WoW Memory Editing WoW Memory Editing for learning purposes only.
This section is more advanced than others on MMOwned Read the section specific rules, infractions will be given out if u break them! That is including the expectations! - If you don't meet them then don't post
11-25-2008
Sergeant
Join Date: Nov 2007
Posts: 65
Reputation: 19
Weird issues calling CastSpellByID
Its me again, I managed to call CastSpellByID a couple of days ago, again using Shynds BlackMagic library.
When I first tested it it worked great, zero issues. When I tried to call the same function with the same code today it started to crash wow alot. I did some testing to find out that it the crashes are related to me moving the mouse over the wow-window or dragging/activating other windows.
For the record: Ive read
[Only registered and activated users can see links. topic too.
This is my code:
Code:
wow.Asm.Clear();
uint codeCave = wow.AllocateMemory(0x1000);
uint CastSpellByID = 0x00773400;
uint curMgr = ObjectMgr.GetCurMgr(wow.ProcessHandle);
wow.Asm.AddLine("fs mov eax, [0x2C]");
wow.Asm.AddLine("mov eax, [eax]");
wow.Asm.AddLine("add eax, 8");
wow.Asm.AddLine("mov dword [eax], {0}", curMgr);
wow.Asm.AddLine("push 0");
wow.Asm.AddLine("push 0");
wow.Asm.AddLine("push 0");
wow.Asm.AddLine("push {0}", id);//spell id
wow.Asm.AddLine("call {0}", CastSpellByID);
wow.Asm.AddLine("add esp,16");
wow.Asm.AddLine("retn");
//Console.WriteLine("CastSpellByID {0} {1} {2} {3}", id, codeCave, CastSpellByID, curMgr);
wow.Asm.InjectAndExecute(codeCave);
//System.Windows.Forms.Clipboard.SetText("" + codeCave.ToString("x"));
//Console.WriteLine("...");
//Console.ReadKey();
wow.FreeMemory(codeCave);
This is how it looks in olly:
Code:
060B0000 64:A1 2C000000 MOV EAX,DWORD PTR FS:[2C]
060B0006 8B00 MOV EAX,DWORD PTR DS:[EAX]
060B0008 83C0 08 ADD EAX,8
060B000B C700 30BDEC0B MOV DWORD PTR DS:[EAX],0BECBD30
060B0011 6A 00 PUSH 0
060B0013 6A 00 PUSH 0
060B0015 6A 00 PUSH 0
060B0017 68 AF020000 PUSH 2AF
060B001C E8 DF336CFA CALL Wow.00773400
060B0021 83C4 10 ADD ESP,10
060B0024 C3 RETN
Now some crashes that Ive observed with ollydbg:
Code:
Me moving the mouse over wow:
007BBC40 /$ 55 PUSH EBP
007BBC41 |. 8BEC MOV EBP,ESP
007BBC43 |. 83EC 08 SUB ESP,8
007BBC46 |. 57 PUSH EDI
007BBC47 |. 8B7D 0C MOV EDI,DWORD PTR SS:[EBP+C] ;<< Exception: here it failed to read from memory
007BBC4A |. 8B47 08 MOV EAX,DWORD PTR DS:[EDI+8]
007BBC4D |. 83E8 00 SUB EAX,0 ; Switch (cases 0..4)
007BBC50 |. 0F84 85000000 JE Wow.007BBCDB
007BBC56 |. 83E8 03 SUB EAX,3
007BBC59 |. 74 19 JE SHORT Wow.007BBC74
007BBC5B |. 83E8 01 SUB EAX,1
007BBC5E |. 75 40 JNZ SHORT Wow.007BBCA0
007BBC60 |. 8B07 MOV EAX,DWORD PTR DS:[EDI] ; Case 4 of switch 007BBC4D
Me overlapping a another window with the wow window:
7C95E381 C785 D4FCFFFF 29>MOV DWORD PTR SS:[EBP-32C],C0000029
7C95E38B 89BD D8FCFFFF MOV DWORD PTR SS:[EBP-328],EDI
7C95E391 89B5 DCFCFFFF MOV DWORD PTR SS:[EBP-324],ESI
7C95E397 E8 6C01FCFF CALL ntdll.RtlRaiseException
7C95E39C ^E9 BBC8FDFF JMP ntdll.7C93AC5C << ExceptionINVALID UNWIND TARGET
7C95E3A1 48 DEC EAX
7C95E3A2 48 DEC EAX
7C95E3A3 74 2E JE SHORT ntdll.7C95E3D3
7C95E3A5 83A5 E4FCFFFF 00 AND DWORD PTR SS:[EBP-31C],0
7C95E3AC 8D85 D4FCFFFF LEA EAX,DWORD PTR SS:[EBP-32C]
7C95E3B2 50 PUSH EAX
7C95E3B3 C785 D4FCFFFF 26>MOV DWORD PTR SS:[EBP-32C],C0000026
7C95E3BD 89BD D8FCFFFF MOV DWORD PTR SS:[EBP-328],EDI
7C95E3C3 89B5 DCFCFFFF MOV DWORD PTR SS:[EBP-324],ESI
7C95E3C9 E8 3A01FCFF CALL ntdll.RtlRaiseException
7C95E3CE ^E9 E1C8FDFF JMP ntdll.7C93ACB4
Again this code works, it just started to produce these weird exceptions today.
Any ideas?
I did some more testing, these exceptions only seem to occur when wow is set to windowed mode and smaller than my desktop resolution.
Last edited by hypnodok; 11-25-2008 at 12:40 PM .
Donate to remove ads, get your "DONATOR title, and get access to the MMOwned community's elite Shoutbawx.
11-26-2008
Sergeant
Join Date: Nov 2007
Posts: 65
Reputation: 19
Oh god, you dont even want to know what the issue was in this case.
Last edited by hypnodok; 11-26-2008 at 08:21 AM .
11-26-2008
Contributor
Join Date: May 2008
Posts: 387
Reputation: 87
Level up: 2%, 494 Points needed
rofl what was the issue?
11-26-2008
Sergeant
Join Date: Nov 2007
Posts: 65
Reputation: 19
Well it was an issue, not _the_ issue unfortunatelly. I just found a couple more mistakes in my program while trying to fix this function call, one of them being me forgetting to keep the thread that moves data from memory into their corresponding collections running.
CallSpellByID is still not working right for me, I would really appreciate it if any of you could point me in the right direction. It always works for a while, then produces an exception and makes wow crash.
Its really confusing, LUA errors wtf?
Code:
#1
Call stack of main thread
Address Stack Procedure / arguments Called from Frame
0019FB24 0071A521 Wow.00716050 Wow.0071A51C 0019FB20
0019FB40 00722FF4 Wow.0071A400 Wow.00722FEF 0019FB3C
0019FB50 006F0F70 Wow.00722FB0 Wow.006F0F6B 0019FB4C
0019FB54 00000001 Arg1 = 00000001
0019FB68 004B8974 Wow.006F0D90 Wow.004B896F 0019FB64
0019FC28 004B8EA6 Wow.004B83A0 Wow.004B8EA1 0019FC24
0019FCB4 0042C162 Wow.004B8E00 Wow.0042C160 0019FCB0
0019FCB8 0BD0013C Arg1 = 0BD0013C
0019FD70 004393C7 ? Wow.0042BB50 Wow.004393C2 0019FD6C
0019FD8C 004398B9 Wow.00439390 Wow.004398B4 0019FD88
0019FDA8 00443F6C Wow.00439870 Wow.00443F6A 0019FDA4
0019FDAC 00000000 Arg1 = 00000000
0019FDB0 0C8CA8C8 Arg2 = 0C8CA8C8
0019FDB4 0C8CA8D8 Arg3 = 0C8CA8D8
0019FDB8 3CC49BA6 Arg4 = 3CC49BA6
0019FE74 00427AE9 Wow.00443C80 Wow.00427AE7 0019FE70
0019FE78 00000000 Arg1 = 00000000
0019FE7C 00000000 Arg2 = 00000000
0019FEA4 00426429 Wow.00427A40 Wow.00426424 0019FEA0
0019FEA8 024D6F98 Arg1 = 024D6F98
0019FEAC 00000011 Arg2 = 00000011
0019FEB0 00000000 Arg3 = 00000000
0019FF10 00426501 Wow.004261D0 Wow.004264FC 0019FF0C
0019FF14 00000000 Arg1 = 00000000
0019FF18 00406A80 Wow.00424630 Wow.00406A7B 0019FF24
0019FF28 00406AE8 Wow.004069C0 Wow.00406AE3 0019FF24
0019FF2C 0040AD49 Wow.00406AC0 Wow.0040AD44 0019FFC0
00716050 /$ 55 PUSH EBP
00716051 |. 8BEC MOV EBP,ESP
00716053 |. 83EC 10 SUB ESP,10
00716056 |. 56 PUSH ESI
00716057 |. 57 PUSH EDI
00716058 |. 8BF1 MOV ESI,ECX
0071605A |. E8 61EF0300 CALL Wow.00754FC0
0071605F |. 33FF XOR EDI,EDI
00716061 |. 39BE DC010000 CMP DWORD PTR DS:[ESI+1DC],EDI
00716067 |. 8945 F4 MOV DWORD PTR SS:[EBP-C],EAX
0071606A |. 897D F8 MOV DWORD PTR SS:[EBP-8],EDI
0071606D |. 0F86 88000000 JBE Wow.007160FB
00716073 |. 53 PUSH EBX
00716074 |> 8B86 D8010000 /MOV EAX,DWORD PTR DS:[ESI+1D8]
0071607A |. F60407 10 |TEST BYTE PTR DS:[EDI+EAX],10 ; access violation when reading 4160
0071607E |. 74 62 |JE SHORT Wow.007160E2
00716080 |. 8BC8 |MOV ECX,EAX
00716082 |. 8B540F 10 |MOV EDX,DWORD PTR DS:[EDI+ECX+10]
00716086 |. 8D040F |LEA EAX,DWORD PTR DS:[EDI+ECX]
00716089 |. 8950 14 |MOV DWORD PTR DS:[EAX+14],EDX
0071608C |. 8B45 F4 |MOV EAX,DWORD PTR SS:[EBP-C]
0071608F |. D980 DC010000 |FLD DWORD PTR DS:[EAX+1DC]
00716095 |. D80D B0FA9200 |FMUL DWORD PTR DS:[92FAB0]
0071609B |. D95D F0 |FSTP DWORD PTR SS:[EBP-10]
0071609E |. D945 F0 |FLD DWORD PTR SS:[EBP-10]
007160A1 |. D825 F0B3FD00 |FSUB DWORD PTR DS:[FDB3F0]
007160A7 |. DB5D FC |FISTP DWORD PTR SS:[EBP-4]
007160AA |. 8B8E D8010000 |MOV ECX,DWORD PTR DS:[ESI+1D8]
007160B0 |. 8B45 FC |MOV EAX,DWORD PTR SS:[EBP-4]
007160B3 |. 0FB6540F 16 |MOVZX EDX,BYTE PTR DS:[EDI+ECX+16]
007160B8 |. 8D4C0F 14 |LEA ECX,DWORD PTR DS:[EDI+ECX+14]
007160BC |. 0FAFD0 |IMUL EDX,EAX
007160BF |. C1EA 08 |SHR EDX,8
007160C2 |. 33DB |XOR EBX,EBX
007160C4 |. 8AFA |MOV BH,DL
007160C6 |. 0FB651 01 |MOVZX EDX,BYTE PTR DS:[ECX+1]
007160CA |. 0FAFD0 |IMUL EDX,EAX
007160CD |. 8ADE |MOV BL,DH
007160CF |. 0FB611 |MOVZX EDX,BYTE PTR DS:[ECX]
007160D2 |. 0FAFD0 |IMUL EDX,EAX
007160D5 |. C1EA 08 |SHR EDX,8
007160D8 |. 0FB6C2 |MOVZX EAX,DL
007160DB |. C1E3 08 |SHL EBX,8
007160DE |. 0BD8 |OR EBX,EAX
007160E0 |. 8919 |MOV DWORD PTR DS:[ECX],EBX
007160E2 |> 8B45 F8 |MOV EAX,DWORD PTR SS:[EBP-8]
007160E5 |. 83C0 01 |ADD EAX,1
007160E8 |. 83C7 40 |ADD EDI,40
007160EB |. 3B86 DC010000 |CMP EAX,DWORD PTR DS:[ESI+1DC]
007160F1 |. 8945 F8 |MOV DWORD PTR SS:[EBP-8],EAX
007160F4 |.^0F82 7AFFFFFF \JB Wow.00716074
007160FA |. 5B POP EBX
007160FB |> 5F POP EDI
007160FC |. 5E POP ESI
007160FD |. 8BE5 MOV ESP,EBP
007160FF |. 5D POP EBP
00716100 \. C3 RETN
#2
Call stack of thread 00000EA0
Address Stack Procedure / arguments Called from Frame
0921ED5C 007B85D6 Wow.007B7A60 Wow.007B85D1 0921ED58
0921ED60 0C06EB80 Arg1 = 0C06EB80
0921ED64 0BE6D410 Arg2 = 0BE6D410
0921ED68 0000000F Arg3 = 0000000F
0921ED8C 007B92EF Wow.007B8570 Wow.007B92EA 0921ED88
0921ED90 0C06EB80 Arg1 = 0C06EB80
0921ED94 00000002 Arg2 = 00000002
0921ED98 00000004 Arg3 = 00000004
0921EE18 007B6317 Wow.007B8910 Wow.007B6312 0921EE14
0921EE34 007AE3C1 Wow.007B6290 Wow.007AE3BC 0921EE30
0921EE38 0C06EB80 Arg1 = 0C06EB80
0921EE3C 1367FDD0 Arg2 = 1367FDD0
0921EE40 00000001 Arg3 = 00000001
0921EE50 0077E104 Wow.007AE3A0 Wow.0077E0FF 0921EE4C
0921EE54 0C06EB80 Arg1 = 0C06EB80
0921EE58 00000001 Arg2 = 00000001
0921EE5C 00000001 Arg3 = 00000001
0921EE60 0C06EB80 Arg4 = 0C06EB80
0921EE64 FFFFFFFE Arg5 = FFFFFFFE
0921EE68 0C06EB80 Arg6 = 0C06EB80
0921EE6C FFFFD8F0 Arg7 = FFFFD8F0
0921EE70 0000009E Arg8 = 0000009E
0921EE88 007B604C Wow.0077E070 Wow.007B604A 0921EE84
0921EE8C 0C06EB80 Arg1 = 0C06EB80
0921EE90 0077E070 Arg2 = 0077E070
0921EEA4 007B6308 Wow.007B5EA0 Wow.007B6303 0921EEA0
0921EEA8 00000180 Arg1 = 00000180
0921EEAC 1367FDE0 Arg2 = 1367FDE0
0921EEB0 00000001 Arg3 = 00000001
0921EEC4 007B056D Wow.007B6290 Wow.007B0568 0921EEC0
0921EEC8 0C06EB80 Arg1 = 0C06EB80
0921EECC 1367FDE0 Arg2 = 1367FDE0
0921EED0 00000001 Arg3 = 00000001
0921EEDC 007B05A1 Wow.007B0490 Wow.007B059C 0921EED8
0921EEE0 0C06EB80 Arg1 = 0C06EB80
0921EEE4 13854CFC Arg2 = 13854CFC ASCII "attempt to concatenate a table value"
0921EEE8 0C06EB80 Arg3 = 0C06EB80
0921EEEC 00983860 Arg4 = 00983860 ASCII "attempt to %s a %s value"
0921EEF0 0921EF08 Arg5 = 0921EF08
0921EEFC 007B080B Wow.007B0580 Wow.007B0806 0921EEF8
0921EF00 0C06EB80 Arg1 = 0C06EB80
0921EF04 00983860 Arg2 = 00983860 ASCII "attempt to %s a %s value"
0921EF08 0098387C Arg3 = 0098387C ASCII "concatenate"
0921EF0C 00983BEC Arg4 = 00983BEC ASCII "table"
0921EF24 007B086E Wow.007B07C0 Wow.007B0869 0921EF20
0921EF28 0C06EB80 Arg1 = 0C06EB80
0921EF2C 1367FD60 Arg2 = 1367FD60
0921EF30 0098387C Arg3 = 0098387C ASCII "concatenate"
0921EF38 007B860D Wow.007B0850 Wow.007B8608 0921EF34
0921EF68 007AEC5B Wow.007B8570 Wow.007AEC56 0921EF64
0921EFB4 007B0595 Wow.007AEA30 Wow.007B0590 0921EFB0
0921EFCC 007B080B Wow.007B0580 Wow.007B0806 0921EFC8
0921EFD0 0C06EB80 Arg1 = 0C06EB80
0921EFD4 00983860 Arg2 = 00983860 ASCII "attempt to %s a %s value"
0921EFD8 0098387C Arg3 = 0098387C ASCII "concatenate"
0921EFDC 009339A4 Arg4 = 009339A4 ASCII "nil"
0921EFF4 007B086E Wow.007B07C0 Wow.007B0869 0921EFF0
0921EFF8 0C06EB80 Arg1 = 0C06EB80
0921EFFC 1367FCF0 Arg2 = 1367FCF0
0921F000 0098387C Arg3 = 0098387C ASCII "concatenate"
0921F008 007B860D Wow.007B0850 Wow.007B8608 0921F004
0921F038 007AEC5B Wow.007B8570 Wow.007AEC56 0921F034
0921F084 007AED04 Wow.007AEA30 Wow.007AECFF 0921F080
0921F098 007B0485 Wow.007AECF0 Wow.007B0480 0921F094
0921F09C 0C06EB80 Arg1 = 0C06EB80
0921F0A0 00983830 Arg2 = 00983830 ASCII "%s:%d: %s"
0921F0A4 0921F0C4 Arg3 = 0921F0C4 ASCII "Interface\FrameXML\UnitFrame.lua"
0921F0A8 000000E2 Arg4 = 000000E2
0921F0AC 0CC0A6B4 Arg5 = 0CC0A6B4
0921F0B0 0921F0C4 Arg6 = 0921F0C4 ASCII "Interface\FrameXML\UnitFrame.lua"
0921F0B4 0CC652AC Arg7 = 0CC652AC ASCII "@Interface\FrameXML\UnitFrame.lua"
0921F0B8 0000003C Arg8 = 0000003C
0921F104 007B059B Wow.007B0420 Wow.007B0596 0921F100
0921F120 007B080B Wow.007B0580 Wow.007B0806 0921F11C
0921F124 0C06EB80 Arg1 = 0C06EB80
0921F128 00983860 Arg2 = 00983860 ASCII "attempt to %s a %s value"
0921F12C 00984370 Arg3 = 00984370 ASCII "call"
0921F130 009339A4 Arg4 = 009339A4 ASCII "nil"
0921F148 007B59FD Wow.007B07C0 Wow.007B59F8 0921F144
0921F14C 0C06EB80 Arg1 = 0C06EB80
0921F150 1367FDB0 Arg2 = 1367FDB0
0921F154 00984370 Arg3 = 00984370 ASCII "call"
0921F164 007B5EB9 Wow.007B59D0 Wow.007B5EB4 0921F160
0921F178 007B6308 Wow.007B5EA0 Wow.007B6303 0921F174
0921F17C 0C06EB80 Arg1 = 0C06EB80
0921F180 1367FDB0 Arg2 = 1367FDB0
0921F184 00000000 Arg3 = 00000000
0921F198 007AE3F6 Wow.007B6290 Wow.007AE3F1 0921F194
0921F19C 0C06EB80 Arg1 = 0C06EB80
0921F1A0 1367FDB0 Arg2 = 1367FDB0
0921F1A4 00000000 Arg3 = 00000000
0921F1AC 007B5663 Wow.007AE3E0 Wow.007B5660 0921F1A8
0921F208 007B64D9 Wow.007B5620 Wow.007B64D4 0921F204
0921F20C 0C06EB80 Arg1 = 0C06EB80
0921F210 007AE3E0 Arg2 = 007AE3E0
0921F214 0921F250 Arg3 = 0921F250
0921F230 007AE44F Wow.007B64A0 Wow.007AE44A 0921F22C
0921F234 0106EB80 Arg1 = 0106EB80
0921F238 007AE3E0 Arg2 = 007AE3E0
0921F23C 0921F250 Arg3 = 0921F250
0921F240 00000150 Arg4 = 00000150
0921F244 00000140 Arg5 = 00000140
0921F25C 0077E94B Wow.007AE400 Wow.0077E946 0921F258
0921F260 0C06EB80 Arg1 = 0C06EB80
0921F264 00000002 Arg2 = 00000002
0921F268 00000000 Arg3 = 00000000
0921F26C FFFFFFFC Arg4 = FFFFFFFC
0921F2B4 0077F12D ? Wow.0077E660 Wow.0077F128 0921F2B0
0921F2E4 0077F40E Wow.0077F070 Wow.0077F409 0921F2E0
0921F30C 0050EF3C Wow.0077F2B0 Wow.0050EF37 0921F308
0921F310 000000B1 Arg1 = 000000B1
0921F314 00000000 Arg2 = 00000000
0921F318 004CCDA5 Wow.0050EF30 Wow.004CCDA0 0921F334
0921F31C 0076B601 Wow.004CCDA0 Wow.0076B5FC 0921F334
0921F338 0077124D Wow.0076B480 Wow.00771248 0921F334
0921F33C 0921F360 Arg1 = 0921F360
0921F340 00000000 Arg2 = 00000000
0921F344 00000001 Arg3 = 00000001
0921F638 00771F8C ? Wow.00770A40 Wow.00771F87 0921F634
0921F63C 00000000 Arg1 = 00000000
0921F8F4 007727A9 Wow.00771900 Wow.007727A4 0921F8F0
0921F8F8 006FAF80 Arg1 = 006FAF80
0921F8FC 011333F8 Arg2 = 011333F8
0921F91C 007730FD Wow.007723E0 Wow.007730F8 0921F918
0921F920 136C8D18 Arg1 = 136C8D18
0921F924 0921FCC0 Arg2 = 0921FCC0
0921F928 00000000 Arg3 = 00000000
0921F92C F130000C Arg4 = F130000C
0921F930 131333F8 Arg5 = 131333F8
0921FF70 00773433 Wow.007728C0 Wow.castspellbyid+2E 0921FF6C
0921FFA4 060C0021 <Wow.castspellbyid> 060C001C 0921FFA0
0921FFA8 000002AE Arg1 = 000002AE
0921FFAC 00000000 Arg2 = 00000000
0921FFB0 00000000 Arg3 = 00000000
0921FFB4 00000000 Arg4 = 00000000
0921FFB8 7C80B713 Includes 060C0021 kernel32.7C80B710 0921FFEC
007B7A60 /$ 55 PUSH EBP
007B7A61 |. 8BEC MOV EBP,ESP
007B7A63 |. 8B55 0C MOV EDX,DWORD PTR SS:[EBP+C]
007B7A66 |. 8B42 08 MOV EAX,DWORD PTR DS:[EDX+8]
007B7A69 |. 8BC8 MOV ECX,EAX
007B7A6B |. 83E9 05 SUB ECX,5 ; Switch (cases 5..7)
007B7A6E |. 56 PUSH ESI
007B7A6F |. 8B75 08 MOV ESI,DWORD PTR SS:[EBP+8]
007B7A72 |. 74 18 JE SHORT Wow.007B7A8C
007B7A74 |. 83E9 02 SUB ECX,2
007B7A77 |. 74 0C JE SHORT Wow.007B7A85
007B7A79 |. 8B4E 14 MOV ECX,DWORD PTR DS:[ESI+14] ; Default case of switch 007B7A6B
007B7A7C |. 8B8481 A000000>MOV EAX,DWORD PTR DS:[ECX+EAX*4+A0] ;access violation
007B7A83 |. EB 0C JMP SHORT Wow.007B7A91
007B7A85 |> 8B12 MOV EDX,DWORD PTR DS:[EDX] ; Case 7 of switch 007B7A6B
007B7A87 |. 8B42 0C MOV EAX,DWORD PTR DS:[EDX+C]
007B7A8A |. EB 05 JMP SHORT Wow.007B7A91
007B7A8C |> 8B02 MOV EAX,DWORD PTR DS:[EDX] ; Case 5 of switch 007B7A6B
007B7A8E |. 8B40 0C MOV EAX,DWORD PTR DS:[EAX+C]
007B7A91 |> 85C0 TEST EAX,EAX
007B7A93 |. 74 1A JE SHORT Wow.007B7AAF
007B7A95 |. 8B4E 14 MOV ECX,DWORD PTR DS:[ESI+14]
007B7A98 |. 8B55 10 MOV EDX,DWORD PTR SS:[EBP+10]
007B7A9B |. 8B8C91 C400000>MOV ECX,DWORD PTR DS:[ECX+EDX*4+C4]
007B7AA2 |. 51 PUSH ECX ; /Arg2
007B7AA3 |. 50 PUSH EAX ; |Arg1
007B7AA4 |. E8 57410000 CALL Wow.007BBC00 ; \Wow.007BBC00
007B7AA9 |. 83C4 08 ADD ESP,8
007B7AAC |. 5E POP ESI
007B7AAD |. 5D POP EBP
007B7AAE |. C3 RETN
007B7AAF |> B8 E0359800 MOV EAX,Wow.009835E0
007B7AB4 |. 5E POP ESI
007B7AB5 |. 5D POP EBP
007B7AB6 \. C3 RETN
#3
Call stack of thread 00000444
Address Stack Procedure / arguments Called from Frame
1077EC34 007E9E82 <JMP.&KERNEL32.RtlUnwind> Wow.007E9E7D 1077EC30
1077EC38 0019FFB0 pRegistrationFrame = 0019FFB0
1077EC3C 007E9E82 ReturnAddr = Wow.007E9E82
1077EC40 1077EC50 pExcptRec = 1077EC50
1077EC44 00000000 _eax_value = 0
1077ECA4 007B5E32 ? Wow.007E9E34 Wow.007B5E2D
1077ECB8 007B0578 ? Wow.007B5E10 Wow.007B0573 1077ECB4
1077ECCC 007B05A1 Wow.007B0490 Wow.007B059C 1077ECC8
1077ECD0 0B596638 Arg1 = 0B596638
1077ECD4 0C12BAEC Arg2 = 0C12BAEC ASCII "method"
1077ECD8 0B596638 Arg3 = 0B596638
1077ECDC 00983860 Arg4 = 00983860 ASCII "attempt to %s a %s value"
1077ECE0 1077ECF8 Arg5 = 1077ECF8
1077ECEC 007B080B Wow.007B0580 Wow.007B0806 1077ECE8
1077ECF0 0B596638 Arg1 = 0B596638
1077ECF4 00983860 Arg2 = 00983860 ASCII "attempt to %s a %s value"
1077ECF8 0098387C Arg3 = 0098387C ASCII "concatenate"
1077ECFC 009339A4 Arg4 = 009339A4 ASCII "nil"
1077ED14 007B086E Wow.007B07C0 Wow.007B0869 1077ED10
1077ED18 0B596638 Arg1 = 0B596638
1077ED1C 141627C8 Arg2 = 141627C8
1077ED20 0098387C Arg3 = 0098387C ASCII "concatenate"
1077ED28 007B860D Wow.007B0850 Wow.007B8608 1077ED24
1077ED58 007AEC5B Wow.007B8570 Wow.007AEC56 1077ED54
1077EDA4 007B0595 Wow.007AEA30 Wow.007B0590 1077EDA0
1077EDBC 007B080B Wow.007B0580 Wow.007B0806 1077EDB8
1077EDC0 0B596638 Arg1 = 0B596638
1077EDC4 00983860 Arg2 = 00983860 ASCII "attempt to %s a %s value"
1077EDC8 0098387C Arg3 = 0098387C ASCII "concatenate"
1077EDCC 00983BEC Arg4 = 00983BEC ASCII "table"
1077EDE4 007B086E Wow.007B07C0 Wow.007B0869 1077EDE0
1077EDE8 0B596638 Arg1 = 0B596638
1077EDEC 14162778 Arg2 = 14162778
1077EDF0 0098387C Arg3 = 0098387C ASCII "concatenate"
1077EDF8 007B860D Wow.007B0850 Wow.007B8608 1077EDF4
1077EE28 007AEC5B Wow.007B8570 Wow.007AEC56 1077EE24
1077EE74 007B0595 Wow.007AEA30 Wow.007B0590 1077EE70
1077EE8C 007B080B Wow.007B0580 Wow.007B0806 1077EE88
1077EE90 0B596638 Arg1 = 0B596638
1077EE94 00983860 Arg2 = 00983860 ASCII "attempt to %s a %s value"
1077EE98 0098387C Arg3 = 0098387C ASCII "concatenate"
1077EE9C 009339A4 Arg4 = 009339A4 ASCII "nil"
1077EEB4 007B086E Wow.007B07C0 Wow.007B0869 1077EEB0
1077EEB8 0B596638 Arg1 = 0B596638
1077EEBC 14162798 Arg2 = 14162798
1077EEC0 0098387C Arg3 = 0098387C ASCII "concatenate"
1077EEC8 007B860D Wow.007B0850 Wow.007B8608 1077EEC4
1077EEF8 007AEC5B Wow.007B8570 Wow.007AEC56 1077EEF4
1077EF44 007B0595 Wow.007AEA30 Wow.007B0590 1077EF40
1077EF5C 007B080B Wow.007B0580 Wow.007B0806 1077EF58
1077EF60 0B596638 Arg1 = 0B596638
1077EF64 00983860 Arg2 = 00983860 ASCII "attempt to %s a %s value"
1077EF68 0098387C Arg3 = 0098387C ASCII "concatenate"
1077EF6C 009339A4 Arg4 = 009339A4 ASCII "nil"
1077EF84 007B086E Wow.007B07C0 Wow.007B0869 1077EF80
1077EF88 0B596638 Arg1 = 0B596638
1077EF8C 14162798 Arg2 = 14162798
1077EF90 0098387C Arg3 = 0098387C ASCII "concatenate"
1077EF98 007B860D Wow.007B0850 Wow.007B8608 1077EF94
1077EFC8 007AEC5B Wow.007B8570 Wow.007AEC56 1077EFC4
1077F014 007ADBA9 Wow.007AEA30 Wow.007ADBA4 1077F010
1077F02C 007AEEB8 Wow.007ADB80 Wow.007AEEB3 1077F028
1077F030 0B596638 Arg1 = 0B596638
1077F034 00983708 Arg2 = 00983708 ASCII "%s:%d: "
1077F038 1077F068 Arg3 = 1077F068 ASCII "Interface\FrameXML\ActionButton.lua"
1077F03C 00000127 Arg4 = 00000127
1077F0AC 007AEEEF Wow.007AEE70 Wow.007AEEEA 1077F0A8
1077F0C0 00511C28 Wow.007AEEE0 Wow.00511C23 1077F0BC
1077F0C4 0B596638 Arg1 = 0B596638
1077F0C8 0095573C Arg2 = 0095573C ASCII "Usage: IsCurrentAction(slot)"
1077F0D4 007B604C Maybe Wow.00511BC0 Wow.007B604A 1077F0D0
1077F0D8 0B596638 Arg1 = 0B596638
1077F0DC 00511BC0 Arg2 = 00511BC0
1077F0F0 007B95FA Wow.007B5EA0 Wow.007B95F5 1077F0EC
1077F0F4 00000150 Arg1 = 00000150
1077F0F8 14162698 Arg2 = 14162698
1077F0FC 00000001 Arg3 = 00000001
1077F17C 007B6317 Wow.007B8910 Wow.007B6312 1077F178
1077F198 007AE3F6 Wow.007B6290 Wow.007AE3F1 1077F194
1077F19C 0B596638 Arg1 = 0B596638
1077F1A0 141625B8 Arg2 = 141625B8
1077F1A4 00000000 Arg3 = 00000000
1077F1AC 007B5663 Wow.007AE3E0 Wow.007B5660 1077F1A8
1077F208 007B64D9 Wow.007B5620 Wow.007B64D4 1077F204
1077F20C 0B596638 Arg1 = 0B596638
1077F210 007AE3E0 Arg2 = 007AE3E0
1077F214 1077F250 Arg3 = 1077F250
1077F230 007AE44F Wow.007B64A0 Wow.007AE44A 1077F22C
1077F234 01596638 Arg1 = 01596638
1077F238 007AE3E0 Arg2 = 007AE3E0
1077F23C 1077F250 Arg3 = 1077F250
1077F240 00000070 Arg4 = 00000070
1077F244 00000060 Arg5 = 00000060
1077F25C 0077E94B Wow.007AE400 Wow.0077E946 1077F258
1077F260 0B596638 Arg1 = 0B596638
1077F264 00000002 Arg2 = 00000002
1077F268 00000000 Arg3 = 00000000
1077F26C FFFFFFFC Arg4 = FFFFFFFC
1077F2B4 0077F12D ? Wow.0077E660 Wow.0077F128 1077F2B0
1077F2E4 0077F40E Wow.0077F070 Wow.0077F409 1077F2E0
1077F30C 0050EF3C Wow.0077F2B0 Wow.0050EF37 1077F308
1077F310 000000B1 Arg1 = 000000B1
1077F314 00000000 Arg2 = 00000000
1077F318 004CCDA5 Wow.0050EF30 Wow.004CCDA0 1077F334
1077F31C 0076B601 Wow.004CCDA0 Wow.0076B5FC 1077F334
1077F338 0077124D Wow.0076B480 Wow.00771248 1077F334
1077F33C 1077F360 Arg1 = 1077F360
1077F340 00000000 Arg2 = 00000000
1077F344 00000001 Arg3 = 00000001
1077F638 00771F8C ? Wow.00770A40 Wow.00771F87 1077F634
1077F63C 00000000 Arg1 = 00000000
1077F8F4 007727A9 Wow.00771900 Wow.007727A4 1077F8F0
1077F8F8 00876F98 Arg1 = 00876F98
1077F8FC 012B0A28 Arg2 = 012B0A28
1077F91C 007730FD Wow.007723E0 Wow.007730F8 1077F918
1077F920 1383D838 Arg1 = 1383D838
1077F924 1077FCC0 Arg2 = 1077FCC0
1077F928 00000000 Arg3 = 00000000
1077F92C F130000C Arg4 = F130000C
1077F930 132B0A28 Arg5 = 132B0A28
1077FF70 00773433 Wow.007728C0 Wow.castspellbyid+2E 1077FF6C
1077FFA4 060C0021 <Wow.castspellbyid> 060C001C 1077FFA0
1077FFA8 000002AE Arg1 = 000002AE
1077FFAC 00000000 Arg2 = 00000000
1077FFB0 00000000 Arg3 = 00000000
1077FFB4 00000000 Arg4 = 00000000
1077FFB8 7C80B713 Includes 060C0021 kernel32.7C80B710 1077FFEC
11-26-2008
Contributor
Join Date: May 2007
Location: Dragon Shores
Posts: 690
Reputation: 167
Level up: 28%, 651 Points needed
I've got the same problem with CastSpellByID.
__________________
“Saying that Java is nice because it works on all OSes is like saying that anal sex is nice because it works on all genders.”
11-30-2008
Sergeant
Join Date: Nov 2007
Posts: 65
Reputation: 19
Working around the crash by always leaving the console/form on top of the wow window is unacceptable imo.
12-09-2008
Site n00b.. (A leecher if I've been here for more than a month and can't earn 5 rep)
Join Date: Nov 2007
Posts: 4
Reputation: 1
Level up: 92%, 33 Points needed
I'm having the same issue ... and I haven't been able to pin it down. The inline and injection works fine the bulk of the time, but does periodically blow up ... been watching this thread hoping Cypher would point us in the right direction ... any chance Cypher?
12-09-2008
Kynox's sister's pimp
Legendary User Join Date: Apr 2006
Location: ntdll.dll
Posts: 4,181
Nominated 63 Times in 4 Posts
TOTM/W Award(s): 1
Reputation: 1085
Points: 55,512, Level: 35
Level up: 14%, 3,188 Points needed
Quote:
Originally Posted by
romanshade I'm having the same issue ... and I haven't been able to pin it down. The inline and injection works fine the bulk of the time, but does periodically blow up ... been watching this thread hoping Cypher would point us in the right direction ... any chance Cypher?
12-09-2008
Site n00b.. (A leecher if I've been here for more than a month and can't earn 5 rep)
Join Date: Nov 2007
Posts: 4
Reputation: 1
Level up: 92%, 33 Points needed
Here ya go boss. My apologies ... that was stupid of me to not be specific.
I created a quick console application to provide full encapsulation of what is taking place, with respect to this function and the periodic error. Also included a full dump from the wow crash log.
I appreciate anything you can do to push me in the right direction.
Thanks-
'Shade
Small C# Console Application to provide encapsulation without huge codebase.
Code:
using System;
using Magic;
namespace ForCypher
{
internal class Program
{
private const uint CLIENT_CONNECTION = 0x11CA260;
private const uint CURMGR_OFFSET = 0x2864;
private static uint g_ClientConnection;
private static BlackMagic magicWoW;
private static uint s_curMgr;
private static void Main()
{
magicWoW = new BlackMagic();
if (!magicWoW.OpenProcessAndThread(SProcess.GetProcessFromProcessName("wow")))
{
Console.WriteLine("Jacked up dawg");
Console.ReadLine();
return;
}
g_ClientConnection = magicWoW.ReadUInt(CLIENT_CONNECTION);
s_curMgr = magicWoW.ReadUInt(g_ClientConnection + CURMGR_OFFSET);
//Hard code Steady Shot for quick test
if (CastSpellByID(34120)) return;
Console.WriteLine("Jacked up");
Console.ReadLine();
return;
}
public static bool CastSpellByID(uint id)
{
try
{
uint codeCave = magicWoW.AllocateMemory(0x100);
const uint CastSpellID = 0x773400;
magicWoW.Asm.Clear();
magicWoW.Asm.AddLine("fs mov eax, [0x2C]");
magicWoW.Asm.AddLine("mov eax, [eax]");
magicWoW.Asm.AddLine("add eax, 8");
magicWoW.Asm.AddLine("mov dword [eax], {0}", s_curMgr);
magicWoW.Asm.AddLine("push 0");
magicWoW.Asm.AddLine("push 0");
magicWoW.Asm.AddLine("push 0");
magicWoW.Asm.AddLine("push {0}", id);
magicWoW.Asm.AddLine("call {0}", CastSpellID);
magicWoW.Asm.AddLine("add esp,16");
magicWoW.Asm.AddLine("retn");
magicWoW.Asm.InjectAndExecute(codeCave);
magicWoW.FreeMemory(codeCave);
}
catch (Exception)
{
return false;
}
return true;
}
}
}
Dump from the wow crash log.
Code:
==============================================================================
World of WarCraft (build 9183)
Exe: D:\Games\World of Warcraft\Wow.exe
Time: XXXXXXXXXXX
User: XXXXXXXXXXXX
Computer: XXXXXXXXXX
------------------------------------------------------------------------------
This application has encountered a critical error:
ERROR #132 (0x85100084) Fatal Exception
Program: D:\Games\World of Warcraft\Wow.exe
Exception: 0xC0000005 (ACCESS_VIOLATION) at 001B:007B895F
The instruction at "0x007B895F" referenced memory at "0x3030303E".
The memory could not be "read".
WoWBuild: 9183
Realm: Sargeras [63.241.255.119:3724]
Local Zone: The Flood Plains, Borean Tundra
Locked Target: Gorloc Hunter, F5300064641AEB2A, (3283.93,4107.93,25.1084)
Last Enemy Target: Gorloc Hunter, F5300064641AEB2A, (3283.93,4107.93,25.1084)
Settings:
SET locale "enUS"
SET coresDetected "2"
SET hwDetect "0"
SET gxColorBits "24"
SET gxDepthBits "24"
SET gxResolution "1024x768"
SET gxRefresh "60"
SET gxMultisampleQuality "0.000000"
SET gxFixLag "0"
SET videoOptionsVersion "1"
SET textureFilteringMode "0"
SET pixelShaders "1"
SET movie "0"
SET Gamma "1.000000"
SET readTOS "1"
SET readEULA "1"
SET showToolsUI "1"
SET Sound_VoiceChatInputDriverName "System Default"
SET Sound_VoiceChatOutputDriverName "System Default"
SET Sound_OutputDriverName "System Default"
SET SmallCull "0.070000"
SET DistCull "500.000000"
SET farclip "177"
SET particleDensity "1.000000"
SET groundEffectDist "70"
SET weatherDensity "0"
SET realmName "Sargeras"
SET uiScale "1"
SET autoLootCorpse "1"
SET ChatMusicVolume "0.29999998211861"
SET ChatSoundVolume "0.39999997615814"
SET ChatAmbienceVolume "0.29999998211861"
SET Sound_MasterVolume "1"
SET Sound_SFXVolume "1"
SET Sound_MusicVolume "0.40000000596046"
SET Sound_AmbienceVolume "0.60000002384186"
SET gameTip "107"
SET OutboundChatVolume "1"
SET InboundChatVolume "1"
SET VoiceActivationSensitivity "0.39999997615814"
SET gxWindow "1"
SET DesktopGamma "1"
SET shadowLOD "0"
SET readScanning "-1"
SET readContest "-1"
SET readTerminationWithoutNotice "-1"
SET installType "Retail"
SET portal "us"
SET realmList "us.logon.worldofwarcraft.com"
SET patchlist "us.version.worldofwarcraft.com"
SET mouseSpeed "1"
SET environmentDetail "0.5"
SET gxVSync "0"
SET Sound_EnableAllSound "0"
SET timingTestError "0"
SET baseMip "1"
SET spellEffectLevel "0"
SET ffxGlow "0"
SET ffxDeath "0"
------------------------------------------------------------------------------
----------------------------------------
x86 Registers
----------------------------------------
EAX=0B8FEC84 EBX=0B8FFFDC ECX=0B8FECDC EDX=0019FC30 ESI=0B8FEFD0
EDI=00000001 EBP=0B8FEFB0 ESP=0B8FEC28 EIP=7C94E39C FLG=00000246
CS =001B DS =0023 ES =0023 SS =0023 FS =003B GS =0000
----------------------------------------
Stack Trace (Manual)
----------------------------------------
Address Frame Logical addr Module
Showing 23/23 threads...
--- Thread ID: 6092 [Current Thread] ---
7C94E39C 0B8FEFB0 0001:0004D39C C:\WINDOWS\system32\ntdll.dll
--- Thread ID: 5052 ---
7C802542 01D5FF44 0001:00001542 C:\WINDOWS\system32\kernel32.dll
006BBB05 01D5FF60 0001:002BAB05 D:\Games\World of Warcraft\Wow.exe
006D83E5 01D5FF74 0001:002D73E5 D:\Games\World of Warcraft\Wow.exe
007E9CDF 01D5FFAC 0001:003E8CDF D:\Games\World of Warcraft\Wow.exe
007E9D84 01D5FFEC 0001:003E8D84 D:\Games\World of Warcraft\Wow.exe
--- Thread ID: 4352 ---
7C802455 031BFF4C 0001:00001455 C:\WINDOWS\system32\kernel32.dll
006BDA34 031BFF74 0001:002BCA34 D:\Games\World of Warcraft\Wow.exe
007E9CDF 031BFFAC 0001:003E8CDF D:\Games\World of Warcraft\Wow.exe
007E9D84 031BFFEC 0001:003E8D84 D:\Games\World of Warcraft\Wow.exe
--- Thread ID: 5328 ---
7C802455 0332FB6C 0001:00001455 C:\WINDOWS\system32\kernel32.dll
007CAA8D 0332FB78 0001:003C9A8D D:\Games\World of Warcraft\Wow.exe
00455159 0332FF98 0001:00054159 D:\Games\World of Warcraft\Wow.exe
006A1F57 0332FFB4 0001:002A0F57 D:\Games\World of Warcraft\Wow.exe
7C80B713 0332FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 5076 ---
7C802542 039FFF70 0001:00001542 C:\WINDOWS\system32\kernel32.dll
006A5C40 039FFF80 0001:002A4C40 D:\Games\World of Warcraft\Wow.exe
007805B2 039FFF98 0001:0037F5B2 D:\Games\World of Warcraft\Wow.exe
006A1F57 039FFFB4 0001:002A0F57 D:\Games\World of Warcraft\Wow.exe
7C80B713 039FFFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 4392 ---
7C80A105 05F8FF88 0001:00009105 C:\WINDOWS\system32\kernel32.dll
72D2312A 05F8FFB4 0001:0000212A C:\WINDOWS\system32\wdmaud.drv
7C80B713 05F8FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 1876 ---
7C80A105 060FFE40 0001:00009105 C:\WINDOWS\system32\kernel32.dll
73F114A2 060FFE58 0001:000004A2 C:\WINDOWS\system32\dsound.dll
73F12862 060FFF78 0001:00001862 C:\WINDOWS\system32\dsound.dll
73F198DF 060FFF98 0001:000088DF C:\WINDOWS\system32\dsound.dll
73F12896 060FFFB4 0001:00001896 C:\WINDOWS\system32\dsound.dll
7C80B713 060FFFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 3664 ---
7C80A105 0636FE48 0001:00009105 C:\WINDOWS\system32\kernel32.dll
73F114A2 0636FE60 0001:000004A2 C:\WINDOWS\system32\dsound.dll
73F12862 0636FF80 0001:00001862 C:\WINDOWS\system32\dsound.dll
73F1292B 0636FFB4 0001:0000192B C:\WINDOWS\system32\dsound.dll
7C80B713 0636FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 5356 ---
7C802455 064DFF94 0001:00001455 C:\WINDOWS\system32\kernel32.dll
008369BA 064DFFA0 0001:004359BA D:\Games\World of Warcraft\Wow.exe
0083AAE9 064DFFB4 0001:00439AE9 D:\Games\World of Warcraft\Wow.exe
7C80B713 064DFFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 2584 ---
7C802455 0664FF94 0001:00001455 C:\WINDOWS\system32\kernel32.dll
008369BA 0664FFA0 0001:004359BA D:\Games\World of Warcraft\Wow.exe
0083AAE9 0664FFB4 0001:00439AE9 D:\Games\World of Warcraft\Wow.exe
7C80B713 0664FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 1204 ---
7C802455 067BFF94 0001:00001455 C:\WINDOWS\system32\kernel32.dll
008369BA 067BFFA0 0001:004359BA D:\Games\World of Warcraft\Wow.exe
0083AAE9 067BFFB4 0001:00439AE9 D:\Games\World of Warcraft\Wow.exe
7C80B713 067BFFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 2656 ---
7C802455 0792FF94 0001:00001455 C:\WINDOWS\system32\kernel32.dll
008369BA 0792FFA0 0001:004359BA D:\Games\World of Warcraft\Wow.exe
0083AAE9 0792FFB4 0001:00439AE9 D:\Games\World of Warcraft\Wow.exe
7C80B713 0792FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 2464 ---
7C802542 07A9FF64 0001:00001542 C:\WINDOWS\system32\kernel32.dll
006A5C40 07A9FF74 0001:002A4C40 D:\Games\World of Warcraft\Wow.exe
00421CB5 07A9FF8C 0001:00020CB5 D:\Games\World of Warcraft\Wow.exe
00421DD1 07A9FF98 0001:00020DD1 D:\Games\World of Warcraft\Wow.exe
006A1F57 07A9FFB4 0001:002A0F57 D:\Games\World of Warcraft\Wow.exe
7C80B713 07A9FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 4496 ---
7C80A105 07C0FD34 0001:00009105 C:\WINDOWS\system32\kernel32.dll
004224DB 07C0FF8C 0001:000214DB D:\Games\World of Warcraft\Wow.exe
00421DEE 07C0FF98 0001:00020DEE D:\Games\World of Warcraft\Wow.exe
006A1F57 07C0FFB4 0001:002A0F57 D:\Games\World of Warcraft\Wow.exe
7C80B713 07C0FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 5688 ---
7E4195F9 07D7FF14 0001:000085F9 C:\WINDOWS\system32\USER32.dll
7E4196A8 07D7FF30 0001:000086A8 C:\WINDOWS\system32\USER32.dll
006DA017 07D7FF60 0001:002D9017 D:\Games\World of Warcraft\Wow.exe
006D83E5 07D7FF74 0001:002D73E5 D:\Games\World of Warcraft\Wow.exe
007E9CDF 07D7FFAC 0001:003E8CDF D:\Games\World of Warcraft\Wow.exe
007E9D84 07D7FFEC 0001:003E8D84 D:\Games\World of Warcraft\Wow.exe
--- Thread ID: 5936 ---
7C802542 0803FF44 0001:00001542 C:\WINDOWS\system32\kernel32.dll
006BBB05 0803FF60 0001:002BAB05 D:\Games\World of Warcraft\Wow.exe
006D83E5 0803FF74 0001:002D73E5 D:\Games\World of Warcraft\Wow.exe
007E9CDF 0803FFAC 0001:003E8CDF D:\Games\World of Warcraft\Wow.exe
007E9D84 0803FFEC 0001:003E8D84 D:\Games\World of Warcraft\Wow.exe
--- Thread ID: 528 ---
71A55F9F 0B0AFC00 0001:00004F9F C:\WINDOWS\system32\mswsock.dll
71AB314F 0B0AFC50 0001:0000214F C:\WINDOWS\system32\WS2_32.dll
771D7108 0B0AFFAC 0001:00026108 C:\WINDOWS\system32\WININET.dll
771D923B 0B0AFFB4 0001:0002823B C:\WINDOWS\system32\WININET.dll
7C80B713 0B0AFFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 3568 ---
7C80B713 0B21FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 1868 ---
7C802542 0C1BFF78 0001:00001542 C:\WINDOWS\system32\kernel32.dll
006A5C40 0C1BFF88 0001:002A4C40 D:\Games\World of Warcraft\Wow.exe
00825476 0C1BFF98 0001:00424476 D:\Games\World of Warcraft\Wow.exe
006A1F57 0C1BFFB4 0001:002A0F57 D:\Games\World of Warcraft\Wow.exe
7C80B713 0C1BFFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 4664 ---
7E4195F9 0C32FF14 0001:000085F9 C:\WINDOWS\system32\USER32.dll
7E4196A8 0C32FF30 0001:000086A8 C:\WINDOWS\system32\USER32.dll
006DA017 0C32FF60 0001:002D9017 D:\Games\World of Warcraft\Wow.exe
006D83E5 0C32FF74 0001:002D73E5 D:\Games\World of Warcraft\Wow.exe
007E9CDF 0C32FFAC 0001:003E8CDF D:\Games\World of Warcraft\Wow.exe
007E9D84 0C32FFEC 0001:003E8D84 D:\Games\World of Warcraft\Wow.exe
--- Thread ID: 2876 ---
7C802455 0CF1FF94 0001:00001455 C:\WINDOWS\system32\kernel32.dll
008369BA 0CF1FFA0 0001:004359BA D:\Games\World of Warcraft\Wow.exe
0083AAE9 0CF1FFB4 0001:00439AE9 D:\Games\World of Warcraft\Wow.exe
7C80B713 0CF1FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 4680 ---
7C802455 0D08FF94 0001:00001455 C:\WINDOWS\system32\kernel32.dll
008369BA 0D08FFA0 0001:004359BA D:\Games\World of Warcraft\Wow.exe
0083AAE9 0D08FFB4 0001:00439AE9 D:\Games\World of Warcraft\Wow.exe
7C80B713 0D08FFEC 0001:0000A713 C:\WINDOWS\system32\kernel32.dll
--- Thread ID: 5628 ---
7C834AB4 0B8FE2A0 0001:00033AB4 C:\WINDOWS\system32\kernel32.dll
7C82F7E2 0B8FE2E8 0001:0002E7E2 C:\WINDOWS\system32\kernel32.dll
006A35C5 0B8FE5B0 0001:002A25C5 D:\Games\World of Warcraft\Wow.exe
7C35F0C3 0B8FE82C 0001:0001E0C3 D:\InstalledApps\Trillian\MSVCR71.dll
7C83AB38 0B8FFFEC 0001:00039B38 C:\WINDOWS\system32\kernel32.dll
----------------------------------------
Stack Trace (Using DBGHELP.DLL)
----------------------------------------
Showing 23/23 threads...
--- Thread ID: 6092 [Current Thread] ---
7C94E39C ntdll.dll LdrAlternateResourcesEnabled+31037 (0x0019FFB0,0x007E9E82,0x0B8FEFD0,0x00000000)
--- Thread ID: 5052 ---
7C802542 kernel32.dll WaitForSingleObject+18 (0x00002114,0xFFFFFFFF,0x0199BDA8,0x00000000)
006BBB05 Wow.exe <unknown symbol>+0 (0x0199BD28,0x00000000,0x0199BDA8,0x01D5FFAC)
006D83E5 Wow.exe <unknown symbol>+0 (0x0199BD48,0x6034DACA,0x00000000,0x0199BDA8)
007E9CDF Wow.exe <unknown symbol>+0 (0x00000000,0x7C80B713,0x0199BDA8,0x00000000)
007E9D84 Wow.exe <unknown symbol>+0 (0x007E9D05,0x0199BDA8,0x00000000,0x00000008)
--- Thread ID: 4352 ---
7C802455 kernel32.dll Sleep+15 (0x00000064,0x31333539,0x02C7F438,0x01F0FEB0)
006BDA34 Wow.exe <unknown symbol>+0 (0x01F0FEB0,0x62FADACA,0x31333539,0x02C7F438)
007E9CDF Wow.exe <unknown symbol>+0 (0x00001000,0x7C80B713,0x02C7F438,0x31333539)
007E9D84 Wow.exe <unknown symbol>+0 (0x007E9D05,0x02C7F438,0x00000000,0x00000000)
--- Thread ID: 5328 ---
7C802455 kernel32.dll Sleep+15 (0x00000001,0x0332FF98,0x00455159,0x00000001)
007CAA8D Wow.exe <unknown symbol>+0 (0x00000001,0x00454F80,0x02CBAE30,0x000014D0)
00455159 Wow.exe <unknown symbol>+0 (0x02CBAE30,0x01990178,0x00000008,0x02CBAE50)
006A1F57 Wow.exe <unknown symbol>+0 (0x00002158,0x01990178,0x00000008,0x02CBAE50)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x006A1F00,0x02CBAE50,0x00000000,0x03B70000)
--- Thread ID: 5076 ---
7C802542 kernel32.dll WaitForSingleObject+18 (0x000020A4,0xFFFFFFFF,0x039FFF98,0x007805B2)
006A5C40 Wow.exe <unknown symbol>+0 (0xFFFFFFFF,0x012E8CC8,0x000013D4,0x00780550)
007805B2 Wow.exe <unknown symbol>+0 (0x012E8CC8,0x7C9100A4,0x0019FAC8,0x02CBBFC0)
006A1F57 Wow.exe <unknown symbol>+0 (0x0000215C,0x7C9100A4,0x0019FAC8,0x02CBBFC0)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x006A1F00,0x02CBBFC0,0x00000000,0x045D0000)
--- Thread ID: 4392 ---
7C80A105 kernel32.dll WaitForMultipleObjects+24 (0x00000002,0x05F8FFA4,0x00000000,0xFFFFFFFF)
72D2312A wdmaud.drv midMessage+840 (0x00000000,0x00000000,0x020A0014,0x00000000)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x72D230E8,0x00000000,0x00000000,0x00000000)
--- Thread ID: 1876 ---
7C80A105 kernel32.dll WaitForMultipleObjects+24 (0x00000040,0x060FFE78,0x00000000,0xFFFFFFFF)
73F114A2 dsound.dll <unknown symbol>+0 (0x00000040,0xFFFFFFFF,0x00000000,0x060FFE78)
73F12862 dsound.dll <unknown symbol>+0 (0xFFFFFFFF,0x0000003F,0x03B55C48,0x060FFF94)
73F198DF dsound.dll DirectSoundCreate+20900 (0x001C0608,0x03B5333C,0x73F1B2E9,0x7C91003D)
73F12896 dsound.dll <unknown symbol>+0 (0x03B5333C,0x001C0608,0x7C91003D,0x03B5333C)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x73F1B2A1,0x03B5333C,0x00000000,0x00000008)
--- Thread ID: 3664 ---
7C80A105 kernel32.dll WaitForMultipleObjects+24 (0x00000001,0x0636FE80,0x00000000,0x000001F4)
73F114A2 dsound.dll <unknown symbol>+0 (0x00000001,0x000001F4,0x00000000,0x0636FE80)
73F12862 dsound.dll <unknown symbol>+0 (0x000001F4,0x00000000,0x00000000,0x00000000)
73F1292B dsound.dll <unknown symbol>+0 (0x03B51EFC,0x01000001,0x0019F554,0x03B51EFC)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x73F1B2A1,0x03B51EFC,0x00000000,0x00000000)
--- Thread ID: 5356 ---
7C802455 kernel32.dll Sleep+15 (0x0000000A,0x064DFFB4,0x0083AAE9,0x0000000A)
008369BA Wow.exe <unknown symbol>+0 (0x0000000A,0x00000000,0x000014EC,0x064DFFEC)
0083AAE9 Wow.exe <unknown symbol>+0 (0x04442348,0x06120240,0x00000000,0x04442348)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x0083AA7B,0x04442348,0x00000000,0x00000000)
--- Thread ID: 2584 ---
7C802455 kernel32.dll Sleep+15 (0x0000000A,0x0664FFB4,0x0083AAE9,0x0000000A)
008369BA Wow.exe <unknown symbol>+0 (0x0000000A,0x00000000,0x00000A18,0x0664FFEC)
0083AAE9 Wow.exe <unknown symbol>+0 (0x04441628,0x00000000,0x00000000,0x04441628)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x0083AA7B,0x04441628,0x00000000,0x00000000)
--- Thread ID: 1204 ---
7C802455 kernel32.dll Sleep+15 (0x0000000A,0x067BFFB4,0x0083AAE9,0x0000000A)
008369BA Wow.exe <unknown symbol>+0 (0x0000000A,0x06128AA8,0x000004B4,0x067BFFEC)
0083AAE9 Wow.exe <unknown symbol>+0 (0x04312E90,0x06128AA8,0x06128AA8,0x04312E90)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x0083AA7B,0x04312E90,0x00000000,0x00000008)
--- Thread ID: 2656 ---
7C802455 kernel32.dll Sleep+15 (0x0000000A,0x0792FFB4,0x0083AAE9,0x0000000A)
008369BA Wow.exe <unknown symbol>+0 (0x0000000A,0x00000000,0x00000A60,0x0792FFEC)
0083AAE9 Wow.exe <unknown symbol>+0 (0x04438FA8,0x00000000,0x00000000,0x04438FA8)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x0083AA7B,0x04438FA8,0x00000000,0x00000000)
--- Thread ID: 2464 ---
7C802542 kernel32.dll WaitForSingleObject+18 (0x00002340,0x000003E8,0x07A9FF8C,0x00421CB5)
006A5C40 Wow.exe <unknown symbol>+0 (0x000003E8,0x000009A0,0x00421DC0,0x07358778)
00421CB5 Wow.exe <unknown symbol>+0 (0x00000000,0x07A9FFB4,0x006A1F57,0x07358778)
00421DD1 Wow.exe <unknown symbol>+0 (0x07358778,0x00000000,0x00000000,0x07358E50)
006A1F57 Wow.exe <unknown symbol>+0 (0x000023E0,0x00000000,0x00000000,0x07358E50)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x006A1F00,0x07358E50,0x00000000,0x00000000)
--- Thread ID: 4496 ---
7C80A105 kernel32.dll WaitForMultipleObjects+24 (0x00000002,0x07C0FE58,0x00000000,0x000001F4)
004224DB Wow.exe <unknown symbol>+0 (0x00421DE0,0x07C0FFB4,0x006A1F57,0x07358768)
00421DEE Wow.exe <unknown symbol>+0 (0x07358768,0x00000000,0x00000000,0x07358E68)
006A1F57 Wow.exe <unknown symbol>+0 (0x000023E4,0x00000000,0x00000000,0x07358E68)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x006A1F00,0x07358E68,0x00000000,0x00000000)
--- Thread ID: 5688 ---
7E4195F9 USER32.dll GetLastInputInfo+261 (0x00000002,0x07D7FF58,0xFFFFFFFF,0x00000000)
7E4196A8 USER32.dll MsgWaitForMultipleObjects+31 (0x00000002,0x07D7FF58,0x00000000,0xFFFFFFFF)
006DA017 Wow.exe <unknown symbol>+0 (0x01207D20,0x0928FEF8,0x092A55A0,0x07D7FFAC)
006D83E5 Wow.exe <unknown symbol>+0 (0x092A5560,0x6636DACA,0x0928FEF8,0x092A55A0)
007E9CDF Wow.exe <unknown symbol>+0 (0x0332F668,0x7C80B713,0x092A55A0,0x0928FEF8)
007E9D84 Wow.exe <unknown symbol>+0 (0xC708C083,0x59079800,0x6A006A09,0x68006A00)
008B0000 Wow.exe <unknown symbol>+0 (0x00000000,0x00000000,0x00000000,0x00000000)
--- Thread ID: 5936 ---
7C802542 kernel32.dll WaitForSingleObject+18 (0x000023F8,0xFFFFFFFF,0x09505810,0x01208378)
006BBB05 Wow.exe <unknown symbol>+0 (0x094FEBC0,0x01208378,0x09505810,0x0803FFAC)
006D83E5 Wow.exe <unknown symbol>+0 (0x094EA3C8,0x69E2DACA,0x01208378,0x09505810)
007E9CDF Wow.exe <unknown symbol>+0 (0x0019EA24,0x7C80B713,0x09505810,0x01208378)
007E9D84 Wow.exe <unknown symbol>+0 (0x007E9D05,0x09505810,0x00000000,0x000000C8)
--- Thread ID: 528 ---
71A55F9F mswsock.dll <unknown symbol>+0 (0x00000001,0x0B0AFE80,0x0B0AFC78,0x0B0AFD7C)
71AB314F WS2_32.dll select+167 (0x00000001,0x0B0AFE80,0x0B0AFC78,0x0B0AFD7C)
771D7108 WININET.dll GetUrlCacheEntryInfoExW+2210 (0x0B0AFFEC,0x7C80B713,0x002207E0,0x71AB1404)
771D923B WININET.dll InternetSetStatusCallback+471 (0x002207E0,0x71AB1404,0x0000005D,0x002207E0)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x771D922E,0x002207E0,0x00000000,0x00000000)
--- Thread ID: 3568 ---
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x7C927EBB,0x00000000,0x00000000,0x14520000)
--- Thread ID: 1868 ---
7C802542 kernel32.dll WaitForSingleObject+18 (0x0000253C,0x00000064,0x0C1BFF98,0x00825476)
006A5C40 Wow.exe <unknown symbol>+0 (0x00000064,0x00825460,0x0C1BFFB4,0x006A1F57)
00825476 Wow.exe <unknown symbol>+0 (0x0994C050,0x019906E8,0x00000008,0x097069F8)
006A1F57 Wow.exe <unknown symbol>+0 (0x000025B0,0x019906E8,0x00000008,0x097069F8)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x006A1F00,0x097069F8,0x00000000,0x00000000)
--- Thread ID: 4664 ---
7E4195F9 USER32.dll GetLastInputInfo+261 (0x00000002,0x0C32FF58,0xFFFFFFFF,0x00000000)
7E4196A8 USER32.dll MsgWaitForMultipleObjects+31 (0x00000002,0x0C32FF58,0x00000000,0xFFFFFFFF)
006DA017 Wow.exe <unknown symbol>+0 (0x01207D68,0x098C99B0,0x09556E48,0x0C32FFAC)
006D83E5 Wow.exe <unknown symbol>+0 (0x093BF508,0x6DD3DACA,0x098C99B0,0x09556E48)
007E9CDF Wow.exe <unknown symbol>+0 (0x07A9E388,0x7C80B713,0x09556E48,0x098C99B0)
007E9D84 Wow.exe <unknown symbol>+0 (0x007E9D05,0x09556E48,0x00000000,0x0D530000)
--- Thread ID: 2876 ---
7C802455 kernel32.dll Sleep+15 (0x0000000A,0x0CF1FFB4,0x0083AAE9,0x0000000A)
008369BA Wow.exe <unknown symbol>+0 (0x0000000A,0x00000000,0x00000B3C,0x0CF1FFEC)
0083AAE9 Wow.exe <unknown symbol>+0 (0x093D7AC0,0x06162AE0,0x00000000,0x093D7AC0)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x0083AA7B,0x093D7AC0,0x00000000,0x00000000)
--- Thread ID: 4680 ---
7C802455 kernel32.dll Sleep+15 (0x0000000A,0x0D08FFB4,0x0083AAE9,0x0000000A)
008369BA Wow.exe <unknown symbol>+0 (0x0000000A,0x00000000,0x00001248,0x0D08FFEC)
0083AAE9 Wow.exe <unknown symbol>+0 (0x09B47A00,0x00000000,0x00000000,0x09B47A00)
7C80B713 kernel32.dll GetModuleFileNameA+436 (0x0083AA7B,0x09B47A00,0x00000000,0x00667690)
--- Thread ID: 5628 ---
7C802362 kernel32.dll CreateProcessW+44 (0x00000000,0x0B8FE534,0x00000000,0x00000000)
7C8646A4 kernel32.dll UnhandledExceptionFilter+2106 (0x0B8FE854,0x7C839B21,0x0B8FE85C,0x00000000)
7C83AB38 kernel32.dll ValidateLocale+4904 (0x07D80000,0x00000000,0x00000000,0x00000000)
----------------------------------------
Loaded Modules
----------------------------------------
0x003D0000 - 0x003D5000 C:\WINDOWS\system32\avgrsstx.dll
0x00400000 - 0x01390000 D:\Games\World of Warcraft\Wow.exe
0x02C30000 - 0x02C34000 C:\Program Files\Unlocker\UnlockerHook.dll
0x10000000 - 0x10069000 D:\Games\World of Warcraft\DivxDecoder.dll
0x14650000 - 0x14765000 D:\Games\World of Warcraft\dbghelp.dll
0x16000000 - 0x16028000 D:\InstalledApps\Trillian\events.dll
0x18800000 - 0x18813000 C:\Program Files\UltraMon\RTSUltraMonHook.dll
0x4FDD0000 - 0x4FF76000 C:\WINDOWS\system32\d3d9.dll
0x5AD70000 - 0x5ADA8000 C:\WINDOWS\system32\uxtheme.dll
0x5B860000 - 0x5B8B5000 C:\WINDOWS\system32\NETAPI32.dll
0x5D090000 - 0x5D12A000 C:\WINDOWS\system32\comctl32.dll
0x5ED00000 - 0x5EDCC000 C:\WINDOWS\system32\OPENGL32.dll
0x662B0000 - 0x66308000 C:\WINDOWS\system32\hnetcfg.dll
0x68000000 - 0x68036000 C:\WINDOWS\system32\rsaenh.dll
0x68B20000 - 0x68B40000 C:\WINDOWS\system32\GLU32.dll
0x6D990000 - 0x6D996000 C:\WINDOWS\system32\d3d8thk.dll
0x71A50000 - 0x71A8F000 C:\WINDOWS\system32\mswsock.dll
0x71A90000 - 0x71A98000 C:\WINDOWS\System32\wshtcpip.dll
0x71AA0000 - 0x71AA8000 C:\WINDOWS\system32\WS2HELP.dll
0x71AB0000 - 0x71AC7000 C:\WINDOWS\system32\WS2_32.dll
0x71AD0000 - 0x71AD9000 C:\WINDOWS\system32\wsock32.dll
0x71BF0000 - 0x71C03000 C:\WINDOWS\system32\SAMLIB.dll
0x722B0000 - 0x722B5000 C:\WINDOWS\system32\sensapi.dll
0x72D10000 - 0x72D18000 C:\WINDOWS\system32\msacm32.drv
0x72D20000 - 0x72D29000 C:\WINDOWS\system32\wdmaud.drv
0x73760000 - 0x737AB000 C:\WINDOWS\system32\DDRAW.dll
0x73BC0000 - 0x73BC6000 C:\WINDOWS\system32\DCIMAN32.dll
0x73EE0000 - 0x73EE4000 C:\WINDOWS\system32\KsUser.dll
0x73F10000 - 0x73F6C000 C:\WINDOWS\system32\dsound.dll
0x74720000 - 0x7476C000 C:\WINDOWS\system32\MSCTF.dll
0x76390000 - 0x763AD000 C:\WINDOWS\system32\IMM32.dll
0x763B0000 - 0x763F9000 C:\WINDOWS\system32\comdlg32.dll
0x769C0000 - 0x76A74000 C:\WINDOWS\system32\USERENV.dll
0x76B40000 - 0x76B6D000 C:\WINDOWS\system32\WINMM.dll
0x76C30000 - 0x76C5E000 C:\WINDOWS\system32\WINTRUST.dll
0x76C90000 - 0x76CB8000 C:\WINDOWS\system32\IMAGEHLP.dll
0x76D60000 - 0x76D79000 C:\WINDOWS\system32\iphlpapi.dll
0x76E80000 - 0x76E8E000 C:\WINDOWS\system32\rtutils.dll
0x76E90000 - 0x76EA2000 C:\WINDOWS\system32\rasman.dll
0x76EB0000 - 0x76EDF000 C:\WINDOWS\system32\TAPI32.dll
0x76EE0000 - 0x76F1C000 C:\WINDOWS\system32\RASAPI32.DLL
0x76F20000 - 0x76F47000 C:\WINDOWS\system32\DNSAPI.dll
0x76F60000 - 0x76F8C000 C:\WINDOWS\system32\WLDAP32.dll
0x76FB0000 - 0x76FB8000 C:\WINDOWS\System32\winrnr.dll
0x76FC0000 - 0x76FC6000 C:\WINDOWS\system32\rasadhlp.dll
0x77120000 - 0x771AB000 C:\WINDOWS\system32\OLEAUT32.dll
0x771B0000 - 0x7725A000 C:\WINDOWS\system32\WININET.dll
0x773D0000 - 0x774D3000 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x774E0000 - 0x7761D000 C:\WINDOWS\system32\ole32.dll
0x77690000 - 0x776B1000 C:\WINDOWS\system32\NTMARTA.DLL
0x77A80000 - 0x77B15000 C:\WINDOWS\system32\CRYPT32.dll
0x77B20000 - 0x77B32000 C:\WINDOWS\system32\MSASN1.dll
0x77BD0000 - 0x77BD7000 C:\WINDOWS\system32\midimap.dll
0x77BE0000 - 0x77BF5000 C:\WINDOWS\system32\MSACM32.dll
0x77C00000 - 0x77C08000 C:\WINDOWS\system32\VERSION.dll
0x77C10000 - 0x77C68000 C:\WINDOWS\system32\msvcrt.dll
0x77C70000 - 0x77C94000 C:\WINDOWS\system32\msv1_0.dll
0x77DD0000 - 0x77E6B000 C:\WINDOWS\system32\ADVAPI32.dll
0x77E70000 - 0x77F02000 C:\WINDOWS\system32\RPCRT4.dll
0x77F10000 - 0x77F59000 C:\WINDOWS\system32\GDI32.dll
0x77F60000 - 0x77FD6000 C:\WINDOWS\system32\SHLWAPI.dll
0x77FE0000 - 0x77FF1000 C:\WINDOWS\system32\Secur32.dll
0x7C340000 - 0x7C396000 D:\InstalledApps\Trillian\MSVCR71.dll
0x7C800000 - 0x7C8F6000 C:\WINDOWS\system32\kernel32.dll
0x7C900000 - 0x7C9AF000 C:\WINDOWS\system32\ntdll.dll
0x7C9C0000 - 0x7D1D7000 C:\WINDOWS\system32\SHELL32.dll
0x7E1E0000 - 0x7E282000 C:\WINDOWS\system32\urlmon.dll
0x7E410000 - 0x7E4A1000 C:\WINDOWS\system32\USER32.dll
----------------------------------------
Memory Dump
----------------------------------------
Code: 16 bytes starting at (EIP = 7C94E39C)
7C94E39C: E9 BB C8 FD FF 48 48 74 2E 83 A5 E4 FC FF FF 00 .....HHt........
Stack: 1024 bytes starting at (ESP = 0B8FEC28)
* = addr ** *
0B8FEC20: A8 00 00 00 54 4C 81 7C 30 FC 19 00 B8 F5 AB 12 ....TL.|0.......
0B8FEC30: B0 FF 19 00 C6 EC 8F 0B 0A ED 8F 0B 8F 99 41 00 ..............A.
0B8FEC40: 01 00 00 00 00 00 00 00 00 00 00 00 0C D6 9B 00 ................
0B8FEC50: 18 D6 9B 00 E4 EC 8F 0B 05 00 00 00 9E EC 8F 0B ................
0B8FEC60: 1E D6 9B 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0B8FEC70: 00 00 00 00 E8 EC 8F 0B 00 00 00 00 00 00 00 00 ................
0B8FEC80: 00 C0 C5 00 29 00 00 C0 01 00 00 00 D0 EF 8F 0B ....)...........
0B8FEC90: 9C E3 94 7C 00 00 00 00 00 00 00 00 00 80 B9 00 ...|............
0B8FECA0: C6 EC 8F 0B 4C ED 8F 0B 38 ED 8F 0B D1 3D 41 00 ....L...8....=A.
0B8FECB0: 4C ED 8F 0B 16 00 00 00 E8 EC 8F 0B 00 00 00 00 L...............
0B8FECC0: 00 6F 12 83 FA 3F 8F 0B 11 00 00 00 00 00 00 00 .o...?..........
0B8FECD0: 27 EE 8F 0B 01 00 00 00 00 E0 8F 0B 00 00 90 0B '...............
0B8FECE0: 07 00 01 00 01 00 00 00 AB E1 40 00 26 EE 8F 0B ..........@.&...
0B8FECF0: 30 00 00 00 01 00 00 00 24 EE 8F 0B 24 EE 8F 0B 0.......$...$...
0B8FED00: 00 00 00 00 A0 D0 9B 00 A0 2C 99 01 24 EE 8F 0B .........,..$...
0B8FED10: 00 00 00 00 68 ED 8F 0B 43 E3 40 00 00 02 00 00 ....h...C.@.....
0B8FED20: 01 00 00 00 01 00 00 00 D4 ED 8F 0B 88 F0 8F 0B ................
0B8FED30: 00 00 00 00 71 E3 40 00 20 00 00 00 FF FF FF FF ....q.@. .......
0B8FED40: 01 00 00 00 4C ED 8F 0B FE FF FF FF 33 32 30 30 ....L.......3200
0B8FED50: 30 30 30 31 35 31 39 39 31 38 34 34 32 00 91 7C 0001519918442..|
0B8FED60: FF FF FF FF 0E C8 6E 6A 88 ED 8F 0B 00 00 90 7C ......nj.......|
0B8FED70: 3B 00 91 7C 23 00 FF FF 23 00 00 00 00 00 00 00 ;..|#...#.......
0B8FED80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0B8FED90: 00 00 00 00 74 FC 19 00 82 9E 7E 00 1B 00 00 00 ....t.....~.....
0B8FEDA0: 02 02 00 00 C8 EF 8F 0B 23 00 00 00 E0 A9 3E 09 ........#.....>.
0B8FEDB0: 48 F6 AB 12 DE FE 40 00 00 00 00 E0 4D 62 A0 3F [Only registered and activated users can see links.
12-09-2008
Kynox's sister's pimp
Legendary User Join Date: Apr 2006
Location: ntdll.dll
Posts: 4,181
Nominated 63 Times in 4 Posts
TOTM/W Award(s): 1
Reputation: 1085
Points: 55,512, Level: 35
Level up: 14%, 3,188 Points needed
The instruction you're crashing at seems to be inside some sort of debug or exception handling function. The issue is potentially stack corruption, though I'm not 100% sure.
12-09-2008
Site n00b.. (A leecher if I've been here for more than a month and can't earn 5 rep)
Join Date: Nov 2007
Posts: 4
Reputation: 1
Level up: 92%, 33 Points needed
Hey boss-
Last edited by romanshade; 12-09-2008 at 09:29 PM .
12-10-2008
Kynox's sister's pimp
Legendary User Join Date: Apr 2006
Location: ntdll.dll
Posts: 4,181
Nominated 63 Times in 4 Posts
TOTM/W Award(s): 1
Reputation: 1085
Points: 55,512, Level: 35
Level up: 14%, 3,188 Points needed
.NET is great for most tasks, but if you want to get low-level it comes a lot more naturally with C++.
12-11-2008
Site n00b.. (A leecher if I've been here for more than a month and can't earn 5 rep)
Join Date: Aug 2008
Posts: 11
Reputation: 1
I have tried but also get wow corruption. I can do Interact and luaDoStr with no problem. Maybe the address of CastSpellByID is not correct here?
12-11-2008
Kynox's sister's pimp
Legendary User Join Date: Apr 2006
Location: ntdll.dll
Posts: 4,181
Nominated 63 Times in 4 Posts
TOTM/W Award(s): 1
Reputation: 1085
Points: 55,512, Level: 35
Level up: 14%, 3,188 Points needed
Nope the address is definitely correct.
12-13-2008
Site n00b.. (A leecher if I've been here for more than a month and can't earn 5 rep)
Join Date: Aug 2008
Posts: 11
Reputation: 1
I have checked with Ollydbg. The address is not 0x773400. I tried 0x7733f0, and all is ok. It can cast spell now.
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
All times are GMT -4. The time now is 10:05 PM .
TOTM/W Award(s): 1
