D2 V1.11 Packet Info + Generic Packet Sender by Paul[Le]
Obviously, I've reinstalled D2...
call 6fb23260 // Main winsock send() in the d2client.dll Ref. my tutorial on making your own packet sender if you want to know why this is important!
I'll document the main d2client send call later on...
Looks to me like wherever there is a call to the above address you can find where packet building functions are in the d2client.dll
Example:
#Run/Walk packet data is sent here
:6FB23860 83EC08 sub esp, 00000008
:6FB23863 53 push ebx
:6FB23864 88442404 mov byte ptr [esp+04], al
:6FB23868 8D442404 lea eax, dword ptr [esp+04]
:6FB2386C 50 push eax
:6FB2386D BB05000000 mov ebx, 00000005 <-- 5 byte packet len
:6FB23872 66894C2409 mov word ptr [esp+09], cx <-- X coords
:6FB23877 668954240B mov word ptr [esp+0B], dx <-- Y coords
:6FB2387C E8DFF9FFFF call 6FB23260 <-- Call send()
:6FB23881 5B pop ebx
:6FB23882 83C408 add esp, 00000008
:6FB23885 C3 ret
Now, I want to take this opportunity to respond to all of the e-mails and PMs that I've been recv'ing about updating AutoHit to V1.11.
I do not have any plans to update AutoHit to V1.11 unless I have free time AND bored to death. This doesn't mean that AutoHit is dead and gone. There are plenty of talented hackers left in the D2 scene that can write their own or easily convert mine, it isn't rocket science.
I'll continue to provide packet data for V1.11 as I stumble across it, but don't count on daily updates. I have better things to do.
Aug 10, 2005 addition!
################################################## #########################
;Documented by Paul[Le] On Aug 10, 2005
################################################## #########################
Notes to self!
#hotkey
;:6FACAB43 8B7708 mov esi, dword ptr [edi+08]
;:6FACAB46 33D2 xor edx, edx
;:6FACAB48 B938C3BB6F mov ecx, 6FBBC338
;:6FACAB66 3DDF000000 cmp eax, 000000DF
#caves
;:6FB7DD6D 00000000000000000000 BYTE 10 DUP(0)
;9 byte packets are built here!
;* Referenced by a CALL at Addresses:
;|:6FAC78CB , :6FADE3B5 , :6FAE5C0F , :6FAFE640 , :6FB4591C
;|:6FB472C5 , :6FB4F5BB , :6FB4F5CD , :6FB62968 , :6FB62A81
;|:6FB62B50 , :6FB62C01 , :6FB62D3C , :6FB62EF2 , :6FB62F56
;|:6FB63016 , :6FB6314D , :6FB63303 , :6FB63367 , :6FB634BE
;|:6FB63872 , :6FB63884 , :6FB638E0 , :6FB63995 , :6FB63A4C
;|:6FB64102
;|
;:6FB23790 83EC0C sub esp, 0000000C
;:6FB23793 53 push ebx
;:6FB23794 88442404 mov byte ptr [esp+04], al
;:6FB23798 8D442404 lea eax, dword ptr [esp+04]
;:6FB2379C 50 push eax
;:6FB2379D BB09000000 mov ebx, 00000009
;:6FB237A2 894C2409 mov dword ptr [esp+09], ecx
;:6FB237A6 8954240D mov dword ptr [esp+0D], edx
;:6FB237AA E8B1FAFFFF call 6FB23260
;:6FB237AF 5B pop ebx
;:6FB237B0 83C40C add esp, 0000000C
;:6FB237B3 C3 ret
################################################## #########################
START "V1.11" "Paul's Generic Packet Sender (Press `)"
6FACAB66 3DDF000000 E802320B00
6FB7DD6D 000000000000 81FEC0000000
6FB7DD73 0000 7512
6FB7DD75 00 60
6FB7DD76 0000000000 B890DDB76F
6FB7DD7B 00 50
#packet_length
6FB7DD7C 0000000000 BB09000000
6FB7DD81 0000000000 E8DA54FAFF
6FB7DD86 00 61
6FB7DD87 0000000000 3DDF000000
6FB7DD8C 00 C3
#packet_to_send
6FB7DD90 ** 13010000000B000000
END
#hotkey
;cmp esi, byte ptr c0 // `
;jne @ Cleanup
#start
;pushad
#build packet
mov eax, packet_to_send
push eax
mov ebx, packet_length
call 6FB23260
#end
;popad
#cleanup
;cmp eax, 000000DF
;ret
Cheese ass GUI proof of concept app:
Download gPackSenderD2111 here
-Paul[Le]
Buy Diablo 2 Cd Keys, FRESH from BOX!
Diablo 2 Newsletter
Questions, ideas, problems, wishes?
Be informed whenever something new comes up
(or any important problems are fixed.).
You can unsubscribe from this newsletter at any time.
don
28 Aug 2008, 04:33
dfgasdf
rune
08 Nov 2007, 21:21
plezz send it to me
simyeonsub
01 Nov 2006, 01:09
I need dupe method 1.11 version.
If you want money, i send money to yoo.
I real very real need.
narok
17 Oct 2006, 19:17
help
07 Jul 2006, 23:08
can you explain how to use this in english???
morpheuz05
17 Jun 2006, 23:23
hi i would like to know the complete nmbers and so on of act1 waypoints that i can use the way point dupe 1.11 ,,, would be nice if someone have this what i have to fill in the lines of this programm
|