I was a bit off when I posted the addresses 'cause I forgot to multiply by 4. Anyway...
Image #1: 1280x720 RGB32 image, starts at 0xE3500000, ends at 0xE3884000 (length 0x384000).
Image #2: ?x? (can't get it to render properly with my guessed widths) RGB32 image, starts at 0xE38C0000, ends at 0xE3A63F58 (length 0x1A3F58). Same as #1 but smaller, probably gamepad.
Image #3: 1280x720 RGB32 image, starts at 0xE3A80000, ends at 0xE3884000 (length 0x384000).
Image #4: ?x? (again, not much luck figuring out the resolution) RGB32 image, starts at 0xE3E40000, ends at 0xE3FE3F58 (length 0x1A3F58). Same as #3 but smaller, probably gamepad.
Now, there are several reasons I don't think these are framebuffers. I'm a very novice hacker so this might sound dumb but:
a) This isn't double/triple buffering. #1/#2 and #3/#4 aren't even from the same app.
b) #3/#4 should show the current frame from the web browser (the exploit page), which they are not.
c) My Wii U is set to 1920x1080, and if I recall correctly SM3DW also renders at 1080p. Yet what I'm pretty sure are the TV images (#1 and #3) are 1280x720.
I haven't tried writing to those areas yet. I still think they're related to Miiverse though... I wish I could post modified pics there without getting banned if I was right
