WoW Cheat 3.3.2

[bagnikita]

From Parog: This user has been perma banned. Stuff like this won't stay long on the website and you won't get anything out of it. Nothing good at least *grin*. Do your worst!

Decompile it guys.... It connect to a php file on a web server and sends the keys you have pressed at the end of the URL, the php file emails him the log.

oldest scam in the book dude.

DO NOT USE THIS/ OPEN IT



And there is proof, there is a hidden web browser in the program that connects to his php file/web server.

and we disassemble his code..

Code:
internal bool ValidateInternal(bool checkAutoValidate, out bool validatedControlAllowsFocusChange);
private bool ValidateThroughAncestor(Control ancestorControl, bool preventFocusChangeOnError);
private void WmSetFocus(ref Message m);
[EditorBrowsable(EditorBrowsableState.Advanced), SecurityPermission(SecurityAction.LinkDemand, Flags=SecurityPermissionFlag.UnmanagedCode)]
protected override void WndProc(ref Message m);

Some code to disable security (windows xp mostly)


After looking through his code... All this thing does is Make labels & change text. There is NO cheat code/process/memory editing what so ever.

Decompile it for yourself: http://www.aisto.com/roeder/dotnet/

WoW Cheat

Maphack <------- READ ABOVE QUOTE - DOES NOT WORK.


Features : Speedhack,Teleport (with TP list),Flyhack,tracking and other.

There is also a test version with driver (ring0 memory writing,reading).


Teleport structure:

Name : WITHOUT SPACE
X : float
Y : float
Z : float
Map unsigned int (set this to zero,it is not used in current version)



Current version : 1009

[someonedying]

EMU????????? filler

[Poopzoor]

virus scan ?

[ßetray]

I'd say stay away.

Every file scanned from his website had at LEAST 1 warning, several with 5+ warnings.

Virustotal. MD5: 194c0234f930026a38238586e64d56f1 Suspicious.Insight W32/Rootkit-PX!Eldorado W32/Rootkit-PX!Eldorado

WoW_Cheat.exe on same website:
Virustotal. MD5: 4227031afaa5014817d93362b58b3e66 Suspicious.Insight

MapHack_Loader.zip on same website:
Virustotal. MD5: f62bd5389648b4546f82383b0344afdf Suspicious.Insight PossibleThreat Trojan.Win32.Malware.1

MemHack.rar on same website:
http://www.virustotal.com/analisis/7...f68-1269028909

[Ground Zero]

Under Investigation.

[2dgreengiant]

Symantec always finds something Suspicious, need someone like maclone to have a look at this.

[FrozenGod]

well i'am not gonna test it till someone will say its clean.

[Ground Zero]

Tested it and it didn't work, so i'm assuming its a virus or Win7 fails.

Use at your own risk.

[Parog]

Not taking any chances. The fact that this person spammed 5 times just to get this thread up here makes me want to stay away from these links. I edited the first post for you guy's pleasure.