ok, so i see alot of noobs saying "let's modify a file in the crossfire folder so that xtrap won't run and we can use hax!!1".
Well, that would kinda maybe work if xtrap wasn't hardcoded into the crossfire .exe and the server didn't send packets asking whether or not your client is running xtrap.
So, the only real way you will ever bypass xtrap will be to modify the crossfire client itself to not load up with xtrap via a debugger such as ollydbg or ida or some other one. then, the next thing you will have to do is to make the client lie to the server about whether xtrap is running or not which would require packet injection, but crossfire's packets will most likely be encrypted so you will probably have to decrypt packets to do that.