某冒险岛加速器破解

06420

这款加速器主要用于加速冒险岛外服使用。
打开软件就是登录界面,得注册一个账户,随便注册一个账户后登录,弹窗如下:

现在我们打开ExeinfoPE查壳:

无壳,是C++x64程序,打开我们的x64_dbg,拖入程序,运行
右键-搜索-所有模块-字符串-过滤关键字“login”

对前几个"login"字符串按F2进行断点:

回到我们的程序界面,重新点击登录,断点断下来了:
[Asm] 纯文本查看 复制代码

00007FF6813B3BFB | 48:8D0D C6450500         | lea rcx,qword ptr ds:[7FF6814081C8]     | 00007FF6814081C8:"login"
00007FF6813B3C02 | FF15 10100500            | call qword ptr ds:[<&?fromAscii_helper[url=home.php?mod=space&uid=402414]@[/url] |
00007FF6813B3C08 | 48:8945 C7               | mov qword ptr ss:[rbp-39],rax           | [rbp-39]:" "
00007FF6813B3C0C | 48:8D55 C7               | lea rdx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3C10 | 48:8D4D E7               | lea rcx,qword ptr ss:[rbp-19]           |
00007FF6813B3C14 | FF15 46070500            | call qword ptr ds:[<&?beginGroup@QSetti |
00007FF6813B3C1A | 90                       | nop                                     |
00007FF6813B3C1B | 48:8D4D C7               | lea rcx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3C1F | FF15 DB0F0500            | call qword ptr ds:[<&??1QXmlStreamStrin |
00007FF6813B3C25 | 8BD6                     | mov edx,esi                             |
00007FF6813B3C27 | 48:8D4D CF               | lea rcx,qword ptr ss:[rbp-31]           |
00007FF6813B3C2B | FF15 37100500            | call qword ptr ds:[<&??0QVariant@@QEAA@ |
00007FF6813B3C31 | 90                       | nop                                     |
00007FF6813B3C32 | BA 09000000              | mov edx,9                               | 9:'\t'
00007FF6813B3C37 | 48:8D0D F23F0500         | lea rcx,qword ptr ds:[7FF681407C30]     | 00007FF681407C30:"autoLogin"
00007FF6813B3C3E | FF15 D40F0500            | call qword ptr ds:[<&?fromAscii_helper@ |
00007FF6813B3C44 | 48:8945 C7               | mov qword ptr ss:[rbp-39],rax           | [rbp-39]:" "
00007FF6813B3C48 | 4C:8D45 CF               | lea r8,qword ptr ss:[rbp-31]            |
00007FF6813B3C4C | 48:8D55 C7               | lea rdx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3C50 | 48:8D4D E7               | lea rcx,qword ptr ss:[rbp-19]           |
00007FF6813B3C54 | FF15 16070500            | call qword ptr ds:[<&?setValue@QSetting |
00007FF6813B3C5A | 90                       | nop                                     |
00007FF6813B3C5B | 48:8D4D C7               | lea rcx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3C5F | FF15 9B0F0500            | call qword ptr ds:[<&??1QXmlStreamStrin |
00007FF6813B3C65 | 90                       | nop                                     |
00007FF6813B3C66 | 48:8D4D CF               | lea rcx,qword ptr ss:[rbp-31]           |
00007FF6813B3C6A | FF15 F00F0500            | call qword ptr ds:[<&??1QVariant@@QEAA@ |
00007FF6813B3C70 | 41:8BD6                  | mov edx,r14d                            |
00007FF6813B3C73 | 48:8D4D CF               | lea rcx,qword ptr ss:[rbp-31]           |
00007FF6813B3C77 | FF15 EB0F0500            | call qword ptr ds:[<&??0QVariant@@QEAA@ |
00007FF6813B3C7D | 90                       | nop                                     |
00007FF6813B3C7E | BA 0C000000              | mov edx,C                               | C:'\f'
00007FF6813B3C83 | 48:8D0D C63F0500         | lea rcx,qword ptr ds:[7FF681407C50]     | 00007FF681407C50:"savePassword"
00007FF6813B3C8A | FF15 880F0500            | call qword ptr ds:[<&?fromAscii_helper@ |
00007FF6813B3C90 | 48:8945 C7               | mov qword ptr ss:[rbp-39],rax           | [rbp-39]:" "
00007FF6813B3C94 | 4C:8D45 CF               | lea r8,qword ptr ss:[rbp-31]            |
00007FF6813B3C98 | 48:8D55 C7               | lea rdx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3C9C | 48:8D4D E7               | lea rcx,qword ptr ss:[rbp-19]           |
00007FF6813B3CA0 | FF15 CA060500            | call qword ptr ds:[<&?setValue@QSetting |
00007FF6813B3CA6 | 90                       | nop                                     |
00007FF6813B3CA7 | 48:8D4D C7               | lea rcx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3CAB | FF15 4F0F0500            | call qword ptr ds:[<&??1QXmlStreamStrin |
00007FF6813B3CB1 | 90                       | nop                                     |
00007FF6813B3CB2 | 48:8D4D CF               | lea rcx,qword ptr ss:[rbp-31]           |
00007FF6813B3CB6 | FF15 A40F0500            | call qword ptr ds:[<&??1QVariant@@QEAA@ |
00007FF6813B3CBC | 48:8D55 DF               | lea rdx,qword ptr ss:[rbp-21]           |
00007FF6813B3CC0 | 48:8D4D CF               | lea rcx,qword ptr ss:[rbp-31]           |
00007FF6813B3CC4 | FF15 AE0F0500            | call qword ptr ds:[<&??0QVariant@@QEAA@ |
00007FF6813B3CCA | 90                       | nop                                     |
00007FF6813B3CCB | BA 0A000000              | mov edx,A                               | A:'\n'
00007FF6813B3CD0 | 48:8D0D F9440500         | lea rcx,qword ptr ds:[7FF6814081D0]     | 00007FF6814081D0:"user_email"
00007FF6813B3CD7 | FF15 3B0F0500            | call qword ptr ds:[<&?fromAscii_helper@ |
00007FF6813B3CDD | 48:8945 C7               | mov qword ptr ss:[rbp-39],rax           | [rbp-39]:" "
00007FF6813B3CE1 | 4C:8D45 CF               | lea r8,qword ptr ss:[rbp-31]            |
00007FF6813B3CE5 | 48:8D55 C7               | lea rdx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3CE9 | 48:8D4D E7               | lea rcx,qword ptr ss:[rbp-19]           |
00007FF6813B3CED | FF15 7D060500            | call qword ptr ds:[<&?setValue@QSetting |
00007FF6813B3CF3 | 90                       | nop                                     |
00007FF6813B3CF4 | 48:8D4D C7               | lea rcx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3CF8 | FF15 020F0500            | call qword ptr ds:[<&??1QXmlStreamStrin |
00007FF6813B3CFE | 90                       | nop                                     |
00007FF6813B3CFF | 48:8D4D CF               | lea rcx,qword ptr ss:[rbp-31]           |
00007FF6813B3D03 | FF15 570F0500            | call qword ptr ds:[<&??1QVariant@@QEAA@ |
00007FF6813B3D09 | 41:83FE 02               | cmp r14d,2                              |
00007FF6813B3D0D | 75 2D                    | jne kdjsq.7FF6813B3D3C                  |
00007FF6813B3D0F | 48:8D55 7F               | lea rdx,qword ptr ss:[rbp+7F]           |
00007FF6813B3D13 | 48:8D4D C7               | lea rcx,qword ptr ss:[rbp-39]           | [rbp-39]:" "
00007FF6813B3D17 | FF15 DB0E0500            | call qword ptr ds:[<&??0QBitArray@@QEAA |
00007FF6813B3D1D | 49:8D7F 30               | lea rdi,qword ptr ds:[r15+30]           |
00007FF6813B3D21 | 4C:8BC0                  | mov r8,rax                              |
00007FF6813B3D24 | 48:8D55 CF               | lea rdx,qword ptr ss:[rbp-31]           |
00007FF6813B3D28 | 48:8BCF                  | mov rcx,rdi                             |
00007FF6813B3D2B | E8 C08A0000              | call kdjsq.7FF6813BC7F0                 |
00007FF6813B3D30 | 48:8D4D CF               | lea rcx,qword ptr ss:[rbp-31]           |
00007FF6813B3D34 | FF15 C60E0500            | call qword ptr ds:[<&??1QXmlStreamStrin |
00007FF6813B3D3A | EB 04                    | jmp kdjsq.7FF6813B3D40                  |
00007FF6813B3D3C | 49:8D7F 30               | lea rdi,qword ptr ds:[r15+30]           |
00007FF6813B3D40 | 48:8D4D E7               | lea rcx,qword ptr ss:[rbp-19]           |
00007FF6813B3D44 | FF15 1E060500            | call qword ptr ds:[<&?endGroup@QSetting |
00007FF6813B3D4A | 90                       | nop                                     |
00007FF6813B3D4B | 48:8D4D E7               | lea rcx,qword ptr ss:[rbp-19]           |
00007FF6813B3D4F | FF15 03060500            | call qword ptr ds:[<&??1QSettings@@UEAA |
00007FF6813B3D55 | 48:8D55 7F               | lea rdx,qword ptr ss:[rbp+7F]           |
00007FF6813B3D59 | 48:8D4D 6F               | lea rcx,qword ptr ss:[rbp+6F]           |
00007FF6813B3D5D | FF15 950E0500            | call qword ptr ds:[<&??0QBitArray@@QEAA |
00007FF6813B3D63 | 48:8BD8                  | mov rbx,rax                             |
00007FF6813B3D66 | 48:8D55 DF               | lea rdx,qword ptr ss:[rbp-21]           |
00007FF6813B3D6A | 48:8D4D 77               | lea rcx,qword ptr ss:[rbp+77]           |
00007FF6813B3D6E | FF15 840E0500            | call qword ptr ds:[<&??0QBitArray@@QEAA |
00007FF6813B3D74 | 4C:8BC3                  | mov r8,rbx                              |
00007FF6813B3D77 | 48:8BD0                  | mov rdx,rax                             |
00007FF6813B3D7A | 48:8BCF                  | mov rcx,rdi                             |
00007FF6813B3D7D | E8 FE810000              | call kdjsq.7FF6813BBF80                 | 
00007FF6813B3D82 | 84C0                     | test al,al                              |

跟着F8走下来,来到这里:
[Asm] 纯文本查看 复制代码

00007FF6813B3D7D | E8 FE810000              | call kdjsq.7FF6813BBF80                 |

我们可以很明显感受到延迟,然后弹出错误窗口,很可能是连接网络验证,按回车进入CALL按F2进行断点,重新登录。

随着我们的缓缓步过,终于来到了第一个跳转处:

经测试,这个跳转是用来判断连接账户密码是否正确的,我们继续步入,来到第二个跳转处

这个跳转默认不跳,我们跟着下去就报错“非会员账号”,回到第二个跳转,我们对其进行如下修改:

再次点击登录,没有任何报错,顺利进入主界面:

测试一下,选择节点加速

成功加速!并且游戏也正常加速登录了,可喜可贺可喜可贺。
(这个智能加速完全不能加速,点了以后一直处于0%)
之后保存修改文件即可。

THE END
日常折腾
# [db:tag]
喜欢就支持以下吧
点赞0
分享
相关推荐
评论 抢沙发
  • 管埋员

    昵称

  • 取消
    昵称

    请填写用户信息:

    • 昵称(必填)
    • 邮箱(必填)

游戏分享:《卡片地下城 Card Monsters: Dungeon》

Mirillis Action! 4.6.0 便携版下载地址 Mirillis Action! 4.6.0 便携版分享-搬运

Hard Disk Sentinel - 磁盘检测工具 | 正版限免giveaway

VMP3.3.1怎么添加授权?

中华万年历7.9.0_去广告去更新[20200506]

极域电子教室2015-2016获取密码