[Warning] Just another trainer Users

Page 1 of 2

10/24/2012 19:05 MrBeCareful#1

Just want to share my findings to warn every Cabal Players using "just another trainer".

Scan log using avast antivirus:
[Only registered and activated users can see links. Click Here To Register...]
As you can see, here are the files being installed into your computer. I scanned the executable file using avast and found out that there are 3 more embedded files in Jat.exe (possible file dropper)

Comparison between Perx injector and JAT considering that both are Code injectors.

Virus total scan result for perx injector:
[Only registered and activated users can see links. Click Here To Register...]

Well, the result clearly says that it is a malware (Backdoor/ Injector)

Virus total scan result for JAT:
[Only registered and activated users can see links. Click Here To Register...]

As you can see here, the result are far different from an injector. It is classified as (Trojan.Heur Family)

Description of this type of malware:

Quote:

Gen.Trojan.Heur is an aggressive type of trojan virus that provides remote access and control of target PC to perform certain malicious actions and install more payloads. The Gen.Trojan.Heur could disable antivirus applications, track your personal financial data, and delete registry entries. The trojan horse could seriously compromise your security and cause your PC to crash. We advise you to scan your PC and eradicate Gen.Trojan.Heur once detected.

Source: [Only registered and activated users can see links. Click Here To Register...]

Back to Pic. 1, the 2 dll files

Isn't 4mb to big for a jat.dll file?

Let's change the file extension to .exe.
[Only registered and activated users can see links. Click Here To Register...]

Hmm, looks like a .net application? Why change the extension to .dll? :confused:

I disassembled the file using .net reflector and yeah, it looks like its the actual injector. Looks like there is a renaming of file extension that always happens in the background.

That's where my investigation ends as it is already 1am here in Philippines. To sleepy to go deeper.

I just want to give you warning guys. You decide. :D

10/24/2012 19:17 papichullo#2

so what do you mean?? there is a key logger?or just a virus that will make you ban??pleas answer.

10/24/2012 19:20 MrBeCareful#3

Quote:

Originally Posted by papichullo

so what do you mean?? there is a key logger?or just a virus that will make you ban??pleas answer.

I don't know. I can't clearly say if it has. Just read and try to figure out. :)

10/24/2012 19:22 envylang#4

LMFAO
black propaganda LOL
u crack me up dude loooooooooooooool

10/24/2012 19:23 madapakah#5

FALZE ALARM

10/24/2012 19:29 envylang#6

jat.dll is a pumped up file..im just for fooling around :D

it has some functions in it..that jat.exe will call

10/24/2012 19:40 MrBeCareful#7

Quote:

Originally Posted by envylang

jat.dll is a pumped up file..im just for fooling around :D

it has some functions in it..that jat.exe will call

really, you can call a function from a fake .dll file renamed into .exe?

let's see what others will say. anyway, go back to your thread and give some feedback to your users. i saw comments that your trainer doesn't work? maybe you can't update your trainer without cheat table so you just let them download and spread your fake update?

anyway, have to sleep now.

10/24/2012 20:03 envylang#8

calling a function/s in a dll will save me time and energy from writing so many lines..i can still use it with my next update or project

maybe u should learn to code stuff and u'll understand what i mean here

10/25/2012 01:37 PierceTheGreat#9

Quote:

Originally Posted by envylang

calling a function/s in a dll will save me time and energy from writing so many lines..i can still use it with my next update or project

maybe u should learn to code stuff and u'll understand what i mean here

Yup. According to your avatar, he hate you. hahaha :D:D:D

:handsdown::handsdown::handsdown::handsdown:

10/25/2012 01:41 genesisVI#10

these stuff is not for kids

if u cant protect ur PC, accounts, etc. dont use, touch , download , or even look at it
TYVM.

10/25/2012 04:02 iGod.Strenght#11

if you have doubt using a Trainer!
then go !@#$ yourself!

10/25/2012 04:03 nobejie#12

hey..!!MrBeCareful are u jealous to envylang for that free cheat of cabal..or you jealous cuz u cant not make a cheat for cabal..

there some people jealous cuz even intire is life he can't make a cheat for cabal..

that's why the others make way for the effort to destroy those they voluntarily provides and people make happy for that free cheat of cabal

10/25/2012 05:16 jrbismar#13

haha... mrbecareful.. u're insane man.. i hope u'll be dead tomorrow or the next other day.. coz u're really insane.. HAHAHAHHA!

or maybe, he is from e-games or a fanatic of e-games.. they're jealous with you envy... hahahah

10/25/2012 05:36 botetebalila#14

Hmmmmmmmmmmm...4MB for a DLL... He got some point. let the users decide.

10/25/2012 06:04 babz1981#15

close it mod.. thank you!

Page 1 of 2