HF Plus.
The “Hf Plus”. Show You!
在 [7.5.1.0] 版本之前,貌似是7508的时候做了一个,还没来得及发布结果不能用了。。。 真是杯具,7508实在完美....
7508时灭绝了98%的广告,结果7510后浩方又增加了2个动态IE控件,没改动,暂时先不理了
核心模块由原来动态加载的 AdsManagers.dll 修改为静态加载的 Weibodll.dll
功能都是一样的,静态加载是为了实现自定义设置,也没啥就是一个自动登录
以下是修改的内容, 这是大部分内容,还有一小部分随手改了,就没发
挤入房间后,做了点小ws,搞笑了一下,挤挤就知道了
1 ■21 - 移除对 HFWordCheck.dll 的加载,解除war3游戏聊天中的敏感词屏蔽 2 source: 3 WinHex:: \config\HfPlugin\HFWordCheck.dll 4 descript: 5 Null 6 7 ■20 - CreateProcess::hfconfig.dat 8 source: 9 0044F590 . E8 5B1D0000 CALL 7_GameCl.004512F0 10 descript: 11 nop 12 13 ■19 - 退出程序时的确认窗口 14 source: 15 00433536 E8 FD661200 CALL <JMP.&MFC42.#2514> 16 00433450 64:A1 00000000 MOV EAX, DWORD PTR FS:[0] 17 004334B4 /74 13 JE SHORT 4_GameCl.004334C9 18 descript: 19 004334B4 /E9 60010000 JMP 4_GameCl.00433619 20 21 22 ■18 - msgbox: 您因为频繁出入,被禁止登录 .. 23 source: 24 004A6ED7 6A 00 PUSH 0 ; Case 25 of switch 004A660B 25 004A6ED9 6A 00 PUSH 0 26 004A6EDB 68 10F25C00 PUSH 5_GameCl.005CF210 27 004A6EE0 E8 3F320B00 CALL <JMP.&MFC42.#1200> 28 descript: 29 nop 30 31 32 ■17 - msgbox: 系统忙 .. 33 source: 34 00453FD6 . /73 11 JNB SHORT 5_GameCl.00453FE9 35 descript: 36 00453FD6 /EB 11 JMP SHORT 5_GameCl.00453FE9 37 38 ■16 - 菜单退出平台,移除确认窗口 39 source: 40 00433450 64:A1 00000000 MOV EAX, DWORD PTR FS:[0] >>> Sub Entry: 41 004334B4 /74 13 JE SHORT 4_GameCl.004334C9 42 43 descript: 44 004334B4 /E9 60010000 JMP 4_GameCl.00433619 45 46 ■15 - 验证是否在房间内的函数 47 source: 48 0049410B |> \8B3D 28635D00 MOV EDI, DWORD PTR DS:[5D6328] 49 0049411F |. 8B0D 28635D00 MOV ECX, DWORD PTR DS:[5D6328] 50 00494147 |. E8 D47AFCFF CALL 2_GameCl.0045BC20 51 descript: 52 mov ecx, ds:[5D6328h] 53 mov eax, 0045BC20h 54 call eax 55 56 ■14 - jump repeat into same room 57 source: 58 00454ED1 |. /7D 61 JGE SHORT 1_GameCl.00454F34 59 descript: 60 00454ED1 /EB 61 JMP SHORT 1_GameCl.00454F34 61 62 ■13 - remove Web Ads 63 source: 004019A0 (8GameCli.004019A0) 64 descript:jmp to Ret 65 66 ■12 - remove top small Ads 67 source: 68 0043FF99 /75 0E JNZ SHORT 7GameCli.0043FFA9 69 descript: 70 0043FF99 /EB 0E JMP SHORT 7GameCli.0043FFA9 71 72 ■11 - remove top Big Ads 73 source: 74 0043FF23 /75 0E JNZ SHORT 7GameCli.0043FF33 75 descript: 76 0043FF23 /EB 0E JMP SHORT 7GameCli.0043FF33 77 78 ■10 - remove download config5.4.1.xml from GameShell.dll by Winhex 79 // 80 81 ■9 - jump xrush tip window: 82 source: 83 0048ED90 83F8 01 CMP EAX, 1 84 descript: 85 0048ED90 83C0 01 ADD EAX, 1 86 87 ■8 - Exec "config\PopNotice\bw.dat" 88 // remove shell unknow app. 89 source: 90 0044FC20 . 51 PUSH ECX ; /pProcessInfo 91 0044FC21 . 52 PUSH EDX ; |pStartupInfo 92 0044FC22 . 50 PUSH EAX ; |CurrentDir => NULL 93 0044FC23 . 50 PUSH EAX ; |pEnvironment => NULL 94 0044FC24 . 50 PUSH EAX ; |CreationFlags => 0 95 0044FC25 . 50 PUSH EAX ; |InheritHandles => FALSE 96 0044FC26 . 50 PUSH EAX ; |pThreadSecurity => NULL 97 0044FC27 . 894424 34 MOV DWORD PTR SS:[ESP+34], EAX ; | 98 0044FC2B . 50 PUSH EAX ; |pProcessSecurity => NULL 99 0044FC2C . 8B4424 28 MOV EAX, DWORD PTR SS:[ESP+28] ; | 100 0044FC30 . C74424 3C 440>MOV DWORD PTR SS:[ESP+3C], 44 ; | 101 0044FC38 . 50 PUSH EAX ; |CommandLine 102 0044FC39 . 6A 00 PUSH 0 ; |ModuleFileName = NULL 103 0044FC3B . FF15 5CF75700 CALL DWORD PTR DS:[<&KERNEL32.CreateProc>; \CreateProcessA 104 descript: 105 0044FC20 90 NOP ; /pProcessInfo 106 0044FC21 90 NOP ; |pStartupInfo 107 0044FC22 90 NOP ; |CurrentDir => NULL 108 0044FC23 90 NOP ; |pEnvironment => NULL 109 0044FC24 90 NOP ; |CreationFlags => 0 110 0044FC25 90 NOP ; |InheritHandles => FALSE 111 0044FC26 90 NOP ; |pThreadSecurity => NULL 112 0044FC27 894424 34 MOV DWORD PTR SS:[ESP+34], EAX ; | 113 0044FC2B 90 NOP ; |pProcessSecurity => NULL 114 0044FC2C 8B4424 28 MOV EAX, DWORD PTR SS:[ESP+28] ; | 115 0044FC30 C74424 3C 440>MOV DWORD PTR SS:[ESP+3C], 44 ; | 116 0044FC38 90 NOP ; |CommandLine 117 0044FC39 90 NOP ; |ModuleFileName 118 0044FC3A 90 NOP 119 0044FC3B 90 NOP ; \CreateProcessA 120 0044FC3C 90 NOP 121 0044FC3D 90 NOP 122 0044FC3E 90 NOP 123 0044FC3F 90 NOP 124 0044FC40 90 NOP 125 126 ■7 - Exec "gcen.exe E:\Game\浩方7502\\gcen.exe -urlhttp://newpt.cga.com.cn/adalert/showalert?id=134907&ug=1 -title推广-页游 -re" 127 // remove starting gcen.exe, get ads action. 128 source: 129 0048F196 . E8 95030000 CALL 3GameCli.0048F530 130 descript: 131 0048F196 59 POP ECX 132 0048F197 90 NOP 133 0048F198 90 NOP 134 0048F199 90 NOP 135 0048F19A 90 NOP 136 137 ■6 - Exec "HFAuthKid.exe" 138 // remove shell app. 139 source: 140 0043E6CC |> \6A 01 PUSH 1 ; /IsShown = 1 141 0043E6CE |. 8D8424 FC0200>LEA EAX, DWORD PTR SS:[ESP+2FC] ; | 142 0043E6D5 |. 53 PUSH EBX ; |DefDir 143 0043E6D6 |. 8D8C24 000700>LEA ECX, DWORD PTR SS:[ESP+700] ; | 144 0043E6DD |. 50 PUSH EAX ; |Parameters 145 0043E6DE |. 51 PUSH ECX ; |FileName 146 0043E6DF |. 68 5C4F5C00 PUSH 3GameCli.005C4F5C ; |Operation = "open" 147 0043E6E4 |. 53 PUSH EBX ; |hWnd 148 0043E6E5 |. FF15 7C065800 CALL DWORD PTR DS:[<&SHELL32.ShellExecuteA>] ; \ShellExecuteA 149 0043E6EB |. 83F8 20 CMP EAX, 20 150 0043E6EE |. 5D POP EBP 151 0043E6EF |. 77 54 JA SHORT 3GameCli.0043E745 152 descript: 153 0043E6CC 90 NOP ; /IsShown 154 0043E6CD 90 NOP 155 0043E6CE |. 8D8424 FC0200>LEA EAX, DWORD PTR SS:[ESP+2FC] ; | 156 0043E6D5 90 NOP ; |DefDir 157 0043E6D6 |. 8D8C24 000700>LEA ECX, DWORD PTR SS:[ESP+700] ; | 158 0043E6DD 90 NOP ; |Parameters 159 0043E6DE 90 NOP ; |FileName 160 0043E6DF 90 NOP ; |Operation 161 0043E6E0 90 NOP 162 0043E6E1 90 NOP 163 0043E6E2 90 NOP 164 0043E6E3 90 NOP 165 0043E6E4 90 NOP ; |hWnd 166 0043E6E5 90 NOP ; \ShellExecuteA 167 0043E6E6 90 NOP 168 0043E6E7 90 NOP 169 0043E6E8 90 NOP 170 0043E6E9 90 NOP 171 0043E6EA 90 NOP 172 0043E6EB |. 83F8 20 CMP EAX, 20 173 0043E6EE |. 5D POP EBP 174 0043E6EF EB 54 JMP SHORT 3GameCli.0043E745 175 176 ■5 - Exec "HfShell.exe -d" 177 // jump update on starting GameClient. 178 source: 179 0044F0CA . E8 61F7FFFF CALL 2GameCli.0044E830 ; call hfshell.exe 180 0044F0CF . 85C0 TEST EAX, EAX 181 descript: 182 0044F0CA 90 NOP ; call hfshell.exe 183 0044F0CB 90 NOP 184 0044F0CC 90 NOP 185 0044F0CD 90 NOP 186 0044F0CE 90 NOP 187 0044F0CF 33C0 XOR EAX, EAX 188 189 ■4 - Exec "gcen.exe" 190 // remove starting gcen.exe, it's a ads app. 191 source: 192 0044F11E E8 3D270000 CALL 2GameCli.00451860 ; call gcen.exe 193 0044F123 85C0 TEST EAX, EAX 194 descript: 195 0044F11E 90 NOP ; call gcen.exe 196 0044F11F 90 NOP 197 0044F120 90 NOP 198 0044F121 90 NOP 199 0044F122 90 NOP 200 0044F123 40 INC EAX 201 0044F124 90 NOP 202 203 204 ■3 - Exec "HFChkEnv.exe -quick" 205 // remove starting HFChkEnv.exe 206 source: 207 00439092 . 50 PUSH EAX ; /pProcessInfo 208 00439093 . 8B4424 14 MOV EAX, DWORD PTR SS:[ESP+14] ; | 209 00439097 . 51 PUSH ECX ; |pStartupInfo 210 00439098 . 52 PUSH EDX ; |CurrentDir => "E:\Game\",BA,"",C6,"",B7,"",BD,"7502\" 211 00439099 . 53 PUSH EBX ; |pEnvironment 212 0043909A . 53 PUSH EBX ; |CreationFlags 213 0043909B . 53 PUSH EBX ; |InheritHandles 214 0043909C . 53 PUSH EBX ; |pThreadSecurity 215 0043909D . 53 PUSH EBX ; |pProcessSecurity 216 0043909E . 50 PUSH EAX ; |CommandLine 217 0043909F . 53 PUSH EBX ; |ModuleFileName 218 004390A0 . C78424 94000000 44>MOV DWORD PTR SS:[ESP+94], 44 ; | 219 004390AB . 89B424 C0000000 MOV DWORD PTR SS:[ESP+C0], ESI ; | 220 004390B2 . 66:C78424 C4000000>MOV WORD PTR SS:[ESP+C4], 0A ; | 221 004390BC . FF15 5CF75700 CALL DWORD PTR DS:[<&KERNEL32.CreateProc>; \CreateProcessA 222 descript: 223 00439092 90 NOP ; /pProcessInfo 224 00439093 . 8B4424 14 MOV EAX, DWORD PTR SS:[ESP+14] ; | 225 00439097 90 NOP ; |pStartupInfo 226 00439098 90 NOP ; |CurrentDir => NULL 227 00439099 90 NOP ; |pEnvironment 228 0043909A 90 NOP ; |CreationFlags 229 0043909B 90 NOP ; |InheritHandles 230 0043909C 90 NOP ; |pThreadSecurity 231 0043909D 90 NOP ; |pProcessSecurity 232 0043909E 90 NOP ; |CommandLine 233 0043909F 90 NOP ; |ModuleFileName 234 004390A0 . C78424 94000000 44>MOV DWORD PTR SS:[ESP+94], 44 ; | 235 004390AB . 89B424 C0000000 MOV DWORD PTR SS:[ESP+C0], ESI ; | 236 004390B2 . 66:C78424 C4000000>MOV WORD PTR SS:[ESP+C4], 0A ; | 237 004390BC 90 NOP ; \CreateProcessA 238 004390BD 90 NOP 239 004390BE 90 NOP 240 004390BF 90 NOP 241 004390C0 90 NOP 242 004390C1 90 NOP 243 244 ■2 - Exec bfcmpa\bfcmpsrv.exe 245 // remove start unknow app 246 source: 247 00438FA0 56 PUSH ESI ; /IsShown => 1 248 00438FA1 53 PUSH EBX ; |DefDir 249 00438FA2 53 PUSH EBX ; |Parameters 250 00438FA3 50 PUSH EAX ; |FileName 251 00438FA4 53 PUSH EBX ; |Operation 252 00438FA5 53 PUSH EBX ; |hWnd 253 00438FA6 FF15 7C065800 CALL DWORD PTR DS:[<&SHELL32.ShellExecut>; \ShellExecuteA 254 descript: 255 00438FA0 90 NOP ; /IsShown => 1 256 00438FA1 90 NOP ; |DefDir 257 00438FA2 90 NOP ; |Parameters 258 00438FA3 90 NOP ; |FileName 259 00438FA4 90 NOP ; |Operation 260 00438FA5 90 NOP ; |hWnd 261 00438FA6 90 NOP ; \ShellExecuteA 262 00438FA7 90 NOP 263 00438FA8 90 NOP 264 00438FA9 90 NOP 265 00438FAA 90 NOP 266 00438FAB 90 NOP 267 268 ■1 - Exec HfShell.exe 269 // jump update on starting GameClient. 270 source: 271 0044F0C8 /75 52 JNZ SHORT GameClie.0044F11C 272 desctipt: 273 0044F0C8 /EB 52 JMP SHORT GameClie.0044F11C
源码:https://files.cnblogs.com/files/pctgl/weibodll.rar
做为测试版,仅发布几个关键模块,替换浩方目录里面相关的文件即可:
测试版〔1〕: https://files.cnblogs.com/files/pctgl/7510t.rar
测试版〔2〕: https://files.cnblogs.com/files/pctgl/7510tt.rar
测试版,强烈欢迎反馈意见
