WinSnap4.0.5 cracking

q2533714

菜鸟参考即可  大牛请飞过

这个最新是4.0.5  我以前做过4.0.3的汉化，另网上有人似乎做了最新版的汉化了
http://www.52pojie.cn/forum.php?mod=viewthread&tid=138778
http://7.3987.com:801/2010/WinSnap.rar
WinSnap - Enable Superior ScreenshotsWinSnap is a fast user-friendly utility for taking and editing screenshots. It can easily capture windows of non-rectangular form with customized and transparent backgrounds, including Aero Glass on Windows 7 and Vista. WinSnap adds eye-candy shadows, reflections, outlines, watermarks, color effects on the fly. Built-in image editor provides basic capabilities to annotate screenshots and make them talk.

• Download WinSnap
• WinSnap 4.0 - What's New?
• Feature Highlights    Screenshots
• Screen Capture for Windows 7 new!
• How-To's and Tutorials
• Keyboard Shortcuts
• FAQ  History  License  Credits
  

Get your license key for WinSnap 4.0, instant key delivery (+ free upgrades)
Purchase WinSnap




The latest version 4.0.5 was released on June 11, 2012 (change log)

===================================================================================================
一下是破解过程 =========极其简单！

首先安装 运行 有未注册的提示

查壳之
    Microsoft Visual C++ 9.0 - Visual Studio 2008 (E8)
没有加壳，载入od


查找字符串，容易找到这儿


00414C90  /$  833D 34DC6300>CMP DWORD PTR DS:[63DC34],0
00414C97  |.  8D8E C4000000 LEA ECX,DWORD PTR DS:[ESI+C4]
00414C9D  |.  75 1B         JNZ SHORT WinSnap.00414CBA
00414C9F  |.  6A 1F         PUSH 1F
00414CA1  |.  68 08825F00   PUSH WinSnap.005F8208                    ;  WinSnap  [UNREGISTERED VERSION]
00414CA6  |.  E8 E5E5FEFF   CALL WinSnap.00403290
00414CAB  |.  8B06          MOV EAX,DWORD PTR DS:[ESI]
00414CAD  |.  8B90 78010000 MOV EDX,DWORD PTR DS:[EAX+178]
00414CB3  |.  6A 01         PUSH 1
00414CB5  |.  8BCE          MOV ECX,ESI
00414CB7  |.  FFD2          CALL EDX
00414CB9  |.  C3            RETN
00414CBA  |>  6A 07         PUSH 7
00414CBC  |.  68 E85E5F00   PUSH WinSnap.005F5EE8                    ;  WinSnap
00414CC1  |.  E8 CAE5FEFF   CALL WinSnap.00403290
00414CC6  |.  8B06          MOV EAX,DWORD PTR DS:[ESI]
00414CC8  |.  8B90 78010000 MOV EDX,DWORD PTR DS:[EAX+178]
00414CCE  |.  6A 01         PUSH 1
00414CD0  |.  8BCE          MOV ECX,ESI
00414CD2  |.  FFD2          CALL EDX
00414CD4  \.  C3            RETN

==============
关键  00414C90  /$  833D 34DC6300>CMP DWORD PTR DS:[63DC34],0

当DS:[63DC34]=0时为未注册  不等于0时是注册，对该地址下内存写入断点
00431B33  |.  892D 4CDD6300 MOV DWORD PTR DS:[63DD4C],EBP
00431B39  |.  892D 48DD6300 MOV DWORD PTR DS:[63DD48],EBP
00431B3F  |.  C64424 20 07  MOV BYTE PTR SS:[ESP+20],7
00431B44  |.  E8 E7050000   CALL WinSnap.00432130                      ///关键call，进入
00431B49  |.  892D 2CDC6300 MOV DWORD PTR DS:[63DC2C],EBP
00431B4F  |.  892D 34DC6300 MOV DWORD PTR DS:[63DC34],EBP    ///关键点 EBP
00431B55  |.  C705 38DC6300>MOV DWORD PTR DS:[63DC38],-1
00431B5F  |.  892D 48DC6300 MOV DWORD PTR DS:[63DC48],EBP
==========================================================
进入关键call
00432130  /$  81EC 18010000 SUB ESP,118
00432136  |.  A1 70A56200   MOV EAX,DWORD PTR DS:[62A570]
0043213B  |.  33C4          XOR EAX,ESP
0043213D  |.  898424 140100>MOV DWORD PTR SS:[ESP+114],EAX
00432144  |.  68 10010000   PUSH 110

00432149  |.  8D4424 08     LEA EAX,DWORD PTR SS:[ESP+8]
0043214D  |.  6A 00         PUSH 0
0043214F  |.  50            PUSH EAX
00432150  |.  C705 30DC6300>MOV DWORD PTR DS:[63DC30],0
0043215A  |.  C74424 0C 140>MOV DWORD PTR SS:[ESP+C],114
00432162  |.  E8 F9260300   CALL WinSnap.00464860

===================直接修改
mov ebp,11
retn
=================保存修改到可执行文件
运行，竟然出来 提示This program requires features present in Windows XP and above.
通过关键字符串果断干掉
00433C6A     /EB 11                         JMP SHORT WinSnap-.00433C7D


运行，未注册，那就是有别的地方了  对63DC34下断
00432E11  |.  898E AC000000                 MOV DWORD PTR DS:[ESI+AC],ECX
00432E17      83BE AC000000 00              CMP DWORD PTR DS:[ESI+AC],0


断在
00432D70      C786 AC000000 01000000        MOV DWORD PTR DS:[ESI+AC],0
果然这儿有验证赋值了
改为 00432D70      C786 AC000000 01000000        MOV DWORD PTR DS:[ESI+AC],1

ok保存试试，算是破解了
=====================================
分析一下，可不可以只改第二处呢？
试了试，只改第二处即可告破。