07 February 2008

Windows XP Service Pack 3 RC2 Build 3300

9 comments
Windows XP Service Pack 3 RC2 Build v.3300Windows XP Professional Build 2600.xpsp.080125-2028 (Service Pack 3, v.3300)
Year--------------------------------------------^
Month--------------------------------------------^
Day-------------------------------------------------^
-
Hour-----------------------------------------------------^
Minute-----------------------------------------------------^

Microsoft presents Release Candidate 2 of Service Pack 3 for Windows XP

Microsoft is putting the finishing touches to Service Pack 3 for Windows XP. Last December, the first Release Candidate (RC) of SP3 was made available for public download; now, Microsoft has released a second RC. Versions of XP that have this update report for work as "Service Pack 3, v.3300" with build number "2600.xpsp.080125-2028".

Unlike RC1, RC2 is not yet available to the general public for download, but only to a small group of registered beta testers. It is not yet clear whether Microsoft will ever make RC2 available to a larger group of testers.

SP3 upgrades all 32-bit versions of Windows XP, provided that at least Service Pack 1 has been installed. In doing so, it differs from all previous service packs: up to now, all of Microsoft's service packs have been cumulative, meaning that they contained all patches and updates of previous versions. In contrast, SP3 for XP only contains the patches and updates that have appeared since SP1. RC2 also contains a number of add-ons available separately, such as Background Intelligent Transfer Service (BITS) 2.5, Windows Installer 3.1, Management Console (MMC) 3.0 and Core XML Services 6.0.

The final version of SP3 is expected sometime in the first two quarters of 2008, by which Microsoft usually means the second quarter, not the first. SP3 will be the last service pack for XP. However, patches for security problems that Microsoft categorises as critical will continue to be available for free until at least 2014. (jk/c't)
This is the self-extracting executable that contains the update package for Windows XP Service Pack 3 Release Candidate 2.

It is recommended that you apply this update package to an activated, genuine copy of Windows XP, in a test environment. As with any pre-release software, it is also recommended that you back up files and settings on your machine before applying this update package. You may apply this package to previous pre-release editions of Windows XP Service Pack 3 (e.g., the Release Candidate Refresh).

A Microsoft disponibilizou para os beta-testers o Release Candidate 2 do Windows XP Service Pack 3 (Build 3300). Diferente dos builds anteriores, que eram disponibilizados quase sempre em inglês, francês, alemão e japonês, desta vez a Microsoft disponibilizou também a versão em português brasileiro.

De acordo com comentários de alguns beta-testers, o build 3300 provavelmente será o mesmo da versão RTM (isso não foi confirmado).

O Windows XP SP3 contém todas as atualizações lançadas anteriormente para o sistema operacional e inclui um pequeno número de novos recursos e funcionalidades. Entre elas estão o Network Access Protection (NAP), um novo modelo de ativação do Windows em que o usuário não precisa digitar a chave no momento da instalação, detecção de “Black Hole Router” (o Windows XP SP3 pode detectar e proteger contra roteadores que estão descartando dados) e o novo Microsoft Kernel Mode Cryptographic Module.

A versão final tem lançamento previsto para o primeiro trimestre de 2008.


windowsxp-kb936929-sp3-x86-enu.exe 315 MB (330.544.680 bytes)
windowsxp-kb936929-sp3-x86-deu.exe 312.02 MB
windowsxp-kb936929-sp3-x86-jpn.exe 324.42 MB
windowsxp-kb936929-sp3-x86-ara.exe 302.08 MB
windowsxp-kb936929-sp3-x86-ptb.exe 301.67 MB
windowsxp-kb936929-sp3-x86-esn.exe 308.34 MB
windowsxp-kb936929-sp3-x86-chs.exe 334.02 MB

Homepage: http://forums.microsoft.com/TechNet/ShowForum.aspx?ForumID=2010&SiteID=17

Download (Torrent) ENU: Windows_XP_Service_Pack_3_Build_3300_RC2.torrent

XPSP3Preview_Pro_Neu_ENG

Download (Torrent) CHS VOL: Windows.XP.SP3.RC2.v3300.VOL.CN.iso.torrent
DDL CHS KB Service Pack 3 RC2 Build 3300 only:
windowsxp-kb936929-sp3-x86-chs.exe - Mirror - Mirror

All Languages are here but required invitation: http://bbs.deepin.org/read.php?tid=544339 (please write a comment eXpresso to this blog if anyone get link to download build 3300 in the Languages: ptb, ara, deu, esn, jpn) or have access to a google ip range.

News Source: http://www.heise.de/english/newsticker/news/103129

Windows Update Website Hardware:

AMD CPU Driver - AMD Processor Power Management Driver version 1.0.0.0 from MS Update:

DriverVer=04/16/2007, Hardware Driver > install *.inf. The AMD CPU Driver is not integrated even if from AMD Website latest CPU Driver 1.3.2.53 (Nov '07) is installed before. 43.90 KB: Advanced Micro Devices - Other Hardware - AMD Processor MS update.rar

Extras Tools:

Working Vista Styler for Setup CD files patching and by installed Windows:
M. Hoefs - Windows - VistaMizer
How to integrate proper SP3 in WinXP ISO (Retail, Vol, Corp,...) + KB's

uxtheme.dll collected patches (with nLite patched and extracted)

Patched UXTHEME.DLL uxtheme.dll sp3 v.3300 (Installer Chinese but patch Language independent)
Source: http://greendown.cn/soft/9849.html
Download: installer + Patched uxtheme.dll
uxtheme.dllsp3v.3300.rar

Uxtheme.dll v.3300 ENU patched to use unsigned themes for cd image or with replacer for installed
Max connection limit patched to unlimited connections tcpip.sys in /system32/drivers
disabled Windows file protection WFP sfc_os.dll
Download: modified patched system files v.3300

06 February 2008

K-Lite Mega Codec Pack 3.7.5 Final

0 comments
Changelog K-Lite Mega Codec Pack Version 3.7.0 -> 3.7.5 | (2008-02-05)

* Updated Media Player Classic to version 6.4.9.1 revision 36
* Updated ffdshow to revision 1846
* Updated Xvid to version 1.2 build 2008-01-10
* Updated x264VFW to revision 736bm
* Updated DC-Bass Source
* Updated FLV splitter
* Removed CoreAVC

Homepage: http://www.codecguide.com/index.html

Download [ Version 3.7.5 | 16.8 MB | February 5th 2008 ]:
http://www.codecguide.com/download_mega.htm

http://downloads.planetmirror.com/pub/majorgeeks/multimedia/klmcodec375.exe
http://verbatimcd.free.fr/Logiciels/klmcodec375.exe
ftp://majorgeeks.mirror.internode.on.net/multimedia/klmcodec375.exe
http://fileforum.betanews.com/detail/KLite_Mega_Codec_Pack/1080441198/1/

An updated pack of 64-bit DirectShow filters has been released.
http://www.codecguide.com/klcp_64bit.htm

New versions of QuickTime Alternative and QT Lite have been released.
http://www.codecguide.com/download_qt.htm
http://www.codecguide.com/qt_lite.htm

Trojans in uTorrent Mods and BitTorrent (Armadillo) Mods packed?

21 comments
sb-innovation.desb-innovation.de BitTorrent 6.x SBI Mods (Armadillo 5.x) - http://www.sb-innovation.de
check by some mods outgoing connections / requests activity to program exe's when the bittorrent 6 mod is closed. See firewall log by enable and disabled rule for bittorrent_mods exe's.

Remarks:
Kaspersky, BitDefender have a unpacking engine include for PECompact and Armadillo 4 - 5 also manual unpacking shows the same result in multi_100_seeder and one kind of mod by Bittorrent 6

uTorent seeder x100 Mods (PEcompact ver.2.78a ~2.80 with ADDED DLL INJECTION)
see screenshot:

NEW AV Signature Updates 05.02.2005

BitDefender Internet Security 2008 v11.0.15
Virus Database Date: 06.02.2008
Known Viruses: 979216

Now new av signatures improved. Detect already in inno setup installer: µtorrent 1.7.7 LP_setup.exe and others

AV-Signature + engine and modules hourly updates:
BitDefender Internet Security 2008 v11.0.15 German
Virus Database Date: 06.02.2008
Known Viruses: 979232

The 3th AV def. update today does not more show the above screen but by doing innounp / inno unpack or running setup, one mod utorrent 1.7.x. multi100_seeder.exe found positive Trojan AX patched in the temp folder and by skip also in the unpacked folder.

Software Description Software Version Virus Database Date Known Viruses
BitDefender Internet Security 2008 11.0.15 06.02.2008 979348

-------------------------------------------------------------------------------
Some (packers) are not detected:
new Backdoor

Creates the following files to Windir\Media folder (same as some very old Backdoors but different signatures):
C:\WINDOWS\Media\csrss.exe
C:\WINDOWS\Media\MSWINSCK.OCX

Adds to the value "Shell"="explorer.exe"

"Shell"="explorer.exe" C:\WINDOWS\Media\csrss.exe"
to the registry key:
HKLM\Software\Microsoft\WindowsNT\CurrentVersion\Winlogon

and maybe like the old Backdoor:
"RegWrite"="c:\windows\media\csrss.exe"
to the registry key:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run



After executing it run a "fake" csrss.exe from folder windir\Media in process manager as soon windows starts together with the original \system32 Microsoft Corporation Client Server Runtime Process (csrss.exe) and connect to a webserver.


After removing these files under windir\Media appears :

receive an error message upon startup that reads
No AV, Anti Spyware, Anti Malware Program or Startup Manager Tools ever monitored logon shell:
WinLogon = Explorer.exe for changes
extensions for example :

"Shell"="explorer.exe C:\WINDOWS\Media\csrss.exe"
"Shell"="explorer.exe C:\any application to run with startup test.dll"

Azureus 3.0.4.3 Beta 19 (-B19)

0 comments
CHANGELOG Azureus Vuze 3.0.4.3 B19

FEATURE: Core | Added µTorrent PEX support [amc1]
FEATURE: Core | Azureus probes trackers for UDP-capabilities on first scrape/announce now and uses udp instead of http where available [The 8472]
FEATURE: Core | Added option to enforce IP bindings even when the specified interfaces are not available (useful when Azureus should not use certain network interfaces) [The 8472]
FEATURE: UI | Added option for "Open Containing Folder" menu action - which may integrate better with non-standard file browsers [amc1]
FEATURE: UI | Added option for "Show Torrent Menu" -- Users can now decide to see the Torrent menu in the menubar or not [knguyen]
FEATURE: UIv3 | New menu configuration for Vuze and Vuze Advanced UI's [knguyen]

CHANGE: Core | Further memory footprint reductions; for additional tweaks see http://www.azureuswiki.com/index.php/Reduce_memory_usage [The 8472]
CHANGE: Core | Reimplemented LT extension protocol code [amc1]
CHANGE: Core | DND/Compact (aka Delete) priority now deletes all files that do not share pieces with normal/high priority files [The 8472]
CHANGE: Core | Queuing rules now don't start any further torrents if the global up/download speed limits are reached [The 8472]
- makes "don't count torrent ..." minimum speed rules more useful to dynamically regulate the queue lengths
- recovers faster from chain reactions in case of connection loss
CHANGE: Core | Made the crypto handshake a bit less predictable [The 8472]
CHANGE: Core | Added support for udp-multiscrapes [The 8472]
CHANGE: Core | Added support for plugins which implement mainline DHT [amc1]

BUGFIX: Core | Request limiting/Priorities no longer pinch off LAN peers if seperate LAN speeds are enabled [The 8472]
BUGFIX: UI | Shells no longer use the low-res frog icon, the normal main window icon is now used instead [amc1]
BUGFIX: UI | Limiting comments in General View to 5k characters under WinXP to avoid crashes due to faulty comctl32.dll [The 8472]
BUGFIX: UI | Setting speed parameters manually now disables autospeed [The 8472]

To use, rename the downloaded AzureusXxxx-Bxx.jar file to Azureus2.jar to replace your old jar in the Azureus program dir: ChangeTheAzureusTwoJarFile
Azureus v2 vs. v3 (Vuze) FAQ
Changelog
Commitlog
Snapshot RSS Feed
Beta Site: http://azureus.sourceforge.net/index_CVS.php

★ Download: Azureus3043-B19.jar - 06 Feb 2008 07:53:21 AM [10081896 bytes]
Azureus3043-B19.jar.torrent

Prevx CSI 1.5.103.197

0 comments
Prevx CSI 1.5.103.197Prevx CSI allows you to benefit from the knowledge gained from the entire Prevx community.
- Totally Free
- Instantly scans for all forms of malware to let you know if you're infected
- No Install required
- Runs completely independently and as many times as you like!
- Always up-to-date - checks with the up-to-the-second Prevx community database for the very latest threats

Are you responsible for your company's security?
Prevx CSI for Business can be used free of charge in low volume (up to 250 PCs) by business users and large enterprises, subject to a simple registration process. Prevx CSI for Business may also be configured to run in silent mode allowing companies to deploy it easily using a simple login script. Business users also benefit from a web based console which provides a summary view of all PCs scanned by Prevx CSI with clear details of which ones are infected.

Prevx CSI - FREE Malware Scanner v1.5.103.197 BugFix Release Update

*fixed ACDSee Screen Capture rootkit detection problem
*some more fixes
*scan speed improved

Homepage: http://www.prevx.com

Download: http://info.prevx.com/downloadprevx2.asp

Business user: http://www.prevx.com/csilogon.asp

05 February 2008

eMule 0.48a D10Tmain MorphXT 0.9.7.10.3 -a8

0 comments
D10Tmain MorphXT 10.3 WC 0.9.7 alpha 8
eMule 0.48a MorphXT v10.3 WebCache 0.9.7 Alpha 8 D10Tmain
eMule 0.48a D10Tmain MorphXT WC 0.9.7.10.2 alpha7[D10Tmain] MorphXT WC 0.9.7.10.3 alpha8

Based on emule MorphXT 10.3 + WebCache
+ finished (resolved last issue) WC code is in state as in M9.6
ADD: run as NT service v1. [leuk_he]
-No need to login into XP.
-keeps running after logging out/ switching users
-new command line options:
emule install -> install as as service
emule uninstall -> uninstall as a service.
-make sure all settings are correct before installing as a service.
-links as passed to webservice.
-See Preferences-> Webserver-> NTservice tab
remark: Not meant to save cpu/memory.
ADD: Context menu on chat context. (wizard code snippet)
ADD: Lost preferences. Most official preferences that got an preferences.ini setting but no gui are
Added in preferences-> extended-> Advanced preferences.
CHANGED: USC: better slotfocus.
CHANGED: More upload speed for webcache requester. (no 100ms delay)
CHANGED: And also DBR reviewed for high bandwidth transfer.
CHANGED: Flush thread, improved.
CHANGED: Better requested block queuing
CHANGED: Sr-13 import, Also use AICH hash when required.
FIX: Upnp: using same port for tcp & udp now possible.
CHANGED: uPnP moved most logging to verbose level.
FIX: sr-13 import: crash on cancel during running import.
FIX: crash on low disk space resume.
ADDED: Official fix around Create Packed Packets (missed overhead file request value for file >4GB)
24 instead of 28

Download: [D10Tmain]MorphXTWC.0.9.7.10.3.alpha8.rar [1.91 MB]
DDL: d10tmain_morphxtwc.0.9.7.10.3.alpha8.rar

older Versions: [D10Tmain]MorphXTWC.0.9.7.10.2.alpha7.rar
[D10Tmain]MorphXTWC.0.9.7.10.1.alpha6.rar

Archive