hit Options button to set using PEid plugins, without restart FFI, the PEid plugins must be put the directory named plugins, and then Hit Plugin >>> to use PEid plugins.

sixth, ReBuild PE
This function is primarily used for repairing the PE file which was dumped from unpacking.

seventh, Support the third-party tools
Hit Manage Tools button after Hitting Options button, you can add / remove IDA / OllyDBG and other third-party tools to shell extensions, than you can activate the third-party tools in the FFI to open the target file directly.

Note: After add the third-party tools, you can hit Pulig>>> button to get their information, click them you can use the third-party to open the target file.

eighth, Dump the memory of the process
Hit TaskView button then you can terminate the process and dump the memory with three mode(Dump Full Dump Partial and Dump Region), and you can also correct the image size of the module.

ninth, Get Import table
After hitting the Get IAT button, getting the import table after choose the process, input the right OEP information before hitting DumpFixer button.
If any undistinguished API appears, you can set virtual machine decode steps, and decode this item by hitting VM Decode menu.
If there is any information which you do not want, hit Del Thunk menu or Cut Thunk menu to delete it.
If you want to get the import table for the non-main module of the process, please use right button in Manipulation records frame, and hitting Load this module menu, that is the module's import table obtained in this way.


Supercop Kill various kinds of Trojan horse completely, protect the security of system in an all-round way.
more free tools download http://www.dswlab.com
Specialized desktop and safe products of content http://www.unnoo.com

Download Page: http://www.unnoo.com/html/soft/toolkit/2009/0126/37.html
http://www.unnoo.com/html/soft/toolkit/2009/0126/38.html

Download: ffi.zip 1.25 MB


http://ul.to/5ct7s6/Unpacker-ExeCryptor-2.x.x-v1.0-RC2.zip
removes some false positive by a few keygens

ASProtect unpacker script by VolX 1.15E (support new version)

ASProtect unpacker script by VolX 1.15E (support new version) for ollydbg

history
----------

1.00
First release.

1.10
1. Occasionally crash when fixing initialization table of Delphi apps.
2. IAT rebuild for an early version of Asprotect.
3. Add one more crc check pattern.
4. Add one more Asprotect API emulation.

1.11
IAT rebuild is incomplete when the address of the API caller is beyond first section of the app.

1.12
With some version of ODBGscript it occasionally fails to locate the OEP.

1.13
1. With ODBGscript v1.63 or above it fails to fix initialization table of Delphi apps.
2. Support a newer Asprotect whose stolen code type definition is different.

1.14
1. Script runs on ODBGscript v1.64 or above only.
2. Modification of fixing CRC check point.
3. Failed to locate OEP of proggie packed with verison 1.4x
4. Unhide the Asprotect API used in proggie packed with version 1.4x.
5. If std function can't find a match, they will be copied to .aspr section just like other stolen code.
6. Other bugs fix.

1.14a
1. Bug fix.

1.15
1. Bug fix.
2. Support a newer version of Asprotect.

1.2
Add the ability to fix VM code.

Tested with software from:

http://www.magpiesoft.com/ one successful
http://ied2k.com and http://fzh.soft2cn.cn/ //DLP_Updater.exe + eXcalibur one version successful unpacked one not

Now it can unpack and clean some tools

Вышла новая версия скрипта с поддержкой всех версий аспра на даный момент

Download:
Asprotect (8).7z 262.98 KB
Unpacker_v1.15E.zip 126.75 KB

Homepage: http://www.unpack.cn/viewthread.php?tid=9487&extra=&page=1
http://cracklab.ru/f/forprint.php?topic_id=13978

Game Archive UnPacker 0.6.0.2 PRO - can unpack Clickteam Install Creator

0.6.0.2 PRO (13/02/2009)
Legend:
(+) - Feature added
(!) - Feature changed/corrected
(*) - Bug fixed

Added unpack support for the following games:

+ "Beach Head 2002" (*.R24 and *.T24 files);
+ "Moorhuhn-Im-Anflug" (*.NPK files);
+ "ExMachina: Meridian 113" (*.GDP files);
+ "Fable: The Lost Chapters" (*.LUT files);
+ "Space Rangers" (*.DAT and *.PKG files);
+ "GTA2" (*.RAW/*.STD files);
+ "Need for Speed ProStreet" (*.BIN and *.BUN files);
+ "Test Drive Unlimited" (*.BNK and *.2DB files).

* "F.E.A.R." (*.ARCH00 files) bugfix: doesn't replace files in subfolders of archive.

! "Crimsonland" (*.JAZ files) new feature: added mask image in TGA format.

0.6.0.1 PRO (22/01/2009)
Legend:
(+) - Feature added
(!) - Feature changed/corrected
(*) - Bug fixed

Added unpack support for the following games:

+ "Tom Clancy's Ghost Recon" (*.RSB files);
+ "Fable: The Lost Chapters" (*.LUG, *.BIG, *.STB and WAD files);
+ "Call of Duty 4: Modern Warfare" (*.IFI and *.FF files);
+ "Championsheep Rally" (*.DBC files);
+ "Crysis" (*.RAW files and heightmapdataw.editor_data/heightmaplayeridbitmap.editor_data);
+ "Neverwinter Nights 2" (*.HAK and *.MOD files);
+ "Pro Evolution Soccer 6" (*.AFS, *.BIN and *.TEX files);
+ "Neverwinter Nights" (*.ERF and *.MOD files);
+ "Armed Assault" (*.PBO files);
+ "Fresco Wizard" (*.SDF and *.DAT files);
+ "Mafia: The City Of Lost Heaven" (*.DX1, *.DX2 and *.DX3 files);
+ "Civilization IV" (*.FPK files);
+ "The Elder Scrolls 4: Oblivion" (*.BSA files);
+ "Sacred" (*.PAK files);
+ "Kayak Extreme" (*.IMG files);
+ "Moorhuhn Piraten" (*.DAT files);
+ "Moorhuhn - Heart of Tibet" (*.DAT files);
+ "Moorhuhn Wanted" (*.DAT files):
+ "FlatOut Ultimate Carnage" (*.BFS files).

0.6.0.0 PRO (03/02/2008)
Legend:
(+) - Feature added
(!) - Feature changed/corrected
(*) - Bug fixed

Added unpack support for the following games:
+ "Gunbound" (*.XFS files);
+ "EPOC Operation System" (*.SIS files);
+ "Jagged Alliance 2 [Unfinished Business]" (*.SLF files);
+ "Command & Conquer: Tiberian Dawn" (*.MIX files);
+ "Master of Orion 2" (*.LBX files);
+ "Heroes of Might and Magic II" (*.AGG files);
+ "The Bard's Tale" (*.LMP and *.XWB files);
+ "Perimeter" (*.VMP files);
+ "Airborne Troops" (*.PAK files).

Added pack support for the following games:

+ "Need For Speed Underground" (*.BUN files)(Replaces existing files only);
+ "Need For Speed Underground 2" (*.BUN files)(Replaces existing files only);
+ "Need For Speed Most Wanted" (*.BUN files)(Replaces existing files only);
+ "Need For Speed Carbon" (*.BUN files)(Replaces existing files only).

+ Added decompression of "Fallout" (*.DAT files).

Better structure support for the following games:

! "Tzar" (*.WDT files).
! "Warhammer 40000: Dawn of War" (*.SGA files).
! "Doom 1", "Doom 2", "Heretic" and "Hexen" (*.WAD files).
! "Duke Nukem 3D" (*.RTS files).
! "DemonStar" (*.GLB files).

* Some small bug's fixed.

0.5.0.8 PRO (07/11/2007)
Added unpack support for the following games:
- "ElastoMania" (ELMA.RES file).

Some bugs were fixed.

0.5.0.7 PRO (23/10/2007)
Added unpack support for the following games:
- "Ragnarok" (*.EBM files);
- "Metal Gear Solid 2: Substance" (*.QAR and *.XTI files).

Added unpack support for the following installers:
- "Inno Setup Installer" (*.EXE files)(Versions 2.0.18/v3.0.1/v3.0.5);
- "Clickteam Install Creator" (*.EXE files). (00de.de µTorrent Extreme Leecher Edition v2.50 Public Version after de compress upx -d)

Full support of the "Need For Speed Most Wanted" and "Need For Speed Carbon" .BIN files.

Added unpack support for the "3D Mark 2003" (*.DAT files).

0.5.0.6 PRO (04/10/2007)
Added unpack support for the following games:
- "Counter-Strike" (*.GCF files);
- "Half-Life" (*.GCF files);
- "Silent Hill 4" (*.SH4 files).

0.5.0.5 PRO (29/09/2007)
Added unpack support:
- "Need For Speed Carbon" .BIN and .BUN files.

Better support of "NFS Most Wanted" and "NFS Underground" .BIN and .BUN files.

0.5.0.4 PRO (23/09/2007)
Added unpack support:
- "The Elder Scrolls 3 (Morrowind)" .BSA files;
- "Silent Hill 4" .BIN files (Detecting on exention);
- "AxySnake" .MUS files (Detecting on exention only; Ñonvert to WAV);
- "AxySnake" bmppack.bin (Detecting on filename only);
- "Age Of Empires 3" .DDT files (Convert to DDS);
- "Need for Speed" .FSH and .QFS files (Convert to BMP/TGA/DDS).

0.5.0.3 PRO (11/08/2007)
Added unpack support:
- "Pocket Tanks" .BBK, .EMI and .WEP files;
- "Earth 2140" .DAT/.PAL files (Detecting on exention);
- "Krush, Kill 'n' Destroy [Xtreme]" .SLV files.

0.5.0.2 PRO (15/04/2007)
Added unpack support:
- "C&C: Tiberium Wars" .BIG files;
- "Ascendancy" .COB files (not tested);
- "Battlespire" .BSA files (not tested);
- "Air Strike 3D" .APK files.

0.5.0.1 PRO (28/03/2007)
Added decompression of "War Craft II" of .CUD, .INS, .SUD and .WAR files.

Added unpack support:
- "MotoGP 3" .ARK files;
- "Ballistics; *.*_ files;
- "Tzar" .WDT files (not tested);
- "Moorhuhn X - XXL" .DAT file;
- "Moorhuhn" MOORHUHN.DAT file.

0.5.0.0 PRO (25/03/2007)
Added unpack support:
- "The Suffering" .TDU files;
- "Age Of Empires 3" .BAR files.
Added pack support:
- "Duke Nukem II" .CMP files;
- "F.E.A.R." .ARCH00 files (Replace existing files only).

0.4.9.4 PRO (20/03/2007)
- Fixed several great bugs
Added unpack support:
- "Mario Forever" Info MF.exe & Mario Forever.exe files;
- "Z" .PAC files (thanks 2 Siberian GRemlin);
- "Z Expansion" .EXP files (thx 2 Siberian GRemlin);
- "Death Rally" .BPA files (thx 2 deus-ex).

0.4.9.3 PRO (17/01/2007)
Added unpack support:
- "Wings Over Vietnam" .CAT files;
- "Dungeon Lords" .AL4 and .AL8 files;
- "Journey To The Center Of The Earth" .0000 files;
- "F.E.A.R." .ARCH00 files.

0.4.9.2 PRO (17/12/2006)
Added unpack support:
- "Patrician III" .CPR and .SKS files;
- "Spells of Gold" .JDR, .JSR and .JTR files;
- "Hitman Blood Money" .WAV/.WHD files.

0.4.9.1 PRO (05/11/2006)
Added unpack support:
- "Medal of Honor: Pacific Assault" .REZ files (partial support);
- "Kult - Heretic Kingdoms" .DAT/.IDX files;
- "Age of Wonders II" .A2C, .ACM and AHM files;
- "Star Wars: Republic Commando" .CTM, .CTS, .U, .UAX, .UKX, .UPX, .USX and UTX files;
- "Destruction Derby 2 Demo" DIRINFO. and BANK1.SBK files.

0.4.9.0 PRO (02/11/2006)
Added unpack support:
- "Rome - Total War" .PAK files;
- "Rome - Total War" .DAT/.IDX files;
- "Fallout" .DAT files (Not decompress);
- "Fallout 2" .DAT files.
Added decompression of Commandos Strike Force .PAK files (thanks to Anatoly Prokofiev).

Added full directory support of Sudden Strike .SUE files.

0.4.8.0 (25/10/2006)
Added supporting:
- "Settlers 2" .DAT/.IDX files;
- "Age Of Empires 3" .AGE3SCN files;
- "Black and White 2" .LUD files;
- "Sudden Strike" .SUE files.

0.4.7.0 beta (29/09/2006)
Added supporting:
- "BattleRealms" .H2O files;
- "Dragonshard" .H2O files;
- "BloodRayne" .POD files;
- "BloodRayne 2" .POD files.

0.4.6.0 beta (27/09/2006)
Added supporting:
- "RAW" .XPK files;
- "Grand Prix II" .CAT files;
- "Giza" .MJZ files;
- "SWAT 4" .PKG, .S4M, .U, .UKX, .USX and .UTX files.
Added dialog "About...".

0.4.5.0 beta (08/08/2006)
Added supporting:
- "Commandos 2: Men of Courage" .GRL files;
- "Lord Of The Rings: War Of Ring" .H2O files;
- "Silent Hill 3" .TEX files (inside ARC) (TEX -> TGA 8/32bpp);
- "Commandos Strike Force" .PAK files (Not decompress);
- "Counter-Strike [Condition Zero]" .MDL files.
Full support of "Grand Theft Auto: Vice City [Deluxe]" .TXD (TXD -> DDS 32bpp/BMP 8bpp) files.

0.4.4.0 beta (19/07/2006)
Added supporting:
- "Counter-Strike: Condition Zero" .BSP and .SPR (SPR -> TGA 8bpp) files;
- "Color Eggs" .STG files;
- "Nancy Drew: Secret Of the Scarlet Hand" .HIS (HIS -> WAV/OGG) files;
- "Sherlock Holmes: The Mystery of the Mummy" .PAK files.
Converting .GFX files from "Bricks of Egypt" to BMP 16bpp format.

0.4.3.0 beta (18/03/2006)
Added supporting:
- "GTR Demo" .GTR files;
- "The Punisher" .CEG files;
- "Star Heritage 1" .BPK files;
- "Red Faction" .VPP files;
- "ElastoMania" .LGR files (version 1.11h).

0.4.2.0 beta (26/01/2006)
Added supporting:
- "Aura: Fate Of The Ages" .PSP and .PVD files;
- "Dyna" .IMG (IMG -> IFF 8bpp) files;
- "Counter Strike Source" .VTF files (VTF to DDS 24/32bpp convertion);
- "Star Wars: Empire at War DEMO" .MEG files;
- "Need for Speed Most Wanted" .BIN, .BUN and .LZC files.

Support of "Need for Speed Undegroung" .BIN files is improved: convertion to DDS format.

0.4.1.0 beta (17/01/2006)
Added supporting:
- "Destruction Derby" .000, .001 files and files without extension;
- "Commandos 2" .PCK files;
- "Earth 2150" .TEX files;
- "Warlords Battlecry III" .XCR files;
- "Heroes of Might and Magic III" .PCX files;
- "Mor.Utopia" .VFS files;
- "Mafia: The City Of Lost Heaven" .DTA files.

0.4.0.0 beta (06/01/2006)
Added supporting:
- "Mafia" .555 and .565 files:
555 to TGA 16bpp converting;
565 to BMP 16bpp converting;
- "C&C: Renegade" .DAT; .DBS; .MIX and .THU files;
- "Silent Hill 4: The Room" .PAC files;
- "The Sum Of All Fears" .RSB files (RSB to BMP 16bpp converting).

for total commander: http://www.totalcmd.net/plugring/gaup.html
Authr Homepage: hhttp://forrox.narod.ru/

ExeInfo PE ver. 0.0.2.0 by A.S.L

___________________________________________________________________________


ExeInfo PE ver. 0.0.2.0 by A.S.L (c) 2006.03 - 2008.xx

freeware version for Windows XP
Windows 32 PE executable file checker, compilators, exe packers ....
with solve hint for unpack/internal exe tools/rippers

___________________________________________________________________________


Internal Tools Menu:
---------------------
- overlay remover - generate new file without overlay data
- save overlay as external file
- EP Corrector (for Delphi) - generate many exe file with Entry Point
- EP Corrector (for Delphi) Runtime - correct EP
- XoR permutator (xor, or, shl..) - create one file with xor data (255x2000 bytes)
- Section splitter - save exe sections as files & exe header
- 8/16 bit string finder - enter 8 bit string = searching 16 bit strings & 8 bit (F7 key)
- REGistry call finder + CLSID - find registry call & regedit.exe strings
- overlay xor uncrypter - uncrypt one byte crypted exe in ovl.


File Menu:
--------------------

+ Rename file
+ Copy file As.. *.bak
+ Execute - create executable process (exe)
+ Execute - windows ext. associate (dll, zip ...)
+ Delete file (ALt+Del) - work in multiscan mode
+ Run multifile scanner mode (Directory scan)
+ - view global log file (c:\Raport-exeinfo-log.txt)
- delete global log file (no confirm)


Rippers Menu:
--------------------
- www address searcher inside exe - work on any file
- ExE inside ExE (Win32 Pe windows executable) - work on any file
- Zip archives inside ExE www.winzip.com - work on any file
- Rar archives inside ExE www.rarlab.com - work on any file
- CAB MS archives inside ExE (for MSI installers) - work on any file
- SWF flash Adobe animation files (internal length fixer for non exe files)
- ICO nonstandard icon ripper
- (All in one) - for lazy boys (without 'www address')

keys:

F1 key - keyboard help
F2 key - Multiple file scanner for *.exe files
F3 key - external view (hiewdemo.exe or hiew32.exe) path directory
F4 key - external test (peid.exe) path directory
F5 key - external test RDG Packer Detector (I read location from Win registry)
F6 key - external test DiE.exe Detect it Easy (I read location from Win registry - shell integration req.)
F7 key - 8/16 bit String finder
F9 key -:-) UPX pack
F10 key -:-) UPX unpack
Alt+S - ZOOM Window x2!

Alt+Delete - delete file

"+", "-" - Numeric KEY = adjust transparent Form


Non executable file detection:

Image file - jpg, png, gif (87/89) , bmp, tiff
Sound file - mp3 (ID3/noID) , wma, ogg
Video file - avi (divx/xvid) , wmv, mpg, 3GP
Archive file - 7zip, zip, rar

other: chm (Microsoft HTML Help) , msi, pdf, xml, fws, cws, php, html, hlp, mdb, lnk .


Overlay detector:

01. zip archives
02. cab archives
03. SWF Flash object (packed & unpacked format)
04. Executable PE file
05. 7zip archives
06. RAR archives

- Plugins like a Peid.exe (70 % compatible:-()

-------------------------

Multiscaner use - command line:

- Exeinfope *.sys (show all .sys files)
- Exeinfope *.*/s (Show All PE files and sent to log file (s = silent mode no GUI! -> !ExEinfo-Multiscan.log)
Exeinfope *.exe/s

-------------------------

ACM* - anti cheat mechanism
_______________________________________________________________________

www site: www.exeinfo.go.pl host: www.geocities.com/exeinfo_pe (download limits!)
Mirror: www.exeinfo.cjb.net
_______________________________________________________________________


ExeInfo detection list:
----------------------------------------------

001. RealArcade Wrapper (Microsoft Visual C++) 50%
002. Borland Delphi (2.0 - 7.0)
003. Microsoft Visual C++ ver. 5.0 ~ 6.0 (exe)
004. Microsoft Visual C++ ver. 7.x (exe, dll)
005. PEtite 2.x -> Ian Luck
006. UPX exe 0.89.6 - 1.02/1.05 - 1.93B -> Markus & Laszlo
007. UPX dll file - 1.93Beta -> Markus & Laszlo
008. Aspack v2.12 -> Alexey Solodovnikov
009. EXECryptor v.2.3.1-6 (www.strongbit.com)
010. Morphine ver.2.7b (plugin Peid.exe)
011. AC protect 2.0 by RIScO Software Inc. (www.ultraprotect.com)
012. ASprotect 2.1 reg (www.aspack.com/asprotect.htm) only exe files DLL files detect as ASpack:)
013. AHTeam EP Protector ver.0.3 priv
014. WinUpack 0.39 final by Dwing (http://dwing.51.net) :-((
015. Software Compress ver. 1.2 Lite - www.bgsopt.com
016. PEcompact ver.2.78a - 2.94 - www.bitsum.com
017. nsPack ver.2.3 unreg - by North Star - www.nsdsn.com
018. nsPack ver.3.0 - 4.1 reg - by North Star - www.nsdsn.com
019. Mole Box 2.5.7 by Teggo. - www.molebox.com
020. Microsoft Visual C++ ver. 8 (???)
021. EXE Guarder 1.8 - 2.1 (2006/2008 unreg) www.exeicon.com/exeguarder
022. EXE Wrapper ver. 2.3-2.5 (www.533soft.com/exewrapper) - how to remove password
023. Exe password protector 1.0.5.100 (protect/unprotect)
024. TASM/MASM
025. MS Visual Basic 5.0-6.0 dll
026. MS Visual Basic 5.0-6.0 exe
027. Armadillo 4.4x - 4.62 32bit - www.siliconrealms.com (effectiveness = 60%)
028. Enigma protector v1.1x - www.enigma.izmuroma.ru © Sukhov Vladimir 2004-2006
029. SVK-Protector v1.32 demo - Pavol Cerven - www.anticracking.sk
030. Generic check: ASprotect 1.? old version (www.aspack.com/asprotect.htm) exe only
031. Generic check - AC protect 1.? by RIScO Software Inc. (www.ultraprotect.com)
032. Packman v1.0 Brandon LaCombe (http://packman.cjb.net)
033. modified exe, EP code = Borland Delphi (2.0 - 7.0)
034. ExeStealth V2.76 www.webtoolmaster.com
035. FSG v2.0 F[ast] S[mall] G[ood] - www.xtreeme.prv.pl
036. Generic check - Aspack v2.1x -> Alexey Solodovnikov
037. Aspack v2.12b? -> Alexey Solodovnikov
038. Program protector v2.1unreg (exe password - DECODE PASS!) - www.blumentals.net
039. Obsidium v1.3 software protection system (demo) - www.obsidium.de
040. ARMprotector v0.1 by SMOKE 2004
041. ARMprotector v0.3 by SMOKE 2004
042. SDProtector Profesional Edition v1.12 (2003) - www.sdprotector.com
043. Themida 1.0 -1.3? - Adv.Win.Software Protection System (c) 2004-2005 Oreans Technologies - www.oreans.com
044. yodas Protector v1.03.3 - http://yodap.has.it 2004-2006
045. yoda's Crypter v1.3 - Ashkbiz Danehkar 2004-2005
046. PE-Pack v0.99 (c) 1998 by ANAKiN
047. WATCOM C/C++ 1988-1995
048. Microsoft CAB SFX module
049. Generic check: Microsoft Visual C++ vx.x
050. UPX -> Markus & Laszlo ver. [2.00] <- version info from file 051. PeSpin v1.304 public by CyberBob - http://pespin.w.interia.pl 052. UPX -> Markus & Laszlo ver. [] - EXE modified!!!
053. UPX -> with extra sections - Real EP resolver ([] - required Fast scan unchecked)
054. PolyEnE v0.01+ Polymorphic Encryptor (c) 2001 Lennart Hedlund ([] - required Fast scan unchecked)
055. Nullsoft PiMP Stub - (read from Ovl: NullsoftInst3")
056. eXpressor PE Packer v1.4.5.1 - www.cgsoftlabs.ro (exe, dll)
057. Thinstall 2.4x - 2.5x -> Jitit Software - www.thinstall.com
058. Thinstall 2.7x -> Jitit Software - www.thinstall.com
059. Nullsoft scriptable install system 2.xx - (read from Ovl: NullsoftInst)
060. Inno Setup Module [SFX] - Borland Delphi Inno Setup Module [unknown]
061. Private EXE Protector 1.7 (2003-2006) www.setisoft.com
062. Excalibur v1.03r (c) by forgot -> read from file [Excalibur (c) DFCG], http://www.breezer.ful.cn
063. MSLRH v.032a - SISTEMA DE PROTECCION ANTICRACKEO
064. ShareGuard Loader V3.6 Zapper Software - www.zapperSoftware.com
065. Borland C++ 1999
066. Zip Sfx Archive
067. Rar Sfx Archive
068. 7-Zip Sfx Archive
069. WinZip Sfx ver. 8.x www.winzip.com
070. Zylom Game Installer zip Sfx (MS Visual C++ 7.0)
071. Borland C++ 2002/2005 - Copyright 200X Borland Corporation
072. WinZip Sfx (generic check) www.winzip.com
073. Lock Express 2.0 Build 9.2 - 1997-2006 Sciensoft Research Inc
074. FreeBASIC Compiler v0.14-0.17 (c) 2004-2006 Andre Victor T.Vicentini - console App.
075. generic check: InstallShield 2003 (MS Visual C++ 5/6.0)
076. InstallAware Setup Squeezer InstallShield - www.installaware.com (7zip archive)
077. Installer Nullsoft PiMP Stub (UPX pack)
078. Generic check: Nullsoft PiMP Stub installer
079. ASprotect 1.1c old version (www.aspack.com/asprotect.htm)
080. Microsoft Visual C#/Basic.NET
081. Setup Dev INSTALLER – Version 1.3 © Shere Khan – November 2005 (MS Visual C++ 5/6.0)
082. Dev-C++ Compiler v4.9.9.2 - Bloodshed Software (www.bloodshed.net)
083. Generic check: EXE STICKER like DotFix FakeSigner
084. DotFix FakeSigner v3.4 (ASPR Stub) http://fakesigner.dotfix.net
085. PeLock v.1.x Bartosz Wójcik www.pelock.prv.pl
086. MS IExpress 2.0 - Win32 Cabinet Self-Extractor
087. generic check: MS IExpress x.x - CAB installer ( in section II)
088. InstallShield (R) Setup Launcher v.7.x CAB file (MS Visual C++ 5/6.0)
089. PEcompact ver.1.41 - v1.84 - www.bitsum.com
090. ORiEN ver.2.11~2.12 - (1994-2003 http://zalexf.narod.ru)
091. VMProtect v.1.2x (demo) 2003-2006 PolyTech - www.polytech.ural.ru (only EP protection)
092. FASM ver. 1.67 50% detection
093. Private exe Protector v1.9x - www.setisoft.com (morph)
094. Krypton The Krypter ver.0.3 by Yado - www.lockless.com
095. MEW 11 SE 1.2 by Northfox (2004) - Northfox.uw.hu
096. PEncrypt 4.0 Public Release/4.0 Phi -> junkcode - www.junkcode.cjb.net
097. SDProtector Pro Edition v.1.16 (1.1 SDP!) <- info from file. www.sdprotector.com 098. PE Diminisher v.0.1 (1999) - www.phrozencrew.com/~teraphy 099. !EP (EXE Pack) v1.0 g-l-u-k [TeaM - X] 2005 - www.softprot.cjb.net 100. [G!X]'s Protector v1.2 - http://breezer.ys168.com 101. Active PE Scrambler/APES/v. 1.0 (2005) [TeaM - X] - www.team-x.ru 102. (UPX) PowerArchiver 2006 [ZIP/CAB/unknown] SFX v.9.63.x - www.powerarchiver.com 103. GameHouse.com installer (MS Visual C++) inside Wise Installer 104. Dev-C++ Compiler v4.9.9.2 (MINGW 32 v5.x.x) - Bloodshed Software (www.bloodshed.net) 105. Hide&Protect v1.0x (2005) - www.SoftWar-protect.com 106. WWPack32 ver 1.xx (1997, 98) by P. Warezak and R.Wierzbicki 107. CHAOS Self Extractor 3.9 (1998-2006) (WWPack-ed) http://safeSofthome.com 108. Xtreme-Protector v.1.08 (c) 2003 www.oreans.com/xprotector/xprot.htm 109. LCC Win32 v1.x (Jacob Navia) http://www.cs.virginia.edu/~lcc-win32/ 110. LCC Win32 v1.x DLL (Jacob Navia) www.cs.virginia.edu/~lcc-win32 111. Hmimys-Packer v1.0 112. ExeFog v.1.1x - 2005 - www.bagie.xost.ru 113. PolyCrypt PE v.2.1.x (2004-2005) - www.jlabsoftware.com (exe/dll) 114. SimplePack v1.0 - 1.2 (LZMA/APLIB - Packman compression library 1999-2005 Igor Pavlov) 115. SimplePack v1.11 - 1.2x (Method 2 NT) 116. Unopix Version 1.10 Final 2006 Scrambler for PE files (exe/dll) 117. PPC PROTECT ver 1.1 (2006) Alexey Gorchakov www.ppc-protect.com 118. Inno Setup Uninstaller - Borland Delphi 119. Armadillo v2.5x - v2.6x - www.siliconrealms.com 120. DotFix NiceProtect v1.2 by GPcH Soft (2006) - www.niceprotect.com 121. CreateInstall v4.x Gentee (2004 - 2008) - www.createinstall.com (free/light/full) 122. Gentee Programming Language © 2004-2006 www.gentee.com 123. RLPack v.1.11 BasicEdition (uses aPLib 0.42) http://ap0x.jezgra.net 124. ReversingLabsProtector 0.7.4beta http://ap0x.headcoders.net 125. Install Creator Pro ver.2.0 (2003) - www.clickteam.com 126. PowerBasic/CC 3.0x/CC 4.0/Win 7.0x/Win 8.0x - www.powerbasic.com 127. WinUHA ver.2.0 Sfx Archive - www.winuha.com (UPX) 128. ZipGenius 6.0.x Sfx Archive - www.zipgenius.it (Borland Delphi) 129. PEbundle ver.3.20 (2003) Jeremy Collake - www.bitsum.com/Alloy Executable Compressor v.4.x- Copyright © 2000-2006 PGWARE - www.pgware.com 130. Lazy Assembler Version 0.53 (26 Sep 2006) Freeware (c) 2000-2006 Stepan Polovnikov 131. nPack v1.1.300 (aPlib) by NEOx (2006) www.uinc.ru 132. Installer - Setup Factory 6.0 - 7.0 Indigo Rose Corporation (2006) MS V C++ 6.0 133. dePack by deNULL - www.ooooQ.cn 134. Goat's PE Mutilator v.1.6 (2005) - www.geocities.com/killereaglesoftware 135. RLPack v.1.14-1.18 BasicEdition (uses aPLib 0.43/LZMA 4.30) http://ap0x.jezgra.net 136. VBOWatch protector v2.0 Copyright [c] 2006 MoonLight - www.ooooQ.cn 137. Generic check: build like - Private exe Protector v2.0 - www.setisoft.com 138. Easy Code v.1.0x (GUI for assembler) Ramon Sala - www.easycoder.org 139. Mole Box 2.6.1 by Teggo. - www.molebox.com 140. SLVcOdeProtector v.1.12 by SLV - www.ooooQ.cn 141. Exewrap MFC Application v.1.0 (2003) 142. Microsoft Visual C++ 8 compiler (2006) 143. RosAsm -V2.039c - http://betov.free.fr (effectiveness 80 %) 144. Software Compress ver. 1.4 Lite - www.bgsopt.com 145. Intel (R) C++ Compiler 146. FreePascal ver: FPC 1 - 2 Win32 -> (Berczi Gabor, Pierre Muller & Peter Vreman)
147. Open WATCOM C/C++32 Portions Copyright (c) Sybase 1988-2002
148. File2Pack SFX v.2.0 2006 (F2P Self Extractor) SHOW PASSWORD! - www.mental9production.com (MS VB5/6)
149. PV Logiciels dotNet Protector 4.0 2003-2005 http://dotnetprotector.pvlog.com
150. ReflexiveArcade Game wrapped file (*.RWG)
151. DAStub Dragon Armor (BamBam0.0.4.1) from Orient 2006 www.ooooQ.cn
152. Akala EXE Lock ver.3.20 www.zero2000.com (Aspack v2.12 -> Alexey Solodovnikov) - PASSWORD DECODER(N) OR HOW TO REMOVE PASSWORD
153. BeRoEXEPacker - Version 1.00 - Copyright (C) 2006, Benjamin BeRo Rosseaux (Exe/DLL)
154. EXE Password Protector v.1.1 (MSV C++ v7) - www.eltima.com/products/exe-password - INFO HOW TO REMOVE PASSWORD
155. AGInstaller 1.9.12 (UPX pack) Copyright (c) 2001-2006 Agentix Software - www.aginstaller.com
156. CreateInstall v2003.3.5 www.createinstall.com/www.gentee.com (EP check & OVL)
157. Protection PLUS - Instant plus (software key) 2.0.98.0 (2005) - www.softwarekey.com Concept Software
158. Wise Installation System! std/pro 9.02 (c) Wise Solutions Inc. - www.wise.com
159. Wise Installation System! ver. ?.? (c) Wise Solutions Inc. - www.wise.com
160. Wise Uninstaller Wizard (sec3) - www.wise.com - MS Visual C++ ver.6
161. m9P Editor Plus v.1.0.300 Distributable Executable Rich Text - DERT™ X ©mental9Production, 2005 - www.mental9Production.com - INFO HOW TO REMOVE PASSWORD
162. Nullsoft uninstaller - www.nullsoft.com - (UPX packed)
163. Nullsoft uninstaller - www.nullsoft.com
164. Softwrap (XTREAMLOK) ver. 1.x~3.x - www.softwrap.com (exe/dll)
165. RLPack v.1.14-16 Full Edition - False signatures unichecker
166. RLPack v.1.14-16 Full Edition (uses aPLib 0.43/LZMA 4.3x) http://ap0x.jezgra.net
167. Salfeld Computer EXE Password 2004 v 7.114.0.0 trial - www.salfeld.com (Borland Delphi)
168. Wise for Windows Installer pro 4.21 (CAB) - www.wise.com
169. Tarma Installer ver. 2.99.xx (2005) Tarma Software Research Pty Ltd. - www.tarma.com (MS Visual C++)
170. NTkrnl Secure Suite v.01 packer or protector - www.ntkrnl.com (exe)
171. NTkrnl Secure Suite v.01 packer or protector - www.ntkrnl.com (dll)
172. [dUP2 -> diablo2oo2] v.2.1x patchengine (patch) - Mircosoft MacroAssembler - http://diablo2oo2.cjb.net
173. [dUP2 -> diablo2oo2] v.2.1x patchengine (loader installer) - Mircosoft MacroAssembler - http://diablo2oo2.cjb.net
174. PE password encryptor 31-01-2000 by SMT (asm) - [OEP finder included]
175. WinUDA 0.271 sfx (2004) by Dwing http://dwing.51.net
176. kkrunchy 0.1x >> radical exe packer - www.farbrausch.de/~fg/kkrunchy OR www.farb-rausch.com
177. kkrunchy 0.23 alpha 2 >> radical exe packer (c) f. giesen 2003-2005 - www.farbrausch.de/~fg/kkrunchy
178. CyberInstaller Suite 2006 1.1 - SilverCyberTech 2003-2007
179. Eurora3D - free installator - www.extramedia.co.yu/eurora3d (ASM)
180. Microsoft Visual C++ ver. 7.1 [DEBUG] exe
181. Fucking Fake File 1.0 by wspomagacz 2005.11(EXE Binder exe, jpg hidden inside])
182. Anskya Polymorphic Packer V 1.3 Code By Anskya
183. Self-Extracting Archive Utility (SEAU) ver. 15.0 2006 (Aspack v2.12 -> Alexey Solodovnikov) - http://gammadyne.com
184. PE-Pack v 1.0 (c) 1998 by ANAKiN
185. PKLITE32(tm) - Version 1.1 02-15-1999 (exe)
186. PKLITE32(tm) - Version 1.1 02-15-1999 (DLL)
187. EncryptPE V2.2006.10.25 China Cracking Group - www.encryptpe.com
188. CC386 Version 3.28.1.6 Copyright (C) (GPL) LADSoft 1994-2006
189. PC Guard for Win32 V5.01 - www.sofpro.com
190. JDPack ver 1.01 (2005) - www.tlzj18.com ???
191. Netopsystems AG INSTALLER FEAD(R) SFX (MS C++) - www.netopsystems.com (packed UPX & not packed)
192. Borland C++ 1995~1998 - www.borland.com
193. eXpressor PE Packer v1.5.0.1 - www.cgsoftlabs.ro
194. Excelsior Installer v1.0 2003-2007 (MS Visual C++ 6.0) - www.excelsior-usa.com
195. tElock v0.98 Freeware PE-Compressor/Encryptor (c) 2000-2001 by tE!
196. UPX Lock v1.02 (2007.02) - www.team-x.ru
197. softSENTRY 3.00 1999 - 20/20 Software Inc. www.twenty.com (site closed)
198. DxPack ver 0.86 (2001.06)
199. Neolite 2.0 -> Neoworx Inc. (1999.03.20) - www.neoworx.com (site closed)
200. ZipWorx SecureEXE v3.0 (2004-2007) www.zipworx.com (Neolite packed)
201. [PE-DIY Tools V1.10 2004] by A.Young (PoJieYong) - www.w-yong.com (how to unprotect, oep info)
202. aUS v0.5 beta (upx scrambler 2005.08) - http://ap0x.headcoders.net (bad link?)
203. EXE protector 2.01a Eyhab Hillail (1998-2003) - http://oxygen72.tripod.com (how unprotect pass)
204. 32Lite 0.03a -> Oleg Prokhorov www.????
205. aPackage SFX v.1.14 2001-2002 Joergen Ibsen [32Lite v0.03a packed]
206. NTPacker V2.1 by ErazerZ (2005.12) ErazerZ@gmail.com (zPlib/XOR/aPlib+xor)
207. WinHKI v1.77 SFX 2000-2007 by Hanspeter Imp (hki archive only) www.winhki.com (packed PEcompact ver.2.7x)
208. nBinder 5.1.0 (24.03.2007 MSV C++ 8.0) NKProds Software - www.nkprods.com
209. (Basic check) : Securom 7.1 -> Sony DADC - www.securom.com
210. Cexe Executable Compressor v1.0b Copyright 1999, Tinyware, Inc. - www.tinyware.com by Scott Ludwig
211. ASprotect 2.3 SKE (www.aspack.com/asprotect.htm) 25%
212. Easypano Virtual Tour player (MSV C++) - www.easypano.com
213. PeX v0.99 bart/CrackPl (2000) (APLib 0.26 by J.Ibsen) - longdiy.myrice.com
214. YZPack v.2.0b.aplib (c) UsAr (2007.03)
215. YZPack v.1.1 LZMA (c) UsAr (2006.08)
216. YZPack v.1.2 aplib/LZMA (c) UsAr (2007.03)
217. ExeStealth V2.72 (Share.ver) - www.webtoolmaster.com
218. Generic check: ExeStealth V?.? (share.ver) - www.webtoolmaster.com
219. ExeStealth V2.x (Regg.ver) - www.webtoolmaster.com
220. nsPack ver.1.x - x.x by North Star - www.nsdsn.com
221. Microsoft Visual C++ 6 DLL
222. exe32pack 1.42 Copyright 1999-2004 www.SteelBytes.com
223. Protect Exe 0.4 Beta (PROEX) 2002 - www.dpaehl.de.cx (UPX packed)
224. SexyPacker v.1.0.1.0 (c) 2001 - www.smalleranimals.com (SFX) MSV C++ 5.0
225. ID Executable Password 1.2 (c) 2005 Fastlink2 Build: 08/08/2005 - www.idsecuritysuite.com -!SHOW PASSWORD!
226. ID Application Protector v.1.2 Unreg (c) 2005 Fastlink2 - www.idsecuritysuite.com (OEP info, how to clear TRIAL)
227. Pelles C for Windows v2.xx - 4.50 ExE (1999-2006) - www.smorgasbordet.com/pellesc
228. Wise for Windows Installer pro ?.?? (CAB in section 4) MS C++ - www.wise.com
229. WinUtilities 5.2 EXE Protector 1.0 (2002-2007) YL Computing Inc. - www.ylcomputing.com - (Info how Pass remove/unprotect)
230. [section protection] VMProtect v.1.25 - 1.x (demo) 2003-2006 PolyTech - www.polytech.ural.ru
231. REALbasic 2007 R2 Standard Edition (1997-2007 REAL Software) - www.realbasic.com (exe only)
232. UPX 3.0 -> Markus & Laszlo ver. [3.00] <- info from file. (sign for DEV C++ compiler) 233. Microsoft Visual C++ ver. 7.1 EXE/DLL (3 bytes sign - easy to false) 234. Beria v0.07 public WIP (2005) - symbiont (aPlib) 235. NoodleCrypt version 2 by NoodleSpa (2000.08) 236. VPacker v0.02.10 by tt.t (exe only 2006.04 aPlib) 237. Private exe Protector v.2.00-2.15 (18.04.2007) www.setisoft.com 238. Free Pascal Compiler v.2.1.4 i386 GUI APP (11.05.2007) Berczi Gabor - www.freepascal.org 239. Free Pascal Compiler v.2.1.4 i386 CON APP (11.05.2007) Berczi Gabor - www.freepascal.org 240. Free Pascal Compiler v.2.1.4 i386 DLL APP (11.05.2007) Berczi Gabor - www.freepascal.org 241. Installshield v.12 (MSV C++) www.installshield.com/www.macrovision.com 242. generic check2: InstallShield v.12-14 2008 (MS Visual C++) www.installshield.com/www.macrovision.com 243. FASM (1.3x -1.67) 2004-2007 http://flatassembler.net - Tomasz Grysztar 244. Thinstall VS 3.0.x -> Jitit Software - www.thinstall.com
245. Astrum InstallWizard v2.24.20 (1999-2006) - www.thraexsoftware.com (MS Visual C++)
246. WinZip SelfExtractor 3.0 (MSV C++ v7) 1996-2006 WinZip Int. LCC - www.winzip.com
247. Wise Instalation Express v7.0 2006 (SFX CAB) MSV C++ - wise.com/ALTIRIS
248. VisageSoft Installer ? WISE for Win/.msi (MSCF CAB) Borland C++ - www.visagesoft.com
249. ST Protector v1.5 SE (2006) - Silent Software - www. ???
250. (exe) Visual Protect v2.5.7 (2000.12 www.visagesoft.com
251. (dll) Visual Protect v2.5.7 (2000.12 www.visagesoft.com
252. eXpressor PE Packer v1.5.0.1 (MODE: Protection) - www.cgsoftlabs.ro
253. The Enigma Protector 1.31 unreg (2007.06.15) - Vladimir Sukhov - www.enigmaprotector.com (exe/dll)
254. generic check: (exe) Visual Protect (2000?) www.visagesoft.com
255. RCryptor 1.6d by Vaska (2007.01) only exe file protector - (OEP info)
256. Polymorph Crypter, Beta Morphnah (c) puccxak.com (2007.05) - (OEP info)
257. Pohernah v1.0.3 puccxak.com (2007.03)
258. QIP[Crypt] (2007.06) Borland Delphi Crypter
259. SimbiOZ (RUS) ! Rootkit exe hider! (OEP info - for C++/Delphi)
260. AsdPack2 (EP overflow exe - Delphi or C++ detector) [detection 75%]
261. QSetup Instalation Suite 8.5.0.4 - 26.05.2007 - www.pantaray.com
262. Perplex PE-protector v1.01devel 2002-2003 by [tc] GiveMe5/BliZZaRD
263. Mole Box 2.6.4 by Teggo. - www.molebox.com
264. !EP (exe pack) v1.4 (lite) final - Team-X (2007.04) www.team-x.ru, http://exetools.blog.com.cn
265. DalKrypt 1.0 by DalKiT - www.dalkit.fr.st (26.10.2003) Anti-SI, Anti-Debug, Anti-Dump
266. NackedPacker v1.0 by BigBoote (2004.01-2007.06?) - www.PEArmor.com
267. WATCOM C/C++32 Run-Time system (c) Sybase Inc, 1988-2000
268. MS Visual C++ v.5 DLL Method 1 (MS VBasic kit library) ACM*
269. Open Source Code Crypter 1.0 by p0ke (9.06.2007) - www.swerat.com - http://unnamed.bot.nu (Borland Delphi)
270. Private Personal Packer (PPP) Version 1.0.2 (13.03.2007) - www.ConquestOfTroy.com ACM*
271. Wise for Windows Installer v.?.?? (CAB in section 4) MS C++ 7.0
272. Inteli check: unknown Installer - MSCF Cab file
273. Armadillo x.x ~ 5.0 32bit [exe -low protection only]
274. Armadillo x.x ~ 5.0 32bit [Dll-std protection]
275. Inteli check: MASM assembler (no signature)
276. Inteli check: unknown ver. WATCOM C/C++32 (c) Sybase 1988-200?
277. inteli check: Dev - (MINGW 32 v ?.?.?) - Bloodshed Software (www.bloodshed.net)
278. Borland Delphi 2006 ? - www.borland.com
279. Borland C++ - (DLL) Copyright 1994/96, 1999 Borland Intl.
280. CRYPToCRACk's PE Protector 0.9.3 (2007.01) Lukas Fleischer - cryptocrack.de
281. Break-Into-Pattern, a.k.a BIP, v0.1 (2006.01) - http://n0name.exmuros.net http://undergroundkonnekt.net
282. DotFix NiceProtect 2.5 (with internal packer) GPcH Soft - www.niceprotect.com
283. DotFix NiceProtect 2.5 (Krypton sign) GPcH Soft - www.niceprotect.com
284. DotFix NiceProtect 2.5 (SVKP 1.3x sign) GPcH Soft - www.niceprotect.com
285. DotFix NiceProtect 2.5 (Visual C++ sign) GPcH Soft - www.niceprotect.com
286. Borland Delphi (Component) xxxx - www.borland.com
287. Microsoft Visual C++ ver. x.x DLL (5-8)
288. Microsoft Visual C++ ver. 8.0 DLL (83) ACM*
289. Microsoft Visual C++ ver. 7.xx DLL (83)
290. Private exe Protector v.2.25 (28.06.2007) www.setisoft.com
291. Microsoft Visual C++ ver. 9.0 exe (E8)
292. Microsoft Visual C++ ver. 9.0 DLL (8B)
293. PEiD Plugin -> Exe Converter v.1.00 (BobSoft)
294. MarjinZ EXE-Scrambler SE (MS Visual C++ 8.0)
295. Microsoft Visual C++ v7.10/8.0/9.0 DLL (8B)
296. Borland VCL Component for .NET (Borland Developer Studio 4 (c) 2006 v.10.0.2)
297. PDF2EXE v1.0 CoolPDF Software - www.pdf2exe.com (2006.10) - PASSWORD DECODER:-)
298. RealBasic v.?.? ExE - www.realbasic.com
299. RealBasic v.?.? DLL - www.realbasic.com
300. Generic check - Aspack vx.x -> Alexey Solodovnikov
301. generic ckeck: FreePascal ver: FPC 1.x.x
302. UPX -> (exe) Markus & Laszlo ver. 0.72 OBSOLETE VER. (12.05.1999) ACM*
303. UPX -> (dll) Markus & Laszlo ver. 0.72 OBSOLETE VER. (12.05.1999) ACM*
304. ScanTime UnDetectable by MarjinZ (STUD RC4 1.0) Marjinz-Crypter.exe
305. Free Pascal Compiler version 2.0.4 [2006/08/21] for i386 ACM*
306. Active Basic v4.24.00 © 2006.04.08 (exe) Discoversoft - www.activebasic.com (Japan) *ACM
307. Aspack v2.0 -> Alexey Solodovnikov - www.aspack.com
308. Play Basic v.1.0x - 1.63 (2D game creator) www.playbasic.com
309. (exe) UPX obsolete ver. 0.50 - 0.72 -> Markus & Laszlo
310. ANDpakk2 v0.06 (Jul 18 2006) Dmitry "AND" Andreev - http://and.intercon.ru
311. ANDpakk2 v0.18 (Jul 16 2007) 2006, 2007 Dmitry "AND" Andreev - http://and.intercon.ru
312. PEiD-Bundle v1.03 by BoB (2007.03.30) - www.secretashell.com/BobSoft
313. Exe Stealth Packer or Protector v.3.16 - www.webtoolmaster.com (NTkrnl)
314. 20to4 v2004.04.18 Copyright 2001-2004 20to4.net
315. Borland C++ 1995 DLL *ACM
316. nBinder LIMITED v4.0 2006 - www.nkprod.ro (MSV C++ 8.0)
317. mkfpack llydd (aPlib) 28.05.2007
318. KByS 0.28 beta EXE (shoooo) china 2006.05.23 *ACM
319. KByS 0.28 beta DLL (shoooo) china 2006.05.23 *ACM
320. Microsoft Visual C++ ver. 8.0 DEBUG/Visual Studio 2005 (FF) *ACM
321. mPack - mario PACKer version 0.0.2 (c) DeltaAziz
322. WinUDA 0.291 clasic sfx 2005 by Dwing http://dwing.51.net
323. Cryptic v2.1 - EXE Crypter Copyright [c] 2007.09.26 Tughack (MS Visual Basic exe stub)
324. aSm Protector v1.0 Copyright [c] 2007.09.29 AT4RE
325. AverCryptor v.1.02beta by Sec|Null os1r1s (2007.08.23) - www.secnull.org
326. Muckis Protector 2 coded 2007 by Mucki *ACM
327. Rewolf DLL packager v1.0 V.2007 http://rewolf.prv.pl (OEP info)
328. x86 Virtualizer ReWolf (VIII.2007) - http://rewolf.pl
329. BeRo Tiny Pascal Compiler (EXE) http://bero.0ok.de
330. CDS SS V1.0 beta1 (c) CyberDoom [Team-X member] (2005.12.18) *ACM
331. [dUP2 -> diablo2oo2] v.2.16 patchengine (loader installer) - Microsoft MacroAssembler - http://diablo2oo2.cjb.net
332. Borland C++ 2002 & 2005 DLL - www.borland.com
333. WinUpack 0.37-0.39 by Dwing --- http://dwing.51.net (BE&60 sign)
334. Flash2X EXE Packager ver.2.1.0 2007 - http://flash2x.net/exepackager (Borland Delphi) - RIP HINTs
335. D1S1G PEiD Plugin by D1N (10-24-2007) PEiD Signature and PE Overlay Tool (only OVL protection)
336. WinUtilities EXE Protect 2.1 - www.ylcomputing.com (MS C++ 6.0) (how to pass remove)
337. Hacker's Patcher version 0.07 Veacheslav Patkov (2007.09.21) - http://patkov-site.narod.ru/eng.html
338. Enigma Protector 1.35 (2007.10.12) - www.enigmaprotector.com, Vladimir Sukhov
339. FSG v1.33 F[ast] S[mall] G[ood] - www.xtreeme.prv.pl *ACM
340. FishPE Shield v.1.1x Crypt by HellFish (http://hellfish.ys168.com) - sign NOT TESTED trojan
341. Microsoft Visual C++ v4.2 DLL *ACM
342. 32lite DLL [32Lite v0.03a]
343. FishPE Shield v.2.0.x Crypt by HellFish (http://hellfish.ys168.com)
344. SmartE protection -> Microsoft (trial/CD check/...)
345. Microsoft Visual Basic v6.0 DLL
346. Dev-C++ Compiler v4 old - Bloodshed Software (www.bloodshed.net)
347. Dev-C++ DLL (MINGW 32 v x.x.x) - Bloodshed Software (www.bloodshed.net) ASLsign
348. PhrozenCrew PE Shrinker (c) 1999 by Virogen version 0.71 beta 06/27/99
349. DarkCrypt v1.2 priv by DMX (2007.12.25)
350. yoda's Crypter 1.2 http://yodap.has.it (2001.01.14) *ACM
351. yoda's Crypter 1.1 http://yodap.has.it (2000.12.29) *ACM
352. XPack: freeware packer (c) 2007 JoKo, Version 0.98 02/18/2007 - www.soft-lab.de/joko/ExePack.htm
353. XComp: freeware packer (c) 2007 JoKo, Version 0.98 02/18/2007 - www.soft-lab.de/joko/ExePack.htm
354. Microsoft Visual C++ ver. 8.0 DLL (83_II)
355. VMProtect v.1.6x (demo) 2003-2008 PolyTech - www.vmprotect.ru
356. SIS-Crypt (2005.10.29)
357. Microsoft Visual C++ ver. 3.x (3~4)
358. ExeSax v.0.9.1 EXE encryptor (CAVE Method only) 2006.09.18
359. Luck007 2.7 GUI (exe) by Luckliuliu@yahoo.com (2007.06.07) str(60%)
360. WinKrypt v1.0 Copyright © 1999 MrCrimson/[WkT!99] *ACM
361. HASP HL Protection V1.X -> Aladdin - www.aladdin.co.il
362. Setup Factory for Win Installer v.1.1.1017 (21.11.2007) www.IndigoRose.com
363. PECRC ver.0.88chn
364. Microsoft Visual C++ ver. x.x DLL (55-10b)
365. (U/R) Private exe Protector v.2.5 (12.01.2008) www.setisoft.com
366. PeSpin v1.32 (2008.03.09) by CyberBob - http://pespin.w.interia.pl
367. Thunderbolt 0.02 deXep (2005.04.15)
368. Hying's Armor v0.765 - China Cracking Group (2000-2001) (no options)
369. Hying's Armor v0.765 - China Cracking Group (2000-2001) (option: VC6++ sign)
370. Generic check: Hying's Armor v0.765 - China Cracking Group (2000-2001)
371. ZProtect v1.3.0.0 26.02.2008 (demo) 2006-2008 Lifeengines - www.zprotect.cn (exe/dll)
372. Armadillo v1.xx - v2.xx or 2.51 - 3.xx DLL Stub -> Silicon Realms Toolworks
373. Obsidium v1.3.5.4 (exe/dll) - 2008.02.04 Obsidium Software - www.obsidium.de
374. Obsidium v1.2.5.8 Obsidium Software - www.obsidium.de
375. nPack v1.1.800.2008/2.0.100 by NEOx (03.03.2008) - www.uinc.ru *ACM
376. eXpressor PE Packer v1.6.0.1 (08.03.2008) - www.cgsoftlabs.ro
377. Smart Install Maker v5.0x www.sminstall.com (delphi stub)
378. morph EXECryptor v.2.2-3 (IAT) (www.strongbit.com)
379. UPX-Scrambler Release Candidate 1.03 by ©OnT®oL (2001.04.08) exe
380. STL Packer 1.3 - By Stel128 *ACM
381. tElock 0.99 - 1.0 private -> tE!
382. Borland Delphi DLL (2.0 - 3.0) *ACM 1992 - www.borland.com
383. mPack - mario PACKer version 0.0.3 (c) DeltaAziz *ACM
384. Winlicense v.1.9.x.x (compress) -> Oreans Technologies - www.oreans.com
385. MPRESS v0.77 - MATCODE comPRESSor for executables (C) 2007, 2008, MATCODE Software - www.matcode.com
386. MPRESS v0.75b - MATCODE comPRESSor for executables (C) 2007, 2008, MATCODE Software - www.matcode.com
387. Microsoft Visual C++ v9.0 (e8) www.microsoft.com
388. ActiveMARK 5.x -> Trymedia Systems - www.trymedia.com *ACM
389. (E8) Microsoft Visual C++ 9.0 - Visual Studio 2008
390. Microsoft Visual C#/Basic.NET/MS Visual Basic 2005/2008
391. TTProtect 1.0 - 2007/2008 - www.ttprotect.com (.net/dll)
392. TTProtect 1.0 - 2007/2008 - www.ttprotect.com (exe)
393. MPRESS v1.05 - MATCODE comPRESSor for executables (C) 2007, 2008, MATCODE Software - www.matcode.com
394. MPRESS v1.07 - MATCODE comPRESSor for executables (C) 2007, 2008, MATCODE Software - www.matcode.com
395. EncryptPE V2.2008.6.18 China Cracking Group - www.encryptpe.com
396. Empathy 2.1 Exe password 2007.08 (using: PE-Inject Engine 1.0 by M.Strechovsky) (pass decode max.12 char)
397. Microsoft Visual Basic v4.0-6.0 DLL (5A)
398. Microsoft Visual C#/Basic.NET/MS Visual Basic 2005 (4xFF25)
399. Borland C++ Copyright (No Copyr. sign)
400.!EPack 1.4 lite final - by 6aHguT/Team-X 2006.08
401. Securom 7.3x.xxxx -> Sony DADC - www.securom.com
402. Securom 7.xx.xxxx * -> Sony DADC - www.securom.com
403. *Safedisc V4.50.000 -> Macrovision Corporation
404. X-Crypter 2.0 by X-zero (Delphi stub) 2008.07 - WL-group.net
405. AT4RE Protector v1.0 By Mouradpr *ACM
406. Russian_Cryptor_v1.0 by master3 (2007.05)
407. Obsidium v1.3.6.3 - www.obsidium.de
408. RLPack v.1.20.1 Full Edition stub (EXE- aPLib 0.43/LZMA 4.3x) http://ap0x.jezgra.net *ACM
409. RLPack v.1.20.1 Full Edition stub (DLL- aPLib 0.43/LZMA 4.3x) http://ap0x.jezgra.net
410. Generic check: RLPack 1.20 with fake signature
411. Flashback Protector v1.0 beta3 (no fake sign) build 2008.08.17 - http://www.team-x.ru/Fashback/Protector
412. Flashback Protector v1.0 beta3 (with FAKE sign) build 2008.08.17 - http://www.team-x.ru/Fashback/Protector
413. SecurePE 1.5 RC4 - www.deepzone.org?
414. Morphnah Beta2 (c) puccxak.com (2007.05)
415. EXECryptor v2.1x (No protEP) *** -> softcomplete.com
416. Aspack Scrambler v0.2 KuNgBiM/[CCG] - 08.01.2008
417. Cobol compiler (417) exe
418. WinAce/SFX Factory v2.x 32-bit (PEtite 2.x Stub)
419. Armadillo 6.0x EXE 32bit - www.siliconrealms.com *ACM
420. Armadillo 6.x DLL 32bit - www.siliconrealms.com *ACM
421. InstallStation Installer v.1.0.5 - http://installstation.com
422. fEaRz Packer v0.3 (Private-1) RC4 Encrypt (Delphi)
423. RDG packer v.0.x (VB Crypter) 2008.09 *ACM
424. Macromedia Flash Player 8.0 (2005) - www.macromedia.com *ACM
425. REAL Basic 2008 (MS Visual C++ 8.0 stub) www.realsoftware.com
426. Themida & WinLicense 2.0 - struct (Hide from PE scanners typeII)
427. Lindersoft SetupBuilder Developer v6.7 (2008) - Lindersoft.com
428. Clarion v.6.0 (1993-2006) - www.Softvelocity.com
429. Advanced Installer v.6.x 2003-2008 by www.caphyon.com (MSC++) .MSI only ovl
430. Poly!Crypt v.2.8 (2007.03) by [BUNG] - *structure lame detector (75%)
431. Tarma® Installer v.4.5 www.tarma.com - 1990-2008 Tarma Software Research Pty Ltd (MSC++ stub) ver.fromfile
432. The Enigma Protector 1.5x [1.52] (2008.08/10) - Vladimir Sukhov - www.enigmaprotector.com
433. Themida & WinLicense 2.0 - struct* (Hide from PE scanners typeI)
434. Angel's Crypteur v0.2 2008.10.25 (C++ stub) - www.idyliccoderz.fr.cr
435. Fearz crypter 2.2.0 - by fEaRz (Delphi stub) *ACM
436. Saddam crypter v2.0 By 4bo3tb (2008.09.25) Delphi stub *ACM
437. Hack Hound - HH Crypter 2.2 by Hydrargirum for www.hackhound.org (2008.11.02 Delphi stub) *ACM
438. InstallShield® 2009 v15 Pro - www.installshield.com - Acresso Software Inc. (MSC++)
439. Hack Hound - HH Crypter 1.0.4 (Mod.Huex) by Hydrargirum for www.hackhound.org (2008.08.08 Delphi stub) *ACM
440. TTProtect 1.0.5 - 2008.08.17 (max/obf) - www.ttprotect.com *ACM
441. TTProtect 1.0.5 - 2008.08.17 (std/max/net) - www.ttprotect.com *ACM
442. TTProtect 1.0.5 dll - 2008.08.17 (max/obf) - www.ttprotect.com *ACM
443. Secure Shade 1.8 by Kizar 02-07-2008 (C++ stub)
444. skD Undetectabler 2.0 pro (Delphi stub) - (C) White Fire Crew 2006-2007 (*unprotect)
_______________________________________________________________________

www.exeinfo.go.pl
_______________________________________________________________________
2008.11.11 (c) A.S.L.

Download: exeinfope_v0.0.2.0.zip 416.28 KB