一流QQ斗地主刷分器破解过程中碰到的问题
目标程序:一流QQ斗地主刷分器
下载地址:4a6K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4g2B7x3r3y4&6x3g2)9J5k6h3y4Z5K9h3&6S2N6K6y4Q4x3X3g2U0L8$3#2Q4x3V1k6A6L8h3q4Y4k6i4y4Q4x3V1j5I4y4W2)9J5c8W2q4c8c8p5c8K9f1@1k6e0k6i4c8#2M7q4)9J5k6h3g2^5k6b7`.`.
我的破解过程:
Ⅰ.PEID查壳:ASProtect 2.1x SKE -> Alexey Solodovnikov;
Ⅱ.Ollydbg载入,隐藏OD,运行脚本:Aspr2.XX_unpacker_v1.14aSC;
Ⅲ.查看记录,记录数据信息:
OEP : 0008E284
RVA : 00093168
SIZE: 000006FC
Ⅳ.不要关闭OD,打开修复工具:ImpREC FINAL 1.7汉化版,载入正在调试的程序,输入上面记录的数据,获取输入表,无效函数,剪切无效函数,转储到文件,修复脱壳后的文件,保存;
Ⅴ.打开DeDe3.50.04 Fix加强版,载入:de_QQDDZSF_脱壳后修复.exe,转储完毕之后打开过程,查看FormCreate数据为:0048CE40   55                     push    ebp;
Ⅵ.打开Ollydbg,载入修复后的程序,在反汇编窗口点击右键,前往→表达→0048CE40,F2断点,F9运行,断下来了,看右下角的堆栈窗口:
0012FE20   0045F997  返回到 de_QQDDZ.0045F997,在这喘代码上面点击右键,选择"在反汇编窗口中跟随,跟随到反汇编窗口中的数据为:0045F997   .  33C0          XOR EAX,EAX,
向上面看一行,有一个CALL:
0045F991   .  FF93 D0020000 CALL DWORD PTR DS:[EBX+2D0]  
应该是从这个CALL调用的,再往上面看,有一个跳转:0045F975   . /74 49         JE SHORT de_QQDDZ.0045F9C0,在这行代码处下断点[F2],重新来一次,F9运行,断了下来,我们看看让它实现跳转,F8单步运行,跳过了CALL,F9运行,出现了我最后得到的程序,现在在:0045F975     /EB 49         JE SHORT de_QQDDZ.0045F9C0 这行代码上面点击右键,选择汇编,然后将JE改为JMP,然后保存为:de_QQDDZSF_修改后.exe,运行de_QQDDZSF_修改后.exe,显示是测试版,还是不能刷分,不知道该怎么进行下面的工作了,希望高手指点!
用到的工具都放在下面了......

DeDe3.50.04 Fix加强版下载:
ba3K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4m8W2k6r3W2&6i4K6u0W2j5$3!0E0i4K6u0r3N6r3!0G2L8s2y4Q4x3V1k6p5k6h3y4G2L8i4m8A6L8r3g2J5M7#2)9J5c8V1c8W2c8r3g2Q4x3V1k6p5k6f1c8W2c8r3q4J5K9#2)9J5k6i4u0S2M7R3`.`.

OllyICE v1.10 修改版 [2008.1.1]
下载地址:87aK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4m8W2k6r3W2&6i4K6u0W2j5$3!0E0i4K6u0r3g2p5!0a6e0q4y4Q4x3V1k6p5k6h3u0#2k6$3N6W2M7Y4y4Q4x3V1k6G2L8r3I4&6k6r3u0Y4i4K6u0r3e0$3I4D9P5f1W2o6c8g2)9J5k6i4u0S2M7R3`.`.

破解过程中的程序QDDZSF.rar
57dK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4q4A6j5h3&6F1j5h3!0Q4x3X3g2U0L8$3#2Q4x3V1k6K6M7r3q4U0k6g2)9J5c8Y4y4Z5L8%4N6Q4x3V1j5^5x3o6M7&6z5o6j5K6z5o6W2Q4x3V1k6Q4x3U0g2o6z5g2)9J5y4f1y4r3i4K6t1#2b7U0c8Q4x3U0g2m8b7W2)9J5y4f1t1%4i4K6t1#2c8o6k6Q4x3U0g2o6c8W2)9J5y4f1g2p5i4K6u0r3f1g2q4p5c8q4A6e0c8W2)9J5k6i4u0S2M7W2)9J5c8W2)9J5k6i4m8S2k6$3f1`.

ImpREC_FINAL_1.7汉化版_脱壳后修复工具.rar
4c3K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4q4A6j5h3&6F1j5h3!0Q4x3X3g2U0L8$3#2Q4x3V1k6K6M7r3q4U0k6g2)9J5c8Y4y4Z5L8%4N6Q4x3V1j5^5x3o6M7&6z5o6j5K6z5o6W2Q4x3V1k6Q4x3U0g2o6z5g2)9J5y4f1y4r3i4K6t1#2b7U0c8Q4x3U0g2m8b7W2)9J5y4f1t1%4i4K6t1#2c8o6k6Q4x3U0g2o6c8W2)9J5y4f1g2p5i4K6u0r3d9h3#2H3f1V1g2o6i4K6g2X3c8V1W2z5b7f1I4Q4y4h3j5I4i4K6u0W2y4#2)9J5y4f1u0m8i4K6t1#2b7V1q4Q4x3U0g2n7b7W2)9J5y4f1q4r3i4K6t1#2b7U0m8Q4x3U0g2q4y4W2)9#2k6W2)9J5y4f1y4p5i4K6t1#2c8o6q4Q4x3U0g2n7c8W2)9J5y4f1x3%4i4K6t1#2b7V1q4Q4x3U0g2r3x3#2)9J5y4f1b7H3i4K6t1#2c8p5g2Q4x3U0g2n7z5q4)9J5y4f1t1@1i4K6t1#2b7U0W2Q4x3U0g2m8y4q4)9J5y4f1u0q4i4K6t1#2c8p5k6Q4x3X3g2J5j5i4u0Q4x3V1k6Q4x3X3g2H3j5h3N6W2

Aspr2.XX_unpacker_v1.14aSC_脱壳脚本.rar
ea2K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4q4A6j5h3&6F1j5h3!0Q4x3X3g2U0L8$3#2Q4x3V1k6K6M7r3q4U0k6g2)9J5c8Y4y4Z5L8%4N6Q4x3V1j5^5x3o6M7&6z5o6j5K6z5o6W2Q4x3V1k6Q4x3U0g2o6z5g2)9J5y4f1y4r3i4K6t1#2b7U0c8Q4x3U0g2m8b7W2)9J5y4f1t1%4i4K6t1#2c8o6k6Q4x3U0g2o6c8W2)9J5y4f1g2p5i4K6u0r3b7i4y4H3M7U0u0Q4x3X3g2j5h3q4)9#2k6Y4g2F1M7r3q4U0K9$3g2J5i4K6g2X3N6U0q4Q4x3X3f1I4y4r3q4e0b7#2)9#2k6W2)9J5y4f1y4p5i4K6t1#2c8o6q4Q4x3U0g2n7c8W2)9J5y4f1x3%4i4K6t1#2b7V1c8Q4x3U0g2o6y4g2)9J5y4f1t1I4i4K6t1#2b7V1g2Q4x3X3g2J5j5i4u0Q4x3V1k6Q4x3X3g2H3j5h3N6W2

[培训]内核驱动高级班，冲击BAT一流互联网大厂工作，每周日13:00-18:00直播授课