PWI UnEquip and sell charms

Page 2 of 4 1 2 34
11/01/2011 18:56 jasty#16
Is there a high level tool for sending these packets? :s I noticed Swoosh's pGrind has a scripting interface but it doesn't seem to include a command for unequip.

Is the AutoIt example the best place to start? I've never seen that language before <_< Does anyone have a project already setup for sending these packets in a normal language like C++ or Python? I don't have a C# setup on my dev machine.
11/01/2011 19:06 dumbfck#17
If you literally just want to play with sending packets, Interest07's thread contains a fully working AutoIt example that is pretty easy to adjust to suit your needs. The only minor error in his program is the name of the test function that is called near the top of the script. Oh and you'll need updated base address and sendPacket() function address.

Edit: Edit ninja'd by 2 minutes lol. But yeah, that's the quickest way to go just for something like this.
11/01/2011 19:11 jasty#18
Quote:
Originally Posted by dumbfck View Post
If you literally just want to play with sending packets, Interest07's thread contains a fully working AutoIt example that is pretty easy to adjust to suit your needs. The only minor error in his program is the name of the test function that is called near the top of the script. Oh and you'll need updated base address and sendPacket() function address.

Edit: Edit ninja'd by 2 minutes lol. But yeah, that's the quickest way to go just for something like this.
OK how risky is this in terms of being banned if I send malformed packets?
11/01/2011 19:16 dumbfck#19
As far as I'm aware, I've not heard of anyone being banned for it yet. I've sent all sorts of screwed up packets and not had any issues. You should always do your testing on a throwaway char anyway, then once you're confident you've got it right, proceed on your mains... At your own risk of course.
However, I highly doubt there is any sort of monitoring for such things.
We're talking about the same people who didn't do server side checks for DQ rewards and Jones Blessing item IDs lol :D

All I'd say is please don't use this to rip-off cat shops (i.e., other players). Firstly it's unfair and secondly, that's what's more likely to trigger an alert at PW's end, resulting in investigations, bannings and inevitably, a patch.
Getting unintended functionality from the game is one thing. Stealing from other players is not what we're about here on this forum.
11/01/2011 19:39 jasty#20
Quote:
Originally Posted by dumbfck View Post
As far as I'm aware, I've not heard of anyone being banned for it yet. I've sent all sorts of screwed up packets and not had any issues. You should always do your testing on a throwaway char anyway, then once you're confident you've got it right, proceed on your mains... At your own risk of course.
However, I highly doubt there is any sort of monitoring for such things.
We're talking about the same people who didn't do server side checks for DQ rewards and Jones Blessing item IDs lol :D

All I'd say is please don't use this to rip-off cat shops (i.e., other players). Firstly it's unfair and secondly, that's what's more likely to trigger an alert at PW's end, resulting in investigations, bannings and inevitably, a patch.
Getting unintended functionality from the game is one thing. Stealing from other players is not what we're about here on this forum.
I wouldn't I am just trying to reclaim 2 plat charms I accidentally equipped on my catshops lol. Being able to unequip charms outside of TW would be pretty useful as well though my charm doesn't tick much these days in PVE... I have much better ways to make money than to rip off catshops but I really hate seeing those plat charms equipped on mine.

How do you find the right packet? Is it with a packet sniffer?

Edit: I randomly found a packet for dropping equipped items (0x0F) but can't figure out the equipment index for the charm... does anyone know it? You can PM it to me :O
11/01/2011 20:20 Interest07#21
Quote:
Originally Posted by jasty View Post
I wouldn't I am just trying to reclaim 2 plat charms I accidentally equipped on my catshops lol. Being able to unequip charms outside of TW would be pretty useful as well though my charm doesn't tick much these days in PVE... I have much better ways to make money than to rip off catshops but I really hate seeing those plat charms equipped on mine.

How do you find the right packet? Is it with a packet sniffer?
Set a breakpoint on the sendPacket function (0x660130) and check what variables are passed. (packetLength at [ESP + 8] and packet at [[ESP + 4] + 0])

In MHS you could use this script for example on the breakpoint:

Code:
void On_BP_1(LPVOID lpvAddress, LPPROC_INFO_MHS lpProcInfo)
{
	DWORD pktSize_ptr = lpProcInfo->pcContext->Esp+8;
	DWORD pktSize = 0;
	
	ReadProcessMemory(lpProcInfo->hProcess, (void *)pktSize_ptr, &pktSize, 4, NULL);
	
	DWORD pkt_ptr_ptr = lpProcInfo->pcContext->Esp+4;
	DWORD pkt_ptr = 0;
	BYTE bp_newpacket[255] = {0};
	char bp_packet[1024] = {0};	

	ReadProcessMemory(lpProcInfo->hProcess, (void *)pkt_ptr_ptr, &pkt_ptr, 4, NULL);
	ReadProcessMemory(lpProcInfo->hProcess, (void *)pkt_ptr, &bp_newpacket, pktSize, NULL);
	
	for (int i = 0; i < pktSize; i++){
		SPrintF(&bp_packet[i*3], "%02X ", bp_newpacket[i]);
	}

	DWORD callingFunctionAddress = 0;
	DWORD callingfunctionAddress_ptr = lpProcInfo->pcContext->Esp;
	
	ReadProcessMemory(lpProcInfo->hProcess, (void *)callingfunctionAddress_ptr, &callingFunctionAddress, 4, NULL);
	
	


		PrintF("[%08X] Packet: %s",callingFunctionAddress, bp_packet);

}
11/01/2011 20:29 jasty#22
What do I use to set a break point and whats ESP and MHS :confused:

I tried searching those terms on acronymfinder without much luck <_<
11/01/2011 20:30 Sᴡoosh#23
Quote:
{ pGrind Script file , created @ 7:53:02 PM 10/29/2011}
Program Unequip_MP_Charm;
Begin
//Will unequip charm to first slot! Slot must be empty!
SendPacket('11000014');
End.
Should work, have not tested though.

Quote:
Originally Posted by jasty View Post
What do I use to set a break point and whats ESP and MHS :confused:

I tried searching those terms on acronymfinder without much luck <_<
ESP is Stack Pointer, a CPU register. MHS is L Spiro's memory reading software.
11/01/2011 20:40 jasty#24
I tried that packet as it's one of the ones in Interest's reference (swapEquipWithInv) but am getting a message in the system window "Cannot remove this equipment"

swapEquipWithInv(0,20,$pid)

Here is a guide what I am trying to do
[Only registered and activated users can see links. Click Here To Register...]


EDIT: SUCCESSSS!!! I was able to do it with a dropEquip packet (0x0F with equipment index = 20) thankkksss
11/01/2011 20:50 Sᴡoosh#25
Oops, sorry, yeah. Wrong acket there :)

Quote:
{ pGrind Script file , created @ 7:53:02 PM 10/29/2011}
Program Unequip_MP_Charm;
Begin
//Will Drop charm!
SendPacket('0F0015');
End.
11/01/2011 22:50 ptdk#26
Didnt work for me : (

Started bot, hooked my character, went to scripts, copy pasted the code, than "Run script". It went off, but didnt remove my hp hiero(nor my mp hiero which i bought just to test lol). Tryed with both codes, i am kind of clueless regarding this stuff.
11/02/2011 11:12 Sᴡoosh#27
Try the one one post above you. It was the one I used all the time, it works like a charm (yay for wordgames lol).
11/02/2011 14:46 amineurin#28
and now try this on stuff u get from dragonpoints, put the "no trade" stuff to a catshop ;)
11/02/2011 15:46 Interest07#29
Quote:
Originally Posted by amineurin View Post
and now try this on stuff u get from dragonpoints, put the "no trade" stuff to a catshop ;)
Don't think you can oO or what items are you buying with dq points?
11/02/2011 15:52 amineurin#30
did not try this for now, but i have seen catshops selling the "no tradeable" blessings.
i personal buy random color with dq points, im shure u can sell them or the dq point pets.
was just a idea and need some testing :)
Page 2 of 4 1 2 34