Register for your free account! | Forgot your password?

Go Back   elitepvpers > MMORPGs > Cabal Online
CABAL RIDER 1.0.6 PH WEBSITE JAVASCRIPT INITIATED VIRUS CABAL RIDER 1.0.6 PH WEBSITE JAVASCRIPT INITIATED VIRUS
You last visited: Today at 20:19

  • Please register to post and access all features, it's quick, easy and FREE!

Advertisement


Advertise with us!

CABAL RIDER 1.0.6 PH WEBSITE JAVASCRIPT INITIATED VIRUS

Discussion on CABAL RIDER 1.0.6 PH WEBSITE JAVASCRIPT INITIATED VIRUS within the Cabal Online forum part of the MMORPGs category.

Reply
 
Old   #1
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Nov 2007
Posts: 6
Received Thanks: 1
CABAL RIDER 1.0.6 PH WEBSITE JAVASCRIPT INITIATED VIRUS

last night my antivirus started to detect this javascript/vbscript automatically downloaded from cabalrider ph launcher. (instead of the proper cabalrider guide that pops up on the window of cabalrider....a blank page is displayed.)


This script instantly creates a KPY folder and attaches to your windows processes (worm/rootkit) once it has downloaded its main .exe file. So far updating my antivirus and rescanning it does not contain it. Im trying to remove my other Harddrive now and rescan it on other pc.

I dont know whether cabalrider's site has been compromised or they themselves created it (in preparation for their pay-to-use service) but it definitely is a password stealer.

U can still continue to bot safely but the trick is *AFTER LOGGING INTO THE GAME....HEAD TO E-GAMES SITE AND REPLACE UR PASSWORD INSTANTLY* do this everytime you try to login to the game using cabalrider.


NOTE: I aint forcing anyone to believe me...i seldomly post on this site though im an oldie on epvp. This just ****** me that cabalrider aint doing anything for this worm after 24hrs. Be wary guys.

minime signing off...
minime2k7 is offline  
Thanks
1 User
Old 07/17/2008, 04:11   #2
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Nov 2007
Posts: 6
Received Thanks: 1
scan result after slaving my infected harddrive.

note: nevermind the wpa and mms detections....they are my creatures.

minime2k7 is offline  
Old 07/17/2008, 05:49   #3
 
shemgwapo's Avatar
 
elite*gold: 20
The Black Market: 0/0/0
Join Date: Nov 2005
Posts: 1,417
Received Thanks: 1,102
hmmm i guess i'll start scanning mg HD
shemgwapo is offline  
Old 07/17/2008, 06:35   #4
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Jul 2008
Posts: 2
Received Thanks: 0
also happened to me..
im using it for about 1 week
then an error came
japz17 is offline  
Old 07/17/2008, 08:18   #5
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Nov 2007
Posts: 6
Received Thanks: 1
ok once the worm gets in the only way u can remove it is by connecting the harddisk to another pc and replacing explorer.exe since it infects this one.had my infected harddrive fixed by:

1. scanning windows drive of the infected harddrive using an updated antivirus.

2. copy explorer.exe (same version) of the clean machine and replace the c:\windows\explorer.exe of the infected drive.

infected machine now back and botting! CIAO!
minime2k7 is offline  
Old 07/17/2008, 09:34   #6
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Jun 2008
Posts: 5
Received Thanks: 0
Nod32 blocks and deletes it everytime you launch CR. just my 2 cents.
tokaides is offline  
Old 07/17/2008, 11:24   #7
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Jul 2008
Posts: 16
Received Thanks: 0
i suggest u use nod32 = XP or eset smart center = vista...
try it and u'l c...
drone1987 is offline  
Reply

« I search Bot under a server (Cabal eXtreme)helm me. | [QUESTION]ABOUT CE (P. sErvEr) »

Similar Threads Similar Threads
Info!!! Cabal Rider Website
12/12/2011 - Cabal Online - 36 Replies
Notice Relate To Recent Disaster In China As you know , a huge earth quake(lv 7.8) happened in China on May 12th. But our cabalrider team all fine, dont worry about us. The internet connection are damaged in the earthquake, so we can't respond to New update. We appologize for the inconvenience and we wish that the people who lost their family and home in the earthquake will be strong and fine, we have made donation for them and we pray the soldiers and lifesavers can save lives as many as...
cabal rider 1.0.XXXX found virus HTML/Framer
07/30/2008 - Cabal Online - 3 Replies
HTML/Framer found by AVG when i opened up my CR na try ko lahat ng version ng CR 1.0.1 to 1.0.7 me lalabas talaga na virus HTML/Framer i hope kung sino man meron din ganito post here or paki sabi naman kung ako lng ang meron all help is greatly appreciated :)
Cabal Rider site virus infected again
07/30/2008 - Cabal Online - 0 Replies
is it just me but im getting warnings from my av everytime i use the bot and connects to their site.
Cabal Rider latest virus issues
07/17/2008 - Cabal Hacks, Bots, Cheats, Exploits & Macros - 3 Replies
i tested the beta version for PH..and its 100% working..they said there is a virus in it.. but actually the virus came from their site.. When you open the CR you will notice that the links / site beside the log in thingy are hanged/stocked then i was shocked when my AVG alerted me of a virus..i taught it was just from a file I downloaded,, so i tried opening CR again then virus came again and it was a "Cookie"/Temp Files.. so it came from a site...For the botters please use caution i...
Cabal Rider 1.07 Virus Alert
07/17/2008 - Cabal Hacks, Bots, Cheats, Exploits & Macros - 12 Replies
Hi all, until now i didnt get any problems with my Antvir program but today its starting to warn me when i start cabal rider. When cabal rider connects to the server to download the advertisme on the left side im getting the warings. im using latest version of Avira Antivir PE Anyone of u guys have same problems?



All times are GMT +1. The time now is 20:19.

elitepvpers - play less, get more - Top

Powered by vBulletin®
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Support | Contact Us | FAQ | Advertising | Privacy Policy | Terms of Service | Abuse
Copyright ©2025 elitepvpers All Rights Reserved.