Quote:
Originally Posted by poweritup
Can you prove that it didnt work? Ohh, you need 64 bit to run it.
|
Do you know any person running 32bit?
I hardly can find one these days. Moreover, I got a i7 - x32 would transform my i7 into a crappy i5 (we talk about ram and power)
I will analyze the file right know in detail and come back here with a log. Hope I don't find any sneaky code. (That way I can tell you why the program crashes and tell the others if the file is "legit")
As far as I know you compiled this .exe with cheat engine. May I know which version?
EDIT: Why do you need to read Internet explorer TEMP files/cache?
HKU\S-1-5-21-842925246-1425521274-308236825-500\Software\Microsoft\Windows\CurrentVersion\ Explorer\Shell Folders
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
As files it look legit:
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cetrainers\CET1 .tmp\extracted\
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cetrainers\CET1 .tmp\extracted\CET_TRAINER.CETRAINER
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cetrainers\CET1 .tmp\extracted\defines.lua
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cetrainers\CET1 .tmp\extracted\lua5.1-64.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cetrainers\CET1 .tmp\extracted\spaWallSki.exe
All threads created (processes) will exit returning 0 (Which is legit)
BUT Execution did not terminate correctly: The executable crashed. Just like everyone complains.
On application start will run the "unpacked" exe :
"C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cetrainers\CET 1.tmp\spaWallSki.exe" -ORIGIN:"C:\"
But then it just exists - Exit Code: 0
Overall it should work - it does unpack a .CETRAINER but it won't point it to cheat engine for some reason.
EDIT2: Don't run the file. It will mess up your processes.
99/100 CPU
I will request an administrator to take care of this issue.
EDIT3: I see you get the NPP cookie from dekaron. That's useless - you get a session error as they check the IP. So don't try to login on any random accounts because you will not succeed.
(*)If you ran this file simply logout from website and LOGIN again. This will destroy the current session he has access to.