DreaMule v3.2 VeryCD Mod Patch

- Webbrowser url changed
- Modstring and hello tag + hello answer = Changed / ModTag
- Prior comm to VeryCD codebase
- uneeded res removed slim use less cpu load / memory
- Default username comm changed to: [CHN][VeryCD]yourname
- send right eMule Version to VeryCD clients

Screenshot click on picture for full screen




Download with VeryCD Comm and right eMule Version 0.48.0.66 string: DreaMule_3.2_VeryCD Patch show version 0.48 6.05 MB

send eXcalibur 1.8 to VeryCD Clients: DreaMule_3.2_bin-eXcalibur 1.8 Mod Patch 6.05 MB

Download with VeryCD Comm: Caution shows Version 0.49
DreaMule_3.2_bin-VeryCD Mod Patch.7z 6.04 MB

Download without VeryCD Comm: DreaMule_3.2_bin-icon-opt-mini.7z 6.04 MB

may show invalide client on some servers

DreaMule 3.2 size optimized, components updated

A sample this Splashscreen have 13326 bytes size
The sample in the Forum: http://dreamule.org/forum/
http://img149.imageshack.us/img149/2452/dreamule32od7.png
comes in the same dimension size with 33100 bytes size its 19774 bytes bigger, more than 2 times.

Graphics:
In Original DreaMule contains near 2 MB graphic in its exe filesize ~ 7MB
Tons of graphics where without compressing, reducing quality. A hit on save the graphic files are each becomes some kb smaller.
Here a light optimized Version where only 15% of all Graphic files been optimized to smaller filesize embedded in the emule program exe.
Optimizing all graphics will reduce another 300, 500 - 700 kb of the exe filesize.
However more than 350 KB have been reduced by optimizing only the main graphics without any icons lib sorting or ripping graphic files. Some WebBrowser Icon libs from VeryCD eMule Mod are possible uneeded (not used) in the program exe.

result:
emule.exe from 6,38 MB (6.696.960 bytes)
to emule.exe 6,08 MB (6.385.664 bytes)

with Icon libaries sorted out: emule.exe 5,56 MB (5.830.656 bytes)

Updated:
Unrar.dll updated from 3.60 to recent version 3.80.2.166
Ip-to-country.cvs from 2007 to 09. June 2008 most recent
ModIconDLL.dll from 2007 to 2008 version 0.0.0.9



Download:
dreamule_3.2_bin.7z 6.22 MB - Mirror

Icons sorted:
dreamule_3.2_bin_icon_opt.7z 6.11 MB - Mirror

emule v0 49a v1.4.8.1 cracked Virus Alert!!!

File emule_v0_49a_v1.4.8.1_cracked.rar received on 07.20.2008 16:20:42 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
http://www.virustotal.com/analisis/bc73933a915a09814b465fe059602236
Result: 20/33 (60.61%)

Antivirus Version Last Update Result
AhnLab-V3 2008.7.17.0 2008.07.18 -
AntiVir 7.8.1.11 2008.07.20 Rkit/Agent.ajn.8
Authentium 5.1.0.4 2008.07.20 -
Avast 4.8.1195.0 2008.07.20 Win32:Adware-gen
AVG 8.0.0.130 2008.07.19 BackDoor.Generic9.ALQH
BitDefender 7.2 2008.07.20 -
CAT-QuickHeal 9.50 2008.07.18 Rootkit.Agent.ajn
ClamAV 0.93.1 2008.07.20 PUA.Game.Casino-1
DrWeb 4.44.0.09170 2008.07.20 -
eSafe 7.0.17.0 2008.07.20 Rootkit.Win32.Agent.
eTrust-Vet 31.6.5966 2008.07.18 -
Ewido 4.0 2008.07.20 Rootkit.Agent.ajn
F-Prot 4.4.4.56 2008.07.20 -
F-Secure 7.60.13501.0 2008.07.20 Rootkit.Win32.Agent.ajn
Fortinet 3.14.0.0 2008.07.20 W32/Agent.AJN!tr.rkit
GData 2.0.7306.1023 2008.07.20 Rootkit.Win32.Agent.ajn
Ikarus T3.1.1.34.0 2008.07.20 Virus.Rootkit.Win32.Agent.ajn
Kaspersky 7.0.0.125 2008.07.20 Rootkit.Win32.Agent.ajn
McAfee 5342 2008.07.18 -
Microsoft 1.3704 2008.07.20 -
NOD32v2 3282 2008.07.19 a variant of Win32/PTCasino
Norman 5.80.02 2008.07.18 W32/Rootkit.GUH
Panda 9.0.0.4 2008.07.20 Adware/GoodSearchNow
Prevx1 V2 2008.07.20 System Back Door
Rising 20.53.62.00 2008.07.20 -
Sophos 4.31.0 2008.07.20 -
Sunbelt 3.1.1536.1 2008.07.18 -
Symantec 10 2008.07.20 Hacktool.Rootkit
TheHacker 6.2.96.385 2008.07.19 Trojan/Agent.ajn
TrendMicro 8.700.0.1004 2008.07.18 -
VBA32 3.12.8.1 2008.07.20 Rootkit.Win32.Agent.ajn
VirusBuster 4.5.11.0 2008.07.19 -
Webwasher-Gateway 6.6.2 2008.07.20 Rootkit.Agent.ajn.8
Additional information
File size: 3411102 bytes
MD5...: 46d9fe7779137c2f8e7c8de68c777254
SHA1..: c7cf302c7767e2f5b9eb3a64286c7969e64d3ac1
SHA256: 7f6f05dc96c6f711ace173b91723f065d0ef4fb006e29f88f0eb388e709e3773
SHA512: eb79529e8d9fbb7721a79e4379e713e702454f3d87aaf8f4109da4c35ca67d38
8b9a0ae9ad72e6a1b039b3e2f45a90dc0e2020283051b9b0235630542639ab1e
PEiD..: -
PEInfo: -
Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=16594E800016610846474FBE55CF7E00E1F39F03

Please submit to

Microsoft: http://support.microsoft.com/kb/921161/
Rising: http://sample.rising-global.com/webmail/upload_en.htm
McAfee ???
Spybot - Search & Destroy: ???
BitDefender: ???
AhnLab-V3: ???
DrWeb: ???
Comodo BOClean Anti-Malware 4.27 ??? (find nothing)
UnHackMe 4.8 Build 289 Beta ??? (find nothing)

How to get it away without installing another AV:
try but didn't found anything
Norman Malware Cleaner: Built 2008.07.07 http://download.norman.no/public/Norman_Malware_Cleaner.exe
or try: http://www.prevx.com/freescan.asp: http://pxnow.prevx.com/zeroL/PREVXCSIFREE.EXE
Symantec Online scan: http://security.symantec.com/sscv6/default.asp?langid=ge

Avast AV, Boot scan found under system config Rootkit during boot scan and removed it!

According to Prevx:
This executable program has a file size of 5,195,264 bytes, it is most frequently called 22_GUI_1.EXE in ed2k network: emule v0,49a v1.4.8.1 cracked.rar and is most frequently located in the %mai%\ folder.
This file is considered unsafe and is part of the malware group, BackDoor.Ntrootkit. It was first seen on Wednesday, May 7 2008. It has been seen frequently by 18 users in this section of the community. The file was first seen in SPAIN but has been seen in other locations, including The EUROPEAN UNION.
22_GUI_1.EXE has been seen to perform the following behavior:
- Can make outbound communication to other computers, IM chat rooms and other services using IRC protocols
22_GUI_1.EXE has been the subject of the following behavior:
- Deleted as a process from disk

eMule 0.49a DreaMule 3.2

The version 3.2 of DreaMule is on the way bringing several innovations. Currently the staff has already received a beta (I say one more Release Candidate is therefore completely stable), and very soon we will launch!

Moreover the DreaMule is becoming as important and increasingly used internationally as in Spain that its creator is becoming celebrity

Look at the interview Bruno Cabral for Softonic, one of the largest sites for downloads of Spain or something like Baixaki Superdownloads from there:
http://es.onsoftware.com/p/entrevista-al-creador-de-DreaMule-un-genio-precoz

Homepage: http://dreamule.org/forum/bb3portal.php
Sourceforge: http://sourceforge.net/project/showfiles.php?group_id=100764
Homepage: http://sourceforge.net/projects/pootzmod/
BBS

Version 19-07-2008:
Download:
Bin: http://downloads.sourceforge.net/pootzmod/DreaMule_bin.rar?modtime=1216490693&big_mirror=0
Installer: http://downloads.sourceforge.net/pootzmod/DreaMule_3.2.exe?modtime=1216512878&big_mirror=0
Exe: http://downloads.sourceforge.net/pootzmod/DreaMule.exe?modtime=1216512885&big_mirror=0

7-Zip 4.59 alpha 5 by Igor Pavlov

7-Zip 4.59 alpha 5 was released.

7-Zip for 32-bit Windows:
http://www.7-zip.org/alpha/7z459a5.exe

7-Zip for 64-bit Windows x64:
http://www.7-zip.org/alpha/7z459a5-x64.msi

What's new after 7-Zip 4.59 alpha 4:
- 7-Zip now uses less memory when it compresses big number of files.
- Some internal changes.

BBS: http://sourceforge.net/forum/forum.php?thread_id=2126997&forum_id=45797

older Version Alpha 4

ExeInfo PE ver. 0.0.1.8 G3 - ( 400 sign ) by A.S.L

64 MB max file

many reconstruction and removed few proc. and conditions ( maybe not work correctly )

added new sign :

Delphi 2007 v11
387. Microsoft Visual C++ v9.0 ( e8 ) www.microsoft.com
388. ActiveMARK 5.x -> Trymedia Systems - www.trymedia.com *ACM
389. (E8) Microsoft Visual C++ 9.0 - Visual Studio 2008
390. Microsoft Visual C# / Basic.NET / MS Visual Basic 2005/2008
391. TTProtect 1.0 - 2007/2008 - www.ttprotect.com (.net/dll)
392. TTProtect 1.0 - 2007/2008 - www.ttprotect.com (exe)
393. MPRESS v1.05 - MATCODE comPRESSor for executables (C) 2007,2008, MATCODE Software - www.matcode.com
394. MPRESS v1.07 - MATCODE comPRESSor for executables (C) 2007,2008, MATCODE Software - www.matcode.com
395. EncryptPE V2.2008.6.18 China Cracking Group - www.encryptpe.com
396. Empathy 2.1 Exe password 2007.08 (using : PE-Inject Engine 1.0 by M.Strechovsky ) ( pass decode max.12 char)
397. Microsoft Visual Basic v4.0-6.0 DLL (5A)
398. Microsoft Visual C# / Basic.NET / MS Visual Basic 2005 (4xFF25)
399. Borland C++ Copyright ( No Copyr. sign )
400. !EPack 1.4 lite final - by 6aHguT / Team-X 2006.08


old options fixed ( only user bugs )

and ...

Please send not recognized pe files ( packer / protector ), bugs and suggestions ! project is still open A.S.L

Homepage: http://www.exeinfo.go.pl/

Download: exeinfope2008.07.09_0.0.1.8.G3.zip 522.15 KB - Mirror

Exeinfo PE – unprotect exe file from overlay ( xor method ) info How to use it Exeinfo_overlay_xor.pdf