Valhalla Legends Archive

Quote from: Ringo on March 08, 2006, 04:55 AM

Quote from: Jaquio on March 08, 2006, 04:38 AM
Hehe, that is pretty cool. But what would be the exact point of it? Lol, why would you need to decode a cdkey?

If you ment encode, so you can generate d2/w2 cdkeys from product, public and private value.

No I did mean decode, because you said I shouldn't put the decoded CDKey in the log. So what you made, decodes and encodes right?

Edit: Oh nevermind I understand now, someone could take the decoded cdkey then re-encode it then have it, right?

Quote from: Ringo on March 08, 2006, 04:55 AM

Quote from: Jaquio on March 08, 2006, 04:38 AM
I tried what you had suggested and now instead of getting 0x80000001(Realm is unavailable) I get 0x80000002(Realm logon failed). I take it, it is from inserting the ClientToken where the cookie was supposed to go? Or is it something else?

Hm?
Well, if its no longer saying realm unavalible, the realm can now see your chosen realm name, as its now at the right offset.
The only thing left to be causeing it now, is the hash and tokens used.
If your useing your client token as the "cookie" when you request BNLS hash the realm password, then you have to put it as the "cookie" in 0x3E bnet packet, other wise bnet will compute a hash differnt to yours, resullting in the realm failed responce.

See that is the thing, I am not sending a cookie at all when I hash the data. For BNLS_HASHDATA(0x0B) cookie is only used for a cookie hash, therefore I don't need to sned the cookie if I am double hashing the realm password. I have never used my client token as cookie for anything in my code, so wouldn't need to use it as a cookie to respond with. So I am not sure what the heck I am doing wrong, when I had it working once before...


21  70.106.238.227:3928  63.240.202.127:6112  4  Send 
0000  FF 40 04 00                                        .@..

22  63.240.202.127:6112  70.106.238.227:3928  51  Recv 
0000  FF 40 33 00 00 00 00 00 01 00 00 00 01 00 00 00    .@3.............
0010  55 53 45 61 73 74 00 52 65 61 6C 6D 20 66 6F 72    USEast.Realm for
0020  20 74 68 65 20 55 53 20 45 61 73 74 20 43 6F 61     the US East Coa
0030  73 74 00                                           st.

23  70.106.238.227:3927  63.161.183.205:9367  27  Send 
0000  1B 00 0B 08 00 00 00 02 00 00 00 05 55 4A 43 B9    ............UJC.
0010  E9 A6 09 70 61 73 73 77 6F 72 64                   ...password

24  63.161.183.205:9367  70.106.238.227:3927  23  Recv 
0000  17 00 0B A4 5D 0C 88 FD B4 71 B4 38 1B 8C F6 38    ....]....q.8...8
0010  26 37 25 D1 51 10 00                               &7%.Q..

25  70.106.238.227:3928  63.240.202.127:6112  35  Send 
0000  FF 3E 23 00 05 55 4A 43 A4 5D 0C 88 FD B4 71 B4    .>#..UJC.]....q.
0010  38 1B 8C F6 38 26 37 25 D1 51 10 00 55 53 45 61    8...8&7%.Q..USEa
0020  73 74 00                                           st.

26  63.240.202.127:6112  70.106.238.227:3928  12  Recv 
0000  FF 3E 0C 00 05 55 4A 43 02 00 00 80                .>...UJC....


A new packet log using the client token as the cookie for sending to SID_LOGONREALMEX(0x3E)...

Quote from: Ringo on March 08, 2006, 04:25 AM

Quote from: Jaquio on March 08, 2006, 03:31 AM
Heh, didn't know you could reverse the decoded CDKey.. O_o

Clicky

Hehe, that is pretty cool. But what would be the exact point of it? Lol, why would you need to decode a cdkey?

Quote from: Ringo on March 08, 2006, 04:25 AM

Quote from: Jaquio on March 08, 2006, 03:31 AM
Here is how I handle the data.

Code Select Expand


            ElseIf HType = 3 Then
                With DB
                    .SetData Data
                    .StripBNLSHeader
                End With
               
                With PB
                    .InsertNonNTString DB.rVOID(5 * 4)
                    .InsertNTString strBNetRealm
                    .SendPacket &H3E
                End With
            End If

Now.. what exactly is wrong with the code? Also, is there anything else I should post?

Ye, like i said there is ment to be 5 DWORDs of hashed data, but in your 0x3E packet log, you only have 5 in total (Wheres the client token?!?)

Erm, you have to add the clienttoken into it? I mean, SID_LOGONREALMEX(0x3E) says nothing about it. Just cookie,hashed realm password and realm title. I had just noticed the cookie dword, I thought it was optional.

Quote from: Ringo on March 08, 2006, 04:25 AM

Code Select Expand


                With PB
                    .InsertDWORD ClientToken
                    .InsertNonNTString DB.rVOID(5 * 4)
                    .InsertNTString strBNetRealm
                    .SendPacket &H3E
                End With

Its worth checking bnet docs when your unsure of somthing like this.

Hope this helps

I tried what you had suggested and now instead of getting 0x80000001(Realm is unavailable) I get 0x80000002(Realm logon failed). I take it, it is from inserting the ClientToken where the cookie was supposed to go? Or is it something else?

Heh, didn't know you could reverse the decoded CDKey.. O_o.. Anyways, I removed that from my packet log. Ok, here is the code for sending the password hash.


        Case &H40
        'Debug.Print "Recv'd:0x40"
            With DB
                .SetData Data
                .StripHeader
                .rDWORD
                .rDWORD
                .rDWORD
                strBNetRealm = .rNTString
               
                HType = 3
                With PB
                    .InsertDWORD &H8
                    .InsertDWORD &H2
                    .InsertNonNTString "password"                   
                    .InsertDWORD ClientToken
                    .InsertDWORD ServerToken
                    .SendBNLSPacket &HB
                End With
            End With



Here is how I handle the data.


            ElseIf HType = 3 Then
                With DB
                    .SetData Data
                    .StripBNLSHeader
                End With
               
                With PB
                    .InsertNonNTString DB.rVOID(5 * 4)
                    .InsertNTString strBNetRealm
                    .SendPacket &H3E
                End With
            End If


Now.. what exactly is wrong with the code? Also, is there anything else I should post?

Alright, as I said in another post I went through and re-did all my packets since I had a new class that would make it easier. Because I was using stuff like.. "Mid(Data, blah, blah)" the blahs were not numbers not actual blahs.  Anyways, Hdx had given me a class with removedword and such. So I re-did my packets using them, however after doing so my 0x3E quit working for some reason.. Could someone tell me exactly what is wrong with this..


1  70.106.238.227:1352  63.161.183.205:9367  17  Send 
0000  11 00 0E 4A 61 71 20 42 6F 74 20 76 31 2E 30 30    ...Jaq Bot v1.00
0010  00                                                 .

2  63.161.183.205:9367  70.106.238.227:1352  7  Recv 
0000  07 00 0E 73 32 EF C2                               ...s2..

3  70.106.238.227:1352  63.161.183.205:9367  7  Send 
0000  07 00 0F 37 17 56 D7                               ...7.V.

4  63.161.183.205:9367  70.106.238.227:1352  7  Recv 
0000  07 00 0F 01 00 00 00                               .......

5  70.106.238.227:1352  63.161.183.205:9367  7  Send 
0000  07 00 10 04 00 00 00                               .......

6  63.161.183.205:9367  70.106.238.227:1352  11  Recv 
0000  0B 00 10 04 00 00 00 0B 00 00 00                   ...........

7  70.106.238.227:1353  63.241.83.109:6112  59  Send 
0000  01 FF 50 3A 00 00 00 00 00 36 38 58 49 56 44 32    ..P:.....68XIVD2
0010  44 0B 00 00 00 00 00 00 00 00 00 00 00 80 04 00    D...............
0020  00 33 10 00 00 33 10 00 00 55 53 41 00 55 6E 69    .3...3...USA.Uni
0030  74 65 64 20 53 74 61 74 65 73 00                   ted States.

8  63.241.83.109:6112  70.106.238.227:1353  8  Recv 
0000  FF 25 08 00 3F 45 2F CC                            .%..?E/.

9  63.241.83.109:6112  70.106.238.227:1353  99  Recv 
0000  FF 50 63 00 00 00 00 00 F1 21 0F 2A 2B 80 0E 00    .Pc......!.*+...
0010  00 AC 41 43 25 0B C5 01 49 58 38 36 76 65 72 35    ..AC%...IX86ver5
0020  2E 6D 70 71 00 41 3D 32 36 34 34 33 38 36 37 36    .mpq.A=264438676
0030  20 42 3D 38 39 35 34 37 37 39 35 39 20 43 3D 32     B=895477959 C=2
0040  37 36 33 34 36 36 36 36 20 34 20 41 3D 41 5E 53    76346666 4 A=A^S
0050  20 42 3D 42 2B 43 20 43 3D 43 5E 41 20 41 3D 41     B=B+C C=C^A A=A
0060  5E 42 00                                           ^B.

10  70.106.238.227:1352  63.161.183.205:9367  73  Send 
0000  49 00 09 04 00 00 00 05 00 00 00 41 3D 32 36 34    I..........A=264
0010  34 33 38 36 37 36 20 42 3D 38 39 35 34 37 37 39    438676 B=8954779
0020  35 39 20 43 3D 32 37 36 33 34 36 36 36 36 20 34    59 C=276346666 4
0030  20 41 3D 41 5E 53 20 42 3D 42 2B 43 20 43 3D 43     A=A^S B=B+C C=C
0040  5E 41 20 41 3D 41 5E 42 00                         ^A A=A^B.

11  63.161.183.205:9367  70.106.238.227:1352  50  Recv 
0000  32 00 09 01 00 00 00 00 0B 00 01 83 62 5A 7F 47    2...........bZ.G
0010  61 6D 65 2E 65 78 65 20 30 38 2F 31 37 2F 30 35    ame.exe 08/17/05
0020  20 30 31 3A 31 31 3A 34 33 20 32 31 32 35 38 32     01:11:43 212582
0030  34 00                                              4.

14  70.106.238.227:1353  63.241.83.109:6112  110  Send 
0000  FF 25 08 00 00 00 00 00 FF 51 66 00 30 D1 E4 3D    .%.......Qf.0..=
0010  00 0B 00 01 83 62 5A 7F 01 00 00 00 00 00 00 00    .....bZ.........
0020  10 00 00 00 06 00 00 00 08 7B C1 00 00 00 00 00    .........{......
0030  89 1E 5A 9A 50 3A 20 AD 94 8F 91 E7 4C F6 2D C9    ..Z.P: .....L.-.
0040  7A DC EA B5 47 61 6D 65 2E 65 78 65 20 30 38 2F    z...Game.exe 08/
0050  31 37 2F 30 35 20 30 31 3A 31 31 3A 34 33 20 32    17/05 01:11:43 2
0060  31 32 35 38 32 34 00 4A 61 71 75 69 6F 00          125824.Jaquio.

15  63.241.83.109:6112  70.106.238.227:1353  9  Recv 
0000  FF 51 09 00 00 00 00 00 00                         .Q.......

16  70.106.238.227:1352  63.161.183.205:9367  28  Send 
0000  1C 00 0B 09 00 00 00 02 00 00 00 XX XX XX XX XX    ...........XXXXX
0010  XX XX XX XX 30 D1 E4 3D F1 21 0F 2A                XXXX0..=.!.*

17  63.161.183.205:9367  70.106.238.227:1352  23  Recv 
0000  17 00 0B D7 1B 2F 36 58 8B DC 81 DC 6A 9D E4 70    ...../6X....j..p
0010  E1 71 D3 67 4D 41 79                               .q.gMAy

18  70.106.238.227:1353  63.241.83.109:6112  51  Send 
0000  FF 14 08 00 74 65 6E 62 FF 2D 04 00 FF 3A 27 00    ....tenb.-...:'.
0010  30 D1 E4 3D F1 21 0F 2A D7 1B 2F 36 58 8B DC 81    0..=.!.*../6X...
0020  DC 6A 9D E4 70 E1 71 D3 67 4D 41 79 4A 61 71 75    .j..p.q.gMAyJaqu
0030  69 6F 00                                           io.

19  63.241.83.109:6112  70.106.238.227:1353  22  Recv 
0000  FF 2D 16 00 00 08 16 BF E9 50 C3 01 69 63 6F 6E    .-.......P..icon
0010  73 2E 62 6E 69 00                                  s.bni.

20  63.241.83.109:6112  70.106.238.227:1353  8  Recv 
0000  FF 3A 08 00 00 00 00 00                            .:......

21  70.106.238.227:1353  63.241.83.109:6112  4  Send 
0000  FF 40 04 00                                        .@..

22  63.241.83.109:6112  70.106.238.227:1353  51  Recv 
0000  FF 40 33 00 00 00 00 00 01 00 00 00 01 00 00 00    .@3.............
0010  55 53 57 65 73 74 00 52 65 61 6C 6D 20 66 6F 72    USWest.Realm for
0020  20 74 68 65 20 55 53 20 57 65 73 74 20 43 6F 61     the US West Coa
0030  73 74 00                                           st.

23  70.106.238.227:1352  63.161.183.205:9367  27  Send 
0000  1B 00 0B 08 00 00 00 02 00 00 00 70 61 73 73 77    ...........passw
0010  6F 72 64 30 D1 E4 3D F1 21 0F 2A                   ord0..=.!.*

24  63.161.183.205:9367  70.106.238.227:1352  23  Recv 
0000  17 00 0B 30 17 F9 02 8E 0F 2F 3A 98 E4 5C A9 30    ...0...../:..\.0
0010  D7 53 C3 31 44 31 5D                               .S.1D1]

25  70.106.238.227:1353  63.241.83.109:6112  31  Send 
0000  FF 3E 1F 00 30 17 F9 02 8E 0F 2F 3A 98 E4 5C A9    .>..0...../:..\.
0010  30 D7 53 C3 31 44 31 5D 55 53 57 65 73 74 00       0.S.1D1]USWest.

26  63.241.83.109:6112  70.106.238.227:1353  12  Recv 
0000  FF 3E 0C 00 30 17 F9 02 01 00 00 80                .>..0.......


That is a packet log of an attempt to log onto a realm.. If you need the code I will post it, but perhaps someone could tell me what is wrong with that..

I have already fixed it. I was just re-going through my code for joinging/leave/flags and whatnot. And noticed I had statement wrong, whiched added someone twice if their flags were not 0x02. Sorry for the confusion.

Sorry for the delayed reply. I have been busy re-doing all my packets as they sucked, anyways! Your suggestions didn't help, I am still getting a double added person in the channel... Not sure why I have checked and tryed both of your suggestions and tried both at once. It didn't do much, I should probably post some code and whatnot. But I am not worried about it at the moment, but when I am I will repost the code here but until then. Thanks for the help.

I did fix the double hashing problem and it still didn't work. But then I started thinking.. I am using only D2DV and am trying to logon D2XP characters.. So I made a Classic Character and boom.. It connected just fine. Not sure what I was thinking exactly.. Sorry for all the problems.. Maybe I should really look over EVERYTHING because I ask for help, huh?

Ok, I came prepared this time! O_o. Here is my problem:

I send all the required packets and such to BNet. But once I send MCP_CHARLOGON(0x07) and then recv it back I get a message of "0x00" I think.. Which means 'Success'. But for some reason when I send SID_ENTERCHAT(0x0A) I get disconnected. Anyone know why? 

Handling Recv'd MCP_CHARLOGON(0x07):

        Case &H7
        'debug.print "Recv'd:0x07"
            DB.SetData Data
            DB.StripRealmHeader
           
            Select Case DB.rDWORD
           
                Case &H0
                    AddChat D2Green, "Character logon was a success."
                            With PB
                                .InsertNTString BNET.Username
                                .InsertBYTE &H0
                                .SendPacket &HA
                                .InsertNonNTString strProduct
                                .SendPacket &HB
                            End With
                Case &H46
                    AddChat D2Red, "Player was not found!"
                Case &H7A
                    AddChat D2Red, "Logon has failed!"
                Case &H7B
                    AddChat D2Red, "Character has expired!"
                Case Else
                    AddChat D2Red, "Unknown Error!"
            End Select



Packet log:

1  192.168.1.47:2261  63.161.183.205:9367  17  Send 
0000  11 00 0E 4A 61 71 20 42 6F 74 20 76 31 2E 30 30    ...Jaq Bot v1.00
0010  00                                                 .

2  63.161.183.205:9367  192.168.1.47:2261  7  Recv 
0000  07 00 0E 12 78 E1 C6                               ....x..

3  192.168.1.47:2261  63.161.183.205:9367  7  Send 
0000  07 00 0F 6A 8A 43 CB                               ...j.C.

4  63.161.183.205:9367  192.168.1.47:2261  7  Recv 
0000  07 00 0F 01 00 00 00                               .......

5  192.168.1.47:2261  63.161.183.205:9367  7  Send 
0000  07 00 10 04 00 00 00                               .......

6  63.161.183.205:9367  192.168.1.47:2261  11  Recv 
0000  0B 00 10 04 00 00 00 0B 00 00 00                   ...........

7  192.168.1.47:2262  213.248.106.65:6112  59  Send 
0000  01 FF 50 3A 00 00 00 00 00 36 38 58 49 56 44 32    ..P:.....68XIVD2
0010  44 0B 00 00 00 00 00 00 00 00 00 00 00 80 04 00    D...............
0020  00 33 10 00 00 33 10 00 00 55 53 41 00 55 6E 69    .3...3...USA.Uni
0030  74 65 64 20 53 74 61 74 65 73 00                   ted States.

8  213.248.106.65:6112  192.168.1.47:2262  8  Recv 
0000  FF 25 08 00 54 A9 95 C3                            .%..T...

9  213.248.106.65:6112  192.168.1.47:2262  99  Recv 
0000  FF 50 63 00 00 00 00 00 99 96 E9 C6 9B CD 0C 00    .Pc.............
0010  00 AC 41 43 25 0B C5 01 49 58 38 36 76 65 72 35    ..AC%...IX86ver5
0020  2E 6D 70 71 00 41 3D 38 39 35 30 32 39 35 30 30    .mpq.A=895029500
0030  20 42 3D 39 35 37 36 39 34 30 35 39 20 43 3D 31     B=957694059 C=1
0040  32 33 39 30 30 32 38 32 20 34 20 41 3D 41 2D 53    23900282 4 A=A-S
0050  20 42 3D 42 2D 43 20 43 3D 43 5E 41 20 41 3D 41     B=B-C C=C^A A=A
0060  5E 42 00                                           ^B.

10  192.168.1.47:2261  63.161.183.205:9367  74  Send 
0000  4A 00 09 04 00 00 00 05 00 00 00 41 3D 38 39 35    J..........A=895
0010  30 32 39 35 30 30 20 42 3D 39 35 37 36 39 34 30    029500 B=9576940
0020  35 39 20 43 3D 31 32 33 39 30 30 32 38 32 20 34    59 C=123900282 4
0030  20 41 3D 41 2D 53 20 42 3D 42 2D 43 20 43 3D 43     A=A-S B=B-C C=C
0040  5E 41 20 41 3D 41 5E 42 00 00                      ^A A=A^B..

11  63.161.183.205:9367  192.168.1.47:2261  50  Recv 
0000  32 00 09 01 00 00 00 00 0B 00 01 99 FF 2F 59 47    2............/YG
0010  61 6D 65 2E 65 78 65 20 30 38 2F 31 37 2F 30 35    ame.exe 08/17/05
0020  20 30 31 3A 31 31 3A 34 33 20 32 31 32 35 38 32     01:11:43 212582
0030  34 00                                              4.

14  192.168.1.47:2262  213.248.106.65:6112  110  Send 
0000  FF 25 08 00 00 00 00 00 FF 51 66 00 99 60 6D 33    .%.......Qf..`m3
0010  00 0B 00 01 99 FF 2F 59 01 00 00 00 00 00 00 00    ....../Y........
0020  10 00 00 00 06 00 00 00 08 7B C1 00 00 00 00 00    .........{......
0030  5B BB 3C EC E0 A8 5E CA B0 18 48 3A 4C B7 C0 3E    [.<...^...H:L..>
0040  58 B4 2E AD 47 61 6D 65 2E 65 78 65 20 30 38 2F    X...Game.exe 08/
0050  31 37 2F 30 35 20 30 31 3A 31 31 3A 34 33 20 32    17/05 01:11:43 2
0060  31 32 35 38 32 34 00 4A 61 71 75 69 6F 00          125824.Jaquio.

15  213.248.106.65:6112  192.168.1.47:2262  9  Recv 
0000  FF 51 09 00 00 00 00 00 00                         .Q.......

16  192.168.1.47:2261  63.161.183.205:9367  20  Send 
0000  14 00 0B 09 00 00 00 00 00 00 00 XX XX XX XX XX    ...........XXXXX
0010  XX XX XX XX                                        XXXX

17  63.161.183.205:9367  192.168.1.47:2261  23  Recv 
0000  17 00 0B 12 19 01 03 52 7C DD 5A 65 BD FC AC 7B    .......R|.Ze...{
0010  95 B5 40 74 6A 6D 89                               ..@tjm.

18  192.168.1.47:2261  63.161.183.205:9367  39  Send 
0000  27 00 0B 1C 00 00 00 01 00 00 00 99 60 6D 33 99    '...........`m3.
0010  96 E9 C6 12 19 01 03 52 7C DD 5A 65 BD FC AC 7B    .......R|.Ze...{
0020  95 B5 40 74 6A 6D 89                               ..@tjm.

19  63.161.183.205:9367  192.168.1.47:2261  23  Recv 
0000  17 00 0B 53 08 22 8C CC C5 15 2C 93 AD 7B FC 9A    ...S."....,..{..
0010  C4 AC 9C A1 B9 0F EA                               .......

20  192.168.1.47:2262  213.248.106.65:6112  51  Send 
0000  FF 14 08 00 74 65 6E 62 FF 2D 04 00 FF 3A 27 00    ....tenb.-...:'.
0010  99 60 6D 33 99 96 E9 C6 53 08 22 8C CC C5 15 2C    .`m3....S."....,
0020  93 AD 7B FC 9A C4 AC 9C A1 B9 0F EA 4A 61 71 75    ..{.........Jaqu
0030  69 6F 00                                           io.

21  213.248.106.65:6112  192.168.1.47:2262  22  Recv 
0000  FF 2D 16 00 00 08 16 BF E9 50 C3 01 69 63 6F 6E    .-.......P..icon
0010  73 2E 62 6E 69 00                                  s.bni.

22  213.248.106.65:6112  192.168.1.47:2262  8  Recv 
0000  FF 3A 08 00 00 00 00 00                            .:......

23  192.168.1.47:2262  213.248.106.65:6112  4  Send 
0000  FF 40 04 00                                        .@..

24  213.248.106.65:6112  192.168.1.47:2262  40  Recv 
0000  FF 40 28 00 00 00 00 00 01 00 00 00 01 00 00 00    .@(.............
0010  45 75 72 6F 70 65 00 52 65 61 6C 6D 20 66 6F 72    Europe.Realm for
0020  20 45 75 72 6F 70 65 00                             Europe.

25  192.168.1.47:2261  63.161.183.205:9367  19  Send 
0000  13 00 0B 08 00 00 00 00 00 00 00 70 61 73 73 77    ...........passw
0010  6F 72 64                                           ord

26  63.161.183.205:9367  192.168.1.47:2261  23  Recv 
0000  17 00 0B EC C8 0D 1D 76 E7 58 C0 B9 DA 8C 25 FF    .......v.X....%.
0010  10 6A FF 8E 24 29 16                               .j..$).

27  192.168.1.47:2261  63.161.183.205:9367  39  Send 
0000  27 00 0B 1C 00 00 00 01 00 00 00 99 60 6D 33 99    '...........`m3.
0010  96 E9 C6 EC C8 0D 1D 76 E7 58 C0 B9 DA 8C 25 FF    .......v.X....%.
0020  10 6A FF 8E 24 29 16                               .j..$).

28  63.161.183.205:9367  192.168.1.47:2261  23  Recv 
0000  17 00 0B AF 31 0F 54 72 43 18 AF 60 4E 65 35 95    ....1.TrC..`Ne5.
0010  ED E7 77 E8 5B 99 9D                               ..w.[..

29  192.168.1.47:2262  213.248.106.65:6112  35  Send 
0000  FF 3E 23 00 99 60 6D 33 AF 31 0F 54 72 43 18 AF    .>#..`m3.1.TrC..
0010  60 4E 65 35 95 ED E7 77 E8 5B 99 9D 45 75 72 6F    `Ne5...w.[..Euro
0020  70 65 00                                           pe.

30  213.248.106.65:6112  192.168.1.47:2262  85  Recv 
0000  FF 3E 55 00 99 60 6D 33 55 23 53 37 D5 F8 6A 41    .>U..`m3U#S7..jA
0010  9B CD 0C 00 D5 F8 6A D0 17 E0 00 00 00 00 00 00    ......j.........
0020  08 7B C1 06 72 BD 9C C5 56 44 32 44 36 38 58 49    .{..r...VD2D68XI
0030  D5 F8 6A 41 33 10 00 00 9B 6B 40 B1 E5 C6 1C 00    ..jA3....k@.....
0040  C4 91 76 9D CE 5E BE 18 8A 19 53 76 4A 61 71 75    ..v..^....SvJaqu
0050  69 6F 00 00 FF                                     io...

31  192.168.1.47:2263  213.248.106.208:6112  75  Send 
0000  01 4A 00 01 99 60 6D 33 55 23 53 37 D5 F8 6A 41    .J...`m3U#S7..jA
0010  9B CD 0C 00 00 00 00 00 08 7B C1 06 72 BD 9C C5    .........{..r...
0020  56 44 32 44 36 38 58 49 D5 F8 6A 41 33 10 00 00    VD2D68XI..jA3...
0030  9B 6B 40 B1 E5 C6 1C 00 C4 91 76 9D CE 5E BE 18    [email protected]..^..
0040  8A 19 53 76 4A 61 71 75 69 6F 00                   ..SvJaquio.

32  213.248.106.208:6112  192.168.1.47:2263  7  Recv 
0000  07 00 01 00 00 00 00                               .......

33  192.168.1.47:2263  213.248.106.208:6112  7  Send 
0000  07 00 19 08 00 00 00                               .......

34  213.248.106.208:6112  192.168.1.47:2263  63  Recv 
0000  3F 00 19 08 00 01 00 00 00 01 00 26 2B 19 44 4C    ?..........&+.DL
0010  69 67 68 74 6E 69 6E 67 54 77 61 74 00 84 80 FF    ightningTwat....
0020  FF FF FF FF FF FF FF FF FF FF 02 FF FF FF FF FF    ................
0030  FF FF FF FF FF FF 01 E1 80 80 80 03 FF FF 00       ...............

35  192.168.1.47:2263  213.248.106.208:6112  17  Send 
0000  11 00 07 4C 69 67 68 74 6E 69 6E 67 54 77 61 74    ...LightningTwat
0010  00                                                 .

36  213.248.106.208:6112  192.168.1.47:2263  7  Recv 
0000  07 00 07 00 00 00 00                               .......

37  192.168.1.47:2262  213.248.106.65:6112  20  Send 
0000  FF 0A 0C 00 4A 61 71 75 69 6F 00 00 FF 0B 08 00    ....Jaquio......
0010  56 44 32 44                                        VD2D



If someone could look over that, and help with this. I am so close to finishing off all my connections. Realm connection has been a pain in the ass! The others were easy.. Also if you read this HdX, I have not yet made BNLS double hash the realm password it is still seperate. I will fix it when I get the connection working. 


Edit: A few spelling errors and fixed a code tag.

Nevermind, Hdx helped me. See, the Debuffer class I was using wasn't working properly. I used one Hdx gave me and it returned everything I needed, Joe I think you need to work on yours. Sorry for all the trouble if it wasn't for the bad debuffer class I wouldn't have gotten stuck.

Quote from: l2k-Shadow on March 04, 2006, 09:29 PM
perhaps you could help us out by posting your code so we could see your mistakes?

Ok.. here is my 0x19 Recv'd code.


        Case &H19
        'Debug.Print "Recv'd:0x19"
            With DB
                .Buffer = Data
                .RemoveHeader
                .RemoveWORD 'Unknown
                .RemoveDWORD 'Total amount of characters.
                .RemoveWORD 'Returned amount of characters.
                'Character Stuff
                .RemoveDWORD 'Seconds since January 1 00:00:00 UTC 1970
                .RemoveNTString 'Character name
                .RemoveWORD 'Flags
                .RemoveNTString 'Modified statstring
            End With


I guess I must be doing something wrong? 

Alright, I have gotten the bot able to Realm Connect but now when I send 0x19 and get it back, when I try to remove the proper info for MCP_CHARLOGON(0x07) I am only able to remove maybe 4-5 letters from my characters name.. I am using Joes 'Debuffer Class' to remove what I need and such. But it doesn't seem to be working properly could anyone help?

OMG! It worked. I LOVE YOU HDX!.. Erm, ok that is out of the way. So from here I remove the MPC Chunk 1 & 2 for MCP_STARTUP? As well as my BNCS Unique Name?

Use the whole


0010  55 53 45 61 73 74 00 52 65 61 6C 6D 20 66 6F 72    USEast.Realm for
0020  20 74 68 65 20 55 53 20 45 61 73 74 20 43 6F 61     the US East Coa
0030  73 74 00                                           st.


As realm title? Or only USEast? Or what exactly..

Also, the last byte on the password hash. Would this be right?(I am ipbanned from bent atm and not sure about realm title)

"Mid(Data, 4, Len(Data) - 4)" instead of "Mid(Data, 3, Len(Data) - 4)"?

Lol, I never thought of that. Here is the log


1  192.168.1.47:1599  63.161.183.205:9367  17  Send 
0000  11 00 0E 4A 61 71 20 42 6F 74 20 76 31 2E 30 30    ...Jaq Bot v1.00
0010  00                                                 .

2  63.161.183.205:9367  192.168.1.47:1599  7  Recv 
0000  07 00 0E 47 BD BB B4                               ...G...

3  192.168.1.47:1599  63.161.183.205:9367  7  Send 
0000  07 00 0F 2A F0 16 3F                               ...*..?

4  63.161.183.205:9367  192.168.1.47:1599  7  Recv 
0000  07 00 0F 01 00 00 00                               .......

5  192.168.1.47:1599  63.161.183.205:9367  7  Send 
0000  07 00 10 04 00 00 00                               .......

6  63.161.183.205:9367  192.168.1.47:1599  11  Recv 
0000  0B 00 10 04 00 00 00 0B 00 00 00                   ...........

7  192.168.1.47:1600  63.240.202.128:6112  59  Send 
0000  01 FF 50 3A 00 00 00 00 00 36 38 58 49 56 44 32    ..P:.....68XIVD2
0010  44 0B 00 00 00 00 00 00 00 00 00 00 00 80 04 00    D...............
0020  00 33 10 00 00 33 10 00 00 55 53 41 00 55 6E 69    .3...3...USA.Uni
0030  74 65 64 20 53 74 61 74 65 73 00                   ted States.

8  63.240.202.128:6112  192.168.1.47:1600  8  Recv 
0000  FF 25 08 00 DF 5D 75 31                            .%...]u1

9  63.240.202.128:6112  192.168.1.47:1600  100  Recv 
0000  FF 50 64 00 00 00 00 00 E0 28 FA 11 86 26 07 00    .Pd......(...&..
0010  00 AC 41 43 25 0B C5 01 49 58 38 36 76 65 72 33    ..AC%...IX86ver3
0020  2E 6D 70 71 00 41 3D 31 35 34 34 30 36 37 32 39    .mpq.A=154406729
0030  20 42 3D 32 30 32 38 30 33 39 34 34 20 43 3D 31     B=202803944 C=1
0040  30 36 38 33 35 37 37 37 39 20 34 20 41 3D 41 2D    068357779 4 A=A-
0050  53 20 42 3D 42 2D 43 20 43 3D 43 5E 41 20 41 3D    S B=B-C C=C^A A=
0060  41 5E 42 00                                        A^B.

10  192.168.1.47:1599  63.161.183.205:9367  75  Send 
0000  4B 00 09 04 00 00 00 03 00 00 00 41 3D 31 35 34    K..........A=154
0010  34 30 36 37 32 39 20 42 3D 32 30 32 38 30 33 39    406729 B=2028039
0020  34 34 20 43 3D 31 30 36 38 33 35 37 37 37 39 20    44 C=1068357779
0030  34 20 41 3D 41 2D 53 20 42 3D 42 2D 43 20 43 3D    4 A=A-S B=B-C C=
0040  43 5E 41 20 41 3D 41 5E 42 00 00                   C^A A=A^B..

11  63.161.183.205:9367  192.168.1.47:1599  50  Recv 
0000  32 00 09 01 00 00 00 00 0B 00 01 70 8F 67 91 47    2..........p.g.G
0010  61 6D 65 2E 65 78 65 20 30 38 2F 31 37 2F 30 35    ame.exe 08/17/05
0020  20 30 31 3A 31 31 3A 34 33 20 32 31 32 35 38 32     01:11:43 212582
0030  34 00                                              4.

14  192.168.1.47:1600  63.240.202.128:6112  113  Send 
0000  FF 25 08 00 00 00 00 00 FF 51 69 00 81 E0 56 2D    .%.......Qi...V-
0010  00 0B 00 01 70 8F 67 91 01 00 00 00 00 00 00 00    ....p.g.........
0020  10 00 00 00 06 00 00 00 08 7B C1 00 00 00 00 00    .........{......
0030  97 07 1E EF 8C CD 21 DB DD 4A 4C 67 FA E5 F6 79    ......!..JLg...y
0040  EE 3F F1 6E 47 61 6D 65 2E 65 78 65 20 30 38 2F    .?.nGame.exe 08/
0050  31 37 2F 30 35 20 30 31 3A 31 31 3A 34 33 20 32    17/05 01:11:43 2
0060  31 32 35 38 32 34 00 4C 57 2D 4A 61 71 75 69 6F    125824.LW-Jaquio
0070  00                                                 .

15  63.240.202.128:6112  192.168.1.47:1600  9  Recv 
0000  FF 51 09 00 00 00 00 00 00                         .Q.......

16  192.168.1.47:1599  63.161.183.205:9367  20  Send 
0000  14 00 0B 09 00 00 00 00 00 00 00 XX XX XX XX XX    ...........XXXXX
0010  XX XX XX XX                                        XXXX

17  63.161.183.205:9367  192.168.1.47:1599  23  Recv 
0000  17 00 0B 12 19 01 03 52 7C DD 5A 65 BD FC AC 7B    .......R|.Ze...{
0010  95 B5 40 74 6A 6D 89                               ..@tjm.

18  192.168.1.47:1599  63.161.183.205:9367  39  Send 
0000  27 00 0B 1C 00 00 00 01 00 00 00 81 E0 56 2D E0    '............V-.
0010  28 FA 11 12 19 01 03 52 7C DD 5A 65 BD FC AC 7B    (......R|.Ze...{
0020  95 B5 40 74 6A 6D 89                               ..@tjm.

19  63.161.183.205:9367  192.168.1.47:1599  23  Recv 
0000  17 00 0B 41 E1 58 75 FC B1 98 79 A4 28 F6 2F B8    ...A.Xu...y.(./.
0010  B5 CD B0 46 1F E0 8B                               ...F...

20  192.168.1.47:1600  63.240.202.128:6112  54  Send 
0000  FF 14 08 00 74 65 6E 62 FF 2D 04 00 FF 3A 2A 00    ....tenb.-...:*.
0010  81 E0 56 2D E0 28 FA 11 41 E1 58 75 FC B1 98 79    ..V-.(..A.Xu...y
0020  A4 28 F6 2F B8 B5 CD B0 46 1F E0 8B 4C 57 2D 4A    .(./....F...LW-J
0030  61 71 75 69 6F 00                                  aquio.

21  63.240.202.128:6112  192.168.1.47:1600  22  Recv 
0000  FF 2D 16 00 00 08 16 BF E9 50 C3 01 69 63 6F 6E    .-.......P..icon
0010  73 2E 62 6E 69 00                                  s.bni.

22  63.240.202.128:6112  192.168.1.47:1600  8  Recv 
0000  FF 3A 08 00 00 00 00 00                            .:......

23  192.168.1.47:1600  63.240.202.128:6112  4  Send 
0000  FF 40 04 00                                        .@..

24  63.240.202.128:6112  192.168.1.47:1600  51  Recv 
0000  FF 40 33 00 00 00 00 00 01 00 00 00 01 00 00 00    .@3.............
0010  55 53 45 61 73 74 00 52 65 61 6C 6D 20 66 6F 72    USEast.Realm for
0020  20 74 68 65 20 55 53 20 45 61 73 74 20 43 6F 61     the US East Coa
0030  73 74 00                                           st.

25  192.168.1.47:1599  63.161.183.205:9367  19  Send 
0000  13 00 0B 08 00 00 00 00 00 00 00 70 61 73 73 77    ...........passw
0010  6F 72 64                                           ord

26  63.161.183.205:9367  192.168.1.47:1599  23  Recv 
0000  17 00 0B EC C8 0D 1D 76 E7 58 C0 B9 DA 8C 25 FF    .......v.X....%.
0010  10 6A FF 8E 24 29 16                               .j..$).

27  192.168.1.47:1599  63.161.183.205:9367  39  Send 
0000  27 00 0B 1C 00 00 00 01 00 00 00 81 E0 56 2D E0    '............V-.
0010  28 FA 11 EC C8 0D 1D 76 E7 58 C0 B9 DA 8C 25 FF    (......v.X....%.
0020  10 6A FF 8E 24 29 16                               .j..$).

28  63.161.183.205:9367  192.168.1.47:1599  23  Recv 
0000  17 00 0B 5C D1 40 AF CD 84 C8 61 9A 99 B4 87 F5    ...\[email protected].....
0010  D8 9A B9 59 C1 A6 D0                               ...Y...

29  192.168.1.47:1600  63.240.202.128:6112  45  Send 
0000  FF 3E 2D 00 81 E0 56 2D 5C D1 40 AF CD 84 C8 61    .>-...V-\[email protected]
0010  9A 99 B4 87 F5 D8 9A B9 59 C1 A6 55 53 45 61 73    ........Y..USEas
0020  74 2E 42 61 74 74 6C 65 2E 4E 65 74 00             t.Battle.Net.

30  63.240.202.128:6112  192.168.1.47:1600  12  Recv 
0000  FF 3E 0C 00 81 E0 56 2D 01 00 00 80                .>....V-....


Alright, got the log with WPE.. What do I do about my Accountname and CDKey? If I post the log people will have it.