eMule File Fakes random zip/rar files with content setup.exe Malware - Virus installer (Buzy Allert)
The sources are meanwhile also on eMule clients and aMule.
30 November 2010
The sources are meanwhile also on eMule clients and aMule.
29 November 2010
Join Leecher Mods! Start following if you like my Blog - Sign up now with Friendconnect
Problems by real time Comment publishing by 'Anonymous' users with ed2k links in content. Google introduced a Spam filter for Blogger. It seems like comments from anonymous users with ed2k links do ending in my spam filter and must be manually sorted out to publish on the site. I wrote a support ticket cause I don't think that anyone use ed2k links as a spammer. Unless the rules for this filter change I pick the comments with news such as new ed2k mods containing the download link to eMule network out and publish them as soon as I can. It will be better if you sign up by Google and login for example using Friend Connect before submitting comments so that they appear in real time to the blog readers.eMule Forks *Adware
TruxShare*
FEATURES of TruxShare:
TruxShare use several file sharing networks to form one consistent network. (ED2K, Source Exchange, Kad - Kad is now in an open test phase)
Our Queue & Credit structure facilitates everybody to get the file wanted by promoting people that upload back to the network.
TruxShare is entirely free. TruxShare is also totally free of any Spyware, and etc.
Every file is verified for corruptions during download to guarantee an error free file.
Intelligent Corruption Control assists to accelerate the rectification of corrupted parts.
Auto priorities & Source management permit to start many downloads without monitoring them.
The Preview feature allows to look at Videos and Archives before completion.
You can make categories for downloads to organize everything very well.
To find the file you want, TruxShare offers a large range of search possibilities like: Servers (Local and Global), web based (Jigle, and Filedonkey), and Kad (testing phase).
TruxShare also permits using complex Boolean searches that creates more flexibility.
With the messaging and friend feature, it is possible to send messages to other Clients and add them as friends. In your friend list, you can always see if one of your friends is online.
The build-in IRC client, let you chat with other downloaders and chatters from all over the world.
Screenshots: http://www.truxshare.com/screenshots.html
Homepage: http://www.truxshare.com
---------------------
Anubis P2P*
Anubis P2P (peer-to-peer) is a new file sharing program that includes all the recent p2p optimizations, helping users to search and download over some several networks around the internet. All in one features like file manager, download statistics, chat and IP filters make this p2p a complete tool for all kind of users. You can monitor all your activity in statistics area viewing download/upload reports gathered by Anubis.
Multi-source download for maximize speed;
Advanced connection features;
Bandwidth monitoring and control
Complete upload and download queuing system;
Tabbed interface;
Screenshots:
http://www.anubisp2p.com/screenshot.htm
Homepage: http://www.anubisp2p.com
----------------
StarMule*
StarMule is a new file sharing program that includes all new p2p optimizations, enabling users to search and download over some several networks (including eD2K and Kad) around the internet.
Great features like file manager, download statistics, chat and IP filters make this p2p a complete tool for any user.
A peer-to-peer computer network relies primarily on the computing power and bandwidth of the participants in the network rather than concentrating it in a relatively low number of servers.
An important goal in peer-to-peer networks is that all clients provide resources, including bandwidth, storage space, and computing power.
You can download StarMule absolutely FREE.
Features
Powerful library organizer
Built-in audio/video player
New algorithm for accelerating downloads
Improved multiple sources finding during download
Multi-source download for maximizing speed
Advanced connection features
Bandwidth monitoring and control
Complete upload and download queuing system
Tabbed interface
Website: http://www.devhancer.com/p2p-applications/starmule
* Adware may be inside by software with them homepages on 93.184.220.20
sites with Google Ads pub-5974397314053097, Analysis Tracker UA-3557919-xx are from the same company
FEATURES of TruxShare:
TruxShare use several file sharing networks to form one consistent network. (ED2K, Source Exchange, Kad - Kad is now in an open test phase)
Our Queue & Credit structure facilitates everybody to get the file wanted by promoting people that upload back to the network.
TruxShare is entirely free. TruxShare is also totally free of any Spyware, and etc.
Every file is verified for corruptions during download to guarantee an error free file.
Intelligent Corruption Control assists to accelerate the rectification of corrupted parts.
Auto priorities & Source management permit to start many downloads without monitoring them.
The Preview feature allows to look at Videos and Archives before completion.
You can make categories for downloads to organize everything very well.
To find the file you want, TruxShare offers a large range of search possibilities like: Servers (Local and Global), web based (Jigle, and Filedonkey), and Kad (testing phase).
TruxShare also permits using complex Boolean searches that creates more flexibility.
With the messaging and friend feature, it is possible to send messages to other Clients and add them as friends. In your friend list, you can always see if one of your friends is online.
The build-in IRC client, let you chat with other downloaders and chatters from all over the world.
Screenshots: http://www.truxshare.com/screenshots.html
Homepage: http://www.truxshare.com
Anubis P2P*
Anubis P2P (peer-to-peer) is a new file sharing program that includes all the recent p2p optimizations, helping users to search and download over some several networks around the internet. All in one features like file manager, download statistics, chat and IP filters make this p2p a complete tool for all kind of users. You can monitor all your activity in statistics area viewing download/upload reports gathered by Anubis.
Multi-source download for maximize speed;
Advanced connection features;
Bandwidth monitoring and control
Complete upload and download queuing system;
Tabbed interface;
Screenshots:
http://www.anubisp2p.com/screenshot.htm
Homepage: http://www.anubisp2p.com
StarMule*
StarMule is a new file sharing program that includes all new p2p optimizations, enabling users to search and download over some several networks (including eD2K and Kad) around the internet.
Great features like file manager, download statistics, chat and IP filters make this p2p a complete tool for any user.
A peer-to-peer computer network relies primarily on the computing power and bandwidth of the participants in the network rather than concentrating it in a relatively low number of servers.
An important goal in peer-to-peer networks is that all clients provide resources, including bandwidth, storage space, and computing power.
You can download StarMule absolutely FREE.
Features
Powerful library organizer
Built-in audio/video player
New algorithm for accelerating downloads
Improved multiple sources finding during download
Multi-source download for maximizing speed
Advanced connection features
Bandwidth monitoring and control
Complete upload and download queuing system
Tabbed interface
Website: http://www.devhancer.com/p2p-applications/starmule
* Adware may be inside by software with them homepages on 93.184.220.20
sites with Google Ads pub-5974397314053097, Analysis Tracker UA-3557919-xx are from the same company
LuckyWire 1.0.0.2 LimeWire PRO Clone Alternative
You miss LimeWire? A lot of us do. Maybe you already heard about LimeWire's twin brother, who everybody thought died in a plane crash in the Amazonian jungle, but suddenly appeared among us, and just in time to continue his jailed brother's legacy. His name is LimeWire Pirate, but the evil men who hunted down his brother, went after him too. Don't worry though, the story doesn't end here! What you hadn't known is that LimeWire had an illegitimate son, called LuckyWire. And he is growing up to be just as talented in P2P sharing as his father. Pay him a visit here, if you would like to get to know him.
Luckywire is based off the new limewire 5. Luckywire is powered by turbocharged download speeds. It also has features like: Turbocharged download speeds, built-in virus checker, BitTorrent support, iTunes integration, Sharing files privately with friends (Facebook, Gmail integration), extra connection sources, optimized search results, and much more.
What it is that you should know about LuckyWire?
Features:
*The fastest P2P Program.
*No spyware, adware, bundled software
*Share files with friends
*Download from multiple hosts
*Turbocharged connections
*Connections to more sources
*Faster than LimeWire!
*100% Free Download
*Coming soon: burn music to CD
Homepage: http://luckywire.com
Screenshots
Downloads and Mirrors:
http://www.softpedia.com/get/Internet/File-Sharing/LuckyWire.shtml
http://www.download3000.com/download_55492.html
http://www.brothersoft.com/download-luckywire-345305.html
http://pontuaki.com.br/luckywire/
New Version LuckyWire 1.0.0.2
luckywirewin.exe 43.77 MB
old Version 1.0.0
LuckyWire-1.0.0.0-win32.exe 16.32 MB
DDL1 | DDL2 | DDL3
------------------------
MP3 Rocket also looks a lot like LimeWire and works the same way, so it's another good option. It's a lot like FrostWire, too, though MP3 Rocket does offer you a pro version and screens will pop up from time to time asking you to upgrade.
During install, MP3 Rocket offers the Ask toolbar -- make sure to uncheck all the boxes if you don't want it. You'll also be asked for your email address, but you don't have to provide it -- just click next to skip ahead.
Homepage:
http://www.mp3rocket.com/
http://sourceforge.net/projects/mp3rocket/files/mp3rocket/
Newer Free:
http://d5.mp3rocket.com/downloads/MP3Rocket-Win.exe
PRO Version: ???
Latest Beta:
http://www.mp3rocket.com/test/MP3Rocket-Win-beta.exe
------------------------
It's funny but these clones are all from the same person same programmer/webmaster made.
You see in all sites (clones based on LW 4) mostly have the same Google Ads Nr: pub-5974397314053097.
All sites have Analysis Account almost UA-3557919-xx.
While newer Sites (LimeZilla, Sharest,..(base LW 5)) are written in Joomla! 1.5 CMS and using the same Ads account: pub-5532080627531961, and Google Analysis Tracker UA-3762514-x.
All sites are on the same Webhosting.
We think this clones only differs from program names and gui design. Older Software based on LW 4, newer on LW 5.
Advertising revenue seems to be the first focus of the following clones.
- DexterWire
- ADDAX
- LemonWire
- MP3 Torpedo
- LimeSharePro
- GnutellaWire
- ShareWire
- ShareGhost
- LimeWire Turbo
- TurboWire
- Sharest
- LimeZilla
www.p2phood.com
www.intelpeers.com
www.meteorshare.com
www.manolito.com
hermesp2p.com
blubster.com
...
Luckywire is based off the new limewire 5. Luckywire is powered by turbocharged download speeds. It also has features like: Turbocharged download speeds, built-in virus checker, BitTorrent support, iTunes integration, Sharing files privately with friends (Facebook, Gmail integration), extra connection sources, optimized search results, and much more.
What it is that you should know about LuckyWire?
Features:
*The fastest P2P Program.
*No spyware, adware, bundled software
*Share files with friends
*Download from multiple hosts
*Turbocharged connections
*Connections to more sources
*Faster than LimeWire!
*100% Free Download
*Coming soon: burn music to CD
Homepage: http://luckywire.com
Screenshots
Downloads and Mirrors:
http://www.softpedia.com/get/Internet/File-Sharing/LuckyWire.shtml
http://www.download3000.com/download_55492.html
http://www.brothersoft.com/download-luckywire-345305.html
http://pontuaki.com.br/luckywire/
New Version LuckyWire 1.0.0.2
luckywirewin.exe 43.77 MBold Version 1.0.0
LuckyWire-1.0.0.0-win32.exe 16.32 MBDDL1 | DDL2 | DDL3
Other Alternatives:
MP3 Rocket also looks a lot like LimeWire and works the same way, so it's another good option. It's a lot like FrostWire, too, though MP3 Rocket does offer you a pro version and screens will pop up from time to time asking you to upgrade.
During install, MP3 Rocket offers the Ask toolbar -- make sure to uncheck all the boxes if you don't want it. You'll also be asked for your email address, but you don't have to provide it -- just click next to skip ahead.
Homepage:
http://www.mp3rocket.com/
http://sourceforge.net/projects/mp3rocket/files/mp3rocket/
Newer Free:
http://d5.mp3rocket.com/downloads/MP3Rocket-Win.exe
PRO Version: ???
Latest Beta:
http://www.mp3rocket.com/test/MP3Rocket-Win-beta.exe
other LimeWire Clones (mostly with Adware)
all LimeWire Forks on the same server 93.184.220.20 / Same company.It's funny but these clones are all from the same person same programmer/webmaster made.
You see in all sites (clones based on LW 4) mostly have the same Google Ads Nr: pub-5974397314053097.
All sites have Analysis Account almost UA-3557919-xx.
While newer Sites (LimeZilla, Sharest,..(base LW 5)) are written in Joomla! 1.5 CMS and using the same Ads account: pub-5532080627531961, and Google Analysis Tracker UA-3762514-x.
All sites are on the same Webhosting.
We think this clones only differs from program names and gui design. Older Software based on LW 4, newer on LW 5.
Advertising revenue seems to be the first focus of the following clones.
- DexterWire
- ADDAX
- LemonWire
- MP3 Torpedo
- LimeSharePro
- GnutellaWire
- ShareWire
- ShareGhost
- LimeWire Turbo
- TurboWire
- Sharest
- LimeZilla
www.p2phood.com
www.intelpeers.com
www.meteorshare.com
www.manolito.com
hermesp2p.com
blubster.com
...
28 November 2010
eMule Kad Search full with Fake Files - Hundrets of aMule Clients spreading Faked File Names containing a setup.exe with Malware!
Recently when you do a Search on Kad in eMule and you found search results with a unusually high number of sources. Nearly all sources are aMule v2.2.6 Clients with Nicknames: Admin, Administrador, Administrateur, Administrator, Usario, utente, Utilisateur,...
These are Filefakers sending Viruses, Ads Toolbars and other Malware over ed2k Network!
The Files mostly contains in a rar or zip pack one Setup.exe with filedate 01.01.1980. Filesizes varies from 1,5 to 78 MB.
DO NOT START THE CONTENT SETUP.EXE. ERASE IT AFTER EXTRACTING.
When you start this exe your Webbrowser may open with virus infected websites for example: http://zumasoft.com/ etc...
It installs silence a bundle of different Malware:
- Bandoo.exe (run in background instantly)
Fun4IM Coordinator (Discordia Limited)
located under Program Files\Fun4IM
to uninstall terminate Process Bandoo.exe, run \Program Files\Fun4IM\UNWISE.EXE
- Windows Searchqu Toolbar
datamngrUI.exe (run in background instantly)
Located under: \Program Files\Windows Searchqu Toolbar
to uninstall terminate Process datamngrUI.exe, run \Program Files\Windows Searchqu Toolbar\uninstall.exe
- several empty folder such as: \Program Files\icons
A significant number of Registry keys remains on the system even with the uninstallers. It is therefore recommended running a RegCleaner.
The RegKeys of these BHO's and Toolbars for manual cleaning are:
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{074E4EFE-81BB-4EA4-866E-082CB0E01070}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{0CE5B352-9D9C-41E1-9551-FCCD92820217}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{167B2B5F-2757-434A-BBDA-2FDB2003F14F}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\BndCore.exe" HKCR\CLSID\{27F69C85-64E1-43CE-98B5-3C9F22FB408E}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{2E9A60EA-5554-49C3-BC9D-D0404DBACC62}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{3E63C9BC-DD51-4E83-ABA6-B350EAD28531}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{44CFFEF4-E7E1-44BD-B1F5-29F828ADA1B8}
ActiveX/COM InProcServer32\C:\PROGRA~1\WI9130~1\ToolBar\SearchquDx.dll HKCR\CLSID\{7FF99715-3016-4381-84CE-E4E4C9673020}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\BndCore.exe" HKCR\CLSID\{B543EF05-9758-464E-9F37-4C28525B4A4C}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\BndCore.exe" HKCR\CLSID\{BB76A90B-2B4C-4378-8506-9A2B6E16943C}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\BndCore.exe" HKCR\CLSID\{C3AB94A4-BFD0-4BBA-A331-DE504F07D2DB}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{EF2B6317-C367-401B-83B8-80302D6588A7}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{F5379B4B-24D8-432A-9A96-BE75EE5117DB}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{F7FB2BC4-6C27-4EAC-B5E2-037B71FDE101}
ActiveX/COM LocalServer32\"C:\PROGRA~1\Fun4IM\Bandoo.exe" HKCR\CLSID\{FD53FE35-4368-4B71-89D6-F29F3DB29DF1}
If you are connected with narrow-band Internet, such as DSL, ISDN below 2000 (256k, 128k, 56k EDGE, GPRS), you notice a significant loss of speed through the silence installed applications and toolbars (BHO's).
Be in caution some AV's do not detect the kind of virus but the firewall block the file access.
Many eMule Mod Names in download search are affected with source between 40 to 800
The probability that these file contents (setup, install) are junk, I think is over 80%
eMule 0.50a eMuleFuture v1.0 FiNaL
The official eMule mod of www.emulefuture.de An eye-candy eMule-based P2P client with Client Analyzer antileech system and optional forum/webbrowser integration. Give it a try and start into eMuleFuture!
Release Folder: http://sourceforge.net/projects/emulefuture/files/
Homepage: http://forum.emulefuture.de/f55/emulefuture-v1-0-final-4859/
With Browser: http://sourceforge.net/projects/emulefuture/files/emulefuture/eMuleFuture v1.0/eMule.v0.50a.eMuleFuture.v1.0-FiNaL-Binary.7z/download