/*
**
** UPX script by Bruce Lee with dump
**
*/

log " "
log " "
eob bp1
log "Search for address of GetProcAddress..."
gpa "GetProcAddress", "kernel32.dll"
cmp $RESULT, 0
jne nadjen
jmp error

nadjen:
log "OK!"
log $RESULT
bp $RESULT
log "bp on GetProcAddress."
log "Run!"
run

bp1:
bc eip
rtu
log "Clear breakpoint! Return to user code!"
log eip
log "Search for address of POPAD..."
findop eip, #61#
cmp $RESULT, 0
jne ok
jmp error

ok:
log "Run till POPAD."
go $RESULT
log eip
sto
log eip
sto
log eip
MSGYN "OEP! Dump?"
cmp $RESULT, 1
je dump
jmp kraj

error:
Msg "Error!"
jmp kraj

dump:
dpe "c:\bl_dumped.exe", eip
MSG "Your dump is in root of c: ! Start ImpREC and fix the IAT! Bye!"

kraj:
ret

this is my script for upx /UPX-Scrambler
Enjoy!
/*
//////////////////////////////////////////////////
Upx/UPX-Scrambler OEP finder v0.1
Author: loveboom
Email : bmd2chen@tom.com
OS : Winxp sp1,OllyDbg 1.1,OllyScript v0.85(latest)
Date : 2004-6-4
Config: N/A
Note : If you have one or more question, email me please,thank you!
//////////////////////////////////////////////////
*/
var goaddr

start:
find eip,#61E9??????FF# //find 'popad jmp addr'
cmp $RESULT,0
jne lblupx
find eip,#60E9??????FF# //find 'pushad jmp addr'
cmp $RESULT,0
jne lblupx

lblerr:
msg "Error,Script abort!Maybe target is not pracked by upx or UPX-Scrambler.more information contact me."
ret

lblupx:
mov goaddr,$RESULT
add goaddr,1
go goaddr
sto

end:
cmt eip,",OEP"
msg "Script by loveboom[DFCG][FCG],Thank you for using my script!"
ret