You last visited: Today at 17:22
Advertisement
WQ bot for PWI
Discussion on WQ bot for PWI within the PW Hacks, Bots, Cheats, Exploits forum part of the Perfect World category.
09/13/2010, 00:18
#16
elite*gold: 0
Join Date: Mar 2010
Posts: 862
Received Thanks: 576
Thanks, I'm working on it atm. Turns out NPCids are different per server. I also made a tiny coding error
Working on getting the right Ids now
09/13/2010, 02:37
#17
elite*gold: 0
Join Date: Apr 2009
Posts: 106
Received Thanks: 52
I can give you an account 70 +
if necessary
09/13/2010, 02:50
#18
elite*gold: 0
Join Date: Apr 2009
Posts: 106
Received Thanks: 52
if you still need I will post the
09/13/2010, 03:40
#19
elite*gold: 0
Join Date: Mar 2010
Posts: 862
Received Thanks: 576
Oh yeah that would help if what I have right now doesn't work
Attached Files
FlyWQ.rar
(278.4 KB, 141 views)
09/13/2010, 04:10
#20
elite*gold: 0
Join Date: Sep 2010
Posts: 3
Received Thanks: 0
Mr.Interest07
THX for WQ BOT
can I modification your BOT?
09/13/2010, 04:16
#21
elite*gold: 0
Join Date: Apr 2009
Posts: 106
Received Thanks: 52
well, this afternoon (I have now
6 am) I'll give you a 70 +
account and post offset, if you still have to of course
09/13/2010, 04:16
#22
elite*gold: 0
Join Date: Mar 2010
Posts: 862
Received Thanks: 576
Quote:
Originally Posted by
zxcvasdfqwer1234
Mr.Interest07
THX for WQ BOT
can I modification your BOT?
of course, this is the updated sourcecode:
Code:
#Include C:\Documents and Settings\Administrator\My Documents\AutoHotkey\Lib\PWlib.ahk
#Persistent
#SingleInstance
DetectHiddenWindows, On
SetKeyDelay,,50
;Offsets & Addresses
IniRead, realBaseAddress , WQing.ini, offsets,realBaseAddress
IniRead, baseOffset , WQing.ini, offsets,baseOffset
IniRead, playerOffSet , WQing.ini, offsets,playerOffSet
IniRead, playerNameOffset , WQing.ini, offsets,playerNameOffset
IniRead, nameLengthOffset , WQing.ini, offsets,nameLengthOffset
IniRead, playerTargetIdOffset , WQing.ini, offsets,playerTargetIdOffset
IniRead, playerActionStructOffset , WQing.ini, offsets,playerActionStructOffset
IniRead, playerCounterOffset , WQing.ini, offsets,playerCounterOffset
IniRead, playerIntervalOffset , WQing.ini, offsets,playerIntervalOffset
IniRead, playerFlyMountOffset , WQing.ini, offsets,playerFlyMountOffset
IniRead, playerFlySpdOffset , WQing.ini, offsets,playerFlySpdOffset
IniRead, playerTransportModeOffset , WQing.ini, offsets,playerTransportModeOffset
IniRead, playerXposOffset , WQing.ini, offsets,playerXposOffset
IniRead, playerYposOffset , WQing.ini, offsets,playerYposOffset
IniRead, playerZposOffset , WQing.ini, offsets,playerZposOffset
IniRead, SendPacketAddress , WQing.ini, offsets,SendPacketAddress
IniRead, questFunctionAddress , WQing.ini, offsets,questFunctionAddress
IniRead, questFunctionOffset , WQing.ini, offsets,questFunctionOffset
IniRead, npcId8348, WQing.ini, npcIds, npcId8348
IniRead, npcId8349, WQing.ini, npcIds, npcId8349
IniRead, npcId8350, WQing.ini, npcIds, npcId8350
IniRead, npcId8351, WQing.ini, npcIds, npcId8351
IniRead, npcId8352, WQing.ini, npcIds, npcId8352
IniRead, npcId8353, WQing.ini, npcIds, npcId8353
IniRead, npcId8354, WQing.ini, npcIds, npcId8354
IniRead, npcId8355, WQing.ini, npcIds,npcId8355
IniRead, npcId8356, WQing.ini, npcIds,npcId8356
IniRead, npcId8357, WQing.ini, npcIds,npcId8357
IniRead, npcId8358, WQing.ini, npcIds,npcId8358
IniRead, npcId8359, WQing.ini, npcIds,npcId8359
IniRead, npcId8360, WQing.ini, npcIds,npcId8360
IniRead, npcId8361, WQing.ini, npcIds,npcId8361
IniRead, npcId8362, WQing.ini, npcIds,npcId8362
IniRead, npcId8363, WQing.ini, npcIds,npcId8363
IniRead, npcId8364, WQing.ini, npcIds,npcId8364
IniRead, npcId8365, WQing.ini, npcIds,npcId8365
IniRead, npcId8366, WQing.ini, npcIds,npcId8366
IniRead, npcId8367, WQing.ini, npcIds,npcId8367
IniRead, npcId8368, WQing.ini, npcIds,npcId8368
IniRead, npcId8369, WQing.ini, npcIds,npcId8369
IniRead, npcId8370, WQing.ini, npcIds,npcId8370
IniRead, npcId8371, WQing.ini, npcIds,npcId8371
IniRead, npcId8372, WQing.ini, npcIds,npcId8372
IniRead, npcId8373, WQing.ini, npcIds,npcId8373
IniRead, npcId8374, WQing.ini, npcIds,npcId8374
IniRead, npcId8375, WQing.ini, npcIds,npcId8375
IniRead, npcId8376, WQing.ini, npcIds,npcId8376
IniRead, npcId8377, WQing.ini, npcIds,npcId8377
IniRead, npcId8378, WQing.ini, npcIds,npcId8378
IniRead, npcId8379, WQing.ini, npcIds,npcId8379
IniRead, npcId8380, WQing.ini, npcIds,npcId8380
IniRead, npcId8381, WQing.ini, npcIds,npcId8381
IniRead, npcId8382, WQing.ini, npcIds,npcId8382
IniRead, npcId8383, WQing.ini, npcIds,npcId8383
IniRead, npcId8384, WQing.ini, npcIds,npcId8384
IniRead, npcId8385, WQing.ini, npcIds,npcId8385
IniRead, npcId8386, WQing.ini, npcIds,npcId8386
IniRead, npcId8387, WQing.ini, npcIds,npcId8387
IniRead, npcId8388, WQing.ini, npcIds,npcId8388
IniRead, npcId8389, WQing.ini, npcIds,npcId8389
IniRead, npcId8390, WQing.ini, npcIds,npcId8390
IniRead, npcId8391, WQing.ini, npcIds,npcId8391
IniRead, npcId8392, WQing.ini, npcIds,npcId8392
IniRead, npcId8393, WQing.ini, npcIds,npcId8393
IniRead, npcId8394, WQing.ini, npcIds,npcId8394
IniRead, npcId8395, WQing.ini, npcIds,npcId8395
IniRead, npcId8396, WQing.ini, npcIds,npcId8396
IniRead, npcId8397, WQing.ini, npcIds,npcId8397
IniRead, npcId8398, WQing.ini, npcIds,npcId8398
xCoord8348 := 1150922672
xCoord8349 := 3302385319
xCoord8350 := 1148557837
xCoord8351 := 3303292969
xCoord8352 := 1142127397
xCoord8353 := 1156113401
xCoord8354 := 1156110694
xCoord8355 := 1155705131
xCoord8356 := 1158297134
xCoord8357 := 1159710894
xCoord8358 := 1160108504
xCoord8359 := 1134178481
xCoord8360 := 3285809922
xCoord8361 := 3290771596
xCoord8362 := 3308040683
xCoord8363 := 3307254531
xCoord8364 := 3297816607
xCoord8365 := 1135247292
xCoord8366 := 1143076818
xCoord8367 := 1160136679
xCoord8368 := 1160190578
xCoord8369 := 1152945684
xCoord8370 := 1153034387
xCoord8371 := 1152265176
xCoord8372 := 1159054997
xCoord8373 := 1159086744
xCoord8374 := 1159662514
xCoord8375 := 1160067557
xCoord8376 := 1159191720
xCoord8377 := 3305664239
xCoord8378 := 1151616945
xCoord8379 := 1151616945
xCoord8380 := 1151616945
xCoord8381 := 1151616945
xCoord8382 := 1151616945
xCoord8383 := 1151616945
xCoord8384 := 1151616945
xCoord8385 := 1151616945
xCoord8386 := 1151616945
xCoord8387 := 1151616945
xCoord8388 := 1151616945
xCoord8389 := 1151616945
xCoord8390 := 1151616945
xCoord8391 := 1151616945
xCoord8392 := 1151616945
xCoord8393 := 1151616945
xCoord8394 := 1151616945
xCoord8395 := 1151616945
xCoord8396 := 1154882031
xCoord8397 := 1151616945
xCoord8398 := 1151749044
yCoord8348 := 1130077739
yCoord8349 := 1130079036
yCoord8350 := 1130021976
yCoord8351 := 1141044657
yCoord8352 := 1130042464
yCoord8353 := 1131590663
yCoord8354 := 1131336105
yCoord8355 := 1130076569
yCoord8356 := 1130234513
yCoord8357 := 1130031613
yCoord8358 := 1132208056
yCoord8359 := 1130168939
yCoord8360 := 1134634916
yCoord8361 := 1130096160
yCoord8362 := 1141030586
yCoord8363 := 1140993714
yCoord8364 := 1141067583
yCoord8365 := 1130090536
yCoord8366 := 1132295168
yCoord8367 := 1130628796
yCoord8368 := 1130627738
yCoord8369 := 1130689735
yCoord8370 := 1130518019
yCoord8371 := 1130027594
yCoord8372 := 1130154748
yCoord8373 := 1130073206
yCoord8374 := 1130614368
yCoord8375 := 1130092715
yCoord8376 := 1130117314
yCoord8377 := 1130496656
yCoord8378 := 1130077739
yCoord8379 := 1130077739
yCoord8380 := 1130077739
yCoord8381 := 1130077739
yCoord8382 := 1130077739
yCoord8383 := 1130077739
yCoord8384 := 1130077739
yCoord8385 := 1130077739
yCoord8386 := 1130077739
yCoord8387 := 1130077739
yCoord8388 := 1130077739
yCoord8389 := 1130077739
yCoord8390 := 1130077739
yCoord8391 := 1130077739
yCoord8392 := 1130077739
yCoord8393 := 1130077739
yCoord8394 := 1130077739
yCoord8395 := 1130077739
yCoord8396 := 1130136969
yCoord8397 := 1130077739
yCoord8398 := 1130077739
zCoord8348 := 1148590119
zCoord8349 := 1115520494
zCoord8350 := 1166235043
zCoord8351 := 3298807030
zCoord8352 := 1138268421
zCoord8353 := 1125415571
zCoord8354 := 1126821456
zCoord8355 := 1151963447
zCoord8356 := 1155092500
zCoord8357 := 1161783713
zCoord8358 := 1166197254
zCoord8359 := 1156163994
zCoord8360 := 1158984367
zCoord8361 := 1160585847
zCoord8362 := 1137289047
zCoord8363 := 1147499808
zCoord8364 := 1126624420
zCoord8365 := 3294985570
zCoord8366 := 3305352074
zCoord8367 := 3303123588
zCoord8368 := 3302758014
zCoord8369 := 3302842554
zCoord8370 := 3302573762
zCoord8371 := 3299372414
zCoord8372 := 3292082340
zCoord8373 := 1125247490
zCoord8374 := 1058505046
zCoord8375 := 1142385946
zCoord8376 := 1143040737
zCoord8377 := 1162223519
zCoord8378 := 1147533066
zCoord8379 := 1147533066
zCoord8380 := 1147533066
zCoord8381 := 1147533066
zCoord8382 := 1147533066
zCoord8383 := 1147533066
zCoord8384 := 1147533066
zCoord8385 := 1147533066
zCoord8386 := 1147533066
zCoord8387 := 1147533066
zCoord8388 := 1147533066
zCoord8389 := 1147533066
zCoord8390 := 1147533066
zCoord8391 := 1147533066
zCoord8392 := 1147533066
zCoord8393 := 1147533066
zCoord8394 := 1147533066
zCoord8395 := 1147533066
zCoord8396 := 1148540945
zCoord8397 := 1147533066
zCoord8398 := 1148064643
;List Variables
ActiveList =
InActiveList =
ActiveNitems := 0
InActiveNitems := 0
createGui()
SetTimer, mainloop, 500
return
GuiClose:
ExitApp
showStats:
Gui Submit, nohide
selectedPlayer := Active
StringSplit, statusParam, PWstatus%selectedPlayer%, `,
questInfo := getQuestInfo(nextQuest%selectedPlayer%)
currentStatus := statusParam1 . " [" . questInfo . "]"
GuiControl,, StatusText, %currentStatus%
return
Button>>:
gui submit, nohide
item = %InActive%
if(item <> "")
{
removeItem("inactive", item)
addItem("active", item)
PWstatus%item% := "Idle"
}
return
Button<<:
gui submit, nohide
item = %Active%
if(item <> "")
{
removeItem("active", item)
addItem("inactive", item)
PWstatus%item% := "Idle"
}
return
addItem(listBox, item)
{
%listBox%List := %listBox%List . "|" . item
Sort, %listBox%List, U D|
if errorlevel = 0
%listBox%Nitems := %listBox%Nitems + 1
theList := %listBox%List
GuiControl,, %listBox%, %theList%
}
removeItem(listBox, item)
{
StringReplace, theList, %listBox%List, |%item%
%listBox%List := theList
GuiControl,, %listBox%, %theList%
%listBox%Nitems := %listBox%Nitems - 1
if(%listBox%Nitems < 1)
{
createGui()
}
}
createGui()
{
global
Gui, Destroy
Gui, Add, ListBox, vInActive x16 y44 w100 h147 %ActiveList%
Gui, Add, Button, x126 y84 w50 h30 , >>
Gui, Add, Button, x126 y124 w50 h30 , <<
Gui, Add, ListBox, vActive gShowStats x186 y44 w110 h147 %InActiveList%
Gui, Add, Text, x16 y14 w100 h20 , Inactive
Gui, Add, Text, x186 y14 w110 h20 , Doing WQ
Gui, Add, Text, vStatusText x316 y44 w130 h150 , Stats
Gui, Show, x131 y91 h215 w464, Auto WQ
}
mainLoop:
;Get all clients with a char logged in
WinGet, winList ,List
PWlist =
nPWs = 0
loop %winList%
{
windId := winList%A_Index%
WinGet, processName ,processName , ahk_id %windId%
if(processName = "elementclient.exe")
{
Winget, pId, PID, ahk_id %windId%
theId = ahk_pid %pid%
playerName := getPlayerName(theId)
if(playerName <> "")
{
nPWs := nPWs + 1
PWlist%nPWs% = %playerName%
PWidList%playerName% = %theId%
}
}
}
;Add any newly logged chars to the InActive list
addNewPlayers()
removeNonPresentPlayers()
StringSplit, activeArray, ActiveList, |
loop %activeArray0%
{
if(A_index > 1)
{
index := A_index
playerName := activeArray%index%
updateStatus(playerName)
Gui Submit, nohide
selectedPlayer := Active
StringSplit, statusParam, PWstatus%selectedPlayer%, `,
questInfo := getQuestInfo(nextQuest%selectedPlayer%)
currentStatus := statusParam1 . " [" . questInfo . "]"
GuiControl,, StatusText, %currentStatus%
}
}
return
getQuestInfo(questId)
{
returnValue := ""
if(questId = 8348)
{
returnValue = Volume 1
}
else if(questId = 8349)
{
returnValue = Volume 2
}
else if(questId = 8350)
{
returnValue = Volume 3
}
else if(questId = 8351)
{
returnValue = Volume 4
}
else if(questId = 8352)
{
returnValue = Volume 5
}
else if(questId = 8353)
{
returnValue = Volume 6
}
else if(questId = 8354)
{
returnValue = Volume 7
}
else if(questId = 8355)
{
returnValue = Volume 8
}
else if(questId = 8356)
{
returnValue = Volume 9
}
else if(questId = 8357)
{
returnValue = Volume 10
}
else if(questId = 8358)
{
returnValue = Volume 11
}
else if(questId = 8359)
{
returnValue = Volume 12
}
else if(questId = 8360)
{
returnValue = Volume 13
}
else if(questId = 8361)
{
returnValue = Volume 14
}
else if(questId = 8362)
{
returnValue = Volume 15
}
else if(questId = 8363)
{
returnValue = Volume 16
}
else if(questId = 8364)
{
returnValue = Volume 17
}
else if(questId = 8365)
{
returnValue = Volume 18
}
else if(questId = 8366)
{
returnValue = Volume 19
}
else if(questId = 8367)
{
returnValue = Volume 20
}
else if(questId = 8368)
{
returnValue = Volume 21
}
else if(questId = 8369)
{
returnValue = Volume 22
}
else if(questId = 8370)
{
returnValue = Volume 23
}
else if(questId = 8371)
{
returnValue = Volume 24
}
else if(questId = 8372)
{
returnValue = Volume 25
}
else if(questId = 8373)
{
returnValue = Volume 26
}
else if(questId = 8374)
{
returnValue = Volume 27
}
else if(questId = 8375)
{
returnValue = Volume 28
}
else if(questId = 8376)
{
returnValue = Volume 29
}
else if(questId = 8377)
{
returnValue = Volume 30
}
else if(questId = 8378)
{
returnValue = No Bonus
}
else if(questId = 8379)
{
returnValue = Exp Bonus
}
else if(questId = 8380)
{
returnValue = SP Bonus
}
else if(questId = 8381)
{
returnValue = Reputation
}
else if(questId = 8382)
{
returnValue = Gold Bonus
}
else if(questId = 8383)
{
returnValue = Mirage
}
else if(questId = 8384)
{
returnValue = No Bonus
}
else if(questId = 8385)
{
returnValue = Exp Bonus
}
else if(questId = 8386)
{
returnValue = SP Bonus
}
else if(questId = 8387)
{
returnValue = Reputation
}
else if(questId = 8388)
{
returnValue = Gold Bonus
}
else if(questId = 8389)
{
returnValue = Mirage
}
else if(questId = 8390)
{
returnValue = No Bonus
}
else if(questId = 8391)
{
returnValue = Exp Bonus
}
else if(questId = 8392)
{
returnValue = SP Bonus
}
else if(questId = 8393)
{
returnValue = Reputation
}
else if(questId = 8394)
{
returnValue = Gold Bonus
}
else if(questId = 8395)
{
returnValue = Mirage
}
else if(questId = 8396)
{
returnValue = Elder
}
else if(questId = 8397)
{
returnValue = Armerigo
}
else if(questId = 8398)
{
returnValue = Penney
}
return returnValue
}
getPlayerName(theId)
{
global
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
local playerNamePointer := ReadMemory(playerPointer + playerNameOffset, theId)
local playerNameLength := ReadMemory(playerNamePointer + nameLengthOffset, theId)
local playerName := ""
local tempOffset := 0xFFFFFFFD
loop %playerNameLength%
{
tempOffset := tempOffset + 0x2
local character := ReadMemory(playerNamePointer + tempOffset,theId, 2)
SetFormat, IntegerFast, hex
character += 0
character .= ""
SetFormat, IntegerFast, d
playerName := playerName Hex2txt(character)
}
return playerName
}
getNextQuest(theId)
{
global
returnValue := 0
local questId := 8348
loop 51
{
value := checkQuestPresent(questId, theId)
if(value = 0)
{
returnValue := questId
break
}
questId := questId + 1
}
return returnValue
}
npcIsClose(questId, theId)
{
global
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
SetFormat, IntegerFast, hex
local xCoord := ReadMemory(playerPointer + playerXposOffset, theId)
local yCoord := ReadMemory(playerPointer + playerYposOffset, theId)
local zCoord := ReadMemory(playerPointer + playerZposOffset, theId)
local npcX := xCoord%questId%
local npcY := yCoord%questId%
local npcZ := zCoord%questId%
SetFormat, IntegerFast, d
local dX := hextofloat(xcoord) - hextofloat(npcx)
local dY := hextofloat(ycoord) - hextofloat(npcy)
local dZ := hextofloat(zcoord) - hextofloat(npcz)
distance := sqrt(dX * dX + dY * dY + dZ * dZ)
if(distance < 5)
{
return 1
}
else
{
return 0
}
}
handleNpc(questId, theId)
{
global
SetFormat, IntegerFast, hex
;select NPC
npcId := npcId%questId%
revHex(revNpcId, npcId)
packet := ""
packet = %packet%0200%revNpcId%
packetSize := 0x6
packetSizeStr := "06"
sendPacket(packet, packetSizeStr, packetsize, theId)
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
loop
{
local targetId := ReadMemory(playerPointer + playerTargetIdOffset, theId)
if(targetId = npcId)
{
break
}
sleep 100
}
;start interaction
packet := ""
packet = %packet%2300%revNpcId%
packetSize := 0x6
packetSizeStr := "06"
sendPacket(packet, packetSizeStr, packetsize, theId)
sleep 100
;hand in quest
revHex(revQuestId, questId)
packet := ""
packet = %packet%25000700000004000000%revQuestId%
packetSize := 0xE
packetSizeStr := "0E"
sendPacket(packet, packetSizeStr, packetsize, theId)
sleep 3000
}
getMoveMethod(questId, theId)
{
global
local x := xCoord%questId%
local y := yCoord%questId%
local z := zCoord%questId%
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
SetFormat, IntegerFast, hex
local xCoord := ReadMemory(playerPointer + playerXposOffset, theId)
local yCoord := ReadMemory(playerPointer + playerYposOffset, theId)
local zCoord := ReadMemory(playerPointer + playerZposOffset, theId)
SetFormat, IntegerFast, d
local dX := hextofloat(xcoord) - hextofloat(x)
local dY := hextofloat(ycoord) - hextofloat(y)
local dZ := hextofloat(zcoord) - hextofloat(z)
distance := sqrt(dX * dX + dZ * dZ)
if(distance < 5)
{
returnValue = Falling
}
else
{
local height := 77.0
local nTimesUp := 20
returnValue = FlyUp@%nTimesUp%@SetFlyTo@%x%@%y%@%z%@%height%@Flying@Falling
}
return returnValue
}
flymodeActive(theId)
{
global
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
local transportMode := ReadMemory(playerPointer + playerTransportModeOffset, theId)
if(transportMode = 2)
{
return 1
}
else
{
return 0
}
}
toggleFlying(theId)
{
global
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
local flyMountId := ReadMemory(playerPointer + playerFlyMountOffset, theId)
revHex(revFlyMountId, flyMountId)
packet := ""
packet = 280001010C00%revFlyMountId%
packetSize := 0xA
packetSizeStr := "0A"
sendPacket(packet, packetSizeStr, packetsize, theId)
sleep 2000
}
setFlyTo(theId, xCoord, yCoord, zCoord, height)
{
global
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
local actionStruct := ReadMemory(playerPointer + playerActionStructOffset, theId)
MoveTo(Xcoord, Ycoord, Zcoord, 0, theId, actionStruct, height)
}
getCurrentCoords(theId)
{
global
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
local xCoord := ReadMemory(playerPointer + playerXposOffset, theId)
local yCoord := ReadMemory(playerPointer + playerYposOffset, theId)
local zCoord := ReadMemory(playerPointer + playerZposOffset, theId)
returnValue = %xCoord%@%yCoord%@%zCoord%
return returnValue
}
isIdle(theId)
{
global
local baseAddress := ReadMemory(realBaseAddress, theId)
local structurePointer := ReadMemory(baseAddress + baseOffset, theId)
local playerPointer := ReadMemory(structurePointer + playerOffset, theId)
local actionStruct := ReadMemory(playerPointer + playerActionStructOffset, theId)
local moving := ReadMemory(actionstruct+0x18,theId)
if(moving = 0)
{
return 1
}
else
{
return 0
}
}
updateStatus(name)
{
global
nextQuest := nextQuest%Name%
clientId := PWidList%Name%
StringSplit, statusParam, PWstatus%Name%, `,
currentStatus := statusParam1
if(currentStatus = "Idle")
{
nextQuest := getNextQuest(clientId)
nextQuest%Name% := nextQuest
if(nextQuest = 0)
{
;Stay Idle
}
else ;There is a new quest
{
if(NpcIsClose(nextQuest, clientId) = 1)
{
handleNpc(nextQuest, clientId)
;Idle again
}
else ;You have to move to the Npc
{
moveMethod := getMoveMethod(nextQuest, clientId)
PWstatus%Name% = Moving,%moveMethod%
}
}
}
else if(currentStatus = "Moving")
{
moveMethod := statusParam2
stringsplit, moving, moveMethod, @
if(moving1 = "FlyUp")
{
if(flyModeActive(clientId) = 1)
{
flyUp(clientId, moving2)
;remove this parameter
nParams := moving0 - 2
newMoveMethod := ""
loop %nParams%
{
paramIndex := A_Index + 2
newMoveMethod := newMoveMethod . moving%paramIndex%
if(A_Index < nParams)
{
newMoveMethod := newMoveMethod . "@"
}
}
PWstatus%Name% = Moving,%newMoveMethod%
}
else
{
toggleFlying(clientId)
}
}
else if(moving1 = "SetFlyTo")
{
setFlyTo(clientId, moving2, moving3, moving4, moving5)
currentCoords := getCurrentCoords(clientId)
;remove this parameter
nParams := moving0 - 5
newMoveMethod := ""
loop %nParams%
{
paramIndex := A_Index + 5
newMoveMethod := newMoveMethod . moving%paramIndex%
if(A_Index < nParams)
{
newMoveMethod := newMoveMethod . "@"
}
}
PWstatus%Name% = Moving,%newMoveMethod%,%currentCoords%
}
else if(moving1 = "Flying")
{
currentCoords := getCurrentCoords(clientId)
if (isIdle(clientId) = 1)
{
;Done Flying
;remove this parameter
nParams := moving0 - 1
newMoveMethod := ""
loop %nParams%
{
paramIndex := A_Index + 1
newMoveMethod := newMoveMethod . moving%paramIndex%
if(A_Index < nParams)
{
newMoveMethod := newMoveMethod . "@"
}
}
MoveMethod := newMoveMethod
}
PWstatus%Name% = Moving,%MoveMethod%,%currentCoords%
}
else if(moving1 = "Falling")
{
if(flymodeActive(clientId) = 1)
{
toggleFlying(clientId)
}
else
{
currentCoords := getCurrentCoords(clientId)
if (isIdle(clientId) = 1)
{
;Stopped Falling
;remove this parameter
nParams := moving0 - 1
newMoveMethod := ""
loop %nParams%
{
paramIndex := A_Index + 1
newMoveMethod := newMoveMethod . moving%paramIndex%
if(A_Index < nParams)
{
newMoveMethod := newMoveMethod . "@"
}
}
PWstatus%Name% = Idle
}
else
{
if(flymodeActive(clientId) = 1)
{
toggleFlying(clientId)
}
PWstatus%Name% = Moving,%MoveMethod%,%currentCoords%
}
}
}
}
}
addNewPlayers()
{
global
loop %nPWs%
{
playerName := PWlist%A_Index%
if(playerNameInLists(playerName) = 0)
{
addItem("inactive", playerName)
PWstatus%playerName% := "Idle"
}
}
}
removeNonPresentPlayers()
{
global
StringSplit, activeArray, ActiveList, |
loop %ActiveNitems%
{
index := A_Index + 1
playerInList := activeArray%index%
playerPresent := 0
loop %nPWs%
{
playerName := PWlist%A_Index%
if(playerInList = playerName)
{
playerPresent = 1
break
}
}
if (playerPresent = 0)
{
removeItem("active", playerInList)
}
}
StringSplit, inactiveArray, inActiveList, |
loop %InActiveNitems%
{
index := A_Index + 1
playerInList := inactiveArray%index%
playerPresent := 0
loop %nPWs%
{
playerName := PWlist%A_Index%
if(playerInList = playerName)
{
playerPresent = 1
break
}
}
if (playerPresent = 0)
{
removeItem("inactive", playerInList)
}
}
}
playerNameInLists(playerName)
{
global
StringSplit, activeArray, ActiveList, |
playerPresent := 0
loop %ActiveNitems%
{
index := A_Index + 1
playerInList := activeArray%index%
if(playerInList = playerName)
{
playerPresent := 1
break
}
}
if(playerPresent = 0)
{
StringSplit, inactiveArray, inActiveList, |
loop %InActiveNitems%
{
index := A_Index + 1
playerInList := inactiveArray%index%
if(playerInList = playerName)
{
playerPresent := 1
break
}
}
}
return playerPresent
}
checkQuestPresent(questId, client)
{
global
;Get the process Id from the given client title
winget, pid, PID, %client%
;Get the process handle from the given client title
ProcessHandle := DllCall("OpenProcess", "int", 2035711, "char", 1, "UInt", PID, "UInt")
functionSize := 100
;Allocate memory to store the packet to be sent, and the method to call the send packet function
returnAddress := DllCall("VirtualAllocEx", "Uint", ProcessHandle, "Uint", 0, "Uint", 0x4, "Uint", 0x1000, "Uint", 0x40)
functionAddress := DllCall("VirtualAllocEx", "Uint", ProcessHandle, "Uint", 0, "Uint", functionSize, "Uint", 0x1000, "Uint", 0x40)
revHex(revReturnAddress, returnAddress)
revHex(revQuestId, questId)
revHex(revQuestFunctionAddress, questFunctionAddress)
revHex(revBaseAddress, realBaseAddress)
revHex(revQuestFunctionOffset, questFunctionOffset)
;60 PUSHAD
;B8 80 45 66 00 MOV EAX, 00664580
;8B 0D 7C 65 98 00 MOV ECX, DWORD PTR [98657C]
;8B 49 1C MOV ECX, DWORD PTR [ECX+1C]
;8B 49 20 MOV ECX, DWORD PTR [ECX+20]
;8B 89 DC 0D MOV ECX, DWORD PTR [ECX+DDC]
;68 DD 06 PUSH 6DD
;FF D0 CALL NEAR EAX
;A3 32 54 76 98 MOV DWORD PTR [98765432], EAX
;61 POPAD
;C3 RET
func =
func = %func%60 ;PUSHAD
func = %func%B8%revQuestFunctionAddress% ;MOV EAX, questFunction
func = %func%8B0D%revBaseAddress% ;MOV ECX, DWORD PTR [baseAddress]
func = %func%8B491C ;MOV ECX, DWORD PTR [ECX+1C]
func = %func%8B4920 ;MOV ECX, DWORD PTR [ECX+20]
func = %func%8B89%revQuestFunctionOffset% ;MOV ECX, DWORD PTR [ECX+questFuncOffset]
func = %func%68%revQuestId% ;PUSH questId
func = %func%FFD0 ;CALL NEAR EAX
func = %func%A3%revReturnAddress% ;MOV DWORD PTR [returnAddress], EAX
func = %func%61 ;POPAD
func = %func%C3 ;RET
MCode(checkQuestFunction, func)
DllCall("WriteProcessMemory", "UInt", ProcessHandle, "UInt", functionAddress, "Uint", &checkQuestFunction, "Uint", functionSize, "Uint *", 0)
SetFormat, IntegerFast, d
hThrd := DllCall("CreateRemoteThread", "Uint", ProcessHandle, "Uint", 0, "Uint", 0, "Uint", functionAddress, "Uint", 0, "Uint", 0, "Uint", 0)
loop
{
result := DllCall( "WaitForSingleObject", UInt,hThrd, UInt,50 )
if(result <> 258)
{
break
}
sleep 50
if(A_Index > 100)
{
break
}
}
DllCall( "CloseHandle", UInt,hThrd )
DllCall("VirtualFreeEx", "Uint", ProcessHandle, "Uint", functionAddress, "Uint", 0, "Uint", 0x8000)
DllCall( "CloseHandle", UInt,ProcessHandle )
returnValue := readMemory(returnAddress, client)
return returnValue
}
sendPacket(packet, packetSizeStr, packetsize, client)
{
global
MCode(processedPacket, packet)
;Get the process Id from the given client title
winget, pid, PID, %client%
;Get the process handle from the given client title
ProcessHandle := DllCall("OpenProcess", "int", 2035711, "char", 1, "UInt", PID, "UInt")
;Allocate memory to store the packet to be sent, and the method to call the send packet function
packetAddress := DllCall("VirtualAllocEx", "Uint", ProcessHandle, "Uint", 0, "Uint", packetSize, "Uint", 0x1000, "Uint", 0x40)
functionAddress := DllCall("VirtualAllocEx", "Uint", ProcessHandle, "Uint", 0, "Uint", 0x1B, "Uint", 0x1000, "Uint", 0x40)
revHex(packetAddressRev, packetAddress)
revHex(revSendPacketAddress, SendPacketAddress)
revHex(revBaseAddress, realBaseAddress)
func =
func = %func%60 ;PUSHAD
func = %func%B8%revSendPacketAddress% ;MOV EAX, sendPacketAddress
func = %func%8B0D%revBaseAddress% ;MOV ECX, DWORD PTR [revBaseAddress]
func = %func%8B4920 ;MOV ECX, DWORD PTR [ECX+20]
func = %func%BF%packetAddressRev% ;MOV EDI, packetAddress //src pointer
func = %func%6A%packetSizeStr% ;PUSH packetSize //size
func = %func%57 ;PUSH EDI
func = %func%FFD0 ;CALL EAX
func = %func%61 ;POPAD
func = %func%C3 ;RET
MCode(sendFunction, func)
DllCall("WriteProcessMemory", "UInt", ProcessHandle, "UInt", packetAddress, "Uint", &processedPacket, "Uint", packetSize, "Uint *", 0)
DllCall("WriteProcessMemory", "UInt", ProcessHandle, "UInt", functionAddress, "Uint", &sendFunction, "Uint", 0x1B, "Uint *", 0)
hThrd := DllCall("CreateRemoteThread", "Uint", ProcessHandle, "Uint", 0, "Uint", 0, "Uint", functionAddress, "Uint", 0, "Uint", 0, "Uint", 0)
loop
{
result := DllCall( "WaitForSingleObject", UInt,hThrd, UInt,50 )
if(result <> 258)
{
break
}
sleep 50
if(A_Index > 100)
{
break
}
}
DllCall( "CloseHandle", UInt,hThrd )
DllCall("VirtualFreeEx", "Uint", ProcessHandle, "Uint", packetAddress, "Uint", 0, "Uint", 0x8000)
DllCall("VirtualFreeEx", "Uint", ProcessHandle, "Uint", functionAddress, "Uint", 0, "Uint", 0x8000)
DllCall( "CloseHandle", UInt,ProcessHandle )
}
MCode(ByRef code, hex) { ; allocate memory and write Machine Code there
VarSetCapacity(code,StrLen(hex)//2)
Loop % StrLen(hex)//2
NumPut("0x" . SubStr(hex,2*A_Index-1,2), code, A_Index-1, "Char")
}
revHex(byref CodeRev, Code, requestedLength=8)
{
;Return a reverse hex string of Code
SetFormat, IntegerFast, hex
Code += 0
Code .= ""
SetFormat, IntegerFast, d
CodeRev =
temp2 := substr(Code, 3)
temp2 := "00000000" . temp2
temp := strlen(temp2)-requestedLength + 1
temp2 := substr(temp2, temp)
i := requestedLength - 1
looplength := requestedLength // 2
loop %loopLength%
{
CodeRev := CodeRev . substr(temp2, i, 2)
i := i - 2
}
}
MoveTo(X, Y, Z, moveType, client, actionStruct, height=-1.0)
{
actionList := ReadMemory(actionStruct+0x30,client)
MoveAction := ReadMemory(actionList+0x4,client)
writeMemory(0, MoveAction+0x8, client) ;Action finished = 0
writeMemory(1, MoveAction+0x14, client) ;Action Start = 1
writeMemory(X, MoveAction + 0x20, client)
writeMemory(Y, MoveAction + 0x24, client)
writeMemory(Z, MoveAction + 0x28, client)
writeMemory(FloatToHex(height), MoveAction + 0x68, client)
if(height >= 0.0)
{
writeMemory(26625, MoveAction + 0x64, client)
writeMemory(256, MoveAction + 0x6C, client)
}
else
{
writeMemory(26624, MoveAction + 0x64, client)
writeMemory(65536, MoveAction + 0x6C, client)
}
writeMemory(moveType, MoveAction + 0x2C, client) ;Not supported yet
writeMemory(MoveAction, actionstruct+0xC, client)
writeMemory(1, actionstruct+0x18, client)
writeMemory(moveAction, actionstruct+0x14, client)
}
flyUp(client, times)
{
global
local loopn := times - 1
local time := 0.5 ;s
local baseAddress := ReadMemory(realBaseAddress,client) ;00986c00
local pointer1 := ReadMemory(baseAddress+baseOffset,client) ;04c88408
local player := ReadMemory(pointer1+playerOffset,client)
SetFormat, IntegerFast, hex
local yCoord := readmemory(player+playerYposOffset, client, 4)
local yCoordFloat := hextofloat(yCoord)
if(yCoordFloat < 700)
{
loop %times%
{
sleep 500
local packet := "0700"
local counter := readmemory(player+playerCounterOffset, client, 2)
local interval := readmemory(player+playerIntervalOffset, client, 2) ;0x01F4
local xCoord := readmemory(player+playerXposOffset, client, 4)
local zCoord := readmemory(player+playerZposOffset, client, 4)
local speed := readmemory(player+playerFlySpdOffset, client, 4)
local moveType := 0x61
local speedFloat := hextofloat(speed)
local yCoordFloat := yCoordFloat + speedFloat * time
local sendSpeedFloat := speedFloat * 256 + 0.5
local sendSpeedHex := floor(sendSpeedFloat)
local sendYcoordHex := floattohex(yCoordFloat)
revHex(value, xCoord)
packet := packet . value
revHex(value, sendYcoordHex)
packet := packet . value
revHex(value, zCoord)
packet := packet . value
revHex(value, sendSpeedHex, 4)
packet := packet . value
packet := packet . "00" ;direction
revHex(value, moveType, 2)
packet := packet . value
revHex(value, counter, 4)
packet := packet . value
packet := packet . "F401" ;unknown value
writeMemory(counter + 1,player+playerCounterOffset, client, 2)
writeMemory(sendYcoordHex,player+playerYposOffset, client)
sendPacket(packet, "16", 0x16, client)
}
;Send an invalid packet so the server updates your location properly :P:P
local packet := "0700"
local counter := readmemory(player+playerCounterOffset, client, 2)
local speedFloat := hextofloat(speed)
local yCoordFloat := yCoordFloat + speedFloat * time
local sendSpeedFloat := speedFloat * 256 + 0.5
local sendSpeedHex := floor(sendSpeedFloat)
local sendYcoordHex := floattohex(yCoordFloat)
revHex(value, xCoord)
packet := packet . value
revHex(value, sendYcoordHex)
packet := packet . value
revHex(value, zCoord)
packet := packet . value
revHex(value, sendSpeedHex, 4)
packet := packet . value
packet := packet . "00" ;direction
revHex(value, moveType, 2)
packet := packet . value
revHex(value, counter, 4)
packet := packet . value
packet := packet . "0000" ;unknown value
writeMemory(counter + 1,player+playerCounterOffset, client, 2)
writeMemory(sendYcoordHex,player+playerYposOffset, client)
sendPacket(packet, "16", 0x16, client)
SetFormat, IntegerFast, d
sleep 2000
}
}
09/13/2010, 04:45
#23
elite*gold: 0
Join Date: Sep 2010
Posts: 3
Received Thanks: 0
Thanks Interest07 for the source code ^_^
09/13/2010, 04:47
#24
elite*gold: 0
Join Date: Mar 2010
Posts: 862
Received Thanks: 576
modify all you want
09/13/2010, 04:51
#25
elite*gold: 0
Join Date: Aug 2009
Posts: 10
Received Thanks: 0
COOL!!!!
wooow cool!!!
thanks Interest07
09/13/2010, 04:58
#26
elite*gold: 0
Join Date: Aug 2009
Posts: 10
Received Thanks: 0
COOOOL!!
but I'm still confused .. how to find the offset of Indonesian PW
maybe I should learn more about Cheat Engine & IDA pro
09/13/2010, 07:31
#27
elite*gold: 0
Join Date: Apr 2009
Posts: 106
Received Thanks: 52
Interest07, you wq bot working in russian client, thx you very very big!!
Bot starts only when the character on his feet and not on the flight
The quest window does not disappear when taking the quest
And when a character rises up taking the quest is a feeling that this was used wallhack, raised the camera, the character is below, after some time the character appears on the flight and was flying towards
14 Volume confused NPC
Instead
allocated
Upon delivery of 19 volume and taking 21 bot hung, the character just stood in front of NPC
Had to restart the bot
I could not go down to the NPC 23 volume
And sometimes the game is closed
09/13/2010, 08:43
#28
elite*gold: 0
Join Date: Sep 2010
Posts: 3
Received Thanks: 0
Interest07
where i can get PWlib.ahk??
because in your script:
#Include C:\Documents and Settings\Administrator\My Documents\AutoHotkey\Lib\PWlib.ahk
thanks before^_^
09/13/2010, 08:59
#29
elite*gold: 0
Join Date: Apr 2009
Posts: 106
Received Thanks: 52
1 page 9 post
09/13/2010, 12:22
#30
elite*gold: 0
Join Date: Mar 2010
Posts: 862
Received Thanks: 576
Quote:
Originally Posted by
AEBus
1 page 9 post
this should fix the issue with the wrong npc.
Looking into the rest, but will take some time as it requires a lot of Flying about
The way the bot looks when flying up is only client side, so shouldn't matter really
Code:
[offsets]
realBaseAddress=0x009c0e6c
baseOffset=0x1C
playerOffSet=0x20
playerNameOffset=0x608
nameLengthOffset=0xFFFFFFF8
playerTargetIdOffset=0xAF8
playerActionStructOffset=0xFE0
playerCounterOffset=0x8D0
playerIntervalOffset=0x884
playerFlyMountOffset=0x560
playerFlySpdOffset=0x4C0
playerTransportModeOffset=0x61C
playerXposOffset=0x3C
playerYposOffset=0x40
playerZposOffset=0x44
SendPacketAddress=0x005D7C30
questFunctionAddress=0x00687CF0
questFunctionOffset=0xFE8
[npcIds]
npcId8348=2148549662
npcId8349=2148551082
npcId8350=2148534305
npcId8351=2148554250
npcId8352=2148551983
npcId8353=2148553219
npcId8354=2148552660
npcId8355=2148549748
npcId8356=2148545626
npcId8357=2148539293
npcId8358=2148535690
npcId8359=2148543629
npcId8360=2148542502
npcId8361=2148537057
npcId8362=2148550331
npcId8363=2148547190
npcId8364=2148550813
npcId8365=2148555993
npcId8366=2148559768
npcId8367=2148560531
npcId8368=2148560543
npcId8369=2148559830
npcId8370=2148559829
npcId8371=2148556277
npcId8372=2148557243
npcId8373=2148553248
npcId8374=2148553233
npcId8375=2148549957
npcId8376=2148549955
npcId8377=2148535766
npcId8378=2148549908
npcId8379=2148549908
npcId8380=2148549908
npcId8381=2148549908
npcId8382=2148549908
npcId8383=2148549908
npcId8384=2148549908
npcId8385=2148549908
npcId8386=2148549908
npcId8387=2148549908
npcId8388=2148549908
npcId8389=2148549908
npcId8390=2148549908
npcId8391=2148549908
npcId8392=2148549908
npcId8393=2148549908
npcId8394=2148549908
npcId8395=2148549908
npcId8396=2148549361
npcId8397=2148549908
npcId8398=2148549804
at others: currently working on fixing some bugs then I'll update with a working version
All times are GMT +1. The time now is 17:23 .
allocated 
