开发环境：Visual Studio .NET 2003
源码版本号：eMule VeryCD 0.48a Build 071112
编译出错的输出信息： 是项目中的一些文件找不到例如:
无法打开源文件:".\flashget\genhash\ThunderHash.cpp”,不知道这些文件在哪

回楼上，从项目文件列表里删掉这些不存在的文件就可以了

flashget...

ThunderHash....

开发环境：Visual Studio .NET 2005
源码版本号：eMule VeryCD 0.48a Build 071112
error C2664: '_wctime32' : cannot convert parameter 1 from 'const time_t *' to 'const __time32_t *'
Types pointed to are unrelated; conversion requires reinterpret_cast, C-style cast or function-style cast

如此种种

回 wozhaolala | 无法打开源文件:".\flashget\genhash\ThunderHash.cpp”...

不知道你用的是哪里的原文件，但是071112里面是没有这些的。

请确认你的源代码版本号，如果还有什么问题，欢迎继续骚扰

to guwei4250: 嗯，发现有这个问题，正在研究中。。。。

to guwei4250:
>>>>>>>>>>> 解决方案：
去掉stdafx.h里的以下几行
#ifndef _USE_32BIT_TIME_T
#define _USE_32BIT_TIME_T
#endif

eMule VeryCD 0.48a Build 071128

最新版的源代码，好像这次没有更新到下载主页。

按照版主的提示都改了
编译的时候非常卡,而且很慢
但最终编译成功了 谢谢斑斑
还有一个问题 编译成功后是英文版的 怎么变成中文的
是不是修改String Table
我是菜菜

原来需要语言文件啊
zh_CN.dll
已解决

to BenjaminX: 嗯，确认是忘放了，谢谢提醒，稍后放出。之后我们也会把这里的svn运转起来，即使在不发版本时，也会更新，让大家更即时的了解最新代码。

to athlon32: 就是它。顶！：）

版主 真的很感谢！我是学计算机的 对电驴的开源非常赞同！大家可以一起促进学习，一起交流！同时也感谢VeryCD公司很多同仁在开源道路上的大力支持！非常非常的感谢！
版主你的联系方式是多少？
如想告诉我 请发邮件告诉我！非常的感谢！以后长联系！
我的邮箱：zhang007z@eyou.com

把 const bySupportedEncryptionMethod
改成 const EEncryptionMethods bySupportedEncryptionMethod
然后把bySupportedEncryptionMethod 改成 EEncryptionMethods bySupportedEncryptionMethod
后就出现了8个错误！
：1>EncryptedStreamSocket.cpp
1>.\EncryptedStreamSocket.cpp(362) : error C2275: 'EEncryptionMethods' : illegal use of this type as an expression
1> z:\emule-VeryCD-src\emule-VeryCD-src-071128\src\EncryptedStreamSocket.h(73) : see declaration of 'EEncryptionMethods'
1>.\EncryptedStreamSocket.cpp(362) : error C2146: syntax error : missing ')' before identifier 'bySupportedEncryptionMethod'
1>.\EncryptedStreamSocket.cpp(362) : error C2059: syntax error : ')'
1>.\EncryptedStreamSocket.cpp(363) : error C2275: 'EEncryptionMethods' : illegal use of this type as an expression
1> z:\emule-VeryCD-src\emule-VeryCD-src-071128\src\EncryptedStreamSocket.h(73) : see declaration of 'EEncryptionMethods'
1>.\EncryptedStreamSocket.cpp(363) : error C2146: syntax error : missing ')' before identifier 'bySupportedEncryptionMethod'
1>.\EncryptedStreamSocket.cpp(363) : error C2059: syntax error : ')'
1>.\EncryptedStreamSocket.cpp(492) : error C4430: missing type specifier - int assumed. Note: C++ does not support default-int
1>.\EncryptedStreamSocket.cpp(590) : error C4430: missing type specifier - int assumed. Note: C++ does not support default-int

to zhang007z:

[公告]easyMule开源社区开通了！
http://www.VeryCD.com/groups/eMuleDev/215536.topic

欢迎加入eMule开发的QQ讨论群 : 104839
这里聚集着对eMule开发感兴趣的一批人，欢迎参与。：）

to koocat16:
这个问题有点奇怪，
能不能把你那边 EncryptedStreamSocket.cpp 362行和363行，改之前和改之后的代码发来看看：）

你们都是专业人士。。。。
C#代码太难懂，编译起来很麻烦。。。。。。。。。。
-----------------------------------------------------------------------
不过，还是支持你们，支持VeryCD电驴。。。。。。。
在你们的敬业工作之下，电驴的明天会更好。。。。。

谢谢支持努力中。。。

回复fengwen 17楼:
我用的是VS2005
不过现在我的VS要重装，看不了是多少行。现在将全部都发过来。
//this file is part of eMule
//Copyright ©2002-2006 Merkur ( strEmail.Format("%s@%s", "devteam", "emule-project.net") / http://www.emule-project.net )
//
//This program is free software; you can redistribute it and/or
//modify it under the terms of the GNU General Public License
//as published by the Free Software Foundation; either
//version 2 of the License, or (at your option) any later version.
//
//This program is distributed in the hope that it will be useful,
//but WITHOUT ANY WARRANTY; without even the implied warranty of
//MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
//GNU General Public License for more details.
//
//You should have received a copy of the GNU General Public License
//along with this program; if not, write to the Free Software
//Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.

/* Basic Obfuscated Handshake Protocol Client <-> Client:
-Keycreation:
- Client A (Outgoing connection):
Sendkey: Md5(<UserHashClientB 16><MagicValue34 1><RandomKeyPartClientA 4>) 21
Receivekey: Md5(<UserHashClientB 16><MagicValue203 1><RandomKeyPartClientA 4>) 21
- Client B (Incomming connection):
Sendkey: Md5(<UserHashClientB 16><MagicValue203 1><RandomKeyPartClientA 4>) 21
Receivekey: Md5(<UserHashClientB 16><MagicValue34 1><RandomKeyPartClientA 4>) 21
NOTE: First 1024 Bytes are discarded

- Handshake
-> The handshake is encrypted - except otherwise noted - by the Keys created above
-> Handshake is blocking - do not start sending an answer before the request is completly received (this includes the random bytes)
-> EncryptionMethod = 0 is Obfusication and the only supported right now
Client A: <SemiRandomNotProtocolMarker 1[Unencrypted]><RandomKeyPart 4[Unencrypted]><MagicValue 4><EncryptionMethodsSupported 1><EncryptionMethodPreferred 1><PaddingLen 1><RandomBytes PaddingLen%16>
Client B: <MagicValue 4><EncryptionMethodsSelected 1><PaddingLen 1><RandomBytes PaddingLen%16>
-> The basic handshake is finished here, if an additional/different EncryptionMethod was selected it may continue negotiating details for this one

- Overhead: 18-48 (~33) Bytes + 2 * IP/TCP Headers per Connection

- Security for Basic Obfusication:
- Random looking stream, very limited protection against passive eavesdropping single connections

- Additional Comments:
- RandomKeyPart is needed to make multiple connections between two clients look different (but still random), since otherwise the same key
would be used and RC4 would create the same output. Since the key is a MD5 hash it doesnt weakens the key if that part is known
- Why DH-KeyAgreement isn't used as basic obfusication key: It doesn't offers substantial more protection against passive connection based protocol identification, it has about 200 bytes more overhead,
needs more CPU time, we cannot say if the received data is junk, unencrypted or part of the keyagreement before the handshake is finished without loosing the complete randomness,
it doesn't offers substantial protection against eavesdropping without added authentification

Basic Obfuscated Handshake Protocol Client <-> Server:
- RC4 Keycreation:
- Client (Outgoing connection):
Sendkey: Md5(<S 96><MagicValue34 1>) 97
Receivekey: Md5(<S 96><MagicValue203 1>) 97
- Server (Incomming connection):
Sendkey: Md5(<S 96><MagicValue203 1>) 97
Receivekey: Md5(<S 96><MagicValue34 1>) 97

NOTE: First 1024 Bytes are discarded

- Handshake
-> The handshake is encrypted - except otherwise noted - by the Keys created above
-> Handshake is blocking - do not start sending an answer before the request is completly received (this includes the random bytes)
-> EncryptionMethod = 0 is Obfusication and the only supported right now

Client: <SemiRandomNotProtocolMarker 1[Unencrypted]><G^A 96 [Unencrypted]><RandomBytes 0-15 [Unencrypted]>
Server: <G^B 96 [Unencrypted]><MagicValue 4><EncryptionMethodsSupported 1><EncryptionMethodPreferred 1><PaddingLen 1><RandomBytes PaddingLen>
Client: <MagicValue 4><EncryptionMethodsSelected 1><PaddingLen 1><RandomBytes PaddingLen> (Answer delayed till first payload to save a frame)


-> The basic handshake is finished here, if an additional/different EncryptionMethod was selected it may continue negotiating details for this one

- Overhead: 206-251 (~229) Bytes + 2 * IP/TCP Headers Headers per Connectionon

- DH Agreement Specifics: sizeof(a) and sizeof( = 128 Bits, g = 2, p = dh768_p (see below), sizeof p, s, etc. = 768 bits
*/

#include "stdafx.h"
#include "EncryptedStreamSocket.h"
#include "emule.h"
#include "md5sum.h"
#include "Log.h"
#include "preferences.h"
#include "otherfunctions.h"
#include "safefile.h"
#include "opcodes.h"
#include "clientlist.h"
#include "sockets.h"

// cryptoPP used for DH integer calculations
#pragma warning(disable:4516) // access-declarations are deprecated; member using-declarations provide a better alternative
#pragma warning(disable:4100) // unreferenced formal parameter
#include <crypto51/osrng.h>
#pragma warning(default:4100) // unreferenced formal parameter
#pragma warning(default:4516) // access-declarations are deprecated; member using-declarations provide a better alternative


#define MAGICVALUE_REQUESTER 34 // modification of the requester-send and server-receive key
#define MAGICVALUE_SERVER 203 // modification of the server-send and requester-send key
#define MAGICVALUE_SYNC 0x835E6FC4 // value to check if we have a working encrypted stream
#define DHAGREEMENT_A_BITS 128

#define PRIMESIZE_BYTES 96
static unsigned char dh768_p[]={
0xF2,0xBF,0x52,0xC5,0x5F,0x58,0x7A,0xDD,0x53,0x71,0xA9,0x36,
0xE8,0x86,0xEB,0x3C,0x62,0x17,0xA3,0x3E,0xC3,0x4C,0xB4,0x0D,
0xC7,0x3A,0x41,0xA6,0x43,0xAF,0xFC,0xE7,0x21,0xFC,0x28,0x63,
0x66,0x53,0x5B,0xDB,0xCE,0x25,0x9F,0x22,0x86,0xDA,0x4A,0x91,
0xB2,0x07,0xCB,0xAA,0x52,0x55,0xD4,0xF6,0x1C,0xCE,0xAE,0xD4,
0x5A,0xD5,0xE0,0x74,0x7D,0xF7,0x78,0x18,0x28,0x10,0x5F,0x34,
0x0F,0x76,0x23,0x87,0xF8,0x8B,0x28,0x91,0x42,0xFB,0x42,0x68,
0x8F,0x05,0x15,0x0F,0x54,0x8B,0x5F,0x43,0x6A,0xF7,0x0D,0xF3,
};

static CryptoPP::AutoSeededRandomPool cryptRandomGen;

IMPLEMENT_DYNAMIC(CEncryptedStreamSocket, CAsyncSocketEx)

CEncryptedStreamSocket::CEncryptedStreamSocket(){
m_StreamCryptState = thePrefs.IsClientCryptLayerSupported() ? ECS_UNKNOWN : ECS_NONE;
m_NegotiatingState = ONS_NONE;
m_pRC4ReceiveKey = NULL;
m_pRC4SendKey = NULL;
m_nObfusicationBytesReceived = 0;
m_bFullReceive = true;
m_dbgbyEncryptionSupported = 0xFF;
m_dbgbyEncryptionRequested = 0xFF;
m_dbgbyEncryptionMethodSet = 0xFF;
m_nReceiveBytesWanted = 0;
m_pfiReceiveBuffer = NULL;
m_pfiSendBuffer = NULL;
m_EncryptionMethod = ENM_OBFUSCATION;
m_nRandomKeyPart = 0;
m_bServerCrypt = false;
};

CEncryptedStreamSocket::~CEncryptedStreamSocket(){
delete m_pRC4ReceiveKey;
delete m_pRC4SendKey;
if (m_pfiReceiveBuffer != NULL)
free(m_pfiReceiveBuffer->Detach());
delete m_pfiReceiveBuffer;
delete m_pfiSendBuffer;
};

void CEncryptedStreamSocket::CryptPrepareSendData(uchar* pBuffer, uint32 nLen){
if (!IsEncryptionLayerReady()){
ASSERT( false ); // must be a bug
return;
}
if (m_StreamCryptState == ECS_UNKNOWN){
//this happens when the encryption option was not set on a outgoing connection
//or if we try to send before receiving on a incoming connection - both shouldn't happen
m_StreamCryptState = ECS_NONE;
DebugLogError(_T("CEncryptedStreamSocket: Overwriting State ECS_UNKNOWN with ECS_NONE because of premature Send() (%s)"), DbgGetIPString());
}
if (m_StreamCryptState == ECS_ENCRYPTING)
RC4Crypt(pBuffer, pBuffer, nLen, m_pRC4SendKey);
}

// unfortunatly sending cannot be made transparent for the derived class, because of WSA_WOULDBLOCK
// together with the fact that each byte must pass the keystream only once
int CEncryptedStreamSocket::Send(const void* lpBuf, int nBufLen, int nFlags){
if (!IsEncryptionLayerReady()){
ASSERT( false ); // must be a bug
return 0;
}
else if (m_bServerCrypt && m_StreamCryptState == ECS_ENCRYPTING && m_pfiSendBuffer != NULL){
ASSERT( m_NegotiatingState == ONS_BASIC_SERVER_DELAYEDSENDING );
// handshakedata was delayed to put it into one frame with the first paypload to the server
// do so now with the payload attached
int nRes = SendNegotiatingData(lpBuf, nBufLen, nBufLen);
ASSERT( nRes != SOCKET_ERROR );
return nBufLen; // report a full send, even if we didn't for some reason - the data is know in our buffer and will be handled later
}
else if (m_NegotiatingState == ONS_BASIC_SERVER_DELAYEDSENDING)
ASSERT( false );

if (m_StreamCryptState == ECS_UNKNOWN){
//this happens when the encryption option was not set on a outgoing connection
//or if we try to send before receiving on a incoming connection - both shouldn't happen
m_StreamCryptState = ECS_NONE;
DebugLogError(_T("CEncryptedStreamSocket: Overwriting State ECS_UNKNOWN with ECS_NONE because of premature Send() (%s)"), DbgGetIPString());
}
return CAsyncSocketEx::Send(lpBuf, nBufLen, nFlags);
}

bool CEncryptedStreamSocket::IsEncryptionLayerReady(){
return ( (m_StreamCryptState == ECS_NONE || m_StreamCryptState == ECS_ENCRYPTING || m_StreamCryptState == ECS_UNKNOWN )
&& (m_pfiSendBuffer == NULL || (m_bServerCrypt && m_NegotiatingState == ONS_BASIC_SERVER_DELAYEDSENDING)) );
}


int CEncryptedStreamSocket::Receive(void* lpBuf, int nBufLen, int nFlags){
m_nObfusicationBytesReceived = CAsyncSocketEx::Receive(lpBuf, nBufLen, nFlags);
m_bFullReceive = m_nObfusicationBytesReceived == (uint32)nBufLen;

if(m_nObfusicationBytesReceived == SOCKET_ERROR || m_nObfusicationBytesReceived <= 0){
return m_nObfusicationBytesReceived;
}
switch (m_StreamCryptState) {
case ECS_NONE: // disabled, just pass it through
return m_nObfusicationBytesReceived;
case ECS_PENDING:
case ECS_PENDING_SERVER:
ASSERT( false );
DebugLogError(_T("CEncryptedStreamSocket Received data before sending on outgoing connection"));
m_StreamCryptState = ECS_NONE;
return m_nObfusicationBytesReceived;
case ECS_UNKNOWN:{
uint32 nRead = 1;
bool bNormalHeader = false;
switch (((uchar*)lpBuf)[0]){
case OP_EDONKEYPROT:
case OP_PACKEDPROT:
case OP_EMULEPROT:
bNormalHeader = true;
break;
}
if (!bNormalHeader){
StartNegotiation(false);
const uint32 nNegRes = Negotiate((uchar*)lpBuf + nRead, m_nObfusicationBytesReceived - nRead);
if (nNegRes == (-1))
return 0;
nRead += nNegRes;
if (nRead != (uint32)m_nObfusicationBytesReceived){
// this means we have more data then the current negotiation step required (or there is a bug) and this should never happen
// (note: even if it just finished the handshake here, there still can be no data left, since the other client didnt received our response yet)
DebugLogError(_T("CEncryptedStreamSocket: Client %s sent more data then expected while negotiating, disconnecting (1)"), DbgGetIPString());
OnError(ERR_ENCRYPTION);
}
return 0;
}
else{
// doesn't seems to be encrypted
m_StreamCryptState = ECS_NONE;

// if we require an encrypted connection, cut the connection here. This shouldn't happen that often
// at least with other up-to-date eMule clients because they check for incompability before connecting if possible
if (thePrefs.IsClientCryptLayerRequired()){
// TODO: Remove me when i have been solved
// Even if the Require option is enabled, we currently have to accept unencrypted connection which are made
// for lowid/firewall checks from servers and other from us selected client. Otherwise, this option would
// always result in a lowid/firewalled status. This is of course not nice, but we can't avoid this walkarround
// untill servers and kad completely support encryption too, which will at least for kad take a bit
// only exception is the .ini option ClientCryptLayerRequiredStrict which will even ignore test connections
// Update: New server now support encrypted callbacks

SOCKADDR_IN sockAddr = {0};
int nSockAddrLen = sizeof(sockAddr);
GetPeerName((SOCKADDR*)&sockAddr, &nSockAddrLen);
if (thePrefs.IsClientCryptLayerRequiredStrict() || (!theApp.serverconnect->AwaitingTestFromIP(sockAddr.sin_addr.S_un.S_addr)
&& !theApp.clientlist->IsKadFirewallCheckIP(sockAddr.sin_addr.S_un.S_addr)) )
{
#if defined(_DEBUG) || defined(_BETA)
// TODO: Remove after testing
AddDebugLogLine(DLP_DEFAULT, false, _T("Rejected incoming connection because Obfuscation was required but not used %s"), DbgGetIPString() );
#endif
OnError(ERR_ENCRYPTION_NOTALLOWED);
return 0;
}
else
AddDebugLogLine(DLP_DEFAULT, false, _T("Incoming unencrypted firewallcheck connection permitted despite RequireEncryption setting - %s"), DbgGetIPString() );
}

return m_nObfusicationBytesReceived; // buffer was unchanged, we can just pass it through
}
}
case ECS_ENCRYPTING:
// basic obfusication enabled and set, so decrypt and pass along
RC4Crypt((uchar*)lpBuf, (uchar*)lpBuf, m_nObfusicationBytesReceived, m_pRC4ReceiveKey);
return m_nObfusicationBytesReceived;
case ECS_NEGOTIATING:{
const uint32 nRead = Negotiate((uchar*)lpBuf, m_nObfusicationBytesReceived);
if (nRead == (-1))
return 0;
else if (nRead != (uint32)m_nObfusicationBytesReceived && m_StreamCryptState != ECS_ENCRYPTING){
// this means we have more data then the current negotiation step required (or there is a bug) and this should never happen
DebugLogError(_T("CEncryptedStreamSocket: Client %s sent more data then expected while negotiating, disconnecting (2)"), DbgGetIPString());
OnError(ERR_ENCRYPTION);
return 0;
}
else if (nRead != (uint32)m_nObfusicationBytesReceived && m_StreamCryptState == ECS_ENCRYPTING){
// we finished the handshake and if we this was an outgoing connection it is allowed (but strange and unlikely) that the client sent payload
DebugLogWarning(_T("CEncryptedStreamSocket: Client %s has finished the handshake but also sent payload on a outgoing connection"), DbgGetIPString());
memmove(lpBuf, (uchar*)lpBuf + nRead, m_nObfusicationBytesReceived - nRead);
return m_nObfusicationBytesReceived - nRead;
}
else
return 0;
}
default:
ASSERT( false );
return m_nObfusicationBytesReceived;
}
}

void CEncryptedStreamSocket::SetConnectionEncryption(bool bEnabled, const uchar* pTargetClientHash, bool bServerConnection){
if (m_StreamCryptState != ECS_UNKNOWN && m_StreamCryptState != ECS_NONE){
if (!m_StreamCryptState == ECS_NONE || bEnabled)
ASSERT( false );
return;
}
ASSERT( m_pRC4SendKey == NULL );
ASSERT( m_pRC4ReceiveKey == NULL );

if (bEnabled && pTargetClientHash != NULL && !bServerConnection){
m_StreamCryptState = ECS_PENDING;
// create obfusication keys, see on top for key format

// use the crypt random generator
m_nRandomKeyPart = cryptRandomGen.GenerateWord32();

uchar achKeyData[21];
md4cpy(achKeyData, pTargetClientHash);
memcpy(achKeyData + 17, &m_nRandomKeyPart, 4);

achKeyData[16] = MAGICVALUE_REQUESTER;
MD5Sum md5(achKeyData, sizeof(achKeyData));
m_pRC4SendKey = RC4CreateKey(md5.GetRawHash(), 16, NULL);

achKeyData[16] = MAGICVALUE_SERVER;
md5.Calculate(achKeyData, sizeof(achKeyData));
m_pRC4ReceiveKey = RC4CreateKey(md5.GetRawHash(), 16, NULL);
}
else if (bServerConnection && bEnabled){
m_bServerCrypt = true;
m_StreamCryptState = ECS_PENDING_SERVER;
}
else{
ASSERT( !bEnabled );
m_StreamCryptState = ECS_NONE;
}
}

void CEncryptedStreamSocket::OnSend(int){
// if the socket just connected and this is outgoing, we might want to start the handshake here
if (m_StreamCryptState == ECS_PENDING || m_StreamCryptState == ECS_PENDING_SERVER){
StartNegotiation(true);
return;
}
// check if we have negotiating data pending
if (m_pfiSendBuffer != NULL){
ASSERT( m_StreamCryptState >= ECS_NEGOTIATING );
SendNegotiatingData(NULL, 0);
}
}

void CEncryptedStreamSocket::StartNegotiation(bool bOutgoing){

if (!bOutgoing){
m_NegotiatingState = ONS_BASIC_CLIENTA_RANDOMPART;
m_StreamCryptState = ECS_NEGOTIATING;
m_nReceiveBytesWanted = 4;
}
else if (m_StreamCryptState == ECS_PENDING){

CSafeMemFile fileRequest(29);
const uint8 bySemiRandomNotProtocolMarker = GetSemiRandomNotProtocolMarker();
fileRequest.WriteUInt8(bySemiRandomNotProtocolMarker);
fileRequest.WriteUInt32(m_nRandomKeyPart);
fileRequest.WriteUInt32(MAGICVALUE_SYNC);
const EEncryptionMethods bySupportedEncryptionMethod = ENM_OBFUSCATION; // we do not support any further encryption in this version
fileRequest.WriteUInt8(bySupportedEncryptionMethod);
fileRequest.WriteUInt8(bySupportedEncryptionMethod); // so we also prefer this one
uint8 byPadding = (uint8)(cryptRandomGen.GenerateByte() % 16);
fileRequest.WriteUInt8(byPadding);
for (int i = 0; i < byPadding; i++)
fileRequest.WriteUInt8(cryptRandomGen.GenerateByte());

m_NegotiatingState = ONS_BASIC_CLIENTB_MAGICVALUE;
m_StreamCryptState = ECS_NEGOTIATING;
m_nReceiveBytesWanted = 4;

SendNegotiatingData(fileRequest.GetBuffer(), (uint32)fileRequest.GetLength(), 5);
}
else if (m_StreamCryptState == ECS_PENDING_SERVER){
CSafeMemFile fileRequest(113);
const uint8 bySemiRandomNotProtocolMarker = GetSemiRandomNotProtocolMarker();
fileRequest.WriteUInt8(bySemiRandomNotProtocolMarker);

CryptoPP::AutoSeededRandomPool cryptRandomGen;
m_cryptDHA.Randomize(cryptRandomGen, DHAGREEMENT_A_BITS); // our random a
ASSERT( m_cryptDHA.MinEncodedSize() <= DHAGREEMENT_A_BITS / 8 );
CryptoPP::Integer cryptDHPrime((byte*)dh768_p, PRIMESIZE_BYTES); // our fixed prime
// calculate g^a % p
CryptoPP::Integer cryptDHGexpAmodP = CryptoPP::a_exp_b_mod_c(CryptoPP::Integer(2), m_cryptDHA, cryptDHPrime);
ASSERT( m_cryptDHA.MinEncodedSize() <= PRIMESIZE_BYTES );
// put the result into a buffer
uchar aBuffer[PRIMESIZE_BYTES];
cryptDHGexpAmodP.Encode(aBuffer, PRIMESIZE_BYTES);

fileRequest.Write(aBuffer, PRIMESIZE_BYTES);
uint8 byPadding = (uint8)(cryptRandomGen.GenerateByte() % 16); // add random padding
fileRequest.WriteUInt8(byPadding);
for (int i = 0; i < byPadding; i++)
fileRequest.WriteUInt8(cryptRandomGen.GenerateByte());

m_NegotiatingState = ONS_BASIC_SERVER_DHANSWER;
m_StreamCryptState = ECS_NEGOTIATING;
m_nReceiveBytesWanted = 96;

SendNegotiatingData(fileRequest.GetBuffer(), (uint32)fileRequest.GetLength(), (uint32)fileRequest.GetLength());
}
else{
ASSERT( false );
m_StreamCryptState = ECS_NONE;
return;
}
}

int CEncryptedStreamSocket::Negotiate(const uchar* pBuffer, uint32 nLen){
uint32 nRead = 0;
ASSERT( m_nReceiveBytesWanted > 0 );
try{
while (m_NegotiatingState != ONS_COMPLETE && m_nReceiveBytesWanted > 0){
if (m_nReceiveBytesWanted > 512){
ASSERT( false );
return 0;
}

if (m_pfiReceiveBuffer == NULL){
BYTE* pReceiveBuffer = (BYTE*)malloc(512); // use a fixed size buffer
m_pfiReceiveBuffer = new CSafeMemFile(pReceiveBuffer, 512);
}
const uint32 nToRead = min(nLen - nRead, m_nReceiveBytesWanted);
m_pfiReceiveBuffer->Write((uchar*)pBuffer + nRead, nToRead);
nRead += nToRead;
m_nReceiveBytesWanted -= nToRead;
if (m_nReceiveBytesWanted > 0)
return nRead;
const uint32 nCurrentBytesLen = (uint32)m_pfiReceiveBuffer->GetPosition();

if (m_NegotiatingState != ONS_BASIC_CLIENTA_RANDOMPART && m_NegotiatingState != ONS_BASIC_SERVER_DHANSWER){ // don't have the keys yet
BYTE* pCryptBuffer = m_pfiReceiveBuffer->Detach();
RC4Crypt(pCryptBuffer, pCryptBuffer, nCurrentBytesLen, m_pRC4ReceiveKey);
m_pfiReceiveBuffer->Attach(pCryptBuffer, 512);
}
m_pfiReceiveBuffer->SeekToBegin();

switch (m_NegotiatingState){
case ONS_NONE: // would be a bug
ASSERT( false );
return 0;
case ONS_BASIC_CLIENTA_RANDOMPART:{
ASSERT( m_pRC4ReceiveKey == NULL );

uchar achKeyData[21];
md4cpy(achKeyData, thePrefs.GetUserHash());
achKeyData[16] = MAGICVALUE_REQUESTER;
m_pfiReceiveBuffer->Read(achKeyData + 17, 4); // random key part sent from remote client

MD5Sum md5(achKeyData, sizeof(achKeyData));
m_pRC4ReceiveKey = RC4CreateKey(md5.GetRawHash(), 16, NULL);
achKeyData[16] = MAGICVALUE_SERVER;
md5.Calculate(achKeyData, sizeof(achKeyData));
m_pRC4SendKey = RC4CreateKey(md5.GetRawHash(), 16, NULL);

m_NegotiatingState = ONS_BASIC_CLIENTA_MAGICVALUE;
m_nReceiveBytesWanted = 4;
break;
}
case ONS_BASIC_CLIENTA_MAGICVALUE:{
uint32 dwValue = m_pfiReceiveBuffer->ReadUInt32();
if (dwValue == MAGICVALUE_SYNC){
// yup, the one or the other way it worked, this is an encrypted stream
DEBUG_ONLY( DebugLog(_T("Received proper magic value, clientIP: %s"), DbgGetIPString()) );
// set the receiver key
m_NegotiatingState = ONS_BASIC_CLIENTA_METHODTAGSPADLEN;
m_nReceiveBytesWanted = 3;
}
else{
DebugLogError(_T("CEncryptedStreamSocket: Received wrong magic value from clientIP %s on a supposly encrytped stream / Wrong Header"), DbgGetIPString());
OnError(ERR_ENCRYPTION);
return (-1);
}
break;
}
case ONS_BASIC_CLIENTA_METHODTAGSPADLEN:
m_dbgbyEncryptionSupported = m_pfiReceiveBuffer->ReadUInt8();
m_dbgbyEncryptionRequested = m_pfiReceiveBuffer->ReadUInt8();
if (m_dbgbyEncryptionRequested != ENM_OBFUSCATION)
AddDebugLogLine(DLP_LOW, false, _T("CEncryptedStreamSocket: Client %s preffered unsupported encryption method (%i)"), DbgGetIPString(), m_dbgbyEncryptionRequested);
m_nReceiveBytesWanted = m_pfiReceiveBuffer->ReadUInt8();
m_NegotiatingState = ONS_BASIC_CLIENTA_PADDING;
if (m_nReceiveBytesWanted > 16)
AddDebugLogLine(DLP_LOW, false, _T("CEncryptedStreamSocket: Client %s sent more than 16 (%i) padding bytes"), DbgGetIPString(), m_nReceiveBytesWanted);
if (m_nReceiveBytesWanted > 0)
break;
case ONS_BASIC_CLIENTA_PADDING:{
// ignore the random bytes, send the response, set status complete
CSafeMemFile fileResponse(26);
fileResponse.WriteUInt32(MAGICVALUE_SYNC);
const bySelectedEncryptionMethod = ENM_OBFUSCATION; // we do not support any further encryption in this version, so no need to look which the other client preferred
fileResponse.WriteUInt8(bySelectedEncryptionMethod);
uint8 byPadding = (uint8)(cryptRandomGen.GenerateByte() % 16);
fileResponse.WriteUInt8(byPadding);
for (int i = 0; i < byPadding; i++)
fileResponse.WriteUInt8((uint8)rand());
SendNegotiatingData(fileResponse.GetBuffer(), (uint32)fileResponse.GetLength());
m_NegotiatingState = ONS_COMPLETE;
m_StreamCryptState = ECS_ENCRYPTING;
DEBUG_ONLY( DebugLog(_T("CEncryptedStreamSocket: Finished Obufscation handshake with client %s (incoming)"), DbgGetIPString()) );
break;
}
case ONS_BASIC_CLIENTB_MAGICVALUE:{
if (m_pfiReceiveBuffer->ReadUInt32() != MAGICVALUE_SYNC){
DebugLogError(_T("CEncryptedStreamSocket: EncryptedstreamSyncError: Client sent wrong Magic Value as answer, cannot complete handshake (%s)"), DbgGetIPString());
OnError(ERR_ENCRYPTION);
return (-1);
}
m_NegotiatingState = ONS_BASIC_CLIENTB_METHODTAGSPADLEN;
m_nReceiveBytesWanted = 2;
break;
}
case ONS_BASIC_CLIENTB_METHODTAGSPADLEN:{
m_dbgbyEncryptionMethodSet = m_pfiReceiveBuffer->ReadUInt8();
if (m_dbgbyEncryptionMethodSet != ENM_OBFUSCATION){
DebugLogError( _T("CEncryptedStreamSocket: Client %s set unsupported encryption method (%i), handshake failed"), DbgGetIPString(), m_dbgbyEncryptionMethodSet);
OnError(ERR_ENCRYPTION);
return (-1);
}
m_nReceiveBytesWanted = m_pfiReceiveBuffer->ReadUInt8();
m_NegotiatingState = ONS_BASIC_CLIENTB_PADDING;
if (m_nReceiveBytesWanted > 16)
AddDebugLogLine(DLP_LOW, false, _T("CEncryptedStreamSocket: Client %s sent more than 16 (%i) padding bytes"), DbgGetIPString(), m_nReceiveBytesWanted);
if (m_nReceiveBytesWanted > 0)
break;
}
case ONS_BASIC_CLIENTB_PADDING:
// ignore the random bytes, the handshake is complete
m_NegotiatingState = ONS_COMPLETE;
m_StreamCryptState = ECS_ENCRYPTING;
DEBUG_ONLY( DebugLog(_T("CEncryptedStreamSocket: Finished Obufscation handshake with client %s (outgoing)"), DbgGetIPString()) );
break;
case ONS_BASIC_SERVER_DHANSWER:{
ASSERT( !m_cryptDHA.IsZero() );
uchar aBuffer[PRIMESIZE_BYTES + 1];
m_pfiReceiveBuffer->Read(aBuffer, PRIMESIZE_BYTES);
CryptoPP::Integer cryptDHAnswer((byte*)aBuffer, PRIMESIZE_BYTES);
CryptoPP::Integer cryptDHPrime((byte*)dh768_p, PRIMESIZE_BYTES); // our fixed prime
CryptoPP::Integer cryptResult = CryptoPP::a_exp_b_mod_c(cryptDHAnswer, m_cryptDHA, cryptDHPrime);

m_cryptDHA = 0;
DEBUG_ONLY( ZeroMemory(aBuffer, sizeof(aBuffer)) );
ASSERT( cryptResult.MinEncodedSize() <= PRIMESIZE_BYTES );

// create the keys
cryptResult.Encode(aBuffer, PRIMESIZE_BYTES);
aBuffer[PRIMESIZE_BYTES] = MAGICVALUE_REQUESTER;
MD5Sum md5(aBuffer, sizeof(aBuffer));
m_pRC4SendKey = RC4CreateKey(md5.GetRawHash(), 16, NULL);
aBuffer[PRIMESIZE_BYTES] = MAGICVALUE_SERVER;
md5.Calculate(aBuffer, sizeof(aBuffer));
m_pRC4ReceiveKey = RC4CreateKey(md5.GetRawHash(), 16, NULL);

m_NegotiatingState = ONS_BASIC_SERVER_MAGICVALUE;
m_nReceiveBytesWanted = 4;
break;
}
case ONS_BASIC_SERVER_MAGICVALUE:{
uint32 dwValue = m_pfiReceiveBuffer->ReadUInt32();
if (dwValue == MAGICVALUE_SYNC){
// yup, the one or the other way it worked, this is an encrypted stream
DebugLog(_T("Received proper magic value after DH-Agreement from Serverconnection IP: %s"), DbgGetIPString());
// set the receiver key
m_NegotiatingState = ONS_BASIC_SERVER_METHODTAGSPADLEN;
m_nReceiveBytesWanted = 3;
}
else{
DebugLogError(_T("CEncryptedStreamSocket: Received wrong magic value after DH-Agreement from Serverconnection"), DbgGetIPString());
OnError(ERR_ENCRYPTION);
return (-1);
}
break;
}
case ONS_BASIC_SERVER_METHODTAGSPADLEN:
m_dbgbyEncryptionSupported = m_pfiReceiveBuffer->ReadUInt8();
m_dbgbyEncryptionRequested = m_pfiReceiveBuffer->ReadUInt8();
if (m_dbgbyEncryptionRequested != ENM_OBFUSCATION)
AddDebugLogLine(DLP_LOW, false, _T("CEncryptedStreamSocket: Server %s preffered unsupported encryption method (%i)"), DbgGetIPString(), m_dbgbyEncryptionRequested);
m_nReceiveBytesWanted = m_pfiReceiveBuffer->ReadUInt8();
m_NegotiatingState = ONS_BASIC_SERVER_PADDING;
if (m_nReceiveBytesWanted > 16)
AddDebugLogLine(DLP_LOW, false, _T("CEncryptedStreamSocket: Server %s sent more than 16 (%i) padding bytes"), DbgGetIPString(), m_nReceiveBytesWanted);
if (m_nReceiveBytesWanted > 0)
break;
case ONS_BASIC_SERVER_PADDING:{
// ignore the random bytes (they are decrypted already), send the response, set status complete
CSafeMemFile fileResponse(26);
fileResponse.WriteUInt32(MAGICVALUE_SYNC);
const bySelectedEncryptionMethod = ENM_OBFUSCATION; // we do not support any further encryption in this version, so no need to look which the other client preferred
fileResponse.WriteUInt8(bySelectedEncryptionMethod);
uint8 byPadding = (uint8)(cryptRandomGen.GenerateByte() % 16);
fileResponse.WriteUInt8(byPadding);
for (int i = 0; i < byPadding; i++)
fileResponse.WriteUInt8((uint8)rand());

m_NegotiatingState = ONS_BASIC_SERVER_DELAYEDSENDING;
SendNegotiatingData(fileResponse.GetBuffer(), (uint32)fileResponse.GetLength(), 0, true); // don't actually send it right now, store it in our sendbuffer
m_StreamCryptState = ECS_ENCRYPTING;
DEBUG_ONLY( DebugLog(_T("CEncryptedStreamSocket: Finished DH Obufscation handshake with Server %s"), DbgGetIPString()) );
break;
}
default:
ASSERT( false );
}
m_pfiReceiveBuffer->SeekToBegin();
}
if (m_pfiReceiveBuffer != NULL)
free(m_pfiReceiveBuffer->Detach());
delete m_pfiReceiveBuffer;
m_pfiReceiveBuffer = NULL;
return nRead;
}
catch(CFileException* error){
// can only be caused by a bug in negationhandling, not by the datastream
error->Delete();
ASSERT( false );
OnError(ERR_ENCRYPTION);
if (m_pfiReceiveBuffer != NULL)
free(m_pfiReceiveBuffer->Detach());
delete m_pfiReceiveBuffer;
return (-1);
}

}

int CEncryptedStreamSocket::SendNegotiatingData(const void* lpBuf, uint32 nBufLen, uint32 nStartCryptFromByte, bool bDelaySend){
ASSERT( m_StreamCryptState == ECS_NEGOTIATING || m_StreamCryptState == ECS_ENCRYPTING );
ASSERT( nStartCryptFromByte <= nBufLen );
ASSERT( m_NegotiatingState == ONS_BASIC_SERVER_DELAYEDSENDING || !bDelaySend );

uchar* pBuffer = NULL;
bool bProcess = false;
if (lpBuf != NULL){
pBuffer =(uchar*) malloc(nBufLen);
if (nStartCryptFromByte > 0)
memcpy(pBuffer, lpBuf, nStartCryptFromByte);
if (nBufLen - nStartCryptFromByte > 0)
RC4Crypt(((uchar*)lpBuf) + nStartCryptFromByte, pBuffer + nStartCryptFromByte, nBufLen - nStartCryptFromByte, m_pRC4SendKey);
if (m_pfiSendBuffer != NULL){
// we already have data pending. Attach it and try to send
if (m_NegotiatingState == ONS_BASIC_SERVER_DELAYEDSENDING)
m_NegotiatingState = ONS_COMPLETE;
else
ASSERT( false );
m_pfiSendBuffer->SeekToEnd();
m_pfiSendBuffer->Write(pBuffer, nBufLen);
free(pBuffer);
pBuffer = NULL;
nStartCryptFromByte = 0;
bProcess = true; // we want to try to send it right now
}
}
if (lpBuf == NULL || bProcess){
// this call is for processing pending data
if (m_pfiSendBuffer == NULL || nStartCryptFromByte != 0){
ASSERT( false );
return 0; // or not
}
nBufLen = (uint32)m_pfiSendBuffer->GetLength();
pBuffer = (uchar*)m_pfiSendBuffer->Detach();
delete m_pfiSendBuffer;
m_pfiSendBuffer = NULL;
}
ASSERT( m_pfiSendBuffer == NULL );
uint32 result = 0;
if (!bDelaySend)
result = CAsyncSocketEx::Send(pBuffer, nBufLen);
if (result == (uint32)SOCKET_ERROR || bDelaySend){
m_pfiSendBuffer = new CSafeMemFile(128);
m_pfiSendBuffer->Write(pBuffer, nBufLen);
free(pBuffer);
return result;
}
else {
if (result < nBufLen){
m_pfiSendBuffer = new CSafeMemFile(128);
m_pfiSendBuffer->Write(pBuffer + result, nBufLen - result);
}
free(pBuffer);
return result;
}
}

CString CEncryptedStreamSocket::DbgGetIPString(){
SOCKADDR_IN sockAddr = {0};
int nSockAddrLen = sizeof(sockAddr);
GetPeerName((SOCKADDR*)&sockAddr, &nSockAddrLen);
return ipstr(sockAddr.sin_addr.S_un.S_addr);
}

uint8 CEncryptedStreamSocket::GetSemiRandomNotProtocolMarker() const{
uint8 bySemiRandomNotProtocolMarker = 0;
int i;
for (i = 0; i < 128; i++){
bySemiRandomNotProtocolMarker = cryptRandomGen.GenerateByte();
bool bOk = false;
switch (bySemiRandomNotProtocolMarker){ // not allowed values
case OP_EDONKEYPROT:
case OP_PACKEDPROT:
case OP_EMULEPROT:
break;
default:
bOk = true;
}
if (bOk)
break;
}
if (i >= 128){
// either we have _real_ bad luck or the randomgenerator is a bit messed up
ASSERT( false );
bySemiRandomNotProtocolMarker = 0x01;
}
return bySemiRandomNotProtocolMarker;
}
慢慢研究啦

还有一个问题，VeryCD版的Emule并不是EASYEMULE EASYMULE是VeryCD新开发的MOD，我现在就是用着EASYMULE 我发现EASYEMLU比EMULE.org.cn上发布的MOD更加好一点，尤其是占用资源方面

是的目前有两套，稳定版的是VeryCD版的eMule。 easyMule还在测试阶段：）

那么那个EncryptedStreamSocket.cpp始终都是有问题，改了问题还多了。

请问版主能不能把能够在VS2005下编译的没错误的源码发给我呢？

可以直接到http://download.VeryCD.com/emule071112_libsForVS2005.rar
去下lib文件，之后不用编lib，只要编译eMule就行了。

在VS2005下能编译的在http://code.google.com/p/easymule/source有下。

开发环境：Visual Studio .NET 2005
源码版本号：eMule VeryCD 0.48a Build 071118
编译出错的输出信息：
我按照斑主的方法去掉stdafx.h里的以下几行
#ifndef _USE_32BIT_TIME_T
#define _USE_32BIT_TIME_T
#endif
可以编译通过了,但报了很多警告:
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(293) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(294) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(304) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>TraverseBySvr.cpp
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(293) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(294) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(304) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>.\NatTraversal\TraverseBySvr.cpp(123) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>.\NatTraversal\TraverseBySvr.cpp(141) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>TraverseBySourceExchange.cpp
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(293) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(294) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(304) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>.\NatTraversal\TraverseBySourceExchange.cpp(103) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>.\NatTraversal\TraverseBySourceExchange.cpp(143) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>TraverseByBuddy.cpp
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(293) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(294) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>d:\eMule-VeryCD-src-071128\src\updownclient.h(304) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data
1>.\NatTraversal\TraverseByBuddy.cpp(77) : warning C4244: '=' : conversion from 'time_t' to 'DWORD', possible loss of data

这个警告没有办法的。这个是因为以前使用 _USE_32BIT_TIME_T time_t是32位的。
去掉后，time_t是64位的。所以转到DWORD(32位)会warning。
是从2003转到2005的问题。暂时可以不用理会它。

谢谢斑竹

请问斑竹，最新的source在Visual Studio 2008下编译过没？

source是“eMule-VeryCD-src-071128”版

斑竹在运行的时候有没有 遇到下面这样的问题：
18:14:02 No part files found
18:14:02 eMule Version 0.48a VeryCD Build 071128 DEBUG ready
18:14:02 Connecting
18:14:08 No valid servers to connect in server list found
D:\MicrosoftVisualStudio2005\VC\include\xtree(370) : Assertion failed: map/set iterator not incrementable
“emule.exe”: 已加载“C:\WINDOWS\system32\mshtml.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\WINDOWS\system32\msls31.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\WINDOWS\system32\psapi.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\WINDOWS\system32\MSIMTF.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\WINDOWS\system32\jscript.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prremote.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll”，未加载任何符号。
“emule.exe”: 已加载“C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\PrKernel.ppl”，未加载任何符号。
Tracer started
ldr PrHeap(0x64A23214)/WinHeap(0x00000000) created - err=0x00000000
ldr PrHeap(0x64A23240)/WinHeap(0x00000000) created - err=0x00000000
ldr PrHeap(0x64A23240) - WinHeap(0x057B0000) created
ldr PrHeap(0x64A23214) - WinHeap(0x057F0000) created
ldr Plugin "d
ldr Plugin pid=0x00000002, "d
ldr Plugin pid=0x00000005, "c
ldr Plugin pid=0x00000001, "c
ldr Plugin pid=0x00000026, "c
ldr modules loading.
ldr Plugin pid=0x00009482, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\arcsession.ppl" created
ldr Plugin pid=0x0000F63B, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\arj.ppl" created
ldr Plugin pid=0x0000F63D, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\arjpack.ppl" created
ldr Plugin "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avlib.ppl" has no metadata
ldr Plugin pid=0x0000E615, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avlib.ppl" created
ldr Plugin pid=0x0000F233, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avp1.ppl" created
ldr Plugin pid=0x00009481, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avp3info.ppl" created
ldr Plugin pid=0x0000EE4B, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avpgs.ppl" created
ldr Plugin pid=0x00000013, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avpgui.ppl" created
ldr Plugin pid=0x0000F232, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avpmgr.ppl" created
ldr Plugin pid=0x0000000F, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avs.ppl" created
ldr Plugin pid=0x0000BF82, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\avspm.ppl" created
ldr Plugin pid=0x0000E2C3, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\base64.ppl" created
ldr Plugin pid=0x0000E2C4, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\base64p.ppl" created
ldr Plugin pid=0x0000BF8C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\basegui.ppl" created
ldr Plugin pid=0x00009483, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\baseinstaller.ppl" created
ldr Plugin pid=0x00000022, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\bl.ppl" created
ldr Plugin pid=0x0000EE5A, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\btdisk.ppl" created
ldr Plugin pid=0x0000EE54, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\btimages.ppl" created
ldr Plugin pid=0x00000014, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\buffer.ppl" created
ldr Plugin pid=0x0000F627, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\cab.ppl" created
ldr Plugin pid=0x0000985A, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\comstreamio.ppl" created
ldr Plugin pid=0x0000E2C5, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\crpthlpr.ppl" created
ldr Plugin pid=0x0000F638, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\deflate.ppl" created
ldr Plugin pid=0x0000B79F, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\diff.ppl" created
ldr Plugin pid=0x0000F61C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\dmap.ppl" created
ldr Plugin pid=0x00000007, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\dtreg.ppl" created
ldr Plugin pid=0x00009484, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\execinstaller.ppl" created
ldr Plugin pid=0x0000F634, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\explode.ppl" created
ldr Plugin pid=0x0000947A, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\filesession.ppl" created
ldr Plugin pid=0x0000BF83, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl" created
ldr Plugin pid=0x0000947B, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\ftpsession.ppl" created
ldr Plugin pid=0x0000F630, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\hashcont.ppl" created
ldr Plugin pid=0x0000E294, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\hashmd5.ppl" created
ldr Plugin pid=0x0000F632, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\hccmp.ppl" created
ldr Plugin pid=0x0000985D, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\httpanlz.ppl" created
ldr Plugin pid=0x0000BF87, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\httpscan.ppl" created
ldr Plugin pid=0x0000947C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\httpsession.ppl" created
ldr Plugin pid=0x0000E2C1, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\icheckersa.ppl" created
ldr Plugin pid=0x0000E2AD, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\ichk2.ppl" created
ldr Plugin pid=0x00009C5A, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\imapprotocoller.ppl" created
ldr Plugin pid=0x0000F63A, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\inflate.ppl" created
ldr Plugin pid=0x0000E2C0, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\inifile.ppl" created
ldr Plugin pid=0x0000E2BC, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\iwgen.ppl" created
ldr Plugin pid=0x0000ABE1, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\klavsrch.ppl" created
ldr Plugin pid=0x0000B7A0, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\lha.ppl" created
ldr Plugin pid=0x0000947D, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\lic60.ppl" created
ldr Plugin pid=0x0000E614, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\l_llio.ppl" created
ldr Plugin pid=0x00009C5B, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\maildisp.ppl" created
ldr Plugin pid=0x0000BF69, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\mailmsg.ppl" created
ldr Plugin pid=0x00009C44, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\mc.ppl" created
ldr Plugin pid=0x0000BF68, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\mdb.ppl" created
ldr Plugin pid=0x0000F631, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\mdmap.ppl" created
ldr Plugin pid=0x0000EE49, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\memmodsc.ppl" created
ldr Plugin pid=0x0000EE4C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\memscan.ppl" created
ldr Plugin pid=0x0000B3B1, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\minizip.ppl" created
ldr Plugin pid=0x0000EE57, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\mkavio.ppl" created
ldr Plugin pid=0x0000BF6B, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\msoe.ppl" created
ldr Plugin pid=0x0000E2B9, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\ndetect.ppl" created
ldr Plugin pid=0x00009479, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\netsession.ppl" created
ldr Plugin pid=0x00000003, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl" created
ldr Plugin pid=0x00009C5C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nntpprotocoller.ppl" created
ldr Plugin pid=0x00000004, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\ntfsstrm.ppl" created
ldr Plugin pid=0x0000947F, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\ntlm.ppl" created
ldr Plugin pid=0x0000BF7F, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\oas.ppl" created
ldr Plugin pid=0x0000BF7E, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\ods.ppl" created
ldr Plugin pid=0x0000E2BD, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\og.ppl" created
ldr Plugin pid=0x00000015, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl" created
ldr Plugin pid=0x0000F620, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\passdmap.ppl" created
ldr Plugin pid=0x0000E2BE, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pdm.ppl" created
ldr Plugin pid=0x00009C59, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pop3protocoller.ppl" created
ldr Plugin pid=0x0000BF8B, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\procmon.ppl" created
ldr Plugin pid=0x00009472, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\productinfo.ppl" created
ldr Plugin pid=0x0000FA00, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\prseqio.ppl" created
ldr Plugin pid=0x0000FA07, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\prutil.ppl" created
ldr Plugin pid=0x0000001E, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl" created
ldr Plugin pid=0x00000012, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\qb.ppl" created
ldr Plugin pid=0x0000B79C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\rar.ppl" created
ldr Plugin pid=0x00009485, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\reginstaller.ppl" created
ldr Plugin pid=0x0000E2B2, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\report.ppl" created
ldr Plugin pid=0x0000EE5B, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\resip.ppl" created
ldr Plugin pid=0x0000E2B5, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\sc.ppl" created
ldr Plugin pid=0x0000E2B8, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\schedule.ppl" created
ldr Plugin pid=0x0000E296, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\sfdb.ppl" created
ldr Plugin pid=0x00009C58, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\smtpprotocoller.ppl" created
ldr Plugin pid=0x00009478, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\socket.ppl" created
ldr Plugin pid=0x0000D2F0, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\startupenum2.ppl" created
ldr Plugin pid=0x0000E293, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\stdcomp.ppl" created
ldr Plugin pid=0x0000F639, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\stored.ppl" created
ldr Plugin pid=0x0000BF6A, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\superio.ppl" created
ldr Plugin pid=0x0000F61A, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl" created
ldr Plugin pid=0x0000EE4D, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\thpimpl.ppl" created
ldr Plugin pid=0x0000E2B6, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\timer.ppl" created
ldr Plugin pid=0x00000016, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tm.ppl" created
ldr Plugin pid=0x00009C4C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\trafficmonitor2.ppl" created
ldr Plugin pid=0x00009C56, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\trainsupport.ppl" created
ldr Plugin pid=0x0000F63C, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\unarj.ppl" created
ldr Plugin pid=0x0000F623, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\uniarc.ppl" created
ldr Plugin pid=0x0000F633, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\unlzx.ppl" created
ldr Plugin pid=0x0000F635, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\unreduce.ppl" created
ldr Plugin pid=0x0000F636, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\unshrink.ppl" created
ldr Plugin pid=0x0000F637, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\unstored.ppl" created
ldr Plugin pid=0x00009474, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\updatecategory.ppl" created
ldr Plugin pid=0x00009475, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\updateinfo.ppl" created
ldr Plugin pid=0x00009476, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\updateinstaller.ppl" created
ldr Plugin pid=0x00009473, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\updateobjectinfo.ppl" created
ldr Plugin pid=0x00009477, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\updater.ppl" created
ldr Plugin pid=0x00009480, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\updater2005.ppl" created
ldr Plugin pid=0x0000EE52, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\wdiskio.ppl" created
ldr Plugin pid=0x00000006, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\winreg.ppl" created
ldr Plugin pid=0x0000EE5E, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\wmihlpr.ppl" created
ldr Plugin pid=0x0000B3B4, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\xorio.ppl" created
ldr Plugin pid=0x0000F622, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\zcompare.ppl" created
ldr modules loaded.
ldr Plugin "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\prremote.dll" has no metadata
ldr Plugin pid=0x00003039, "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\prremote.dll" created
rmt Register server
rmt Prague loaded
ldr Plugin file "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl" is going to load
“emule.exe”: 已加载“C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\params.ppl”，未加载任何符号。
ldr plugin(base:0x66200000) loaded "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl"
ldr Plugin file "c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl" is going to load
“emule.exe”: 已加载“C:\Program Files\Kaspersky Lab\Kas