New patch offsets (1.0.4)

**d3welcome** · 08-22-2012

interactGUID not work!
mem.WriteMemoryAsInt(itrInteractE + interactOffsetUNK1, 0x777C);
mem.WriteMemoryAsInt(itrInteractE + interactOffsetUNK2, 0x1);
mem.WriteMemoryAsInt(itrInteractE + interactOffsetUNK3, (int)snoPower);
mem.WriteMemoryAsInt(itrInteractE + interactOffsetUNK4, (int)snoPower);
mem.WriteMemoryAsInt(itrInteractE + interactOffsetMousestate, 0x1);
mem.WriteMemoryAsInt(itrInteractE + interactOffsetGUID, (int)guid);

**infotech1** · 08-22-2012

After some more testing, either i tracked those pointers wrong in ida, or the layout of objman has changed a little, its pulling up RActors/ACDS as their being 0 most of the time, yet Scenes work fine so the ObjMan Base Ptr is fine i guess. Finding the new patch fun so playing not reversing atm though.

**zdud** · 08-23-2012

for me it was just changing the object manager. most info i had on worlds, Ractors and scenes is in the same place as far as i can tell...

**infotech1** · 08-25-2012

public static uint objectManager = 0x1543B9C;
This is deffinatly ObjMan base, its refrenced from all the same functions as the old base, same goes for the other two i posted, xref to match up 100% on them.

public const uint ObjManActorOffSet = 0x8b0;
public const uint ObjManSceneOffset = 0x8f4;
public const uint ObjManACDOffset = 0x850;
These offsets from ObjMan Base.

Scene and Actor work fine, am able to get name of the collection, max/current/dataptr etc. ACD is not working though it returns all invalid data and im unsure why, going thru D3::GetACDPtrFromGUID, it doesnt look like ACD has changed position at all, same offsets are used so i dont know whats wrong.

**Evozer** · 08-25-2012

ACD is working for me like it did prepatch, remember it is a double-pointer from objectmanager+0x850 instead of a single pointer like the other containers.

This is my GetACDFromGUID function, basically copied from ida pseudocode, works perfectly every time.

Code:

public static ACD GetACDByACDGUID(int guid)
{
    int c = ReadInt(0x1543B9C, 0x850, 0);

    short index = (short)(0xFFFF & guid);
    int acd = ReadInt(ReadInt(c + 0x148)) + 4 * (index >> (byte)ReadInt(c + 0x18C)) + 0x2D0 * (index & ((1 << ReadInt(c + 0x18C)) - 1));
    return new ACD(acd);
}

**Ascher** · 08-25-2012

Please help. How to get NavMesh NavZone from Scene ?

I'm trying use offset 0x178 from Scene to get NavMesh, but its not work for me.

**boredevil** · 08-25-2012

it´s at //0x0180

**siruxx** · 08-25-2012

how do you guys dump all the attribute ids if they get updated?

**Evozer** · 08-25-2012

Originally Posted by siruxx

how do you guys dump all the attribute ids if they get updated?

I did it by finding the new description list in ida and dumping names together with id to a textfile in a format that I could copy and paste to an enum in C#

**siruxx** · 08-25-2012

how can i find this description list with ollydbg? i dont use ida

but thx anyway

**DarthTon** · 08-25-2012

Originally Posted by siruxx

how can i find this description list with ollydbg? i dont use ida

but thx anyway

I do it this way

Code:

//sizeof = 0x28
struct AttributeDesc 
{
	DWORD id;		// 0x000
	DWORD DefaultVal;	// 0x004
	DWORD unk2;		// 0x008
	DWORD unk3;		// 0x00C
	DWORD Type;		// 0x010 0 = float, 1 = int 
	void* Formula1;		// 0x014
	void* Formula2;		// 0x018
	char* Name;		// 0x01C
	void* unk5;		// 0x020
	DWORD unk6;		// 0x024
}; 

void CProcess::EnumAttribList()
{
	DWORD dwAddr = 0x1520518;

	AttributeDesc desk;
	char sszName[64];

	for(int i = 0; ;i++)
	{
		if(CProcess::Instance().Core.Read(dwAddr + i*sizeof(AttributeDesc), sizeof(desk), &desk) != ERROR_SUCCESS || 
			desk.Name == NULL || desk.Name == (char*)INVALID_VALUE)
		{
			break;
		}

		CProcess::Instance().Core.Read((DWORD)desk.Name, sizeof(sszName), &sszName);

		ds_utils::CDSString strName, strType;

		if(desk.Type == 0)
			strType = L"float";
		else if(desk.Type == 1)
			strType = L"int";
		else
			strType = L"unknown";

		strName.format(L"%ws = 0x%x, // %ws\r\n", ds_utils::CDSString(sszName).data(), desk.id, strType.data());

		OutputDebugStringW(strName.data());
	}
}

dwAddr can be found using this:

Code:

AttributeDesc* AttributeDescriptionList = (AttributeDesc*)0x1557518; // 9950 
// pattern: 
// .text:008584D8                         loc_8584D8:                             ; CODE XREF: StringToAttrib+4D 
// .text:008584D8 8D 04 BF                                lea     eax, [edi+edi*4] 
// .text:008584DB 8B 04 C5 18 75 55 01                    mov     eax, AttributeList.id[eax*8] 
// .text:008584E2 5F                                      pop     edi 
// .text:008584E3 5E                                      pop     esi

All this stuff actually was posted long ago here Blizzhackers • View topic - Diablo III Offsets, Globals, Funcs, Structs, Classes, etc.

**infotech1** · 08-25-2012

Originally Posted by Evozer

ACD is working for me like it did prepatch, remember it is a double-pointer from objectmanager+0x850 instead of a single pointer like the other containers.

Thanks

stupidly i had decided to refactor to be all based from ObjMan instead of the mixed mess i had taken from C#Adventure, missed the fact it was a double pointer in the process lol. All good now

**Ascher** · 08-26-2012

Who knows how Repair all items ?

**boredevil** · 08-26-2012

do a stringsearch for "repairall" and find the onclick handler for the button. then call it.

**ValvePro** · 08-26-2012

Originally Posted by boredevil

do a stringsearch for "repairall" and find the onclick handler for the button. then call it.

And the repair tab have to be selected since 1.04

Shout-Out

User Tag List

Thread: New patch offsets (1.0.4)

Thread Tools

Search Thread

Similar Threads

new offsets for new patch today???

Wall walking back in the new patch?!

New patch (2.01) PLEASE READ

The new patch?

new patch? HELP PLZ!

OwnedCore Forums

casino

CoreCoins

My OwnedCore

About Us

Casino