[4.0.1:13205] Protocol information (Opcodes & Co.)

[Cromon]

Hey there!

Ill just copy here my post from somewhere else and add some additional stuff afterwards:

ve been working a bit on the 4.0.1 client the last week and managed it to get the basic features working. You can see some ingame screenshots here

Now of course id like to share those informations with you as im not interested in developing everything on my own . First of all ive to say that there is a mayor problem blizzard has "implemented". Its called SMSG_REDIRECT_CLIENT. From what I have reversed so far the client and server now use 2 connections to send packets on. On which connection a packet is sent the client determines using this function:

Code:

signed int __cdecl GetConnectionIndex(unsigned int packet)
{
...
    result = ((unsigned int)(unsigned __int8)gConnectionIndices[(opcode & 0x1E0 | ((opcode & 0x800 | (opcode >> 1) & 0x7000) >> 2)) >> 5] >> ((unsigned __int8)(opcode & 1) | (unsigned __int8)((opcode >> 1) & 6))) & 1;
  return result;
}

So sadly this is a fixed algorithm that cannot be influenced externally by the server. Unless the second connection is opened every packet for which GetConnectionIndex returns 1 gets queued until the connection gets opened. Opening the connection is done using the packet SMSG_REDIRECT_CLIENT where among other stuff 256 bytes of extremely secured data get transmitted including the ip and the port of the second connection. Now, what do i mean with "highly secured"? First: From the 256 bytes actually only 6 bytes contain the ip and the port. All the rest are verifiers about that data to make sure it cannot be changed while in the network (someone's paranoid?). That wouldnt be a problem. Problems start with encryption. Blizzard encrypts those 256 bytes using the RSA-algorithm. As you may know so far this algorithm is save under certain circumstances.

Some little theory about RSA:
First you choose two large prime numbers and multiply those numbers to get a big number (= n) (in our case the resulting number is 256 Bytes long (~= 616 decimal digits)). Now you calculate the eulers totient function (= phi) on that big number. For products of two prime numbers this function returns (p - 1)*(q - 1) and is therefore very easy to calculate. After you have phi(n) you have to find e and d (public and private key) to satisfy the following equation: (e * d) mod phi(n) = 1 where mod means modulo and e has no common divider with phi(n). Now we can use e and d in the following way:
encrypt = (data ^ e) mod n;
data = (encrypt ^ d) mod n;

In both cases ^ means not XOR but exponentation.

Where lies now our problem? We know n and we know d. We have no clue about e and no clue about p and q. If we know phi(n) we can easily calculate e from (e * d) mod phi(n) = 1 using extended euclidic algorithm but calculating phi(n) for such a big n without knowing p and q will take ages (it uses > 10^313 iterations where each iteration again uses many additions/divisions...). What i want to say: You cannot calculate e. Period. Without e you cannot encrypt the data so that decrypting it using the hardcoded n and d will return the data. You cannot send SMSG_REDIRECT_CLIENT, you cannot open the second connection. Problem!

After a nearly sleepless night ive created a crack which modifies the clients memory when at character list telling the client that the second connection is opened and moving the pointer of the first ServerConnection-object into the second ServerConnection. This makes it possible that all packets get sent using the first connection. But you see the issue: It needs modification of the client or its memory at runtime. The code is pretty simple:

Code:

private const uint gNetClient = 0x8A5C34;
...
Memory mem = new Memory("WoW");
uint netClient = gNetClient + mem.Base; // dont forget to add Base cause of ASLR
uint basePtr = mem.Read<uint>(netClient);
uint ofs1 = basePtr + 0x464C; // bool QueuePacketsForConnection1;
uint ofs2 = basePtr + 0x464D; // bool QueuePacketsForConnection2;
uint ofs3 = basePtr + 0x461C; // ServerConnection* pConnection1;
uint ofs4 = basePtr + 0x4620; // ServerConnection* pConnection2;
byte val1 = mem.Read<byte>(ofs1);
uint ptr1 = mem.Read<uint>(ofs3);
mem.Write(ofs2, val1); // QueuePacketsForConnection2 = QueuePacketsForConnection1;
mem.Write(ofs4, ptr1); // pConnection2 = pConnection1;

Ok, but now lets get to more friendly stuff . Heres a list of opcodes i can confirm so far:

Code:

   
    SMSG_LOGIN_SETTIMESPEED                         = 0x0A10,	// implemented
    CMSG_CHAR_CREATE                                = 0x2BF0,	// implemented
    CMSG_CHAR_ENUM                                  = 0x03F8,	// implemented
    CMSG_CHAR_DELETE                                = 0x8A78,	// implemented
    SMSG_CHAR_CREATE                                = 0xC211,	// implemented
    SMSG_CHAR_ENUM                                  = 0x429C,	// implemented
    SMSG_CHAR_DELETE                                = 0x0278,	// implemented
    CMSG_PLAYER_LOGIN                               = 0x1621,	// implemented
    SMSG_NEW_WORLD                                  = 0x4A5D,	// implemented
    CMSG_NAME_QUERY                                 = 0x4354,	// implemented
    SMSG_NAME_QUERY_RESPONSE                        = 0x0A14,	// implemented
    CMSG_CREATURE_QUERY                             = 0xE3D5,	// implemented
    SMSG_CREATURE_QUERY_RESPONSE                    = 0x83B8,	// implemented
    CMSG_CONTACT_LIST                               = 0x63D4,	// implemented
    SMSG_CONTACT_LIST                               = 0x439C,	// implemented
    SMSG_FRIEND_STATUS                              = 0xBF16,	// implemented
    CMSG_ADD_FRIEND                                 = 0xCAB1,	// implemented
    CMSG_MESSAGECHAT                                = 0xFFFF,	// not longer used in client! Instead it uses the following:
    CMSG_CHAT_MSG_SAY                               = 0x5200,   // implemented { uint32 lang, string message }
    CMSG_CHAT_MSG_YELL                              = 0x7200,   // implemented { uint32 lang, string message }
    SMSG_MESSAGECHAT                                = 0xBD0,	// implemented
    SMSG_UPDATE_OBJECT                              = 0x8BF0,	// implemented
    SMSG_DESTROY_OBJECT                             = 0xE310,	// implemented
    MSG_MOVE_START_FORWARD                          = 0x0B31,	// implemented
    MSG_MOVE_START_BACKWARD                         = 0x0B50,	// implemented
    MSG_MOVE_STOP                                   = 0x433C,	// implemented
    MSG_MOVE_START_STRAFE_LEFT                      = 0xE395,	// implemented
    MSG_MOVE_START_STRAFE_RIGHT                     = 0x6BF4,	// implemented
    MSG_MOVE_STOP_STRAFE                            = 0xA31C,	// implemented
    MSG_MOVE_JUMP                                   = 0x0A39,	// implemented
    MSG_MOVE_START_TURN_LEFT                        = 0xAA90,	// implemented
    MSG_MOVE_START_TURN_RIGHT                       = 0x4BFC,	// implemented
    MSG_MOVE_STOP_TURN                              = 0xC39D,	// implemented
    MSG_MOVE_SET_RUN_MODE                           = 0xE339,	// implemented
    MSG_MOVE_SET_WALK_MODE                          = 0x8A74,	// implemented
    MSG_MOVE_FALL_LAND                              = 0xAA58,	// implemented
    MSG_MOVE_HEARTBEAT                              = 0xB38,	// implemented
    SMSG_TRIGGER_CINEMATIC                          = 0x6310,	// implemented
    SMSG_SET_PROFICIENCY                            = 0x22D4,	// implemented
    SMSG_ACTION_BUTTONS                             = 0xEB74,	// implemented
    SMSG_INITIAL_SPELLS                             = 0xC2B0,	// implemented
    SMSG_LEARNED_SPELL                              = 0xCAFC,	// implemented
    SMSG_BINDPOINTUPDATE                            = 0xA255,	// implemented
    CMSG_PLAYED_TIME                                = 0x8355,	// implemented
    SMSG_PLAYED_TIME                                = 0x6BF8,	// implemented
    SMSG_AUTH_CHALLENGE                             = 0x8500,	// implemented
    CMSG_AUTH_SESSION                               = 0x3000,	// implemented
    SMSG_AUTH_RESPONSE                              = 0xEB58,	// implemented
    SMSG_EXPLORATION_EXPERIENCE                     = 0x8B58,	// implemented
    SMSG_ACCOUNT_DATA_TIMES                         = 0x82B5,	// implemented
    CMSG_UPDATE_ACCOUNT_DATA                        = 0xEB55,	// implemented
    SMSG_PLAY_SOUND                                 = 0xA2D1,	// implemented
    SMSG_MOTD                                       = 0x4394,	// implemented
    SMSG_REALM_SPLIT                                = 0x4270,	// implemented
    CMSG_REALM_SPLIT                                = 0xAB58,	// implemented
    SMSG_TIME_SYNC_REQ                              = 0xA318,	// implemented
    CMSG_CHAR_CUSTOMIZE                             = 0x250,	/// TODO: implement
    SMSG_CHAR_CUSTOMIZE                             = 0xE2B5,	/// TODO: implement
    CMSG_READY_FOR_ACCOUNT_DATA_TIMES               = 0x6A99,
    SMSG_LFG_BOOT_PLAYER                            = 0x8399,

Here are some more opcodes. They are dumped automatically, so i didnt test all of them (but some) and the algo seems to be correct:

Code:

SMSG_MESSAGECHAT: BD0
SMSG_CHANNEL_NOTIFY: 6358
SMSG_CHANNEL_LIST: A5D
SMSG_TEXT_EMOTE: 83D8
SMSG_ZONE_UNDER_ATTACK: 6215
SMSG_DEFENSE_MESSAGE: A27C
SMSG_SERVER_MESSAGE: 221C
SMSG_RAID_INSTANCE_MESSAGE: EB78
SMSG_INSTANCE_RESET: 2B34
SMSG_INSTANCE_RESET_FAILED: CAB8
SMSG_UPDATE_LAST_INSTANCE: 2B91
SMSG_UPDATE_INSTANCE_OWNERSHIP: CB5D
SMSG_EXPTECTED_SPAM_RECORDS: ABDD
SMSG_TITLE_EARNED: B91
SMSG_RESET_FAILED_NOTIFY: A258
SMSG_GM_MESSAGECHAT: E3B0
SMSG_XP_GAIN: C3BC
SMSG_DURABILITY_DAMAGE_DEATH: BF0
SMSG_CHANNEL_MEMBER_COUNT: AAB1
SMSG_COMSAT_RECONNECT_TRY: 63F8
SMSG_COMSAT_DISCONNECT: CB71
SMSG_COMSAT_CONNECTION_FAILED: 4B59
SMSG_VOICE_CHAT_STATUS: 627D
SMSG_USERLIST_ADD: C2FC
SMSG_USERLIST_REMOVE: CBB9
SMSG_USERLIST_UPDATE: AA5C
SMSG_COMSAT_VOICE_SESSION_FULL: CB90
SMSG_SERVER_FIRST_ACHIEVEMENT: CA10
SMSG_NOTIFICATION: A31
SMSG_PLAYED_TIME: 6BF8
SMSG_TRANSFER_PENDING: 6210
SMSG_TRANSFER_ABORTED: B55
SMSG_NEW_WORLD: 4A5D
SMSG_KICK_REASON: 4A71
SMSG_START_MIRROR_TIMER: 6A54
SMSG_PAUSE_MIRROR_TIMER: A55
SMSG_STOP_MIRROR_TIMER: 2299
SMSG_GROUP_JOINED_BATTLEGROUND: 18
SMSG_MAIL_SEND_RESULT: E351
SMSG_MAIL_LIST_RESULT: ABD1
MSG_QUERY_NEXT_MAIL_TIME: A51
SMSG_RECEIVED_MAIL: 4A54
SMSG_MEETINGSTONE_COMPLETE: EA14
MSG_RAID_TARGET_UPDATE: B74
MSG_RAID_READY_CHECK: 82D0
MSG_RAID_READY_CHECK_CONFIRM: 2250
MSG_RAID_READY_CHECK_FINISHED: 82D5
SMSG_RAID_READY_CHECK_ERROR: CB50
MSG_NOTIFY_PARTY_SQUELCH: C39C
SMSG_ECHO_PARTY_SQUELCH: A3DD
SMSG_PLAY_DANCE: 8BBD
SMSG_STOP_DANCE: CA50
SMSG_NOTIFY_DANCE: 223D
SMSG_LEARNED_DANCE_MOVES: 22D5
SMSG_GOSSIP_MESSAGE: AB3D
SMSG_GOSSIP_COMPLETE: 6BF9
SMSG_GOSSIP_POI: BD9
MSG_AUCTION_HELLO: 8371
SMSG_AUCTION_COMMAND_RESULT: AB5D
SMSG_AUCTION_LIST_RESULT: 827C
SMSG_AUCTION_OWNER_LIST_RESULT: 4B94
SMSG_AUCTION_BIDDER_LIST_RESULT: 42D5
SMSG_AUCTION_BIDDER_NOTIFICATION: 4250
SMSG_AUCTION_OWNER_NOTIFICATION: 42B5
SMSG_AUCTION_REMOVED_NOTIFICATION: 4379
SMSG_AUCTION_LIST_PENDING_SALES: E2F9
SMSG_PET_SPELLS: 63F1
SMSG_PET_LEARNED_SPELL: EA71
SMSG_PET_UNLEARNED_SPELL: 2ABD
SMSG_PET_MODE: 6219
SMSG_PET_ACTION_FEEDBACK: 370
SMSG_PET_BROKEN: 6A71
SMSG_PET_RENAMEABLE: 22F8
SMSG_PET_UPDATE_COMBO_POINTS: 8BF5
SMSG_PET_GUIDS: 3F0
SMSG_CREATURE_QUERY_RESPONSE: 83B8
SMSG_NAME_QUERY_RESPONSE: A14
SMSG_GAMEOBJECT_QUERY_RESPONSE: 231
SMSG_NPC_TEXT_UPDATE: 8310
SMSG_GUILD_QUERY_RESPONSE: EA1D
SMSG_QUEST_QUERY_RESPONSE: 2AD4
SMSG_PAGE_TEXT_QUERY_RESPONSE: 8A58
SMSG_PET_NAME_QUERY_RESPONSE: B1C
SMSG_PETITION_QUERY_RESPONSE: 2A7D
SMSG_ITEM_TEXT_QUERY_RESPONSE: 8210
SMSG_INVALIDATE_PLAYER: AAD5
SMSG_ARENA_TEAM_QUERY_RESPONSE: 23B0
SMSG_INVALIDATE_DANCE: 233C
SMSG_DANCE_QUERY_RESPONSE: CB10
SMSG_WHO: E2D0
SMSG_WHOIS: AD9
SMSG_RWHOIS: C35D
SMSG_CONTACT_LIST: 439C
SMSG_FRIEND_STATUS: AB14
SMSG_ACCOUNT_DATA_TIMES: 82B5
SMSG_UPDATE_ACCOUNT_DATA: 63B9
SMSG_UPDATE_ACCOUNT_DATA_COMPLETE: 42D4
SMSG_CHECK_FOR_BOTS: 2BB9
SMSG_PERIODICAURALOG: C35C
SMSG_ENCHANTMENTLOG: 435C
SMSG_PARTYKILLLOG: CA39
SMSG_PROCRESIST: EBB0
SMSG_DISPEL_FAILED: 4BB5
SMSG_DESTRUCTIBLE_BUILDING_DAMAGE: E3D9
SMSG_GAMESPEED_SET: 2354
SMSG_LOGIN_SETTIMESPEED: A10
SMSG_GAMETIME_UPDATE: EBF0
SMSG_SERVERTIME: 8AD0
SMSG_GAMETIME_SET: E2BD
SMSG_UPDATE_LAST_INSTANCE_CREATED: 2255
SMSG_POWERGAINLOG_OBSOLETE: 633C
SMSG_ENABLE_BARBER_SHOP: 82D4
SMSG_BARBER_SHOP_RESULT: 42F9
SMSG_LFG_TIMEDOUT: 238
SMSG_LFG_OTHER_TIMEDOUT: B1D

Feel free to use what you can use! And also feel free to contribute!

Greetings
Cromon

[stoneharry]

Brilliant work Cromon, I'm sure hundreds of people are currently leeching this without saying thank you, but there are those who appreciate what you are doing.

[ddebug]

Great work man. +rep.

[LIMEEE]

Awesome Cromon. +rep from me!

[Cromon]

Dumped another registration function:

Code:

SMSG_COOLDOWN_EVENT: A238
SMSG_CLEAR_COOLDOWN: CB51
SMSG_MODIFY_COOLDOWN: 8AD9
SMSG_SPELL_START: AADD
SMSG_SPELL_GO: B3C
SMSG_CAST_FAILED: 4AB8
SMSG_SPELL_FAILURE: 4298
SMSG_SPELL_FAILED_OTHER: 4BBC
SMSG_PET_CAST_FAILED: B51
SMSG_SPELL_COOLDOWN: 2394
SMSG_ITEM_COLLDOWN: 2B58
SMSG_COOLDOWN_CHEAT: 637C
SMSG_PET_TAME_FAILURE: 63B1
SMSG_SPELL_DELAYED: A21C
MSG_CHANNEL_START (NOT SURE!!!): C3D5
MSG_CHANNEL_UPDATE: 8B70
SMSG_PLAY_SPELL_VISUAL: 63BD
SMSG_PLAY_SPELL_IMPACT: 4A30
SMSG_SET_FLAT_SPELL_MODIFIER: 4218
SMSG_SET_PCT_SPELL_MODIFIER: 8B74
SMSG_GAMEOBJECT_RESET_STATE: 274
SMSG_FEIGN_DEATH_RESISTED: 3D9
SMSG_SPELL_UPDATE_CHAIN_TARGETS: CA9C
SMSG_CONTROL_VEHICLE: 311
SMSG_UNKNOWN_1215: AB5C
SMSG_MEETINGSTONE_IN_PROGRESS: E318
SMSG_DAMGE_TAKEN_OBSOLETE: C2F1

[Choices]

Great work, and thanks!

[Cromon]

First part of the movement:

Code:

SMSG_ARENA_TEAM_ROSTER: 23F1
SMSG_ARENA_TEAM_STATS: 3B4
SMSG_GUILD_BANK_LIST: E3D0
MSG_GUILD_BANK_LOG_QUERY: EB34
MSG_GUILD_BANK_MONEY_WHITDRAWN: 8B34
MSG_QUERY_GUILD_BANK_TEXT: 3DD
SMSG_EQUIPMENT_SET_LIST: CA99
SMSG_EQUIPMENT_SET_SAVED: C294
SMSG_EQUIPMENT_SET_USE_RESULT: 2D9
SMSG_MINIGAME_SETUP: 82FC
SMSG_MINIGAME_STATE: 6B9C
SMSG_OFFER_PETITION_ERROR: 8B11
SMSG_DUEL_REQUESTED: CAF1
SMSG_DUEL_OUTOFBOUNDS: 2350
SMSG_DUEL_INBOUNDS: 2ADD
SMSG_DUEL_COUNTDOWN: 8A54
SMSG_DUEL_COMPLETE: 6B74
SMSG_DUEL_WINNER: EB95
MSG_MOVE_START_FORWARD: B31
MSG_MOVE_START_BACKWARD: B50
MSG_MOVE_STOP: 433C
MSG_MOVE_START_STRAFE_LEFT: E395
MSG_MOVE_START_STRAFE_RIGHT: 6BF4
MSG_MOVE_STOP_STRAFE: A31C
MSG_MOVE_START_ASCEND: 4A19
MSG_MOVE_START_DESCEND: 83B4
MSG_MOVE_STOP_ASCEND: A350
MSG_MOVE_JUMP: A39
MSG_MOVE_START_TURN_LEFT: AA90
MSG_MOVE_START_TURN_RIGHT: 4BFC
MSG_MOVE_STOP_TURN: C39D
MSG_MOVE_START_PITCH_UP: 6B79
MSG_MOVE_START_PITCH_DOWN: 2BD5
MSG_MOVE_STOP_PITCH: 635D
MSG_MOVE_SET_RUN_MODE: E339
MSG_MOVE_SET_WALK_MODE: 8A74
MSG_MOVE_TOGGLE_LOGGING: A254
MSG_MOVE_TELEPORT: AB98
MSG_MOVE_SET_FACING: AADC
MSG_MOVE_SET_PITCH: 2A51
MSG_MOVE_TOGGLE_COLLISION_CHEAT: 4BF1
MSG_MOVE_UNKNOWN_1234: 6B99
MSG_MOVE_SET_RUN_SPEED: 8379
MSG_MOVE_SET_RUN_BACK_SPEED: 270
MSG_MOVE_SET_WALK_SPEED: EAB5
MSG_MOVE_SET_SWIM_SPEED: 6A1D
MSG_MOVE_SET_SWIM_BACK_SPEED: 4B51
MSG_MOVE_SET_FLIGHT_SPEED: 310
MSG_MOVE_SET_FLIGHT_BACK_SPEED: E2BC
MSG_MOVE_SET_TURN_RATE: EA58
MSG_MOVE_SET_PITCH_RATE: 8274
SMSG_UNKNOWN_1304: 4B70
MSG_MOVE_ROOT: 275
MSG_MOVE_UNROOT: 2338
MSG_MOVE_START_SWIM: 62F8
MSG_MOVE_STOP_SWIM: C290
MSG_MOVE_START_SWIM_CHEAT: A1C
MSG_MOVE_STOP_SWIM_CHEAT: 6AF8
MSG_MOVE_HEARTBEAT: B38
MSG_MOVE_FALL_LAND: AA58
MSG_MOVE_UPDATE_CAN_FLY: EBF1
UMSG_UPDATE_ARENA_TEAM_OBSOLETE <--- thats not the right name, its movement rela
ted and used!: 8BB1
MSG_MOVE_TELEPORT_ACK: 6A39
MSG_MOVE_TIME_SKIPPED: CA7C
SMSG_MONSTER_MOVE: 2B0
SMSG_MONSTER_MOVE_TRANSPORT: 21C
SMSG_FORCE_RUN_SPEED_CHANGE: EAD4
SMSG_FORCE_RUN_BACK_SPEED_CHANGE: A2D9
SMSG_FORCE_SWIM_SPEED_CHANGE: 2A19
SMSG_FORCE_SWIM_BACK_SPEED_CHANGE: B70
SMSG_FORCE_FLIGHT_SPEED_CHANGE: CA7D
SMSG_FORCE_FLIGHT_BACK_SPEED_CHANGE: A2FD
SMSG_FORCE_WALK_SPEED_CHANGE: E3BD
SMSG_FORCE_TURN_RATE_CHANGE: 6BD5
SMSG_FORCE_PITCH_RATE_CHANGE: E33D
SMSG_FORCE_MOVE_ROOT: A355
SMSG_FORCE_MOVE_UNROOT: 2D8
SMSG_MOVE_WATER_WALK: AB94
SMSG_MOVE_LAND_WALK: 8AF1
SMSG_MOVE_FEATHER_FALL: 4A9C
SMSG_MOVE_NORMAL_FALL: 6AB8
SMSG_MOVE_SET_HOVER: 82B1
SMSG_MOVE_UNSET_HOVER: 2F8
SMSG_MOVE_SET_CAN_FLY: A311
SMSG_MOVE_UNSET_CAN_FLY: 6A74
SMSG_MOVE_SET_FLIGHT_OBSOLETE: A2F8
SMSG_MOVE_UNSET_FLIGHT_OBSOLETE: E37D
SMSG_MOVE_KNOCK_BACK: E2B0

Most of them checked and working.

[Herbalism]

Wth is this crap?

[Cromon]

Obviously something you dont understand?

---------- Post added at 09:12 AM ---------- Previous post was at 07:49 AM ----------

The handlers (rebased to 0x1000) for the packets:

Code:

PH_Handle_SMSG_NOTIFICATION    0x1380
PH_Handle_SMSG_PLAYED_TIME    0x1470
PH_Handle_SMSG_TRANSFER_PENDING    0x1560
PH_Handle_SMSG_TRANSFER_ABORTED    0x34a0
PH_Handle_SMSG_LOGIN_VERIFY_WORLD    0x3960
PH_Handle_SMSG_NEW_WORLD    0x39f0
PH_Handle_SMSG_DESTROY_OBJECT    0x966f0
PH_Handle_SMSG_CREATURE_QUERY_RESPONSE    0x9ec00
PH_Handle_SMSG_GAMEOBJECT_QUERY_RESPONSE    0x9ec20
PH_Handle_SMSG_NPC_TEXT_UPDATE    0x9ec40
PH_Handle_SMSG_QUEST_QUERY_RESPONSE    0x9ec60
PH_Handle_SMSG_PAGE_TEXT_QUERY_RESPONSE    0x9ecd0
PH_Handle_SMSG_PET_NAME_QUERY_RESPONSE    0x9ecf0
PH_Handle_SMSG_PETITION_QUERY_RESPONSE    0x9edc0
PH_Handle_SMSG_INVALIDATE_PLAYER    0x9ee30
PH_Handle_SMSG_ARENA_TEAM_QUERY_RESPONSE    0x9eeb0
PH_Handle_SMSG_INVALIDATE_DANCE    0x9ef00
PH_Handle_SMSG_NAME_QUERY_RESPONSE    0x9f120
PH_Handle_SMSG_GUILD_QUERY_RESPONSE    0x9f350
PH_Handle_SMSG_ITEM_TEXT_QUERY_RESPONSE    0x9f3b0
PH_Handle_SMSG_DANCE_QUERY_RESPONSE    0x9f420
PH_Handle_SMSG_WHOIS    0xd5740
PH_Handle_SMSG_RWHOIS    0xd5780
PH_Handle_SMSG_FRIEND_STATUS    0xda890
PH_Handle_SMSG_CONTACT_LIST    0xda8e0
PH_Handle_SMSG_WHO    0xda900
PH_Handle_SMSG_UPDATE_ACCOUNT_DATA_COMPLETE    0xdb210
PH_Handle_SMSG_ACCOUNT_DATA_TIMES    0xdb690
PH_Handle_SMSG_CHECK_FOR_BOTS    0xdb830
PH_Handle_SMSG_UPDATE_ACCOUNT_DATA    0xdb8f0
PH_Handle_SMSG_GAMESPEED_SET    0xdc9b0
PH_Handle_SMSG_LOGIN_SETTIMESPEED    0xdca50
PH_Handle_SMSG_GAMETIME_UPDATE    0xdcb30
PH_Handle_SMSG_SERVERTIME    0xdcbc0
PH_Handle_SMSG_GAMETIME_SET    0xdccb0
PH_Handle_SMSG_GROUP_ACTION_THROTTLED    0x15bb00
PH_Handle_SMSG_GUILD_COMMAND_RESULT    0x15c4a0
PH_Handle_SMSG_GUILD_INVITE    0x15c4f0
PH_Handle_SMSG_VOICE_SESSION_ROSTER    0x15c5e0
PH_Handle_SMSG_VOID_SESSION_LEAVE    0x15c8c0
PH_Handle_SMSG_CALENDAR_INVITE_RESULT    0x15ca90
PH_Handle_SMSG_ARENA_TEAM_COMMAND_RESULT    0x15fc00
PH_Handle_VoiceSessionParentalSomething    0x160080
PH_Handle_DamageRelated    0x163aa0
PH_Handle_SMSG_TRAINER_BUY_SPELL_FAILED    0x167fc0
PH_Handle_SMSG_TIME_SYNC_REQ    0x16a4f0
PH_Handle_SMSG_GUILD_EVENT    0x16def0
PH_Handle_SMSG_CROSSED_INEBRIATION_THRESHOLD    0x1757c0
PH_Handle_SMSG_LOOT_LIST    0x1b4de0
PH_Handle_SMSG_FLIGHT_SPLINE_SYNC    0x1b4e40
PH_Handle_SMSG_COMPRESSED_MOVES    0x1b4ea0
PH_Handle_SMSG_AI_REACTION    0x1b4f60
PH_Handle_SMSG_PET_ACTION_SOUND    0x1b4fe0
PH_Handle_SMSG_PET_DISMISS_SOUND    0x1b5050
PH_Handle_SMSG_FORCE_DISPLAY_UPDATE    0x1b5160
PH_Handle_SMSG_HEALTH_UPDATE    0x1b51b0
PH_Handle_SMSG_MOUNTSPECIAL_ANIM    0x1bc2f0
PH_Handle_SMSG_POWER_UPDATE    0x1c2f90
PH_Handle_SMSG_CLIENT_CONTROL_UPDATE    0x1cea40
PH_Handle_SMSG_CANCEL_AUTO_REPEAT    0x1ceac0
PH_Handle_SMSG_AURA_UPDATE__ALL    0x1d1c70
PH_Handle_SMSG_MIRRORIMAGE_DATA    0x1d3f60
PH_Handle_SMSG_STANDSTATE_UPDATE    0x1e3440
PH_Handle_SMSG_DISMOUNT    0x1e5e00
PH_Handle_SMSG_PARTYKILLLOG    0x1fc5a0
PH_Handle_SMSG_PROCRESIST    0x1fc610
PH_Handle_SMSG_DISPEL_FAILED    0x1fc710
PH_Handle_SMSG_ENCHANTMENTLOG    0x1fc850
PH_Handle_SMSG_PERIODICAURALOG    0x1fe780
PH_Handle_SMSG_DESTRUCTIBLE_BUILDING_DAMAGE    0x1fe7a0
PH_Handle_SMSG_FACTION_CHANGE    0x35bfc0
PH_Handle_SMSG_KICK_REASON    0x35c1f0
PH_Handle_SMSG_SET_PLAYER_DECLINED_NAMES_RESULT    0x35de00
PH_Handle_SMSG_GAMEOBJECT_RESET_STATE    0x3fd240
PH_Handle_SMSG_FEIGN_DEATH_RESISTED    0x3fd290
PH_Handle_SMSG_FLAT_AND_PCT_SPELL_MODIFIER    0x3fd300
PH_Handle_SMSG_SPELL_DELAYED    0x3fe7d0
PH_Handle__MAYBE_MSG_CHANNEL_START    0x3fe8c0
PH_Handle_MSG_CHANNEL_UPDATE    0x3fea10
PH_Handle_SMSG_SPELL_UPDATE_CHAIN_TARGETS    0x3fefe0
PH_Handle_SMSG_CONTROL_VECHICLE    0x3ff080
PH_Handle_SMSG_UNKNOWN_1215    0x3ff0c0
PH_Handle_SMSG_PLAY_SPELL_VISUAL    0x3ff140
PH_Handle_SMSG_PLAY_SPELL_IMPACT    0x3ff1f0
PH_Handle_SMSG_DAMAGE_TAKEN_OBSOLETE    0x3ff2a0
PH_Handle_SMSG_PET_TAME_FAILURE    0x401c00
PH_Handle_SMSG_SPELL_MISC_COOLDOWN    0x403820
PH_Handle_SMSG_COOLDOWN_CHEAT    0x403920
PH_Handle_SMSG_SPELL_FAILED_OTHER    0x405d80
PH_Handle_SMSG_PET_CAST_FAILED    0x405e70
PH_Handle_SMSG_ITEM_COOLDOWN    0x405fe0
PH_Handle_SMSG_MEETINGSTONE_IN_PROGRESS    0x406140
PH_Handle_SMSG_CAST_FAILED    0x409da0
PH_Handle_SMSG_SPELL_FAILURE    0x409ef0
PH_Handle_SMSG_SPELL_COOLDOWN    0x40a050
PH_Handle_SMSG_SPELL_START_AND_GO    0x411820
PH_Handle_SMSG_NOTIFY_DEST_LOC_SPELL_CAST    0x411910
PH_Handle_Mirror_Times    0x41fd50
PH_Handle_SMSG_CHANNEL_MEMBER_COUNT    0x439900
PH_Handle_SMSG_COMSAT_RECONNECT_TRY    0x4399e0
PH_Handle_SMSG_COMSAT_DISCONNECT    0x439a00
PH_Handle_SMSG_COMSAT_CONNECTION_FAILED    0x439a20
PH_Handle_SMSG_COMSAT_VOICE_SESSION_FULL    0x439a40
PH_Handle_SMSG_UPDATE_INSTANCE_OWNERSHIP    0x439d50
PH_Handle_SMSG_UPDATE_LAST_INSTANCE    0x43c680
PH_Handle_SMSG_VOICE_CHAT_STATUS    0x43f510
PH_Handle_SMSG_USERLIST_UPDATE    0x43f650
PH_Handle_SMSG_EXCPECTED_SPAM_RECORDS    0x440c90
PH_Handle_SMSG_TEXT_EMOTE    0x443370
PH_Handle_SMSG_USERLIST_ADD    0x443430
PH_Handle_SMSG_USERLIST_REMOVE    0x443600
PH_Handle_SMSG_CHANNEL_LIST    0x445190
PH_Handle_SMSG_SERVER_FIRST_ACHIEVEMENT    0x44a680
PH_Handle_SMSG_ZONE_UNDER_ATTACK    0x44bbc0
PH_Handle_SMSG_TITLE_EARNED    0x44bd20
PH_Handle_SMSG_XP_GAIN    0x44bf80
PH_Handle_SMSG_DURABILITY_DAMAGE_DEATH    0x44c070
PH_Handle_SMSG_DEFENSE_MESSAGE    0x44c0a0
PH_Handle_SMSG_SERVER_MESSAGE    0x44c200
PH_Handle_SMSG_RAID_INSTANCE_MESSAGE    0x44c300
PH_Handle_SMSG_INSTANCE_RESET    0x44c500
PH_Handle_SMSG_INSTANCE_RESET_FAILED    0x44c5d0
PH_Handle_SMSG_CHANNEL_NOTIFY    0x44d6b0
PH_Handle_SMSG_MESSAGECHAT    0x44e5e0
PH_Handle_SMSG_GM_MESSAGECHAT    0x44e600
PH_Handle_SMSG_UPDATE_LAST_INSTANCE_CREATED    0x44ef10
PH_Handle_SMSG_POWERGAINLOG_OBSOLETE    0x44f900
PH_Handle_SMSG_BARBER_SHOP_RESULT    0x4519c0
PH_Handle_SMSG_ENABLE_BARBER_SHOP    0x452e10
PH_Handle_SMSG_TUTORIAL_FLAGS    0x4540a0
PH_Handle_SMSG_COMMENTATOR_UNK2    0x4762f0
PH_Handle_SMSG_COMMENTATOR_PLAYER_INFO    0x479340
PH_Handle_SMSG_COMMENTATOR_STATE_CHANGED    0x4799a0
PH_Handle_SMSG_COMMENTATOR_UNK1    0x479c70
PH_Handle_SMSG_COMMENTATOR_MAP_INFO    0x47a0a0
PH_Handle_MSG_RAID_READY_CHECK_FINISHED    0x47a490
PH_Handle_SMSG_RAID_READY_CHECK_ERROR    0x47a4d0
PH_Handle_MSG_NOTIFY_PART_SQUELCH    0x47a4f0
PH_Handle_SMSG_ECHO_PARTY_SQUELCH    0x47a540
PH_Handle_MSG_RAID_TARGET_UPDATE    0x47cc30
PH_Handle_MSG_RAID_READY_CHECK_CONFIRM    0x47cd70
PH_Handle_MSG_RAID_READY_CHECK    0x47da90
PH_Handle_SMSG_GROUP_JOINED_BATTLEGROUND    0x48b610
PH_Handle_MSG_BATTLEGROUND_PLAYER_POSITIONS    0x48b780
PH_Handle_SMSG_BATTLEGROUND_PLAYER_JOINED    0x48b8a0
PH_Handle_SMSG_BATTLEGROUND_PLAYER_LEFT    0x48b900
PH_Handle_SMSG_VICTIMSTATEUPDATE_OBSOLETE    0x48d6b0
PH_Handle_SMSG_PET_BROKEN    0x493440
PH_Handle_SMSG_PET_RENAMEABLE    0x493460
PH_Handle_SMSG_PET_UN_LEARNED_SPELL    0x493980
PH_Handle_SMSG_PET_MODE    0x493b10
PH_Handle_SMSG_PET_ACTION_FEEDBACK    0x493b80
PH_Handle_SMSG_PET_UPDATE_COMBO_POINTS    0x493c90
PH_Handle_SMSG_PET_GUIDS    0x496b30
PH_Handle_SMSG_PET_SPELLS    0x497190
PH_Handle_MSG_QUERY_NEXT_MAIL_TIME    0x4affa0
PH_Handle_SMSG_MEETINGSTONE_COMPLETE    0x4b0080
PH_Handle_SMSG_MAIL_SEND_RESULT    0x4b2830
PH_Handle_SMSG_RECEIVED_MAIL    0x4b2a90
PH_Handle_SMSG_MAIL_LIST_RESULT    0x4b2d80
PH_Handle_MSG_AUCTION_HELLO    0x4b7ad0
PH_Handle_SMSG_AUCTION_COMMAND_RESULT    0x4b7b40
PH_Handle_SMSG_AUCTION_BIDDER_NOTIFICATION    0x4b86e0
PH_Handle_SMSG_AUCTION_OWNER_NOTIFICATION    0x4b8a20
PH_Handle_SMSG_AUCTION_REMOVED_NOTIFICATION    0x4b8d80
PH_Handle_SMSG_AUCTION_LIST_RESULT    0x4b9e40
PH_Handle_SMSG_AUCTION_OWNER_LIST_RESULT    0x4ba160
PH_Handle_SMSG_AUCTION_LIST_PENDING_SALES    0x4ba570
PH_Handle_SMSG_AUCTION_BIDDER_LIST_RESULT    0x4ba9f0
PH_Handle_SMSG_EQUIPMENT_SET_LIST    0x4dfc40
PH_Handle_SMSG_EQUIPMENT_SET_SAVED    0x4dfe70
PH_Handle_SMSG_EQUIPMENT_SET_USE_RESULT    0x4dfec0
PH_Handle_SMSG_CURRENCY_GAINED    0x4e3590
PH_Handle_SMSG_RESPOND_INSPECT_ACHIEVEMENTS    0x4e6120
PH_Handle_SMSG_CRITERIA_UPDATE    0x4e8270
PH_Handle_SMSG_INITIALIZE_FACTIONS    0x4eeb10
PH_Handle_SMSG_ARENA_TEAM_STATS    0x4ef210
PH_Handle_SMSG_ARENA_TEAM_ROSTER    0x4f0280
PH_Handle_SMSG_STOP_DANCE    0x4fd870
PH_Handle_SMSG_LEARNED_DANCE_MOVES    0x4fd8c0
PH_Handle_SMSG_PLAY_DANCE    0x4fdad0
PH_Handle_SMSG_NOTIFY_DANCE    0x4fe840
PH_Handle_MSG_GUILD_BANK_MONEY_WITHDRAWN    0x5046d0
PH_Handle_MSG_QUERY_GUILD_BANK_TEXT    0x504700
PH_Handle_SMSG_GUILD_BANK_LIST    0x506080
PH_Handle_MSG_GUILD_BANK_LOG_QUERY    0x507640
PH_Handle_SMSG_OFFER_PETITION_ERROR    0x519fd0
PH_Handle_SMSG_GOSSIP_COMPLETE    0x51b130
PH_Handle_SMSG_GOSSIP_POI    0x51b160
PH_Handle_SMSG_GOSSIP_MESSAGE    0x51bc70
PH_Handle_SMSG_DUEL_OUTOFBOUNDS    0x521390
PH_Handle_SMSG_DUEL_INBOUNDS    0x5213b0
PH_Handle_SMSG_DUEL_COUNTDOWN    0x521560
PH_Handle_SMSG_DUEL_COMPLETE    0x5215a0
PH_Handle_SMSG_DUEL_REQUESTED    0x5217c0
PH_Handle_SMSG_MINIGAME_STATE    0x537ad0
PH_Handle_SMSG_MINIGAME_SETUP    0x537cc0

[mejunior]

Even though I personally have no clue what to do with it, I know what it's used for and I'm pretty sure alot of people appreciate your work here, even though they're leeching it, keep up the good work!

(''You must spread some Reputation around before giving it to Cromon again.'' Woops)

[myran2]

Thanks a ton for all the work you've done. Good luck!

[Cromon]

new patch means new opcodes. Theyre only valid for build 13205.

[LswSch]

Awesome! thanks +rep!

[Evilkitten]

new patch means new opcodes. Theyre only valid for build 13205.

And this is why Random OP's suck.

Not really worth doing them till cata is out.

[Cromon]

Its not a big deal to convert them to the new ones. If i weren't so lazy and would be developing my emulator i would write a little matcher that would guess the opcodes in a few seconds.