Ingame Coordinates

Hi,

maybe I'm blind but I cant find ingame the player coordinates? Are they invisible? That would be very uncommon for a mmorpg.

I need to know because I'm working on a multiclient memory bot :p

Here is a small taste:
[Only registered and activated users can see links. Click Here To Register...]

Hi,

i hope, u know the common ways, to find unknown values with debuggers like cheatengine. The player coordinates are 4 byte floats, the same coordinates are shared within the 3D textlayers, like the charname over the player model.

And i hope too, that you will share your source code with the communtiy, so we can all work together on something :>.

Quote:

Originally Posted by Normal111 Hi, i hope, u know the common ways, to find unknown values with debuggers like cheatengine. The player coordinates are 4 byte floats, the same coordinates are shared within the 3D textlayers, like the charname over the player model. And i hope too, that you will share your source code with the communtiy, so we can all work together on something :>.

well not really but i try to find out the values. since i took your idea from the autoit script (which is maybe still working with the updated offsets) and found easily the values from the visible important values.

for example:

Quote:

006EDCDB 8991 20070000 MOV DWORD PTR DS:[ECX+720],EDX

ups what did we found here ? :D right hp and mp will set here. lets jump here to a codecave. i made simple function for that:

Quote:

Codecave(0x006EDCDB, CC_CurrentHPAndMP, 1);

And finally write the codecave:

Quote:

DWORD theRetAddr = 0; DWORD hpPointer = 0; DWORD currentValue = 0; __declspec(naked) void CC_CurrentHPAndMP(void) { __asm { pop theRetAddr MOV hpPointer, ECX MOV currentValue, EDX PUSHAD PUSHFD } SetCurrentHPAndMP(); __asm { POPFD POPAD MOV DWORD PTR DS:[ECX+720],EDX push theRetAddr ret } }

can i add you on icq to talk about some stuff? :D

when ingame type
/fps

i belive that gives you co-ords

Quote:

Originally Posted by iamabot when ingame type /fps i belive that gives you co-ords

hehe would be nice i will try later. t4t :cool:

Quote:

Originally Posted by CosmosTunes can i add you on icq to talk about some stuff? :D

sure, my icq addy is under my avatar :>

/fps works well

here we go :D

Quote:

00555A62 8B4C24 28 MOV ECX,DWORD PTR SS:[ESP+28] 00555A66 8B11 MOV EDX,DWORD PTR DS:[ECX] ; ntdll.7C90DC9C 00555A68 8910 MOV DWORD PTR DS:[EAX],EDX ; ntdll.KiFastSystemCallRet 00555A6A 8B51 04 MOV EDX,DWORD PTR DS:[ECX+4] ; kernel32.7C817064 00555A6D 8950 04 MOV DWORD PTR DS:[EAX+4],EDX ; ntdll.KiFastSystemCallRet 00555A70 8B49 08 MOV ECX,DWORD PTR DS:[ECX+8] 00555A73 8948 08 MOV DWORD PTR DS:[EAX+8],ECX 00555A76 8BCF MOV ECX,EDI ; ntdll.7C910208 00555A78 C74424 1C FFFFFFFF MOV DWORD PTR SS:[ESP+1C],-1 00555A80 E8 0B70F9FF CALL alefclie.004ECA90

lets see, what we can create :)

Quote:

Archlord Codelist: 26.09.2008 Targetid (Thing to be attacked): Code :005b2db1 - 89 98 b8 0a 00 00 - mov [eax+00000ab8],ebx//4 byte Int Charposx 1://4 byte float Code :005a9f46 - 89 86 b0 05 00 00 - mov [esi+000005b0],eax Code :005aa0a0 - 89 4d 00 - mov [ebp+00],ecx +4 = z +8 = y Charposx 2://4 byte float Code :004b9bfe - d9 58 30 - fstp dword ptr [eax+30] Code :004b9c7c - d9 58 30 - fstp dword ptr [eax+30] +4 = z +8 = y Modelmovementgoalx(the 3D movementgoal *3d modell!*)://4 byte float Code :00501b91 - 89 8e e4 00 00 00 - mov [esi+000000e4],ecx +4 = z +8 = y //Code :0052b963 - 89 10 - mov [eax],edx//atm not essential Movementgoalx 1://4 byte float Code :00686b93 - 89 48 30 - mov [eax+30],ecx = x +4 = z +8 = y Movementgoalx 2://4 byte float Code :00686b7c - d9 58 14 - fstp dword ptr [eax+14] +4 = z +8 = y Movementgoalx 3://4 byte float Code :005b61bf - 89 8e 38 53 01 00 - mov [esi+00015338],ecx +4 = z +8 = y Movementgoalx 4://4 byte float Code :00686c10 - 89 81 44 08 00 00 - mov [ecx+00000844],eax +4 = z +8 = y Charmodelposition =D://4 byte float Code :004b9bfe - d9 58 30 - fstp dword ptr [eax+30] Code :004b9947 - 5b - pop ebx Code :004b9c7c - d9 58 30 - fstp dword ptr [eax+30] +4 = z +8 = y Charnameposition : D://4 byte float Code :004f58a3 - 89 03 - mov [ebx],eax +4 = z +8 = y Camposition://4 byte float Code :00692400 - d9 9e 88 04 00 00 - fstp dword ptr [esi+00000488] Code :00691752 - 89 96 88 04 00 00 - mov [esi+00000488],edx +4 = z +8 = y to be continued... :)

with these co-ords whatcha trying to do?

Normal111 really nice work!

i have used:
Code :005aa0a0 - 89 4d 00 - mov [ebp+00],ecx

but its really strange check the image. The visible coordinates from /fps are allways a bit different.

-367869.218 <> -367862.219
4437.873 <> 4439.330
150567.734 <> 150563.813

Don't think /fps is right o.O

ok so i have now most of my stuff for the bot working just doing some fine tuning on the aoe attacks at moment. I have still another problem. everything works minimized only the character selection click doesnt work (it works with not minimized client window). Its strange because the mouse click on the server and connect on the server selection works great (minimized).

So i think it has something to do with the 3d engine (the player will be rendered on that screen) and the sendmessage mouse click seems like doesnt work here together with minimized client window. Anyone know a workarround for this screen? I have allready tried to hit every key on my keyboard but I cant choose the character. If I need to debug the memory to find a solution it will takes some more days :(

Gimme some idea's xD

only thing i can think of is clicking the level box, and then clicking on Connection, but that doesnt work for some guys,
or do you mean, on char select click dont work at all?

no i mean really clicking the character. but the level box is a good idea and i will try it out xD thanks. all other idea's are welcome too!

Edit: WOOT works xD bot is now working full minimized =P

^^
glad to help a felow bot maker :P

if ya need a tester gimmie a shout :) if not, good luck :D