Blogspot and other Domains DNS redirected on ISP > Refresh time

Internet realtime refresh site
30 minutes ago: Post enrry not to see / isp TOT dns1 + dns2 Anti DNS spoofing KB951748 installed

57 minutes ago: Post entry shown up on this site / isp TOT

/Browser Catch independend using MSIE, Firefox, Opera, Safari @ 8x ISP reconnect to resolve different IP's (dyn ip)

As 2 Days ago in national Newspaper an article reports with the question why natinal ISP redirect DNS. Symptom like catch server between oversee http requests/answers from websites (refresh time) get website in old version until catche svr on isp supply actual version of websites (DNS spoofing possible).

Why is the international internet speed per user now limit to 56kb/s like a analogue Modem by the fastest ADSL package @Linux/Windows/MacOSX different hardware, router,... ???

Microsoft releaded yeasterday a security update for Windows OS:

Microsoft Security Bulletin MS08-037 – Important
Vulnerabilities in DNS Could Allow Spoofing (953230)

This security update resolves two privately reported vulnerabilities in the Windows Domain Name System (DNS) that could allow spoofing. These vulnerabilities exist in both the DNS client and DNS server and could allow a remote attacker to redirect network traffic intended for systems on the Internet to the attacker’s own systems.
This security update is rated Important for all supported editions of Microsoft Windows 2000, Windows XP, Windows Server 2003, and Windows Server 2008. For more information, see the subsection, Affected and Non-Affected Software, in this section.
The security update addresses the vulnerabilities by using strongly random DNS transaction IDs, using random sockets for UDP queries, and updating the logic used to manage the DNS cache. For more information about the vulnerability, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability entry under the next section, Vulnerability Information.
Recommendation. Microsoft recommends that customers apply the update at the earliest opportunity.

http://www.microsoft.com/technet/security/bulletin/MS08-037.mspx

What are the uninstall issues that customers may experience after installing these security updates?
Supported editions of Microsoft Windows 2000 and Windows 2003 systems will receive the DNS server update as well as the DNS client updates. The DNS server update and the DNS client updates share binaries and must be uninstalled in the reverse order that they were installed to avoid regressing the shared binaries to previous versions. Microsoft Knowledge Base Article 823836 documents the currently known issues that customers may experience when they uninstall these security updates.
What are the random socket connection issues that customers may experience when installing this security update?By default, the DNS updates offered by this security bulletin will take advantage of a large number of available sockets to offer greater entropy. However, if the user has defined port ranges in the registry, then the updates will respect the user-defined settings and will only allocate the defined sockets.
Socket ranges can be defined in the following registry location:HKLM\System\CurrentControlSet\Services\DNS\Parameters Reg key Name: SocketPoolSizeNote The DNS service must be restarted to implement these changes.
What does defining the socket pool range do?It may be necessary to define the range of sockets that DNS can choose from to avoid conflicting with other applications or services that need the same socket pool for their communications. See MaxUserPort and Microsoft Knowledge Base Article 812873 for more details about these registry key settings.
What are the differences between operating systems when defining the socket pool ranges?The MaxUserPort registry Key has different meanings on Windows Vista and Windows Server 2008 than on Microsoft Windows Server 2000 and Windows Server 2003. Microsoft knowledge Base Article 929851 details the change in behavior for Windows Vista and Windows Server 2008.
In Microsoft Windows Server 2000 and Windows Server 2003, setting the MaxUserPort defines the ending point of the dynamic port range. The range starts at 1024 and continues to the user-defined value in the MaxUserPort registry key setting. After installing the updates offered by this security bulletin, the default behavior on Microsoft Windows Server 2000 and Windows Server 2003 will be to allocate sockets randomly from the port range 49152 to 65535. If the MaxUserPort range has been defined, then ports will be allocated randomly from 1024 to the defined value in the MaxUserPort registry key setting. Visit Microsoft Knowledge Base Article 812873 for more information on reserving port ranges on Microsoft Windows 2000 Server and Windows Server 2003.
In Windows Vista and Windows Server 2008, setting the MaxUserPort defines the starting point of the dynamic port range. By default, the range on Windows Vista and Windows Server 2008 is 49152 to 65535.
Where are the file information details? The file information details can be found in Microsoft Knowledge Base Article 953230.
http://support.microsoft.com/kb/929851
HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/regentry/58791.mspx?mfr=true
Determines the highest port number TCP can assign when an application requests an available user port from the system. Typically, ephemeral ports (those used briefly) are allocated to port numbers 1024 through 5000.
possible values: 5,000–65,534 ( port number )
Windows 2000, XP does not add this entry to the registry. You can add it by editing the registry or by using a program that edits the registry.

http://support.microsoft.com/?kbid=951748
http://support.microsoft.com/kb/951748

MaxCacheEntryTtlLimit
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/regentry/30659.mspx?mfr=true
HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters

REG_DWORD
0x1–0xFFFFFFFF ( seconds )
0x15180 ( 86400 seconds = 1 day )
Establishes the maximum time that a Domain Name System (DNS) record, other than an SOA (Start of Authority) record, can remain in the DNS cache.
This entry establishes a ceiling for Time-to-Live (TTL) values of non-SOA records. By default, the TTL value in the DNS answer record determines how long records are saved in the DNS cache. However, if a TTL value in a DNS answer record exceeds the value of this entry, it is ignored, and the DNS client sets the TTL value to the value of this entry.
Activation method
To make changes to this entry effective, restart the DNS client service or restart Windows. This entry does not apply to SOA records. The maximum TTL for SOA records is determined by the value of the MaxSOACacheEntryTtlLimit entry.
http://www.2oak.com/search?q=MaxCacheEntryTtlLimit

Download:
http://www.microsoft.com/downloads/results.aspx?pocId=&freetext=KB951748&DisplayLang=en

USD UniversalDownloader Paket +DVK, eMule Stulle Mod Private 0.48 & 0.49a Virus Alert

If you have downloaded in the past one of these programs:

USD-Komplettpaket_24-06-2008.rar

DVK_Plugins_24-06-2008.rar

Please re-download it or delete the following file names from the folders.

Some files was possible infected

from DVK_Plugins_24-06-2008.rar:

- nircmdc.exe (Backdoor.W32.VB.xb)

File have been repacked without the infected file here: DVK_Plugins_24-06-2008.rar 4.39 MB


from USD-Komplettpaket_24-06-2008.rar:
- usercashcom.dll (Trojan.Clicker.Win32.Pophot.au)
- Xvidznet.dll (Trojan.Clicker.Win32.Pophot.au)
- ddlmusuc.dll (Win32.HLLW.Mistri)
- flyload.dll (Win32.HLLW.Mistri)
- gameblog.dll (Win32.HLLW.Mistri)
- linkbank.dll (BackDoor.Nuclear.78)
- printip.exe (Trojan Downloader 54) > please repack with cab maker Curl Router Reconnector v0.2.9\progs.cab

File have been repacked without the infected files here: USD-Komplettpaket_24-06-2008.rar 25.37 MB


eMule 0.48a and 0.49a Stulle Private :

eMule.exe (Worm.Win32.DownLoad.gh) was in some stulle private

Fixed:
eMule.v0.48a-StulleMule.v5.3.Private.Light.zip 3.41 MB
SMSPorgWS_v5.3.zip 2.72 MB
SM_v5.3.zip 3.54 MB
StulleMule_v6.0_Private_2_VS2005.zip 2.95 MB

If anyone can send Fixed without Virus:

Trojan in this emule mod!!!
0.48a eMule Final Fight Gold (5) based on
Sivka 0.48a v18a1-alpha

Modded by Ruffy
15-May-2008

-Fake Rank
-Queue Size Verändert
-Max Queue Rank beim Download erhöht
-Ändern der Upload – Slotanzahl
-Upload wurde manipuliert, (Man kann es auf 1 setzen ohne das sich der Down-Speed ändert) Upload manipulated, it can be set to 1 it will not affect the Down-Speed
-Remove Ratio
-Remove Wizard
-Remove Help
-Added new Icons

Please post clean mod without Trojan!!!

All Files have been scanned to the date of publication but later AV updates shown it as possible Viruses by different AV scanners under different Virus names!

Trojan Downloader Agent in Winsock an Armadillo v1.xx - v2.xx protected compressed, DLL name: engt32.dll

Symptom: engt32.dll Hooks with 2 entries in Winsock LSP's
Internet speed may slow down by single connections 30 - 60 %
Age: The file have been first scanned in year 2006 by www.virustotal.com and found the same results by all Antiviruses as now in year 2008.

To found with: Spybot -Search and Destroy (unknown MS-...) 2 entries
or Trend Micro HijackThis v2.0.2
To remove: LSPFix cexx.org's Winsock 2 (Layered Service Provider) repair utility.

Antiviruses that can not found it are Microsoft, Kaspersky, NOD32, Norman, TrendMicro, F-Secure, Prevx...

Live On Care 2.x include latest Beta can not more start the integrated Live on care firewall.

Info:
AhnLab-V3 2008.7.8.0 2008.07.07 Win-Trojan/Agent.81920.Z
AntiVir 7.8.0.64 2008.07.07 TR/Dldr.Agent.DLL.A
Authentium 5.1.0.4 2008.07.07 W32/Downldr2.VEB
Avast 4.8.1195.0 2008.07.07 Win32:Trojan-gen {Other}
AVG 7.5.0.516 2008.07.07 Downloader.Small.BCP
BitDefender 7.2 2008.07.08 Trojan.Downloader.AUT
CAT-QuickHeal 9.50 2008.07.07 - FOUND NOTHING!
ClamAV 0.93.1 2008.07.08 - FOUND NOTHING!
DrWeb 4.44.0.09170 2008.07.07 Trojan.DownLoader.12131
eSafe 7.0.17.0 2008.07.07 - FOUND NOTHING!
eTrust-Vet 31.6.5934 2008.07.07 - FOUND NOTHING!
Ewido 4.0 2008.07.07 Downloader.Agent.a
F-Prot 4.4.4.56 2008.07.07 W32/Downldr2.VEB
F-Secure 7.60.13501.0 2008.07.08 - FOUND NOTHING!
Fortinet 3.14.0.0 2008.07.07 PossibleThreat
GData 2.0.7306.1023 2008.07.08 Win32:Trojan-gen
Ikarus T3.1.1.26.0 2008.07.08 Trojan-Downloader.12131
Kaspersky 7.0.0.125 2008.07.08 - FOUND NOTHING!
McAfee 5333 2008.07.07 Generic.di
Microsoft 1.3704 2008.07.08 - FOUND NOTHING!
NOD32v2 3248 2008.07.07 - FOUND NOTHING!
Norman 5.80.02 2008.07.07 - FOUND NOTHING!
Panda 9.0.0.4 2008.07.08 Trj/Downloader.KHR
Prevx1 V2 2008.07.08 - FOUND NOTHING!
Rising 20.51.60.00 2008.07.06 Trojan.DL.Agent.ana
Sophos 4.31.0 2008.07.08 Mal/Generic-A
Sunbelt 3.1.1509.1 2008.07.04 Trojan-Downloader.Gen
Symantec 10 2008.07.08 Downloader
TheHacker 6.2.96.374 2008.07.07 - FOUND NOTHING!
TrendMicro 8.700.0.1004 2008.07.07 - FOUND NOTHING!
VBA32 3.12.6.8 2008.07.07 Trojan.DownLoader.12131
VirusBuster 4.5.11.0 2008.07.07 - FOUND NOTHING!
Webwasher-Gateway 6.6.2 2008.07.07 Trojan.Dldr.Agent.DLL.A

File info:
File size: 81920 bytes
MD5...: 38a169d6eb7dbc243a2c395eb981833b
SHA1..: 1fa66f684c15566b87301c04949c8072c577a7a6
SHA256: 9ce760b1982e32000a5637ad4422c5639dc1b334013700e303e967342595df69
SHA512: a51f9f6aee0e488d899012e05c78296056403e94e788382c31cd65b28da1a359
ffecced13b0a3101ea2216d4f846c3881b259d74d218944b8ebff4bab410ca70
PEiD..: Armadillo v1.xx - v2.xx
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x10003969
timedatestamp.....: 0x44bf3cca (Thu Jul 20 08:20:26 2006)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xad5a 0xb000 6.60 1e2ac2efe8a2e97d6cdcff740aa8b8c7
.rdata 0xc000 0x14ea 0x2000 3.89 c226fc9e70ce25bd077963ed95f88541
.data 0xe000 0x4f0c 0x4000 0.92 573d4ed926f2ab855c9ad82a6525471f
.reloc 0x13000 0x1160 0x2000 3.06 6a09bba2d154e82f41c98399f03643e2

( 5 imports )
> KERNEL32.dll: DeleteFileW, GetModuleFileNameW, GetModuleFileNameA, WritePrivateProfileStringW, CloseHandle, CopyFileW, GetLastError, CreateMutexW, GlobalFree, GlobalAlloc, FreeLibrary, GetProcAddress, LoadLibraryW, ExpandEnvironmentStringsW, GetSystemDirectoryW, GetTempPathW, FindClose, FindFirstFileW, SetErrorMode, CreateFileW, SetFileTime, GetSystemTimeAsFileTime, CompareStringW, CompareStringA, FlushFileBuffers, GetDriveTypeA, SetStdHandle, GetStringTypeW, GetStringTypeA, LoadLibraryA, GetOEMCP, GetACP, GetCurrentDirectoryW, IsBadCodePtr, IsBadReadPtr, SetUnhandledExceptionFilter, SetFilePointer, GetTimeZoneInformation, GetSystemTime, GetLocalTime, InterlockedDecrement, InterlockedIncrement, RtlUnwind, HeapFree, HeapAlloc, FileTimeToSystemTime, FileTimeToLocalFileTime, GetDriveTypeW, GetCommandLineA, GetVersion, MultiByteToWideChar, WideCharToMultiByte, LCMapStringA, LCMapStringW, InitializeCriticalSection, DeleteCriticalSection, EnterCriticalSection, LeaveCriticalSection, ExitProcess, GetCurrentThreadId, TlsSetValue, TlsAlloc, TlsFree, SetLastError, TlsGetValue, GetModuleHandleA, GetEnvironmentVariableA, GetVersionExA, HeapDestroy, HeapCreate, VirtualFree, VirtualAlloc, HeapReAlloc, IsBadWritePtr, GetFullPathNameW, GetCurrentDirectoryA, TerminateProcess, GetCurrentProcess, SetHandleCount, GetStdHandle, GetFileType, GetStartupInfoA, FreeEnvironmentStringsA, FreeEnvironmentStringsW, GetEnvironmentStrings, GetEnvironmentStringsW, WriteFile, GetCPInfo, SetEnvironmentVariableA
> USER32.dll: MessageBoxA
> SHELL32.dll: ShellExecuteW
> urlmon.dll: URLDownloadToFileW
> WS2_32.dll: WSCDeinstallProvider, WSCGetProviderPath, WSCInstallProvider, WSCWriteProviderOrder, WSCEnumProtocols

( 9 exports )
Dll_CheckRunning, Dll_GetInfo, Dll_GetVersion, Dll_Install, Dll_LoadInstance, Dll_ShowVersion, Dll_Uninstall, UpdateCore, WSPStartup

More info: http://www.firefox123.cn/English/e/engt32.dll.htm
Process File: engt32.dll
Process Name: Troj_Polymorphic.File.Exploit
Description: N/A
Author: unknown
Part of: unknown
Common Path(s): Windows\system32
Secuirty Risk (0-5): 0
Spyware: Yes
Adware: Yes
Virus: Yes
Trojan: Yes
System Process: No
Application: No
Background Process: Yes
Uses Network: Yes
Uses Internet: No
Related Process:
IP Internet System Internet

After Winsock LSP's the two entries are cleaned and the file been removed Live OnCare Firewall works again:



In Stulle eMule Private old version 0.48a from ed2k net another Virus Worm.Win32.DownLoad.gh ???:
Scanned all other eMule Mods, no Virus found there! some Stulle eMule v0.49 Privat is the same Worm.Win32.DownLoad.gh! eMule Morph Private 0.48 and 0.49a is clean!!!


Microsoft security AV team USA is sleeping 34h ago after submition - no responce, bcc via PR section Munich, DE, Vibrio

Rising updated deep analyse: C:\fn-virus\fn-virus\engt32.dll
Trojan.DL.Agent.ana

VBA32 (Virus Block Ada 32) Scanner (not much up to date): ftp://anti-virus.by/pub/Vba32Scan.zip or http://vba32.de/anonymous/pub/Vba32Scan.zip

Program full from:
http://vba32.de/demo/content/view/15/31/ (3Months Free Fullversion) or: http://www.anti-virus.by/en/ (1Months Free Fullversion)
Info: http://anti-virus.by/about/vba/
is not bad too to scan for Trojans:

Normal Mod - fast check:


Deep Scan Mod - full check:

Find more deep embedded Trojans as some others!

BitSpirit 3.3.2.255 English, Polish, German, Chinese - Ads Free - No BHO - Blue EdiTion

BitSpirit 3.3.2.255 - The powerful and easy-to-use BitTorrent Client
English, Deutsch, Polish, Chinese without Ads and Browser Helper Object (BHO) - associate .torrent by setup or .torrent files open with BitSpirit in Windows. Another option, in BitSpirit select under Files, Add Torrent Link.
No 3th party addons, plugins or Ads display in the User Interface. No Torrent Market exchange collection offer "My Goods".
Reloaded with latest MyUPnP Tool in Blue Design Installer


Supported Languages:
English (Default), Chinese, Polish, German



2 Editions Blue:
Default Style in Blue Color
MiniBar Blue,...
Tango Style
Application (Program exe) upx packed (compressed) for smaller installed size. -upx
Uncompressed (packed) bigger installed size.



BitSpirit.exe upx compressed
Size: 899 KB (921.088 bytes)
File Hash:
MD5: 80c90eb35d50a9f4eea4383d7eff4bce
SHA-1: f9b53859cd990542e0acd9f3949667f842a836ed

BitSpirit.exe not compressed
Size: 2,86 MB (3.004.416 bytes)
File Hash:
MD5: 76810f056770f8c19d6a6ec360123c87
SHA-1: 9cd97abaec6b8652301a7d741fba98382d525c03


Download:

New Style Installer + Blue EdiTion:

bsv3.3.2.255.EN-CHN-PL-DE-NoAds-NoBHO.exe | Mirror | 2,52 MB
MD5: c29445db837158b0e24d6ed5eeb97a49
SHA-1: aa5d3748644776be6cde5468640ac8710c7746c7

bsv3.3.2.255.EN-CHN-PL-DE-NoAds-NoBHO-upx.exe | Mirror | 2.68 MB
MD5: bb257af061da4592d08838463a46acc8
SHA-1: a781e7f17ef961ba4973d23e05bf9f8849c25983


bsv3.3.2.255.EN-CHN-PL-DE-NoAds-NoBHO-TangoBlue.exe | Mirror | 2.51 MB
MD5: cb732176ebc85fbfb63a62696d058dfb
SHA-1: 2fdab29dd5405ce0a3efb7dda11649af0fd10b6a

bsv3.3.2.255.EN-CHN-PL-DE-NoAds-NoBHO-TangoBlue-upx.exe | Mirror | 2,67 MB
MD5: c5971cfab4c1a6911506f61f37fdbe02
SHA-1: 5084bdd3fdfb22387500e7000e9cfa65d81eb857

Old Style Installer + Green EdiTion:

bsv3.3.2.255.EN-CHN-PL-DE-NoAds-NoBHO.exe 2.26 MB

bsv3.3.2.255.EN-NoAds-NoBHO-upx.exe 2.41 MB
MD5: 05e1e71ce10bd7da8c59b5040c101be9
SHA-1: bb8ea464cf3af513077ed675c601b6376d4ee4d5

BitSpirit 3.3.2.255 English Mini Ads Free without BHO - Blue EdiTion

- Ads Free
- No Browser Helper Object
- No Installation required, uncompress (7zip, rar) and run
- Size on Disk requ. only 1,11 MB !!!

Download:

bsv3.3.2.255.EN-Mini-noBHO.7z | Mirror | 970.17 KB
MD5: 04550d3e268a1a165c5a9003c0efa157
SHA-1: 41a1c70c2f61b04d1c1305c305699d13aa6d7bb8

bsv3.3.2.255.EN-Mini-noBHO-Tango.7z | Mirror | 956.82 KB
MD5: 24cc98de835b8fd66bb991b531ee3f95
SHA-1: 7fdfd45ea4a34744c619747e333e02927f42498a

Male Edition Blue, Female Edition Pink follow when she wrote the Russian Translation for BS Version 3.x ... :))

WinASO Registry Optimizer 4.0.5 Deutsch & WinASO Registry Optimizer 3.2 Deutsch

WinASO Registry Optimizer ist ein erweiterter Registry Optimizer Cleaner für Windows der Ihnen erlaubt sicher zu reinigen und Registrierung Probleme mit ein paar einfachen Mausklicks zu reparieren. Durch die Überprüfung nach veralteten Informationen und Anpassung der Parameter in der Windows-Registry kann Ihr System deutlich beschleunigt werden. WinASO Registry Optimierer ist gut konzipiert um gemeinsame Probleme zu beheben wie der Zugang zu fehlenden Laufwerke und Festplatten und illegal veränderter Internet Explorer-Seiten. Diese Software wurde erhebliche Tests unterzogen, um die Sicherheit Ihres Systems zu gewärleisten. Unterdessen bietet WinASO Registry Optimizer die leistungsfähige Funktion der Erhaltung der Privatsphäre. Effektiv Scannen und Clearing des Verlaufes der Nutzung von Programmen und Anwendungen in Ihrem System. Version 4,0 kommt mit einen verstärkten Scanning-Algorithmus, einer neue Benutzeroberfläche und neu hinzugefügte System-Info-Funktion, so dass Sie alles über Ihre Computer-Hardware sofort wissen.

Voraussetzungen:
Windows 98/Me/NT/2000/XP/2003 Server/Vista

Changes in Version 4.0.5:
- invalid drives ckeck produce error messages by startup :fixed
- some minor :fixes
- auto update push update unregulary by program start even if its disabled :fixed
- save parameters fixed
- provides several scanning improvements to safely and quickly identify more registry errors and enhance PC performance.
- With the newly added System Information function in WinASO, you can know all about your computer hardware instantly.

You can compair v 3 with latest Version 4.0.5 (since v 4) bloated with rests of Adobe Design Creator - GUI junk rest Codes in the exe this makes the application size uncompressed over 7 mb big in size, (Programmer Coding Quality)!
Size ~ 20 % of original size with upx are not often.

WinASO is programmed in Delphi. Developed in China, Czech Rep.

Download: regopt405-32de.exe 6.32 MB
upd check removed, keine Eingabe eines Aktiwirungsschlussels erforderlich

eMule 0.48a eXcalibur 1.71

eMule v0.48a eXcalibur v1.71

eMule eXcalibur 1.71 simplified Chinese version (based on VeryCD 080627 by: Wind marks)

eMule eXcalibur 1.71 simplified Chinese version (updated 20080703)
Author: Wind marks the date :2008-07-01
=====================================================
Has been suspected of other eMule client excessive number of miscellaneous functions, I need to use or lack of features, coupled with the occasional need to network within the Internet functions, the final decision based on VeryCD modify the source code to meet their own needs. EXcalibur is such a A product. Current version, 1.7, based on VeryCD Mod 080627 source code.

eXcalibur VeryCD Mod is based on a modified version in other words the Mod of a Mod. intention is the development of a smaller paper size, retain VeryCD Mod in the network within the Internet function at the same time, other Mod absorb the advantages and characteristics of all May enhance the stability and increase the more useful features. Mod this major emphasis on conventional applications, rather than advanced applications. If you need advanced features such as strong releases, manually a4af, queue, and so on a number of features, please use the Xtreme or StulleMule.

2008.07.03 v1.71
[+] Memory of the closed proceedings when the window pane and log functions (Options -> High)
[+] Memory backup to the choice of file types;
[+] Before reuse the profile (of course, part of the new options or recommend that users need to configure the light of their own);
[+] Whether or not to the friend to friend points to reduce the queuing time (Options -> High)
[+] Do you want to download peer points between each other can be used to speed up the pieces of paper streaming speed (Options -> High)
[+] Boss Key features, can quickly hide the main window and tray icon, if mini-mule or options window is shut down automatically; (Options -> conventional)
* Support includes Ctrl, Alt, Shift, Fx combination of keys and a separate F4, F6-F11 (F1-F3, F5, etc. hotkey has been shielding)
[+] Support from the Boss Key mode settings when the restoration of the main window display window and mini mule and (Options -> High)
[+] DLP + upgrade to the DLP + v3116 Reload;
[+] In the log file Notifier.ini led to the lack of notice can not pop up the task bar prompts the question;

[F] does not prohibit changes due to rename the bulk size of the window display does not lead to corresponding normal controls (thank Kokura highest)
[F] document Notifier.ini repair due to the wrong path set (usually because of the use of the original configuration files) and lead to pop-up tray notification error, (thanks to Kokura highest)

Other minor code to improvements...

===================================================
Compared to the change VeryCD 080627 ([-] delete function [+] Add [F] repair error):

[-] Built-in browser program to enhance stability;
[-] To download documents related to the completion of feedback information to VeryCD server functions;
[-] Search keyword filtering;
[-] And installation of automatic update function;
[-] IE BHO menu and right-related functions;
[-] In the search window to visit VeryCD site search function;
[-] Community points function;
[-] PopMule function;
[-] Transfer window pop-up menu in Jinshan drug Pa Cha Du-line functions;
[-] Default toolbar style, eMule restore the default toolbar;
[-] Error reporting module;
[-] Transfer list and share lists, and search the list of the "Notes" column;
[-] Laws Update link check invalid;
[-] Has been useless client filtering;
[-] Users were forced to add the label [CHN] and [VeryCD] functions;
[-] The minimum 30 K upload or download speed limit of the 1:4 ratio of the function (resume official version of the speed limit set);
[-] PNG format flash-screen picture flash back to the original screen image;
[-] Multi-language selection, retaining only English interface;


[+] Transfer window color display LowID user function (from Xtreme)
[+] Transfer window and share the bulk of the window to rename function (from Xtreme)
[+] All the window display complete version of the client information (client version + Mod version); (from Xtreme)
[+] Custom TCP protocol encryption length of string attached to the embargo against ISP (from Xtreme)
[+] Transfer list show other client completion percentage (from Xtreme)
[+] Color to share files in the list has not yet been completed in order to distinguish the paper (from Xtreme)
[+] Recognition eMule Plus client, no longer appear as eMule Compat; (from Magic Angel)
[+] Detected leecher mule can automatically call a custom string to notify users of leecher mule and (from Magic Angel)
[+] Add automatic backup integral document, configuration files and documents Part of the function (from Magic Angel)
[+] Add always show the system tray icon function to facilitate adjustment of the speed limit at any time, (from EasyMule)
[+] Output from DLP information and detailed log output, may choose to show only single DLP detection information (from EasyMule)
[+] Reduce the high-speed upload / download data compression and because of the CPU utilization (from MorphXT)
[+] Integrity of the anti-leecher (DLP) to support the code and reduce injury (aMule, MLdonkey, etc.) code;
[+] Sharing window on the PMP, FLV, DOCX, XPM, SQX, APP, ODS, ODT, WPS and other documents types of identification;
[+] Initial run automatically set some parameters to reduce the allocation of difficulty;
[+] The use of an external interface language documents show that some finished log;
[+] Quick call DLP_Updater.exe online update DLP module (Tools menu -> DLP + online update);
[+] Merger Xtreme related to find the source code to find a better source;
[+] Share the list right-right-menu ed2k link directly copy the document;
[+] Output DLP detection information to logsantiLeech.log (optional);
[+] Mini mule into long strips (reservations upload / download speed display and function button) to reduce the occupied area of the screen;
[+] Transfer window shown below queue charts and graphs of leecher mule;
[+] Known to line up windows and window pop-up menu, Add / Remove friends;
[+] Tools -> IP filtering rules to add window Quick Edit / override button;
[+] Enhance the DLP punitive options, optional settings in order to prevent the queue, integral home, and slow increase in the proportion of designated points;
Note: stop the queue: The leecher mule into the queue; zero points home: leecher mule can enter the queue, but has always been integral to 0;
Reduce integral: leecher mule can enter the queue, but the unit time was integral to the normal client is the designated ratio;
[+] Optimize connection VeryCD / IA / Popgo servers, without inserting the corresponding tab connected server;
[+] The opening of the credit system and mandatory safety certification avoid misuse uncheck the other client was punished;
[+] Advanced options can be defined in the process shows the date and time format;
[+] Client information displayed in the window DLP testing and operation types;
[+] Single file of the buffer increased to 40 MB limit to meet high-bandwidth users need to adjust the (occupation has become a memory);
[+] If the crash was not re-run coverage by the last normal backup documents;
[+] WinSock2 support;
[+] Since the definition of the leecher mule client to stop time (2-12 hours).
[+] Stop the offensive client (crazy request documents / Send message, invalid or frequent replacement ID);
[+] IP changes (Diaoxian-even) in the queue automatically notify all the client and re-request all sources;
[+] Replacement and re-edit of the icon resources procedures to reduce the file size;
[+] Conversations automatically prevent damage to the transmission of client data blocks (from Xtreme)
[+] Manually from some source to stop receiving data (from Xtreme)
[+] Memory is no longer using the Code AICH check (from Xtreme)
[+] Share window display download history (from Xtreme)
[+] Connected to the network or upload / download speeds into the system when the ban standby;
[+] Delete more than 20 documents list only 20 documents before the confirmation dialog to avoid shoring;
[+] Non-default choice when the incoming directory which has prompted it to share documents;
[+] Strengthen Vagaa client filtering;


[F] system tray menu after adjusting the speed limit can not be saved settings;
[F] location and size of the control of resources calls do not match;
[F] the remainder of the output is not in line with China's user habits, and dismiss the remaining size of the display;
[F] window in the "me" and "network information" window Chinese character too small;
[F] agreement in connection linking the potential transmission of the conflict and not enough strict definition of variables;
[F] DLP for loading, overloading, not to display the error message;
[F] will occasionally start a "server is running in the" Tip of the problem;
[F] transfer window in the list of the various agreements encryption and security authentication icon does not show the correct mistakes;
[F] in the Vista system on the part of the directory and Kad compatibility issues;
[F] with the sources added keyword eD2K links error;
[F] subject to change after the share files list directory tree icon shows abnormal and open the file of the directory is not normal;
[F] transfer list QR sort incorrect;
[F] anti-leecher information panel at a exported information can not be highlighted;
[F] send a blank shared directory;
[F] AICH, CBB, DeadSource deal with the collapse of the code hidden dangers;
[F] Unicode search window box in some systems can not automatically check;
[F] can not be manually lifted to stop leecher mule;
[F] CXImage image processing library to upgrade to v6.0 resolve the problem of image processing;
[F] update for libpng to v1.2.28;
[F] filter ed2k link in the control characters;
[F] repair startup with deleted categories of problems;
[F] enable / disable queue list does not show in time to refresh the list of issues and do not show the floating button prompts the question;
[F] ed2k link address in ed2k: no longer case-sensitive;
[F] standby or hibernation after the resumption of automatically re-connect to the network (server / Kad);

Other minor code improvements and improvements ...

eXcalibur is upx compressed with missing/removed upx header to protect from running upx -d and get the small emule.exe filesize. The rar archives are 7zip distributet

Announcement: http://www.verycd.com/groups/eMuleBeta/299846.topic
Blog: http://fzh.soft2cn.cn/default.asp
BBS: http://bbs.soft2cn.cn/thread-1854-1-1.html
Download Address:
eXcalibur_v1.71
upx compressed
eMule_v0.48a_eXcalibur_v1.71.rar 2.60 MB | Mirror | Mirror Ziddu
not compressed (to be translated to english)
eMule_v0.48a_eXcalibur_v1.71-noUPX.rar | Mirror 2.51 MB
eXcalibur 1.6
eMule_v0.48a_eXcalibur_v1.6.rar 2.58 MB | Mirror Ziddu

English with propper ModsTring eXclaibur 1.71 based on Morph, VeryXtreme, include latest DLP:
eMule_v0.48a_eXcalibur_v1.71-EN-eXtreme.rar | Mirror 2.81 MB
[CHN][VeryCD][eDtoon][SumiSora][ICN]