📄 unit1.asm
字号:
push dword ptr [_keyhook]
call @CallNextHookEx
mov edx,dword ptr [ebp-36]
mov dword ptr fs:[0],edx
?debug L 132
@41:
@40:
mov esp,ebp
pop ebp
ret 12
?debug L 0
@@KeyboardProc$qqsiuil endp
@KeyboardProc$qqsiuil ends
_TEXT ends
$$BSYMS segment byte public use32 'DEBSYM'
dw 68
dw 517
dw 0
dw 0
dw 0
dw 0
dw 0
dw 0
dd ?patch56
dd ?patch57
dd ?patch58
df @@KeyboardProc$qqsiuil
dw 0
dw 4152
dw 0
dw 51
dw 0
dw 0
dw 0
db 21
db 64
db 75
db 101
db 121
db 98
db 111
db 97
db 114
db 100
db 80
db 114
db 111
db 99
db 36
db 113
db 113
db 115
db 105
db 117
db 105
db 108
dw 18
dw 512
dw 8
dw 0
dw 116
dw 0
dw 52
dw 0
dw 0
dw 0
dw 18
dw 512
dw 12
dw 0
dw 117
dw 0
dw 53
dw 0
dw 0
dw 0
dw 18
dw 512
dw 16
dw 0
dw 18
dw 0
dw 54
dw 0
dw 0
dw 0
dw 18
dw 512
dw 65496
dw 65535
dw 117
dw 0
dw 55
dw 0
dw 0
dw 0
dw 24
dw 519
dw 0
dw 0
dw 0
dw 0
dd ?patch59
df @36
dw 0
dw 0
dw 18
dw 512
dw 65488
dw 65535
dw 1027
dw 0
dw 56
dw 0
dw 0
dw 0
dw 18
dw 512
dw 65492
dw 65535
dw 1027
dw 0
dw 57
dw 0
dw 0
dw 0
?patch59 equ @39-@36
dw 2
dw 6
?patch56 equ @41-@@KeyboardProc$qqsiuil+6
?patch57 equ 0
?patch58 equ @41-@@KeyboardProc$qqsiuil
dw 2
dw 6
dw 4
dw 531
dw 0
$$BSYMS ends
_TEXT segment dword public use32 'CODE'
InstallHook segment virtual
@InstallHook proc near
?live16404@0:
?debug L 138
push ebp
mov ebp,esp
?debug L 140
@42:
push 0
push dword ptr [_hinstance]
push offset @@MyProcHook$qqsiuil
push 3
call @SetWindowsHookExA
mov dword ptr [_prochook],eax
?debug L 141
push 0
push dword ptr [_hinstance]
push offset @@KeyboardProc$qqsiuil
push 2
call @SetWindowsHookExA
mov dword ptr [_keyhook],eax
?debug L 143
@43:
pop ebp
ret
?debug L 0
@InstallHook endp
InstallHook ends
_TEXT ends
$$BSYMS segment byte public use32 'DEBSYM'
dw 58
dw 517
dw 0
dw 0
dw 0
dw 0
dw 0
dw 0
dd ?patch60
dd ?patch61
dd ?patch62
df @InstallHook
dw 0
dw 4154
dw 0
dw 58
dw 0
dw 0
dw 0
db 11
db 73
db 110
db 115
db 116
db 97
db 108
db 108
db 72
db 111
db 111
db 107
?patch60 equ @43-@InstallHook+2
?patch61 equ 0
?patch62 equ @43-@InstallHook
dw 2
dw 6
$$BSYMS ends
_TEXT segment dword public use32 'CODE'
UninstallHook segment virtual
@UninstallHook proc near
?live16405@0:
?debug L 145
push ebp
mov ebp,esp
?debug L 151
@44:
push dword ptr [_hModule]
call @FreeLibrary
?debug L 152
push dword ptr [_prochook]
call @UnhookWindowsHookEx
?debug L 153
push dword ptr [_keyhook]
call @UnhookWindowsHookEx
?debug L 154
@45:
pop ebp
ret
?debug L 0
@UninstallHook endp
UninstallHook ends
_TEXT ends
$$BSYMS segment byte public use32 'DEBSYM'
dw 60
dw 517
dw 0
dw 0
dw 0
dw 0
dw 0
dw 0
dd ?patch63
dd ?patch64
dd ?patch65
df @UninstallHook
dw 0
dw 4156
dw 0
dw 59
dw 0
dw 0
dw 0
db 13
db 85
db 110
db 105
db 110
db 115
db 116
db 97
db 108
db 108
db 72
db 111
db 111
db 107
?patch63 equ @45-@UninstallHook+2
?patch64 equ 0
?patch65 equ @45-@UninstallHook
dw 2
dw 6
$$BSYMS ends
_DATA segment dword public use32 'DATA'
@_$DCAH$@Mysend$qqsuipxcii segment virtual
align 2
@@_$DCAH$@Mysend$qqsuipxcii label dword
dd @@$xt$17System@AnsiString
dd 4
dd -4
dd 0
dd @@$xt$17System@AnsiString
dd 4
dd -8
dd @@$xt$17System@AnsiString
dd 4
dd -12
dd @@$xt$17System@AnsiString
dd 4
dd -16
dd 0
dd @@$xt$17System@AnsiString
dd 4
dd -4
dd 0
dd @@$xt$17System@AnsiString
dd 4
dd -20
dd 0
dd @@$xt$17System@AnsiString
dd 4
dd -24
dd 0
dd @@$xt$17System@AnsiString
dd 4
dd -28
dd @@$xt$17System@AnsiString
dd 4
dd -32
dd @@$xt$17System@AnsiString
dd 4
dd -36
dd @@$xt$17System@AnsiString
dd 4
dd -40
dd 0
@_$DCAH$@Mysend$qqsuipxcii ends
_DATA ends
_DATA segment dword public use32 'DATA'
@_$ECTBH$@Mysend$qqsuipxcii segment virtual
align 2
@@_$ECTBH$@Mysend$qqsuipxcii label dword
dd 0
dd -76
dw 0
dw 5
dd 0
dd @@_$DCAH$@Mysend$qqsuipxcii+16
dw 0
dw 5
dd 0
dd @@_$DCAH$@Mysend$qqsuipxcii+56
dw 0
dw 5
dd 0
dd @@_$DCAH$@Mysend$qqsuipxcii
dw 32
dw 5
dd 1
dd @@_$DCAH$@Mysend$qqsuipxcii+72
dw 32
dw 5
dd 1
dd @@_$DCAH$@Mysend$qqsuipxcii+88
dw 32
dw 5
dd 1
dd @@_$DCAH$@Mysend$qqsuipxcii+104
@_$ECTBH$@Mysend$qqsuipxcii ends
_DATA ends
_TEXT segment dword public use32 'CODE'
@Mysend$qqsuipxcii segment virtual
@@Mysend$qqsuipxcii proc near
?live16406@0:
?debug L 158
push ebp
mov ebp,esp
add esp,-108
@46:
mov eax,offset @@_$ECTBH$@Mysend$qqsuipxcii
call @__InitExceptBlockLDTC
?debug L 164
xor edx,edx
mov dword ptr [ebp-80],edx
?debug L 165
call @sendHookOff
?debug L 166
push dword ptr [ebp+16]
push dword ptr [ebp+12]
push offset _mysendbuf
call @_memcpy
add esp,12
?debug L 167
cmp dword ptr [_ok],0
je @47
cmp byte ptr [_isnewok],1
jne @47
?debug L 169
mov ecx,dword ptr [_form0]
mov eax,dword ptr [ecx+724]
add eax,520
mov dword ptr [ebp-84],eax
mov word ptr [ebp-60],8
lea eax,dword ptr [ebp-16]
call @@System@AnsiString@$bctr$qqrv
push eax
inc dword ptr [ebp-48]
mov edx,offset s@+36
lea eax,dword ptr [ebp-12]
call @@System@AnsiString@$bctr$qqrpxc
inc dword ptr [ebp-48]
lea edx,dword ptr [ebp-12]
push edx
mov edx,offset s@+27
lea eax,dword ptr [ebp-8]
call @@System@AnsiString@$bctr$qqrpxc
inc dword ptr [ebp-48]
pop edx
pop ecx
call @@System@AnsiString@$badd$xqqrrx17System@AnsiString
lea edx,dword ptr [ebp-16]
mov edx,dword ptr [edx]
mov eax,dword ptr [ebp-84]
mov eax,dword ptr [eax]
mov ecx,dword ptr [eax]
call dword ptr [ecx+52]
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-16]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-12]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-8]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
?debug L 171
@48:
mov dword ptr [ebp-92],1
?debug L 172
mov word ptr [ebp-60],20
lea eax,dword ptr [ebp-4]
call @@System@AnsiString@$bctr$qqrv
inc dword ptr [ebp-48]
mov word ptr [ebp-60],32
?debug L 173
xor edx,edx
mov dword ptr [ebp-88],edx
jmp @50
?debug L 174
@49:
cmp dword ptr [ebp-92],16
jle @51
?debug L 175
mov ecx,dword ptr [_form0]
mov eax,dword ptr [ecx+724]
add eax,520
mov dword ptr [ebp-100],eax
mov edx,dword ptr [ebp-100]
mov eax,dword ptr [edx]
mov edx,dword ptr [ebp-4]
mov ecx,dword ptr [eax]
call dword ptr [ecx+52]
?debug L 176
mov dword ptr [ebp-92],1
?debug L 178
mov eax,dword ptr [_form0]
mov edx,dword ptr [eax+724]
add edx,520
mov dword ptr [ebp-104],edx
mov word ptr [ebp-60],44
mov edx,offset s@+41
lea eax,dword ptr [ebp-20]
call @@System@AnsiString@$bctr$qqrpxc
inc dword ptr [ebp-48]
mov edx,dword ptr [eax]
mov eax,dword ptr [ebp-104]
mov eax,dword ptr [eax]
mov ecx,dword ptr [eax]
call dword ptr [ecx+52]
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-20]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
?debug L 179
mov word ptr [ebp-60],56
mov edx,offset s@+43
lea eax,dword ptr [ebp-24]
call @@System@AnsiString@$bctr$qqrpxc
inc dword ptr [ebp-48]
lea edx,dword ptr [ebp-24]
lea eax,dword ptr [ebp-4]
call @@System@AnsiString@$basg$qqrrx17System@AnsiString
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-24]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
?debug L 181
@51:
mov word ptr [ebp-60],68
lea eax,dword ptr [ebp-28]
call @@System@AnsiString@$bctr$qqrv
mov ecx,eax
inc dword ptr [ebp-48]
mov edx,dword ptr [ebp-88]
xor eax,eax
mov al,byte ptr [edx+_mysendbuf]
mov edx,2
call @@Sysutils@IntToHex$qqrii
lea ecx,dword ptr [ebp-28]
push ecx
lea eax,dword ptr [ebp-32]
call @@System@AnsiString@$bctr$qqrv
mov ecx,eax
inc dword ptr [ebp-48]
lea eax,dword ptr [ebp-4]
pop edx
call @@System@AnsiString@$badd$xqqrrx17System@AnsiString
lea ecx,dword ptr [ebp-32]
push ecx
lea eax,dword ptr [ebp-40]
call @@System@AnsiString@$bctr$qqrv
push eax
inc dword ptr [ebp-48]
mov edx,offset s@+44
lea eax,dword ptr [ebp-36]
call @@System@AnsiString@$bctr$qqrpxc
inc dword ptr [ebp-48]
lea edx,dword ptr [ebp-36]
pop ecx
pop eax
call @@System@AnsiString@$badd$xqqrrx17System@AnsiString
lea edx,dword ptr [ebp-40]
lea eax,dword ptr [ebp-4]
call @@System@AnsiString@$basg$qqrrx17System@AnsiString
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-40]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-36]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-32]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-28]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
?debug L 182
mov ecx,dword ptr [ebp-88]
inc ecx
mov dword ptr [ebp-96],ecx
?debug L 183
mov eax,dword ptr [ebp+16]
dec eax
cmp eax,dword ptr [ebp-96]
jge short @52
?debug L 185
mov edx,dword ptr [_form0]
mov ecx,dword ptr [edx+724]
add ecx,520
mov dword ptr [ebp-108],ecx
mov eax,dword ptr [ebp-108]
mov eax,dword ptr [eax]
mov edx,dword ptr [ebp-4]
mov ecx,dword ptr [eax]
call dword ptr [ecx+52]
?debug L 188
@52:
inc dword ptr [ebp-92]
inc dword ptr [ebp-88]
@50:
mov eax,dword ptr [ebp+16]
dec eax
cmp eax,dword ptr [ebp-88]
jge @49
?debug L 193
dec dword ptr [ebp-48]
lea eax,dword ptr [ebp-4]
mov edx,2
call @@System@AnsiString@$bdtr$qqrv
mov word ptr [ebp-60],0
?debug L 194
@54:
@47:
push dword ptr [ebp+20]
push dword ptr [ebp+16]
push offset _mysendbuf
push dword ptr [ebp+8]
call @send
mov dword ptr [ebp-80],eax
?debug L 195
call @sendHookOn
?debug L 196
mov eax,dword ptr [ebp-80]
mov edx,dword ptr [ebp-76]
mov dword ptr fs:[0],edx
?debug L 197
@56:
@55:
mov esp,ebp
pop ebp
ret 16
?debug L 0
@@Mysend$qqsuipxcii endp
@Mysend$qqsuipxcii ends
_TEXT ends
$$BSYMS segment byte public use32 'DEBSYM'
dw 65
dw 517
dw 0
dw 0
dw 0
dw 0
dw 0
dw 0
dd ?patch66
dd ?patch67
dd ?patch68
df @@Mysend$qqsuipxcii
dw 0
dw 4158
dw 0
dw 60
dw 0
dw 0
dw 0
db 18
db 64
db 77
db 121
db 115
db 101
db 110
db 100
db 36
db 113
db 113
db 115
db 117
db 105
db 112
db 120
db 99
db 105
db 105
dw 18
dw 512
dw 8
dw 0
dw 117
dw 0
dw 61
dw 0
dw 0
dw 0
dw 18
dw 512
dw 12
dw 0
dw 4159
dw 0
dw 62
dw 0
dw 0
dw 0
dw 18
dw 512
dw 16
dw 0
dw 116
dw 0
dw 63
dw 0
dw 0
dw 0
dw 18
dw 512
dw 20
dw 0
dw 116
dw 0
dw 64
dw 0
dw 0
dw 0
dw 18
dw 512
dw 65456
dw 65535
dw 116
dw 0
dw 65
dw 0
dw 0
dw 0
dw 24
dw 519
dw 0
dw 0
dw 0
dw 0
dd ?patch69
df @48
dw 0
dw 0
dw 18
dw 512
dw 65532
dw 65535
dw 65528
dw 65535
dw 66
dw 0
dw 0
dw 0
dw 18
dw 512
dw 65440
dw 65535
dw 116
dw 0
dw 67
dw 0
dw 0
dw 0
dw 18
dw 512
dw 65444
dw 65535
dw 116
dw 0
dw 68
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -