Aww Sheezy!

EQDKP-Plus – Removing Banners

by on Apr.27, 2011, under Cracking, Gaming, Hacking, How-To, Software, Tech

So I feel like I have officially ‘hacked’ something worth hacking as of a few moments ago.  Soooooooo, I am kind of a nerd, and I happen to recently take over managing the website for my World of Warcraft guild.  (how lame, I know).  Anyways, when I took it over, I decided to spruce it up a bit from what it was, and look for any relevant guild management types of software.  “eqdkp-plus” was quickly brought to my attention, as it had a ton of features that were great for the type of thing I was trying to do.  Soooooo I went about implementing it successfully and all was great.  That is until I noticed that when I wasn’t logged in, there was this annoying banner ad that was placed in the middle of the left column.

It turns out that it is disabled for administrators, but visible to non-registered guests, and even registered users that are not administrators.  So I started searching for where to disable that, only to find out that it is not something that the developers of the software intended to be disabled, unless I were to pay their toll to cross the “banner ad free bridge”, so to speak.

“SCREW THAT NONSENSE”, I immediately said to myself.  I *am* the one hosting all of this code and have access to the very thing I am trying to circumvent.  So I proceeded to figure out how to do that.

I started with Google.  “eqdkp-plus ads” is what I searched for.  A few other search terms, “eqdkp-plus ads removal” were good too.  I found out that users that paid for eqdkp-plus were given a “key.php” file from the developers and instructed to place it in the eqdkp-plus root directory on their web server.

That, coupled with knowing the “find” command on Linux really well, was the next piece of my puzzle:

find ./html/ -exec echo {} \; -exec grep -i key.php {} \; > ~/search.txt

^^ is the command I used that quickly rifled through every possible file within my html folder and managed to turn up what I was looking for:

./html/pluskernel/include/plus.functions.php
$keyfile_php = $eqdkp_root_path.'/key.php' ;

Soooo… “pluskernel/include/plus.functions.php” is the only place searching for this key file, aye?  Well, let’s just see what that little line of code belongs to..

function validate()
{
global $eqdkp_root_path, $_HMODE, $conf_plus ;
if ($_HMODE && $conf_plus['pk_premium_status']>0) {return false;}
$keyfile_dat = $eqdkp_root_path.'/key.dat' ;
$keyfile_php = $eqdkp_root_path.'/key.php' ;
$return = true;

if(file_exists($keyfile_dat) )
{
$handle = @fopen($keyfile_dat,"r");
$keystring = @fread($handle, filesize($keyfile_dat));
}
elseif (file_exists($keyfile_php) )
{
include_once($keyfile_php);
}

if (strlen($keystring) > 1)
{
$keystring = @base64_decode($keystring) ;
$keystring = @gzuncompress($keystring) ;
$keystring = @unserialize($keystring);
$_data = $keystring ;
}

if (is_array($_data))
{
$_info = " | Type:".$_data['type']." | User:".$_data['kndNr'];

switch ($_data['type'])
{
case 0: $return = (substr(EQDKPPLUS_VERSION,0,3) > $_data['version_allowed']) ? true : false ;   break;  //c
heck server & version - 10
case 1: $return = false ; break;         //>50
case 2: $return = false ; break;         //>100
case 3: $return = false ; break;         //>100
case 4: $return = false ; break;         //>dev
case 5: $return = false ; break;         //>beta
}
}

//$this->left = "<img src=".$eqdkp_root_path."/images/premium.png>";

return $return;
}

Ahh… a “validate” function.  All it appears to be doing is returning either a “true” or “false” value.  Why don’t I replace that entire function with something a little simpler?  Maybe something like this:

function validate()
{
$return = false;
return $return;
}

Awwww yeeeahhh… I AM NOW AD FREE.

OK, now while I know that this may be considered a “bad” thing by some people, please realize that the actual banner ads that were being displayed to unsuspecting users of my website were actually the really bad type of ads.  These were ads intended for foul-clickery, which would lead you no doubt into some internet cave that you definitely need not investigate, lest you come out infected with spyware and/or trojans. Had the developers been a bit more friendly with their choice of banner ads, I would have likely left it in place.  Possibly.  Well, maybe.  Nah, probably not.  I would have disabled that shit too.

Share
:, , ,