WinSnap4.0.5 cracking
菜鸟参考即可大牛请飞过这个最新是4.0.5我以前做过4.0.3的汉化,另网上有人似乎做了最新版的汉化了
http://www.52pojie.cn/forum.php?mod=viewthread&tid=138778
http://7.3987.com:801/2010/WinSnap.rar
WinSnap - Enable Superior ScreenshotsWinSnap is a fast user-friendly utility for taking and editing screenshots. It can easily capture windows of non-rectangular form with customized and transparent backgrounds, including Aero Glass on Windows 7 and Vista. WinSnap adds eye-candy shadows, reflections, outlines, watermarks, color effects on the fly. Built-in image editor provides basic capabilities to annotate screenshots and make them talk.
http://images.ntwind.com/winsnap4/winsnap_small.png
[*]Download WinSnap
[*]WinSnap 4.0 - What's New?
[*]Feature Highlights Screenshots
[*]Screen Capture for Windows 7 new!
[*]How-To's and Tutorials
[*]Keyboard Shortcuts
[*]FAQHistoryLicenseCredits
Get your license key for WinSnap 4.0, instant key delivery (+ free upgrades)
Purchase WinSnap
The latest version 4.0.5 was released on June 11, 2012 (change log)
===================================================================================================
一下是破解过程 =========极其简单!
首先安装 运行 有未注册的提示
查壳之
Microsoft Visual C++ 9.0 - Visual Studio 2008 (E8)
没有加壳,载入od
查找字符串,容易找到这儿
00414C90/$833D 34DC6300>CMP DWORD PTR DS:,0
00414C97|.8D8E C4000000 LEA ECX,DWORD PTR DS:
00414C9D|.75 1B JNZ SHORT WinSnap.00414CBA
00414C9F|.6A 1F PUSH 1F
00414CA1|.68 08825F00 PUSH WinSnap.005F8208 ;WinSnap
00414CA6|.E8 E5E5FEFF CALL WinSnap.00403290
00414CAB|.8B06 MOV EAX,DWORD PTR DS:
00414CAD|.8B90 78010000 MOV EDX,DWORD PTR DS:
00414CB3|.6A 01 PUSH 1
00414CB5|.8BCE MOV ECX,ESI
00414CB7|.FFD2 CALL EDX
00414CB9|.C3 RETN
00414CBA|>6A 07 PUSH 7
00414CBC|.68 E85E5F00 PUSH WinSnap.005F5EE8 ;WinSnap
00414CC1|.E8 CAE5FEFF CALL WinSnap.00403290
00414CC6|.8B06 MOV EAX,DWORD PTR DS:
00414CC8|.8B90 78010000 MOV EDX,DWORD PTR DS:
00414CCE|.6A 01 PUSH 1
00414CD0|.8BCE MOV ECX,ESI
00414CD2|.FFD2 CALL EDX
00414CD4\.C3 RETN
==============
关键00414C90/$833D 34DC6300>CMP DWORD PTR DS:,0
当DS:=0时为未注册不等于0时是注册,对该地址下内存写入断点
00431B33|.892D 4CDD6300 MOV DWORD PTR DS:,EBP
00431B39|.892D 48DD6300 MOV DWORD PTR DS:,EBP
00431B3F|.C64424 20 07MOV BYTE PTR SS:,7
00431B44|.E8 E7050000 CALL WinSnap.00432130 ///关键call,进入
00431B49|.892D 2CDC6300 MOV DWORD PTR DS:,EBP
00431B4F|.892D 34DC6300 MOV DWORD PTR DS:,EBP ///关键点 EBP
00431B55|.C705 38DC6300>MOV DWORD PTR DS:,-1
00431B5F|.892D 48DC6300 MOV DWORD PTR DS:,EBP
==========================================================
进入关键call
00432130/$81EC 18010000 SUB ESP,118
00432136|.A1 70A56200 MOV EAX,DWORD PTR DS:
0043213B|.33C4 XOR EAX,ESP
0043213D|.898424 140100>MOV DWORD PTR SS:,EAX
00432144|.68 10010000 PUSH 110
00432149|.8D4424 08 LEA EAX,DWORD PTR SS:
0043214D|.6A 00 PUSH 0
0043214F|.50 PUSH EAX
00432150|.C705 30DC6300>MOV DWORD PTR DS:,0
0043215A|.C74424 0C 140>MOV DWORD PTR SS:,114
00432162|.E8 F9260300 CALL WinSnap.00464860
===================直接修改
mov ebp,11
retn
=================保存修改到可执行文件
运行,竟然出来 提示This program requires features present in Windows XP and above.
通过关键字符串果断干掉
00433C6A /EB 11 JMP SHORT WinSnap-.00433C7D
运行,未注册,那就是有别的地方了对63DC34下断
00432E11|.898E AC000000 MOV DWORD PTR DS:,ECX
00432E17 83BE AC000000 00 CMP DWORD PTR DS:,0
断在
00432D70 C786 AC000000 01000000 MOV DWORD PTR DS:,0
果然这儿有验证赋值了
改为 00432D70 C786 AC000000 01000000 MOV DWORD PTR DS:,1
ok保存试试,算是破解了
=====================================
分析一下,可不可以只改第二处呢?
试了试,只改第二处即可告破。
页:
[1]