Help, calling an ingame function

[zowex]

Im trying with my dll to set off the "set stat function". The one that u press when you add a stat point to str, dex or what ever. My goal is to make players able to set there Stats to whatever they use to have from an earlier saved point. So if you play against different sort of mobs or players you reform your stats to be suetable for that sertan task in just 1 second right where you stand. Im thinking this is very useful for many ppl here.

So now i could use help with the actuall call of seting a stat point. Cos this makes me D/C thinking i havent got the correct parameters before calling the function

This is what use when to call it:
void __cdecl SendFunc()
{
UINT_PTR adr = 0x004205D0; //function address
int Param1;
int Param2;

Param1 = 0x0013FC14;
Param2 = 0x0CE;
__asm
{
push Param1
push Param2
mov edx,Param1
mov eax,Param2
mov ecx,0x0058BAA0
call adr
}
}


If one goes to the function and trace whats calling it you end upp here:

49BAA9 ADD ESP,0C
49BAAC LER EDX,DWORD PTR SS:[EBP-70]
49BAAF PUSH EDX
49BAB0 MOV EAX,DWORD PTR SS:[EBP-74]
49BAB3 PUSH EAX
49BAB4 MOV ECX, TwelveSk.0058BAA0
49BAB9 CALL TwelveSk.004205D0

So to me it looks like i need to have 2 parameters set before i can use the function (TwelveSk.004205D0). These being PUSH EDX and PUSH EAX.

When i BP on call (49BAB9) to see what values the register hold before executing the fucntion.. then this is what i got:
EAX 000000CE
ECX 0058BAA0
EDX 0013FC14
EBX 00000000
ESP 0013FC04
EBP 0013FC84
ESI 00402810 TwelveSk.00402810
EDI 0013FD30

As you can see, EDX value i added into Param1 (Param1 = 0x0013FC14 and also EAX (Param2 = 0x0CE
This dont seem to do the jobb correct cos i still get DC as if bad packet is sent.
Any clue of whats wrong?

[tim66613]

Quote:

Originally Posted by zowex

Im trying with my dll to set off the "set stat function". The one that u press when you add a stat point to str, dex or what ever. My goal is to make players able to set there Stats to whatever they use to have from an earlier saved point. So if you play against different sort of mobs or players you reform your stats to be suetable for that sertan task in just 1 second right where you stand. Im thinking this is very useful for many ppl here.

So now i could use help with the actuall call of seting a stat point. Cos this makes me D/C thinking i havent got the correct parameters before calling the function

This is what use when to call it:
void __cdecl SendFunc()
{
UINT_PTR adr = 0x004205D0; //function address
int Param1;
int Param2;

Param1 = 0x0013FC14;
Param2 = 0x0CE;
__asm
{
push Param1
push Param2
mov edx,Param1
mov eax,Param2
mov ecx,0x0058BAA0
call adr
}
}


If one goes to the function and trace whats calling it you end upp here:

49BAA9 ADD ESP,0C
49BAAC LER EDX,DWORD PTR SS:[EBP-70]
49BAAF PUSH EDX
49BAB0 MOV EAX,DWORD PTR SS:[EBP-74]
49BAB3 PUSH EAX
49BAB4 MOV ECX, TwelveSk.0058BAA0
49BAB9 CALL TwelveSk.004205D0

So to me it looks like i need to have 2 parameters set before i can use the function (TwelveSk.004205D0). These being PUSH EDX and PUSH EAX.

When i BP on call (49BAB9) to see what values the register hold before executing the fucntion.. then this is what i got:
EAX 000000CE
ECX 0058BAA0
EDX 0013FC14
EBX 00000000
ESP 0013FC04
EBP 0013FC84
ESI 00402810 TwelveSk.00402810
EDI 0013FD30

As you can see, EDX value i added into Param1 (Param1 = 0x0013FC14 and also EAX (Param2 = 0x0CE
This dont seem to do the jobb correct cos i still get DC as if bad packet is sent.
Any clue of whats wrong?

Try this one:

Code:

void __cdecl SendFunc()
{
	int Param1 = 0x0013FC14;
	int Param2 = 0x0CE;

	unsigned long functionAddr = 0x4205D0;
	unsigned long thisObj = *(unsigned long*)0x58BAA0;

	__asm
	{
		push Param1
		push Param2

		mov edx, Param1
		mov eax, Param2
		mov ecx, thisObj

		call functionAddr
	}
}

[MrSm!th]

Quote:

Originally Posted by zowex

Im trying with my dll to set off the "set stat function". The one that u press when you add a stat point to str, dex or what ever. My goal is to make players able to set there Stats to whatever they use to have from an earlier saved point. So if you play against different sort of mobs or players you reform your stats to be suetable for that sertan task in just 1 second right where you stand. Im thinking this is very useful for many ppl here.

So now i could use help with the actuall call of seting a stat point. Cos this makes me D/C thinking i havent got the correct parameters before calling the function

This is what use when to call it:
void __cdecl SendFunc()
{
UINT_PTR adr = 0x004205D0; //function address
int Param1;
int Param2;

Param1 = 0x0013FC14;
Param2 = 0x0CE;
__asm
{
push Param1
push Param2
mov edx,Param1
mov eax,Param2
mov ecx,0x0058BAA0
call adr
}
}


If one goes to the function and trace whats calling it you end upp here:

49BAA9 ADD ESP,0C
49BAAC LER EDX,DWORD PTR SS:[EBP-70]
49BAAF PUSH EDX
49BAB0 MOV EAX,DWORD PTR SS:[EBP-74]
49BAB3 PUSH EAX
49BAB4 MOV ECX, TwelveSk.0058BAA0
49BAB9 CALL TwelveSk.004205D0

So to me it looks like i need to have 2 parameters set before i can use the function (TwelveSk.004205D0). These being PUSH EDX and PUSH EAX.

When i BP on call (49BAB9) to see what values the register hold before executing the fucntion.. then this is what i got:
EAX 000000CE
ECX 0058BAA0
EDX 0013FC14
EBX 00000000
ESP 0013FC04
EBP 0013FC84
ESI 00402810 TwelveSk.00402810
EDI 0013FD30

As you can see, EDX value i added into Param1 (Param1 = 0x0013FC14 and also EAX (Param2 = 0x0CE
This dont seem to do the jobb correct cos i still get DC as if bad packet is sent.
Any clue of whats wrong?

if it doesn't crash but you get a disconnect, i think the stats are serverside and can't be edited twice
(i know some similar cases)