抓取禁止SnagIt截图软件抓取视频问题的解决办法

禁止SnagIt截图软件抓取视频问题的解决办法

禁止SnagIt截图软件抓取视频问题

今天打开一个视频教程,想截取精彩的视屏。但我用Snagit抓取屏幕视屏时

该exe视屏软件弹出:检测到录像软件snagit32.exe. . .然后停了. . . .

难道还要拿手机拍吗肯定不干有电脑还用手机效果还不好. . .

破之. . . .

检测文件发现在

C:\Documents and Settings\Administrator\Local

Settings\Application Data\lib下多了

C:\Documents and Settings\Administrator\Local

Settings\Application Data\lib的目录

2015-01-31 10:29 <DIR> .

2015-01-31 10:29 <DIR> . .

2015-01-30 17:18 299,864 cuspro.dll

2015-01-30 17:18 55,264 EDOG.dll

2015-01-30 17:18 39,256 global.dll

2015-01-30 17:18 3,054, 128 libwzplayer2.dll

2013-08-05 15:04 7,419,224 Player.dll

2015-01-30 13:10 6,899, 120 temp.dll

2015-01-30 17:18 58,712 WzPlayerControl.dll2015-01-30 17: 18 274,608 wzplayerExt.dll

检测进程发现多了个player.dll进程,Hook其EnumWindows,然后就不警告了, snagit运行正常

但打开看有声音无图像.用PrintScreen键抓取图片抓取的图片是黑色的背景根本不行。

百度了一下解决办法如下:

控制面板-->显示-->设置-->高级-->疑难解答-->硬件加速-->无,一切OK! ! !

附MASM源代码:

.486

.model flat, stdcalloption casemap:noneinclude d:\masm32\include\windows. incinclude d:\masm32\macros\macros.asminclude d:\masm32\include\kernel32. incinclude d:\masm32\include\ws2_32. incincludelib d:\masm32\lib\ws2_32. libincludelib d:\masm32\lib\kernel32. libinclude d:\masm32\include\user32. incincludelib d:\masm32\lib\user32. lib

HOOKAPI structa byte ?

PMyapi DWORD ?d BYTE ?e BYTE ?

HOOKAPI ends

Wri t eAp i prot o:DWORD, :DWORD, :DWORD, :DWORD

.data

.data?

NID dd ?

WProcess dd ?hacker HOOKAPI <>

CommandLine LPSTR ?

Papi 1 DWORD ?

ApiBak1 db 10 dup(?)

Apinew db 10 dup(?)hwnd dd ?snum db ?

. code

F2 proc b1 :DWORD,b2:DWORDmov eax,TRUEret

F2 endp

DllEntry proc hInst:HINSTANCE, reason:DWORD, reserved1:DWORD. if reason==DLL_PROCESS_ATTACH ;当DLL加载时产生此事件mov eax,5000mov NID,eaxinvoke GetForegroundWindowinvoke SetWindowText,eax,SADD("加载DLL成功")invoke GetCommandLinemov CommandLine, eaxmov hacker.a,0B8hmov hacker.d,0FFh ;jmpmov hacker.e, 0E0h ;eaxinvoke GetCurrentProcess ;取进程伪句柄mov WProcess ,eax

;防止没加载要预先加载DLLinvoke GetModuleHandle,SADD("user32.dll")

. if eax==NULLinvoke LoadLibrary,SADD("user32.dll")

. endif

invoke GetProcAddress, eax,SADD("EnumWindows") ;必须可以启动屏幕录像而无警告,但录出的视屏无图像有声音。

;解决某些视屏无图像 控制面板-->显示-->设置-->高级-->疑难解答-->硬件加速-->无mov Papi1, eax ;保存API地址invoke ReadProcessMemory,WProcess,Papi1,addr ApiBak1,8,NULL ;备份原AP I的前8字节mov hacker.PMyapi,offset F2;0x0000,这里设置替代API的函数地址invoke WriteApi,WProcess,Papi1, addr hacker , size

HOOKAPI ;HOOK AP Iinvoke ReadProcessMemory,WProcess,Papi 1,addr Apinew,8,NULL ;备份现在AP I的前8字节

. endif

. if reason==DLL_PROCESS_DETACH

; invoke WriteApi,WProcess,Papi1, addr ApiBak1 ,8 ;还原API. endifmov eax,TRUEret

DllEntry Endp

WriteApi proc

Proc ess:DWORD ,Papi :DWORD,Pt ype:DWORD,P s i z e:DWORD

LOCAL mb i:MEMORY_BASIC_INFORMAT ION

LOCAL msize:DWORDinvoke VirtualQueryEx,Process, Papi,addr mbi,SIZEOF

MEMO RY_BAS I C_INF ORMAT I ON

invoke VirtualProtectEx,Process,mbi.Bas eAddress,8h,PAGE_EXECUTE_READWRITE,addr mbi.Protect

invoke WriteProcessMemory,Process, Papi, Ptype,Psize ,NULLPUSH eaxinvoke

VirtualProtectEx,Process,mbi.BaseAddress,8h,PAGE_EXECUTE_READ,addr mbi.Protectpop eaxret

WriteApi endp

End DllEntry

将以上代码存为po.asm

编译:d:\masm32\bin\ml /c /coff po.asmd:\masm32\bin\Link /SUBSYSTEM:WINDOWS /DLL po.obj

你的masm32要在d:\

再把编好的po.dll注入player.dll就行了

建议在反屏幕录像时还要防HOOKAP I,这样可以提高你们的反屏幕录像水平。