z Baldur's Gate 3

Upload your cheat tables here (No requests)
Post Reply
zachillios
Table Makers
Table Makers
Posts: 905
Joined: Fri Mar 03, 2017 9:05 am
Reputation: 760

Re: z Baldur's Gate 3

Post by zachillios »

flachan.aczache wrote:
Thu Oct 08, 2020 6:28 pm
iicecube wrote:
Thu Oct 08, 2020 5:55 pm
 ...
Thanks for this one working good, wonder anyone found any infinite casting spell slots code?
well I also found something like this.
unfortunately this works for any char (i.e. enemies), so I keep it off most of the time and only turn it on when one of my char has a turn and disable it after combat.
I was looking for infinite movement but somehow it also causes not to deplete action/spell slot during turn-based action - i.e. even without combat, when I want to cast spell (i.e. movement) I enter turn-based mode, cast a spell and go out of the mode - spell point is not depleted somehow

maybe someone could make something better out of it :D

Code: Select all

[ENABLE]

aobscanmodule(INJECT,bg3.exe,F2 0F 11 76 18) // should be unique
alloc(newmem,$1000,"bg3.exe"+20BFE3C)

label(code)
label(return)

newmem:

code:
  nop
  nop
  nop
  nop
  nop
  jmp return

INJECT:
  jmp newmem
return:
registersymbol(INJECT)

[DISABLE]

INJECT:
  db F2 0F 11 76 18

unregistersymbol(INJECT)
dealloc(newmem)
Awesome. Do you remember what the original code was for this? Would love to take a closer look at it.

How to use this cheat table?
  1. Install Cheat Engine
  2. Double-click the .CT file in order to open it.
  3. Click the PC icon in Cheat Engine in order to select the game process.
  4. Keep the list.
  5. Activate the trainer options by checking boxes or setting values from 0 to 1
Top
TheChaosBeing
Noobzor
Noobzor
Posts: 10
Joined: Thu Oct 01, 2020 7:50 pm
Reputation: 0

Re: z Baldur's Gate 3

Post by TheChaosBeing »

Acleacius wrote:
Thu Oct 08, 2020 7:41 pm
 Really hope, those of you who have figured out how to boost Stats of companions will share code or table! 8-)
^This
Top
Zanzer
RCE Fanatics
RCE Fanatics
Posts: 1131
Joined: Fri Mar 03, 2017 10:48 pm
Reputation: 3801

Re: z Baldur's Gate 3

Post by Zanzer »

Added a better pointer for Character Ability Points that'll let you cycle through the various characters.

Added zachillios' and flachan.aczache's contributions.
Top
User avatar
TemptingIcarus
Expert Cheater
Expert Cheater
Posts: 412
Joined: Thu Aug 16, 2018 11:32 pm
Reputation: 54

Re: z Baldur's Gate 3

Post by TemptingIcarus »

Any chance for a damage multiplier? Since it seems stats are hard coded. Not sure if it's in the realm of possibility, but worth giving a shot, no?
Top
flachan.aczache
Novice Cheater
Novice Cheater
Posts: 15
Joined: Tue Sep 08, 2020 10:51 pm
Reputation: 11

Re: z Baldur's Gate 3

Post by flachan.aczache »

zachillios wrote:
Thu Oct 08, 2020 10:12 pm
...
flachan.aczache wrote:
Thu Oct 08, 2020 6:28 pm
iicecube wrote:
Thu Oct 08, 2020 5:55 pm
 ...
Thanks for this one working good, wonder anyone found any infinite casting spell slots code?
well I also found something like this.
unfortunately this works for any char (i.e. enemies), so I keep it off most of the time and only turn it on when one of my char has a turn and disable it after combat.
I was looking for infinite movement but somehow it also causes not to deplete action/spell slot during turn-based action - i.e. even without combat, when I want to cast spell (i.e. movement) I enter turn-based mode, cast a spell and go out of the mode - spell point is not depleted somehow

maybe someone could make something better out of it :D

Code: Select all

[ENABLE]

aobscanmodule(INJECT,bg3.exe,F2 0F 11 76 18) // should be unique
alloc(newmem,$1000,"bg3.exe"+20BFE3C)

label(code)
label(return)

newmem:

code:
  nop
  nop
  nop
  nop
  nop
  jmp return

INJECT:
  jmp newmem
return:
registersymbol(INJECT)

[DISABLE]

INJECT:
  db F2 0F 11 76 18

unregistersymbol(INJECT)
dealloc(newmem)
Awesome. Do you remember what the original code was for this? Would love to take a closer look at it.
i hope I don't write stupid but here's what CE selects as the whole function:
this one for dx11 version
when opcodes from [bg3_dx11.exe+20C031C] are nop'ed, game don't use movement/action/spell slot while turn-mode active

Code: Select all

bg3_dx11.exe+20C0280 - 40 56                 - push rsi
bg3_dx11.exe+20C0282 - 57                    - push rdi
bg3_dx11.exe+20C0283 - 48 83 EC 68           - sub rsp,68
bg3_dx11.exe+20C0287 - 0F29 74 24 50         - movaps [rsp+50],xmm6
bg3_dx11.exe+20C028C - 0F29 7C 24 40         - movaps [rsp+40],xmm7
bg3_dx11.exe+20C0291 - 48 8B 05 F044A103     - mov rax,[bg3_dx11.tinyxml2::XMLDocument::_errorNames+2CD8]
bg3_dx11.exe+20C0298 - 48 33 C4              - xor rax,rsp
bg3_dx11.exe+20C029B - 48 89 44 24 38        - mov [rsp+38],rax
bg3_dx11.exe+20C02A0 - 80 BC 24 A0000000 00  - cmp byte ptr [rsp+000000A0],00
bg3_dx11.exe+20C02A8 - 49 8B F9              - mov rdi,r9
bg3_dx11.exe+20C02AB - 0F28 F2               - movaps xmm6,xmm2
bg3_dx11.exe+20C02AE - 48 8B F2              - mov rsi,rdx
bg3_dx11.exe+20C02B1 - 0F57 FF               - xorps xmm7,xmm7
bg3_dx11.exe+20C02B4 - 74 43                 - je bg3_dx11.exe+20C02F9
bg3_dx11.exe+20C02B6 - F2 0F10 05 DA74CC02   - movsd xmm0,[bg3_dx11.exe+4D87798]
bg3_dx11.exe+20C02BE - 66 0F2F C2            - comisd xmm0,xmm2
bg3_dx11.exe+20C02C2 - 76 05                 - jna bg3_dx11.exe+20C02C9
bg3_dx11.exe+20C02C4 - 0F57 F6               - xorps xmm6,xmm6
bg3_dx11.exe+20C02C7 - EB 30                 - jmp bg3_dx11.exe+20C02F9
bg3_dx11.exe+20C02C9 - F2 0F10 42 20         - movsd xmm0,[rdx+20]
bg3_dx11.exe+20C02CE - 48 8D 44 24 20        - lea rax,[rsp+20]
bg3_dx11.exe+20C02D3 - 66 0F2F FA            - comisd xmm7,xmm2
bg3_dx11.exe+20C02D7 - 48 8D 54 24 28        - lea rdx,[rsp+28]
bg3_dx11.exe+20C02DC - F2 0F11 7C 24 20      - movsd [rsp+20],xmm7
bg3_dx11.exe+20C02E2 - F2 0F11 54 24 28      - movsd [rsp+28],xmm2
bg3_dx11.exe+20C02E8 - 48 0F46 C2            - cmovbe rax,rdx
bg3_dx11.exe+20C02EC - F2 0F10 30            - movsd xmm6,[rax]
bg3_dx11.exe+20C02F0 - 66 0F2F F0            - comisd xmm6,xmm0
bg3_dx11.exe+20C02F4 - 76 03                 - jna bg3_dx11.exe+20C02F9
bg3_dx11.exe+20C02F6 - 0F28 F0               - movaps xmm6,xmm0
bg3_dx11.exe+20C02F9 - 66 0F2E 76 18         - ucomisd xmm6,[rsi+18]
bg3_dx11.exe+20C02FE - 7A 09                 - jp bg3_dx11.exe+20C0309
bg3_dx11.exe+20C0300 - 75 07                 - jne bg3_dx11.exe+20C0309
bg3_dx11.exe+20C0302 - 32 C0                 - xor al,al
bg3_dx11.exe+20C0304 - E9 99010000           - jmp bg3_dx11.exe+20C04A2
bg3_dx11.exe+20C0309 - 48 89 9C 24 90000000  - mov [rsp+00000090],rbx
bg3_dx11.exe+20C0311 - 33 DB                 - xor ebx,ebx
bg3_dx11.exe+20C0313 - 48 89 6C 24 60        - mov [rsp+60],rbp
bg3_dx11.exe+20C0318 - 48 8B 69 10           - mov rbp,[rcx+10]
bg3_dx11.exe+20C031C - F2 0F11 76 18         - movsd [rsi+18],xmm6
bg3_dx11.exe+20C0321 - 39 5D 78              - cmp [rbp+78],ebx
bg3_dx11.exe+20C0324 - 74 3E                 - je bg3_dx11.exe+20C0364
bg3_dx11.exe+20C0326 - 48 8B CE              - mov rcx,rsi
bg3_dx11.exe+20C0329 - E8 9259C701           - call bg3_dx11.exe+3D35CC0
bg3_dx11.exe+20C032E - 48 63 4D 78           - movsxd  rcx,dword ptr [rbp+78]
bg3_dx11.exe+20C0332 - 33 D2                 - xor edx,edx
bg3_dx11.exe+20C0334 - 48 F7 F1              - div rcx
bg3_dx11.exe+20C0337 - 4C 8B C6              - mov r8,rsi
bg3_dx11.exe+20C033A - 48 8D 4D 68           - lea rcx,[rbp+68]
bg3_dx11.exe+20C033E - E8 3D2410FF           - call bg3_dx11.exe+11C2780
bg3_dx11.exe+20C0343 - 83 F8 FF              - cmp eax,-01
bg3_dx11.exe+20C0346 - 74 1C                 - je bg3_dx11.exe+20C0364
bg3_dx11.exe+20C0348 - 48 98                 - cdqe 
bg3_dx11.exe+20C034A - 0F57 C0               - xorps xmm0,xmm0
bg3_dx11.exe+20C034D - 4C 6B D0 38           - imul r10,rax,38
bg3_dx11.exe+20C0351 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3_dx11.exe+20C0356 - 4C 03 95 B0000000     - add r10,[rbp+000000B0]
bg3_dx11.exe+20C035D - 4C 89 54 24 28        - mov [rsp+28],r10
bg3_dx11.exe+20C0362 - EB 17                 - jmp bg3_dx11.exe+20C037B
bg3_dx11.exe+20C0364 - 0F57 C0               - xorps xmm0,xmm0
bg3_dx11.exe+20C0367 - 33 C0                 - xor eax,eax
bg3_dx11.exe+20C0369 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3_dx11.exe+20C036E - C6 44 24 30 01        - mov byte ptr [rsp+30],01
bg3_dx11.exe+20C0373 - 4C 8B D3              - mov r10,rbx
bg3_dx11.exe+20C0376 - 66 89 44 24 28        - mov [rsp+28],ax
bg3_dx11.exe+20C037B - 41 80 7A 2C 08        - cmp byte ptr [r10+2C],08
bg3_dx11.exe+20C0380 - 48 8B 6C 24 60        - mov rbp,[rsp+60]
bg3_dx11.exe+20C0385 - 0F84 0D010000         - je bg3_dx11.exe+20C0498
bg3_dx11.exe+20C038B - 4C 8D 46 28           - lea r8,[rsi+28]
bg3_dx11.exe+20C038F - 38 5F 70              - cmp [rdi+70],bl
bg3_dx11.exe+20C0392 - 74 3D                 - je bg3_dx11.exe+20C03D1
bg3_dx11.exe+20C0394 - 0F10 07               - movups xmm0,[rdi]
bg3_dx11.exe+20C0397 - 41 0F11 00            - movups [r8],xmm0
bg3_dx11.exe+20C039B - 0F10 4F 10            - movups xmm1,[rdi+10]
bg3_dx11.exe+20C039F - 41 0F11 48 10         - movups [r8+10],xmm1
bg3_dx11.exe+20C03A4 - 0F10 47 20            - movups xmm0,[rdi+20]
bg3_dx11.exe+20C03A8 - 41 0F11 40 20         - movups [r8+20],xmm0
bg3_dx11.exe+20C03AD - 0F10 4F 30            - movups xmm1,[rdi+30]
bg3_dx11.exe+20C03B1 - 41 0F11 48 30         - movups [r8+30],xmm1
bg3_dx11.exe+20C03B6 - 0F10 47 40            - movups xmm0,[rdi+40]
bg3_dx11.exe+20C03BA - 41 0F11 40 40         - movups [r8+40],xmm0
bg3_dx11.exe+20C03BF - 0F10 4F 50            - movups xmm1,[rdi+50]
bg3_dx11.exe+20C03C3 - 41 0F11 48 50         - movups [r8+50],xmm1
bg3_dx11.exe+20C03C8 - 0F10 47 60            - movups xmm0,[rdi+60]
bg3_dx11.exe+20C03CC - 41 0F11 40 60         - movups [r8+60],xmm0
bg3_dx11.exe+20C03D1 - 8B D3                 - mov edx,ebx
bg3_dx11.exe+20C03D3 - 48 8B C3              - mov rax,rbx
bg3_dx11.exe+20C03D6 - 49 8B C8              - mov rcx,r8
bg3_dx11.exe+20C03D9 - 0F1F 80 00000000      - nop dword ptr [rax+00000000]
bg3_dx11.exe+20C03E0 - F2 0F5C 31            - subsd xmm6,[rcx]
bg3_dx11.exe+20C03E4 - 44 8B CA              - mov r9d,edx
bg3_dx11.exe+20C03E7 - FF C2                 - inc edx
bg3_dx11.exe+20C03E9 - 66 0F2F FE            - comisd xmm7,xmm6
bg3_dx11.exe+20C03ED - 77 0F                 - ja bg3_dx11.exe+20C03FE
bg3_dx11.exe+20C03EF - 48 FF C0              - inc rax
bg3_dx11.exe+20C03F2 - 48 83 C1 10           - add rcx,10
bg3_dx11.exe+20C03F6 - 48 83 F8 07           - cmp rax,07
bg3_dx11.exe+20C03FA - 7C E4                 - jl bg3_dx11.exe+20C03E0
bg3_dx11.exe+20C03FC - EB 15                 - jmp bg3_dx11.exe+20C0413
bg3_dx11.exe+20C03FE - 49 8B C1              - mov rax,r9
bg3_dx11.exe+20C0401 - 0F28 C6               - movaps xmm0,xmm6
bg3_dx11.exe+20C0404 - 48 03 C0              - add rax,rax
bg3_dx11.exe+20C0407 - F2 41 0F58 04 C0      - addsd xmm0,[r8+rax*8]
bg3_dx11.exe+20C040D - F2 41 0F11 04 C0      - movsd [r8+rax*8],xmm0
bg3_dx11.exe+20C0413 - 4C 63 CA              - movsxd  r9,edx
bg3_dx11.exe+20C0416 - 49 83 F9 07           - cmp r9,07
bg3_dx11.exe+20C041A - 7D 21                 - jnl bg3_dx11.exe+20C043D
bg3_dx11.exe+20C041C - 49 8B C1              - mov rax,r9
bg3_dx11.exe+20C041F - B9 07000000           - mov ecx,00000007
bg3_dx11.exe+20C0424 - 48 C1 E0 04           - shl rax,04
bg3_dx11.exe+20C0428 - 49 03 C0              - add rax,r8
bg3_dx11.exe+20C042B - 49 2B C9              - sub rcx,r9
bg3_dx11.exe+20C042E - 66 90                 - nop 2
bg3_dx11.exe+20C0430 - 48 89 18              - mov [rax],rbx
bg3_dx11.exe+20C0433 - 48 8D 40 10           - lea rax,[rax+10]
bg3_dx11.exe+20C0437 - 48 83 E9 01           - sub rcx,01
bg3_dx11.exe+20C043B - 75 F3                 - jne bg3_dx11.exe+20C0430
bg3_dx11.exe+20C043D - 66 0F2F F7            - comisd xmm6,xmm7
bg3_dx11.exe+20C0441 - 76 55                 - jna bg3_dx11.exe+20C0498
bg3_dx11.exe+20C0443 - 41 0FB6 52 2C         - movzx edx,byte ptr [r10+2C]
bg3_dx11.exe+20C0448 - 49 8B C8              - mov rcx,r8
bg3_dx11.exe+20C044B - 0F1F 44 00 00         - nop dword ptr [rax+rax+00]
bg3_dx11.exe+20C0450 - F2 0F10 09            - movsd xmm1,[rcx]
bg3_dx11.exe+20C0454 - F2 0F10 41 08         - movsd xmm0,[rcx+08]
bg3_dx11.exe+20C0459 - F2 0F5C C1            - subsd xmm0,xmm1
bg3_dx11.exe+20C045D - F2 0F5D C6            - minsd xmm0,xmm6
bg3_dx11.exe+20C0461 - 66 0F2F C7            - comisd xmm0,xmm7
bg3_dx11.exe+20C0465 - 76 12                 - jna bg3_dx11.exe+20C0479
bg3_dx11.exe+20C0467 - F2 0F5C F0            - subsd xmm6,xmm0
bg3_dx11.exe+20C046B - F2 0F58 C8            - addsd xmm1,xmm0
bg3_dx11.exe+20C046F - 66 0F2F FE            - comisd xmm7,xmm6
bg3_dx11.exe+20C0473 - F2 0F11 09            - movsd [rcx],xmm1
bg3_dx11.exe+20C0477 - 73 0D                 - jae bg3_dx11.exe+20C0486
bg3_dx11.exe+20C0479 - 48 FF C3              - inc rbx
bg3_dx11.exe+20C047C - 48 83 C1 10           - add rcx,10
bg3_dx11.exe+20C0480 - 48 83 FB 07           - cmp rbx,07
bg3_dx11.exe+20C0484 - 7C CA                 - jl bg3_dx11.exe+20C0450
bg3_dx11.exe+20C0486 - 48 8B CA              - mov rcx,rdx
bg3_dx11.exe+20C0489 - 48 03 C9              - add rcx,rcx
bg3_dx11.exe+20C048C - F2 41 0F58 34 C8      - addsd xmm6,[r8+rcx*8]
bg3_dx11.exe+20C0492 - F2 41 0F11 34 C8      - movsd [r8+rcx*8],xmm6
bg3_dx11.exe+20C0498 - 48 8B 9C 24 90000000  - mov rbx,[rsp+00000090]
bg3_dx11.exe+20C04A0 - B0 01                 - mov al,01
bg3_dx11.exe+20C04A2 - 48 8B 4C 24 38        - mov rcx,[rsp+38]
bg3_dx11.exe+20C04A7 - 48 33 CC              - xor rcx,rsp
bg3_dx11.exe+20C04AA - E8 D1A96702           - call bg3_dx11.exe+473AE80
bg3_dx11.exe+20C04AF - 0F28 74 24 50         - movaps xmm6,[rsp+50]
bg3_dx11.exe+20C04B4 - 0F28 7C 24 40         - movaps xmm7,[rsp+40]
bg3_dx11.exe+20C04B9 - 48 83 C4 68           - add rsp,68
bg3_dx11.exe+20C04BD - 5F                    - pop rdi
bg3_dx11.exe+20C04BE - 5E                    - pop rsi
bg3_dx11.exe+20C04BF - C3                    - ret
and for vulcan
bg3.exe+20BFE3C

Code: Select all

bg3.exe+20BFDA0 - 40 56                 - push rsi
bg3.exe+20BFDA2 - 57                    - push rdi
bg3.exe+20BFDA3 - 48 83 EC 68           - sub rsp,68
bg3.exe+20BFDA7 - 0F29 74 24 50         - movaps [rsp+50],xmm6
bg3.exe+20BFDAC - 0F29 7C 24 40         - movaps [rsp+40],xmm7
bg3.exe+20BFDB1 - 48 8B 05 A0A09E03     - mov rax,[bg3.tinyxml2::XMLDocument::_errorNames+2CD8]
bg3.exe+20BFDB8 - 48 33 C4              - xor rax,rsp
bg3.exe+20BFDBB - 48 89 44 24 38        - mov [rsp+38],rax
bg3.exe+20BFDC0 - 80 BC 24 A0000000 00  - cmp byte ptr [rsp+000000A0],00
bg3.exe+20BFDC8 - 49 8B F9              - mov rdi,r9
bg3.exe+20BFDCB - 0F28 F2               - movaps xmm6,xmm2
bg3.exe+20BFDCE - 48 8B F2              - mov rsi,rdx
bg3.exe+20BFDD1 - 0F57 FF               - xorps xmm7,xmm7
bg3.exe+20BFDD4 - 74 43                 - je bg3.exe+20BFE19
bg3.exe+20BFDD6 - F2 0F10 05 FA59CB02   - movsd xmm0,[bg3.exe+4D757D8]
bg3.exe+20BFDDE - 66 0F2F C2            - comisd xmm0,xmm2
bg3.exe+20BFDE2 - 76 05                 - jna bg3.exe+20BFDE9
bg3.exe+20BFDE4 - 0F57 F6               - xorps xmm6,xmm6
bg3.exe+20BFDE7 - EB 30                 - jmp bg3.exe+20BFE19
bg3.exe+20BFDE9 - F2 0F10 42 20         - movsd xmm0,[rdx+20]
bg3.exe+20BFDEE - 48 8D 44 24 20        - lea rax,[rsp+20]
bg3.exe+20BFDF3 - 66 0F2F FA            - comisd xmm7,xmm2
bg3.exe+20BFDF7 - 48 8D 54 24 28        - lea rdx,[rsp+28]
bg3.exe+20BFDFC - F2 0F11 7C 24 20      - movsd [rsp+20],xmm7
bg3.exe+20BFE02 - F2 0F11 54 24 28      - movsd [rsp+28],xmm2
bg3.exe+20BFE08 - 48 0F46 C2            - cmovbe rax,rdx
bg3.exe+20BFE0C - F2 0F10 30            - movsd xmm6,[rax]
bg3.exe+20BFE10 - 66 0F2F F0            - comisd xmm6,xmm0
bg3.exe+20BFE14 - 76 03                 - jna bg3.exe+20BFE19
bg3.exe+20BFE16 - 0F28 F0               - movaps xmm6,xmm0
bg3.exe+20BFE19 - 66 0F2E 76 18         - ucomisd xmm6,[rsi+18]
bg3.exe+20BFE1E - 7A 09                 - jp bg3.exe+20BFE29
bg3.exe+20BFE20 - 75 07                 - jne bg3.exe+20BFE29
bg3.exe+20BFE22 - 32 C0                 - xor al,al
bg3.exe+20BFE24 - E9 99010000           - jmp bg3.exe+20BFFC2
bg3.exe+20BFE29 - 48 89 9C 24 90000000  - mov [rsp+00000090],rbx
bg3.exe+20BFE31 - 33 DB                 - xor ebx,ebx
bg3.exe+20BFE33 - 48 89 6C 24 60        - mov [rsp+60],rbp
bg3.exe+20BFE38 - 48 8B 69 10           - mov rbp,[rcx+10]
bg3.exe+20BFE3C - F2 0F11 76 18         - movsd [rsi+18],xmm6
bg3.exe+20BFE41 - 39 5D 78              - cmp [rbp+78],ebx
bg3.exe+20BFE44 - 74 3E                 - je bg3.exe+20BFE84
bg3.exe+20BFE46 - 48 8B CE              - mov rcx,rsi
bg3.exe+20BFE49 - E8 12FAC501           - call bg3.exe+3D1F860
bg3.exe+20BFE4E - 48 63 4D 78           - movsxd  rcx,dword ptr [rbp+78]
bg3.exe+20BFE52 - 33 D2                 - xor edx,edx
bg3.exe+20BFE54 - 48 F7 F1              - div rcx
bg3.exe+20BFE57 - 4C 8B C6              - mov r8,rsi
bg3.exe+20BFE5A - 48 8D 4D 68           - lea rcx,[rbp+68]
bg3.exe+20BFE5E - E8 1D1B10FF           - call bg3.exe+11C1980
bg3.exe+20BFE63 - 83 F8 FF              - cmp eax,-01
bg3.exe+20BFE66 - 74 1C                 - je bg3.exe+20BFE84
bg3.exe+20BFE68 - 48 98                 - cdqe 
bg3.exe+20BFE6A - 0F57 C0               - xorps xmm0,xmm0
bg3.exe+20BFE6D - 4C 6B D0 38           - imul r10,rax,38
bg3.exe+20BFE71 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3.exe+20BFE76 - 4C 03 95 B0000000     - add r10,[rbp+000000B0]
bg3.exe+20BFE7D - 4C 89 54 24 28        - mov [rsp+28],r10
bg3.exe+20BFE82 - EB 17                 - jmp bg3.exe+20BFE9B
bg3.exe+20BFE84 - 0F57 C0               - xorps xmm0,xmm0
bg3.exe+20BFE87 - 33 C0                 - xor eax,eax
bg3.exe+20BFE89 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3.exe+20BFE8E - C6 44 24 30 01        - mov byte ptr [rsp+30],01
bg3.exe+20BFE93 - 4C 8B D3              - mov r10,rbx
bg3.exe+20BFE96 - 66 89 44 24 28        - mov [rsp+28],ax
bg3.exe+20BFE9B - 41 80 7A 2C 08        - cmp byte ptr [r10+2C],08
bg3.exe+20BFEA0 - 48 8B 6C 24 60        - mov rbp,[rsp+60]
bg3.exe+20BFEA5 - 0F84 0D010000         - je bg3.exe+20BFFB8
bg3.exe+20BFEAB - 4C 8D 46 28           - lea r8,[rsi+28]
bg3.exe+20BFEAF - 38 5F 70              - cmp [rdi+70],bl
bg3.exe+20BFEB2 - 74 3D                 - je bg3.exe+20BFEF1
bg3.exe+20BFEB4 - 0F10 07               - movups xmm0,[rdi]
bg3.exe+20BFEB7 - 41 0F11 00            - movups [r8],xmm0
bg3.exe+20BFEBB - 0F10 4F 10            - movups xmm1,[rdi+10]
bg3.exe+20BFEBF - 41 0F11 48 10         - movups [r8+10],xmm1
bg3.exe+20BFEC4 - 0F10 47 20            - movups xmm0,[rdi+20]
bg3.exe+20BFEC8 - 41 0F11 40 20         - movups [r8+20],xmm0
bg3.exe+20BFECD - 0F10 4F 30            - movups xmm1,[rdi+30]
bg3.exe+20BFED1 - 41 0F11 48 30         - movups [r8+30],xmm1
bg3.exe+20BFED6 - 0F10 47 40            - movups xmm0,[rdi+40]
bg3.exe+20BFEDA - 41 0F11 40 40         - movups [r8+40],xmm0
bg3.exe+20BFEDF - 0F10 4F 50            - movups xmm1,[rdi+50]
bg3.exe+20BFEE3 - 41 0F11 48 50         - movups [r8+50],xmm1
bg3.exe+20BFEE8 - 0F10 47 60            - movups xmm0,[rdi+60]
bg3.exe+20BFEEC - 41 0F11 40 60         - movups [r8+60],xmm0
bg3.exe+20BFEF1 - 8B D3                 - mov edx,ebx
bg3.exe+20BFEF3 - 48 8B C3              - mov rax,rbx
bg3.exe+20BFEF6 - 49 8B C8              - mov rcx,r8
bg3.exe+20BFEF9 - 0F1F 80 00000000      - nop dword ptr [rax+00000000]
bg3.exe+20BFF00 - F2 0F5C 31            - subsd xmm6,[rcx]
bg3.exe+20BFF04 - 44 8B CA              - mov r9d,edx
bg3.exe+20BFF07 - FF C2                 - inc edx
bg3.exe+20BFF09 - 66 0F2F FE            - comisd xmm7,xmm6
bg3.exe+20BFF0D - 77 0F                 - ja bg3.exe+20BFF1E
bg3.exe+20BFF0F - 48 FF C0              - inc rax
bg3.exe+20BFF12 - 48 83 C1 10           - add rcx,10
bg3.exe+20BFF16 - 48 83 F8 07           - cmp rax,07
bg3.exe+20BFF1A - 7C E4                 - jl bg3.exe+20BFF00
bg3.exe+20BFF1C - EB 15                 - jmp bg3.exe+20BFF33
bg3.exe+20BFF1E - 49 8B C1              - mov rax,r9
bg3.exe+20BFF21 - 0F28 C6               - movaps xmm0,xmm6
bg3.exe+20BFF24 - 48 03 C0              - add rax,rax
bg3.exe+20BFF27 - F2 41 0F58 04 C0      - addsd xmm0,[r8+rax*8]
bg3.exe+20BFF2D - F2 41 0F11 04 C0      - movsd [r8+rax*8],xmm0
bg3.exe+20BFF33 - 4C 63 CA              - movsxd  r9,edx
bg3.exe+20BFF36 - 49 83 F9 07           - cmp r9,07
bg3.exe+20BFF3A - 7D 21                 - jnl bg3.exe+20BFF5D
bg3.exe+20BFF3C - 49 8B C1              - mov rax,r9
bg3.exe+20BFF3F - B9 07000000           - mov ecx,00000007
bg3.exe+20BFF44 - 48 C1 E0 04           - shl rax,04
bg3.exe+20BFF48 - 49 03 C0              - add rax,r8
bg3.exe+20BFF4B - 49 2B C9              - sub rcx,r9
bg3.exe+20BFF4E - 66 90                 - nop 2
bg3.exe+20BFF50 - 48 89 18              - mov [rax],rbx
bg3.exe+20BFF53 - 48 8D 40 10           - lea rax,[rax+10]
bg3.exe+20BFF57 - 48 83 E9 01           - sub rcx,01
bg3.exe+20BFF5B - 75 F3                 - jne bg3.exe+20BFF50
bg3.exe+20BFF5D - 66 0F2F F7            - comisd xmm6,xmm7
bg3.exe+20BFF61 - 76 55                 - jna bg3.exe+20BFFB8
bg3.exe+20BFF63 - 41 0FB6 52 2C         - movzx edx,byte ptr [r10+2C]
bg3.exe+20BFF68 - 49 8B C8              - mov rcx,r8
bg3.exe+20BFF6B - 0F1F 44 00 00         - nop dword ptr [rax+rax+00]
bg3.exe+20BFF70 - F2 0F10 09            - movsd xmm1,[rcx]
bg3.exe+20BFF74 - F2 0F10 41 08         - movsd xmm0,[rcx+08]
bg3.exe+20BFF79 - F2 0F5C C1            - subsd xmm0,xmm1
bg3.exe+20BFF7D - F2 0F5D C6            - minsd xmm0,xmm6
bg3.exe+20BFF81 - 66 0F2F C7            - comisd xmm0,xmm7
bg3.exe+20BFF85 - 76 12                 - jna bg3.exe+20BFF99
bg3.exe+20BFF87 - F2 0F5C F0            - subsd xmm6,xmm0
bg3.exe+20BFF8B - F2 0F58 C8            - addsd xmm1,xmm0
bg3.exe+20BFF8F - 66 0F2F FE            - comisd xmm7,xmm6
bg3.exe+20BFF93 - F2 0F11 09            - movsd [rcx],xmm1
bg3.exe+20BFF97 - 73 0D                 - jae bg3.exe+20BFFA6
bg3.exe+20BFF99 - 48 FF C3              - inc rbx
bg3.exe+20BFF9C - 48 83 C1 10           - add rcx,10
bg3.exe+20BFFA0 - 48 83 FB 07           - cmp rbx,07
bg3.exe+20BFFA4 - 7C CA                 - jl bg3.exe+20BFF70
bg3.exe+20BFFA6 - 48 8B CA              - mov rcx,rdx
bg3.exe+20BFFA9 - 48 03 C9              - add rcx,rcx
bg3.exe+20BFFAC - F2 41 0F58 34 C8      - addsd xmm6,[r8+rcx*8]
bg3.exe+20BFFB2 - F2 41 0F11 34 C8      - movsd [r8+rcx*8],xmm6
bg3.exe+20BFFB8 - 48 8B 9C 24 90000000  - mov rbx,[rsp+00000090]
bg3.exe+20BFFC0 - B0 01                 - mov al,01
bg3.exe+20BFFC2 - 48 8B 4C 24 38        - mov rcx,[rsp+38]
bg3.exe+20BFFC7 - 48 33 CC              - xor rcx,rsp
bg3.exe+20BFFCA - E8 01846602           - call bg3.exe+47283D0
bg3.exe+20BFFCF - 0F28 74 24 50         - movaps xmm6,[rsp+50]
bg3.exe+20BFFD4 - 0F28 7C 24 40         - movaps xmm7,[rsp+40]
bg3.exe+20BFFD9 - 48 83 C4 68           - add rsp,68
bg3.exe+20BFFDD - 5F                    - pop rdi
bg3.exe+20BFFDE - 5E                    - pop rsi
bg3.exe+20BFFDF - C3                    - ret
note, this is working for gog, v4.1.83.3931 and when I write it I see that gog wants me to update to v4.1.83.5246 so... as usual, it is possible it will shift in newer exe...

anyway, I hope I helped
Top
hahahayouredead
What is cheating?
What is cheating?
Posts: 2
Joined: Thu Oct 08, 2020 8:36 pm
Reputation: 0

Re: z Baldur's Gate 3

Post by hahahayouredead »

Is there a GoG version of this? I don't have the steam version.
Top
zachillios
Table Makers
Table Makers
Posts: 905
Joined: Fri Mar 03, 2017 9:05 am
Reputation: 760

Re: z Baldur's Gate 3

Post by zachillios »

flachan.aczache wrote:
Thu Oct 08, 2020 11:33 pm
zachillios wrote:
Thu Oct 08, 2020 10:12 pm
...
flachan.aczache wrote:
Thu Oct 08, 2020 6:28 pm

well I also found something like this.
unfortunately this works for any char (i.e. enemies), so I keep it off most of the time and only turn it on when one of my char has a turn and disable it after combat.
I was looking for infinite movement but somehow it also causes not to deplete action/spell slot during turn-based action - i.e. even without combat, when I want to cast spell (i.e. movement) I enter turn-based mode, cast a spell and go out of the mode - spell point is not depleted somehow

maybe someone could make something better out of it :D

Code: Select all

[ENABLE]

aobscanmodule(INJECT,bg3.exe,F2 0F 11 76 18) // should be unique
alloc(newmem,$1000,"bg3.exe"+20BFE3C)

label(code)
label(return)

newmem:

code:
  nop
  nop
  nop
  nop
  nop
  jmp return

INJECT:
  jmp newmem
return:
registersymbol(INJECT)

[DISABLE]

INJECT:
  db F2 0F 11 76 18

unregistersymbol(INJECT)
dealloc(newmem)
Awesome. Do you remember what the original code was for this? Would love to take a closer look at it.
i hope I don't write stupid but here's what CE selects as the whole function:
this one for dx11 version
when opcodes from [bg3_dx11.exe+20C031C] are nop'ed, game don't use movement/action/spell slot while turn-mode active

Code: Select all

bg3_dx11.exe+20C0280 - 40 56                 - push rsi
bg3_dx11.exe+20C0282 - 57                    - push rdi
bg3_dx11.exe+20C0283 - 48 83 EC 68           - sub rsp,68
bg3_dx11.exe+20C0287 - 0F29 74 24 50         - movaps [rsp+50],xmm6
bg3_dx11.exe+20C028C - 0F29 7C 24 40         - movaps [rsp+40],xmm7
bg3_dx11.exe+20C0291 - 48 8B 05 F044A103     - mov rax,[bg3_dx11.tinyxml2::XMLDocument::_errorNames+2CD8]
bg3_dx11.exe+20C0298 - 48 33 C4              - xor rax,rsp
bg3_dx11.exe+20C029B - 48 89 44 24 38        - mov [rsp+38],rax
bg3_dx11.exe+20C02A0 - 80 BC 24 A0000000 00  - cmp byte ptr [rsp+000000A0],00
bg3_dx11.exe+20C02A8 - 49 8B F9              - mov rdi,r9
bg3_dx11.exe+20C02AB - 0F28 F2               - movaps xmm6,xmm2
bg3_dx11.exe+20C02AE - 48 8B F2              - mov rsi,rdx
bg3_dx11.exe+20C02B1 - 0F57 FF               - xorps xmm7,xmm7
bg3_dx11.exe+20C02B4 - 74 43                 - je bg3_dx11.exe+20C02F9
bg3_dx11.exe+20C02B6 - F2 0F10 05 DA74CC02   - movsd xmm0,[bg3_dx11.exe+4D87798]
bg3_dx11.exe+20C02BE - 66 0F2F C2            - comisd xmm0,xmm2
bg3_dx11.exe+20C02C2 - 76 05                 - jna bg3_dx11.exe+20C02C9
bg3_dx11.exe+20C02C4 - 0F57 F6               - xorps xmm6,xmm6
bg3_dx11.exe+20C02C7 - EB 30                 - jmp bg3_dx11.exe+20C02F9
bg3_dx11.exe+20C02C9 - F2 0F10 42 20         - movsd xmm0,[rdx+20]
bg3_dx11.exe+20C02CE - 48 8D 44 24 20        - lea rax,[rsp+20]
bg3_dx11.exe+20C02D3 - 66 0F2F FA            - comisd xmm7,xmm2
bg3_dx11.exe+20C02D7 - 48 8D 54 24 28        - lea rdx,[rsp+28]
bg3_dx11.exe+20C02DC - F2 0F11 7C 24 20      - movsd [rsp+20],xmm7
bg3_dx11.exe+20C02E2 - F2 0F11 54 24 28      - movsd [rsp+28],xmm2
bg3_dx11.exe+20C02E8 - 48 0F46 C2            - cmovbe rax,rdx
bg3_dx11.exe+20C02EC - F2 0F10 30            - movsd xmm6,[rax]
bg3_dx11.exe+20C02F0 - 66 0F2F F0            - comisd xmm6,xmm0
bg3_dx11.exe+20C02F4 - 76 03                 - jna bg3_dx11.exe+20C02F9
bg3_dx11.exe+20C02F6 - 0F28 F0               - movaps xmm6,xmm0
bg3_dx11.exe+20C02F9 - 66 0F2E 76 18         - ucomisd xmm6,[rsi+18]
bg3_dx11.exe+20C02FE - 7A 09                 - jp bg3_dx11.exe+20C0309
bg3_dx11.exe+20C0300 - 75 07                 - jne bg3_dx11.exe+20C0309
bg3_dx11.exe+20C0302 - 32 C0                 - xor al,al
bg3_dx11.exe+20C0304 - E9 99010000           - jmp bg3_dx11.exe+20C04A2
bg3_dx11.exe+20C0309 - 48 89 9C 24 90000000  - mov [rsp+00000090],rbx
bg3_dx11.exe+20C0311 - 33 DB                 - xor ebx,ebx
bg3_dx11.exe+20C0313 - 48 89 6C 24 60        - mov [rsp+60],rbp
bg3_dx11.exe+20C0318 - 48 8B 69 10           - mov rbp,[rcx+10]
bg3_dx11.exe+20C031C - F2 0F11 76 18         - movsd [rsi+18],xmm6
bg3_dx11.exe+20C0321 - 39 5D 78              - cmp [rbp+78],ebx
bg3_dx11.exe+20C0324 - 74 3E                 - je bg3_dx11.exe+20C0364
bg3_dx11.exe+20C0326 - 48 8B CE              - mov rcx,rsi
bg3_dx11.exe+20C0329 - E8 9259C701           - call bg3_dx11.exe+3D35CC0
bg3_dx11.exe+20C032E - 48 63 4D 78           - movsxd  rcx,dword ptr [rbp+78]
bg3_dx11.exe+20C0332 - 33 D2                 - xor edx,edx
bg3_dx11.exe+20C0334 - 48 F7 F1              - div rcx
bg3_dx11.exe+20C0337 - 4C 8B C6              - mov r8,rsi
bg3_dx11.exe+20C033A - 48 8D 4D 68           - lea rcx,[rbp+68]
bg3_dx11.exe+20C033E - E8 3D2410FF           - call bg3_dx11.exe+11C2780
bg3_dx11.exe+20C0343 - 83 F8 FF              - cmp eax,-01
bg3_dx11.exe+20C0346 - 74 1C                 - je bg3_dx11.exe+20C0364
bg3_dx11.exe+20C0348 - 48 98                 - cdqe 
bg3_dx11.exe+20C034A - 0F57 C0               - xorps xmm0,xmm0
bg3_dx11.exe+20C034D - 4C 6B D0 38           - imul r10,rax,38
bg3_dx11.exe+20C0351 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3_dx11.exe+20C0356 - 4C 03 95 B0000000     - add r10,[rbp+000000B0]
bg3_dx11.exe+20C035D - 4C 89 54 24 28        - mov [rsp+28],r10
bg3_dx11.exe+20C0362 - EB 17                 - jmp bg3_dx11.exe+20C037B
bg3_dx11.exe+20C0364 - 0F57 C0               - xorps xmm0,xmm0
bg3_dx11.exe+20C0367 - 33 C0                 - xor eax,eax
bg3_dx11.exe+20C0369 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3_dx11.exe+20C036E - C6 44 24 30 01        - mov byte ptr [rsp+30],01
bg3_dx11.exe+20C0373 - 4C 8B D3              - mov r10,rbx
bg3_dx11.exe+20C0376 - 66 89 44 24 28        - mov [rsp+28],ax
bg3_dx11.exe+20C037B - 41 80 7A 2C 08        - cmp byte ptr [r10+2C],08
bg3_dx11.exe+20C0380 - 48 8B 6C 24 60        - mov rbp,[rsp+60]
bg3_dx11.exe+20C0385 - 0F84 0D010000         - je bg3_dx11.exe+20C0498
bg3_dx11.exe+20C038B - 4C 8D 46 28           - lea r8,[rsi+28]
bg3_dx11.exe+20C038F - 38 5F 70              - cmp [rdi+70],bl
bg3_dx11.exe+20C0392 - 74 3D                 - je bg3_dx11.exe+20C03D1
bg3_dx11.exe+20C0394 - 0F10 07               - movups xmm0,[rdi]
bg3_dx11.exe+20C0397 - 41 0F11 00            - movups [r8],xmm0
bg3_dx11.exe+20C039B - 0F10 4F 10            - movups xmm1,[rdi+10]
bg3_dx11.exe+20C039F - 41 0F11 48 10         - movups [r8+10],xmm1
bg3_dx11.exe+20C03A4 - 0F10 47 20            - movups xmm0,[rdi+20]
bg3_dx11.exe+20C03A8 - 41 0F11 40 20         - movups [r8+20],xmm0
bg3_dx11.exe+20C03AD - 0F10 4F 30            - movups xmm1,[rdi+30]
bg3_dx11.exe+20C03B1 - 41 0F11 48 30         - movups [r8+30],xmm1
bg3_dx11.exe+20C03B6 - 0F10 47 40            - movups xmm0,[rdi+40]
bg3_dx11.exe+20C03BA - 41 0F11 40 40         - movups [r8+40],xmm0
bg3_dx11.exe+20C03BF - 0F10 4F 50            - movups xmm1,[rdi+50]
bg3_dx11.exe+20C03C3 - 41 0F11 48 50         - movups [r8+50],xmm1
bg3_dx11.exe+20C03C8 - 0F10 47 60            - movups xmm0,[rdi+60]
bg3_dx11.exe+20C03CC - 41 0F11 40 60         - movups [r8+60],xmm0
bg3_dx11.exe+20C03D1 - 8B D3                 - mov edx,ebx
bg3_dx11.exe+20C03D3 - 48 8B C3              - mov rax,rbx
bg3_dx11.exe+20C03D6 - 49 8B C8              - mov rcx,r8
bg3_dx11.exe+20C03D9 - 0F1F 80 00000000      - nop dword ptr [rax+00000000]
bg3_dx11.exe+20C03E0 - F2 0F5C 31            - subsd xmm6,[rcx]
bg3_dx11.exe+20C03E4 - 44 8B CA              - mov r9d,edx
bg3_dx11.exe+20C03E7 - FF C2                 - inc edx
bg3_dx11.exe+20C03E9 - 66 0F2F FE            - comisd xmm7,xmm6
bg3_dx11.exe+20C03ED - 77 0F                 - ja bg3_dx11.exe+20C03FE
bg3_dx11.exe+20C03EF - 48 FF C0              - inc rax
bg3_dx11.exe+20C03F2 - 48 83 C1 10           - add rcx,10
bg3_dx11.exe+20C03F6 - 48 83 F8 07           - cmp rax,07
bg3_dx11.exe+20C03FA - 7C E4                 - jl bg3_dx11.exe+20C03E0
bg3_dx11.exe+20C03FC - EB 15                 - jmp bg3_dx11.exe+20C0413
bg3_dx11.exe+20C03FE - 49 8B C1              - mov rax,r9
bg3_dx11.exe+20C0401 - 0F28 C6               - movaps xmm0,xmm6
bg3_dx11.exe+20C0404 - 48 03 C0              - add rax,rax
bg3_dx11.exe+20C0407 - F2 41 0F58 04 C0      - addsd xmm0,[r8+rax*8]
bg3_dx11.exe+20C040D - F2 41 0F11 04 C0      - movsd [r8+rax*8],xmm0
bg3_dx11.exe+20C0413 - 4C 63 CA              - movsxd  r9,edx
bg3_dx11.exe+20C0416 - 49 83 F9 07           - cmp r9,07
bg3_dx11.exe+20C041A - 7D 21                 - jnl bg3_dx11.exe+20C043D
bg3_dx11.exe+20C041C - 49 8B C1              - mov rax,r9
bg3_dx11.exe+20C041F - B9 07000000           - mov ecx,00000007
bg3_dx11.exe+20C0424 - 48 C1 E0 04           - shl rax,04
bg3_dx11.exe+20C0428 - 49 03 C0              - add rax,r8
bg3_dx11.exe+20C042B - 49 2B C9              - sub rcx,r9
bg3_dx11.exe+20C042E - 66 90                 - nop 2
bg3_dx11.exe+20C0430 - 48 89 18              - mov [rax],rbx
bg3_dx11.exe+20C0433 - 48 8D 40 10           - lea rax,[rax+10]
bg3_dx11.exe+20C0437 - 48 83 E9 01           - sub rcx,01
bg3_dx11.exe+20C043B - 75 F3                 - jne bg3_dx11.exe+20C0430
bg3_dx11.exe+20C043D - 66 0F2F F7            - comisd xmm6,xmm7
bg3_dx11.exe+20C0441 - 76 55                 - jna bg3_dx11.exe+20C0498
bg3_dx11.exe+20C0443 - 41 0FB6 52 2C         - movzx edx,byte ptr [r10+2C]
bg3_dx11.exe+20C0448 - 49 8B C8              - mov rcx,r8
bg3_dx11.exe+20C044B - 0F1F 44 00 00         - nop dword ptr [rax+rax+00]
bg3_dx11.exe+20C0450 - F2 0F10 09            - movsd xmm1,[rcx]
bg3_dx11.exe+20C0454 - F2 0F10 41 08         - movsd xmm0,[rcx+08]
bg3_dx11.exe+20C0459 - F2 0F5C C1            - subsd xmm0,xmm1
bg3_dx11.exe+20C045D - F2 0F5D C6            - minsd xmm0,xmm6
bg3_dx11.exe+20C0461 - 66 0F2F C7            - comisd xmm0,xmm7
bg3_dx11.exe+20C0465 - 76 12                 - jna bg3_dx11.exe+20C0479
bg3_dx11.exe+20C0467 - F2 0F5C F0            - subsd xmm6,xmm0
bg3_dx11.exe+20C046B - F2 0F58 C8            - addsd xmm1,xmm0
bg3_dx11.exe+20C046F - 66 0F2F FE            - comisd xmm7,xmm6
bg3_dx11.exe+20C0473 - F2 0F11 09            - movsd [rcx],xmm1
bg3_dx11.exe+20C0477 - 73 0D                 - jae bg3_dx11.exe+20C0486
bg3_dx11.exe+20C0479 - 48 FF C3              - inc rbx
bg3_dx11.exe+20C047C - 48 83 C1 10           - add rcx,10
bg3_dx11.exe+20C0480 - 48 83 FB 07           - cmp rbx,07
bg3_dx11.exe+20C0484 - 7C CA                 - jl bg3_dx11.exe+20C0450
bg3_dx11.exe+20C0486 - 48 8B CA              - mov rcx,rdx
bg3_dx11.exe+20C0489 - 48 03 C9              - add rcx,rcx
bg3_dx11.exe+20C048C - F2 41 0F58 34 C8      - addsd xmm6,[r8+rcx*8]
bg3_dx11.exe+20C0492 - F2 41 0F11 34 C8      - movsd [r8+rcx*8],xmm6
bg3_dx11.exe+20C0498 - 48 8B 9C 24 90000000  - mov rbx,[rsp+00000090]
bg3_dx11.exe+20C04A0 - B0 01                 - mov al,01
bg3_dx11.exe+20C04A2 - 48 8B 4C 24 38        - mov rcx,[rsp+38]
bg3_dx11.exe+20C04A7 - 48 33 CC              - xor rcx,rsp
bg3_dx11.exe+20C04AA - E8 D1A96702           - call bg3_dx11.exe+473AE80
bg3_dx11.exe+20C04AF - 0F28 74 24 50         - movaps xmm6,[rsp+50]
bg3_dx11.exe+20C04B4 - 0F28 7C 24 40         - movaps xmm7,[rsp+40]
bg3_dx11.exe+20C04B9 - 48 83 C4 68           - add rsp,68
bg3_dx11.exe+20C04BD - 5F                    - pop rdi
bg3_dx11.exe+20C04BE - 5E                    - pop rsi
bg3_dx11.exe+20C04BF - C3                    - ret
and for vulcan
bg3.exe+20BFE3C

Code: Select all

bg3.exe+20BFDA0 - 40 56                 - push rsi
bg3.exe+20BFDA2 - 57                    - push rdi
bg3.exe+20BFDA3 - 48 83 EC 68           - sub rsp,68
bg3.exe+20BFDA7 - 0F29 74 24 50         - movaps [rsp+50],xmm6
bg3.exe+20BFDAC - 0F29 7C 24 40         - movaps [rsp+40],xmm7
bg3.exe+20BFDB1 - 48 8B 05 A0A09E03     - mov rax,[bg3.tinyxml2::XMLDocument::_errorNames+2CD8]
bg3.exe+20BFDB8 - 48 33 C4              - xor rax,rsp
bg3.exe+20BFDBB - 48 89 44 24 38        - mov [rsp+38],rax
bg3.exe+20BFDC0 - 80 BC 24 A0000000 00  - cmp byte ptr [rsp+000000A0],00
bg3.exe+20BFDC8 - 49 8B F9              - mov rdi,r9
bg3.exe+20BFDCB - 0F28 F2               - movaps xmm6,xmm2
bg3.exe+20BFDCE - 48 8B F2              - mov rsi,rdx
bg3.exe+20BFDD1 - 0F57 FF               - xorps xmm7,xmm7
bg3.exe+20BFDD4 - 74 43                 - je bg3.exe+20BFE19
bg3.exe+20BFDD6 - F2 0F10 05 FA59CB02   - movsd xmm0,[bg3.exe+4D757D8]
bg3.exe+20BFDDE - 66 0F2F C2            - comisd xmm0,xmm2
bg3.exe+20BFDE2 - 76 05                 - jna bg3.exe+20BFDE9
bg3.exe+20BFDE4 - 0F57 F6               - xorps xmm6,xmm6
bg3.exe+20BFDE7 - EB 30                 - jmp bg3.exe+20BFE19
bg3.exe+20BFDE9 - F2 0F10 42 20         - movsd xmm0,[rdx+20]
bg3.exe+20BFDEE - 48 8D 44 24 20        - lea rax,[rsp+20]
bg3.exe+20BFDF3 - 66 0F2F FA            - comisd xmm7,xmm2
bg3.exe+20BFDF7 - 48 8D 54 24 28        - lea rdx,[rsp+28]
bg3.exe+20BFDFC - F2 0F11 7C 24 20      - movsd [rsp+20],xmm7
bg3.exe+20BFE02 - F2 0F11 54 24 28      - movsd [rsp+28],xmm2
bg3.exe+20BFE08 - 48 0F46 C2            - cmovbe rax,rdx
bg3.exe+20BFE0C - F2 0F10 30            - movsd xmm6,[rax]
bg3.exe+20BFE10 - 66 0F2F F0            - comisd xmm6,xmm0
bg3.exe+20BFE14 - 76 03                 - jna bg3.exe+20BFE19
bg3.exe+20BFE16 - 0F28 F0               - movaps xmm6,xmm0
bg3.exe+20BFE19 - 66 0F2E 76 18         - ucomisd xmm6,[rsi+18]
bg3.exe+20BFE1E - 7A 09                 - jp bg3.exe+20BFE29
bg3.exe+20BFE20 - 75 07                 - jne bg3.exe+20BFE29
bg3.exe+20BFE22 - 32 C0                 - xor al,al
bg3.exe+20BFE24 - E9 99010000           - jmp bg3.exe+20BFFC2
bg3.exe+20BFE29 - 48 89 9C 24 90000000  - mov [rsp+00000090],rbx
bg3.exe+20BFE31 - 33 DB                 - xor ebx,ebx
bg3.exe+20BFE33 - 48 89 6C 24 60        - mov [rsp+60],rbp
bg3.exe+20BFE38 - 48 8B 69 10           - mov rbp,[rcx+10]
bg3.exe+20BFE3C - F2 0F11 76 18         - movsd [rsi+18],xmm6
bg3.exe+20BFE41 - 39 5D 78              - cmp [rbp+78],ebx
bg3.exe+20BFE44 - 74 3E                 - je bg3.exe+20BFE84
bg3.exe+20BFE46 - 48 8B CE              - mov rcx,rsi
bg3.exe+20BFE49 - E8 12FAC501           - call bg3.exe+3D1F860
bg3.exe+20BFE4E - 48 63 4D 78           - movsxd  rcx,dword ptr [rbp+78]
bg3.exe+20BFE52 - 33 D2                 - xor edx,edx
bg3.exe+20BFE54 - 48 F7 F1              - div rcx
bg3.exe+20BFE57 - 4C 8B C6              - mov r8,rsi
bg3.exe+20BFE5A - 48 8D 4D 68           - lea rcx,[rbp+68]
bg3.exe+20BFE5E - E8 1D1B10FF           - call bg3.exe+11C1980
bg3.exe+20BFE63 - 83 F8 FF              - cmp eax,-01
bg3.exe+20BFE66 - 74 1C                 - je bg3.exe+20BFE84
bg3.exe+20BFE68 - 48 98                 - cdqe 
bg3.exe+20BFE6A - 0F57 C0               - xorps xmm0,xmm0
bg3.exe+20BFE6D - 4C 6B D0 38           - imul r10,rax,38
bg3.exe+20BFE71 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3.exe+20BFE76 - 4C 03 95 B0000000     - add r10,[rbp+000000B0]
bg3.exe+20BFE7D - 4C 89 54 24 28        - mov [rsp+28],r10
bg3.exe+20BFE82 - EB 17                 - jmp bg3.exe+20BFE9B
bg3.exe+20BFE84 - 0F57 C0               - xorps xmm0,xmm0
bg3.exe+20BFE87 - 33 C0                 - xor eax,eax
bg3.exe+20BFE89 - 0F11 44 24 28         - movups [rsp+28],xmm0
bg3.exe+20BFE8E - C6 44 24 30 01        - mov byte ptr [rsp+30],01
bg3.exe+20BFE93 - 4C 8B D3              - mov r10,rbx
bg3.exe+20BFE96 - 66 89 44 24 28        - mov [rsp+28],ax
bg3.exe+20BFE9B - 41 80 7A 2C 08        - cmp byte ptr [r10+2C],08
bg3.exe+20BFEA0 - 48 8B 6C 24 60        - mov rbp,[rsp+60]
bg3.exe+20BFEA5 - 0F84 0D010000         - je bg3.exe+20BFFB8
bg3.exe+20BFEAB - 4C 8D 46 28           - lea r8,[rsi+28]
bg3.exe+20BFEAF - 38 5F 70              - cmp [rdi+70],bl
bg3.exe+20BFEB2 - 74 3D                 - je bg3.exe+20BFEF1
bg3.exe+20BFEB4 - 0F10 07               - movups xmm0,[rdi]
bg3.exe+20BFEB7 - 41 0F11 00            - movups [r8],xmm0
bg3.exe+20BFEBB - 0F10 4F 10            - movups xmm1,[rdi+10]
bg3.exe+20BFEBF - 41 0F11 48 10         - movups [r8+10],xmm1
bg3.exe+20BFEC4 - 0F10 47 20            - movups xmm0,[rdi+20]
bg3.exe+20BFEC8 - 41 0F11 40 20         - movups [r8+20],xmm0
bg3.exe+20BFECD - 0F10 4F 30            - movups xmm1,[rdi+30]
bg3.exe+20BFED1 - 41 0F11 48 30         - movups [r8+30],xmm1
bg3.exe+20BFED6 - 0F10 47 40            - movups xmm0,[rdi+40]
bg3.exe+20BFEDA - 41 0F11 40 40         - movups [r8+40],xmm0
bg3.exe+20BFEDF - 0F10 4F 50            - movups xmm1,[rdi+50]
bg3.exe+20BFEE3 - 41 0F11 48 50         - movups [r8+50],xmm1
bg3.exe+20BFEE8 - 0F10 47 60            - movups xmm0,[rdi+60]
bg3.exe+20BFEEC - 41 0F11 40 60         - movups [r8+60],xmm0
bg3.exe+20BFEF1 - 8B D3                 - mov edx,ebx
bg3.exe+20BFEF3 - 48 8B C3              - mov rax,rbx
bg3.exe+20BFEF6 - 49 8B C8              - mov rcx,r8
bg3.exe+20BFEF9 - 0F1F 80 00000000      - nop dword ptr [rax+00000000]
bg3.exe+20BFF00 - F2 0F5C 31            - subsd xmm6,[rcx]
bg3.exe+20BFF04 - 44 8B CA              - mov r9d,edx
bg3.exe+20BFF07 - FF C2                 - inc edx
bg3.exe+20BFF09 - 66 0F2F FE            - comisd xmm7,xmm6
bg3.exe+20BFF0D - 77 0F                 - ja bg3.exe+20BFF1E
bg3.exe+20BFF0F - 48 FF C0              - inc rax
bg3.exe+20BFF12 - 48 83 C1 10           - add rcx,10
bg3.exe+20BFF16 - 48 83 F8 07           - cmp rax,07
bg3.exe+20BFF1A - 7C E4                 - jl bg3.exe+20BFF00
bg3.exe+20BFF1C - EB 15                 - jmp bg3.exe+20BFF33
bg3.exe+20BFF1E - 49 8B C1              - mov rax,r9
bg3.exe+20BFF21 - 0F28 C6               - movaps xmm0,xmm6
bg3.exe+20BFF24 - 48 03 C0              - add rax,rax
bg3.exe+20BFF27 - F2 41 0F58 04 C0      - addsd xmm0,[r8+rax*8]
bg3.exe+20BFF2D - F2 41 0F11 04 C0      - movsd [r8+rax*8],xmm0
bg3.exe+20BFF33 - 4C 63 CA              - movsxd  r9,edx
bg3.exe+20BFF36 - 49 83 F9 07           - cmp r9,07
bg3.exe+20BFF3A - 7D 21                 - jnl bg3.exe+20BFF5D
bg3.exe+20BFF3C - 49 8B C1              - mov rax,r9
bg3.exe+20BFF3F - B9 07000000           - mov ecx,00000007
bg3.exe+20BFF44 - 48 C1 E0 04           - shl rax,04
bg3.exe+20BFF48 - 49 03 C0              - add rax,r8
bg3.exe+20BFF4B - 49 2B C9              - sub rcx,r9
bg3.exe+20BFF4E - 66 90                 - nop 2
bg3.exe+20BFF50 - 48 89 18              - mov [rax],rbx
bg3.exe+20BFF53 - 48 8D 40 10           - lea rax,[rax+10]
bg3.exe+20BFF57 - 48 83 E9 01           - sub rcx,01
bg3.exe+20BFF5B - 75 F3                 - jne bg3.exe+20BFF50
bg3.exe+20BFF5D - 66 0F2F F7            - comisd xmm6,xmm7
bg3.exe+20BFF61 - 76 55                 - jna bg3.exe+20BFFB8
bg3.exe+20BFF63 - 41 0FB6 52 2C         - movzx edx,byte ptr [r10+2C]
bg3.exe+20BFF68 - 49 8B C8              - mov rcx,r8
bg3.exe+20BFF6B - 0F1F 44 00 00         - nop dword ptr [rax+rax+00]
bg3.exe+20BFF70 - F2 0F10 09            - movsd xmm1,[rcx]
bg3.exe+20BFF74 - F2 0F10 41 08         - movsd xmm0,[rcx+08]
bg3.exe+20BFF79 - F2 0F5C C1            - subsd xmm0,xmm1
bg3.exe+20BFF7D - F2 0F5D C6            - minsd xmm0,xmm6
bg3.exe+20BFF81 - 66 0F2F C7            - comisd xmm0,xmm7
bg3.exe+20BFF85 - 76 12                 - jna bg3.exe+20BFF99
bg3.exe+20BFF87 - F2 0F5C F0            - subsd xmm6,xmm0
bg3.exe+20BFF8B - F2 0F58 C8            - addsd xmm1,xmm0
bg3.exe+20BFF8F - 66 0F2F FE            - comisd xmm7,xmm6
bg3.exe+20BFF93 - F2 0F11 09            - movsd [rcx],xmm1
bg3.exe+20BFF97 - 73 0D                 - jae bg3.exe+20BFFA6
bg3.exe+20BFF99 - 48 FF C3              - inc rbx
bg3.exe+20BFF9C - 48 83 C1 10           - add rcx,10
bg3.exe+20BFFA0 - 48 83 FB 07           - cmp rbx,07
bg3.exe+20BFFA4 - 7C CA                 - jl bg3.exe+20BFF70
bg3.exe+20BFFA6 - 48 8B CA              - mov rcx,rdx
bg3.exe+20BFFA9 - 48 03 C9              - add rcx,rcx
bg3.exe+20BFFAC - F2 41 0F58 34 C8      - addsd xmm6,[r8+rcx*8]
bg3.exe+20BFFB2 - F2 41 0F11 34 C8      - movsd [r8+rcx*8],xmm6
bg3.exe+20BFFB8 - 48 8B 9C 24 90000000  - mov rbx,[rsp+00000090]
bg3.exe+20BFFC0 - B0 01                 - mov al,01
bg3.exe+20BFFC2 - 48 8B 4C 24 38        - mov rcx,[rsp+38]
bg3.exe+20BFFC7 - 48 33 CC              - xor rcx,rsp
bg3.exe+20BFFCA - E8 01846602           - call bg3.exe+47283D0
bg3.exe+20BFFCF - 0F28 74 24 50         - movaps xmm6,[rsp+50]
bg3.exe+20BFFD4 - 0F28 7C 24 40         - movaps xmm7,[rsp+40]
bg3.exe+20BFFD9 - 48 83 C4 68           - add rsp,68
bg3.exe+20BFFDD - 5F                    - pop rdi
bg3.exe+20BFFDE - 5E                    - pop rsi
bg3.exe+20BFFDF - C3                    - ret
note, this is working for gog, v4.1.83.3931 and when I write it I see that gog wants me to update to v4.1.83.5246 so... as usual, it is possible it will shift in newer exe...

anyway, I hope I helped
Thank you for this. So taking a look at it and you're right, that same instruction is writing movement, spell charges, and action points. I'm curious if we could trace it and try to find purely the spell charges, but for now, what you posted is working perfectly.
Top
User avatar
TemptingIcarus
Expert Cheater
Expert Cheater
Posts: 412
Joined: Thu Aug 16, 2018 11:32 pm
Reputation: 54

Re: z Baldur's Gate 3

Post by TemptingIcarus »

Oh I had an idea, the ability to re-use spells without needing to rest would be nice. I find that to be a little bit of a damper on gameplay when I can only use spells once a day.
Top
Acleacius
Expert Cheater
Expert Cheater
Posts: 155
Joined: Mon May 29, 2017 7:18 pm
Reputation: 11

Re: z Baldur's Gate 3

Post by Acleacius »

Sorry Zanzer, they've got me on a short leash, can't give you another upvote for the update, yet. ;)
Top
User avatar
bloodsucker
Expert Cheater
Expert Cheater
Posts: 221
Joined: Tue Mar 14, 2017 1:08 am
Reputation: 25

Re: z Baldur's Gate 3

Post by bloodsucker »

TemptingIcarus wrote:
Thu Oct 08, 2020 6:21 pm
 Image
no silly you do it all wrong.

hold "Ctrl+Alt+A" then paste the script after that on the menu bar File > Assign to current table.

the error comes up because you haven't attached the game and table, so obvious duh.
Top
Zanzer
RCE Fanatics
RCE Fanatics
Posts: 1131
Joined: Fri Mar 03, 2017 10:48 pm
Reputation: 3801

Re: z Baldur's Gate 3

Post by Zanzer »

Added Ignore Action/Spell Costs

Haven't tested it in real combat yet.
Don't know if it effects enemies.
Top
hahahayouredead
What is cheating?
What is cheating?
Posts: 2
Joined: Thu Oct 08, 2020 8:36 pm
Reputation: 0

Re: z Baldur's Gate 3

Post by hahahayouredead »

Is there a GOG version?
Top
User avatar
TemptingIcarus
Expert Cheater
Expert Cheater
Posts: 412
Joined: Thu Aug 16, 2018 11:32 pm
Reputation: 54

Re: z Baldur's Gate 3

Post by TemptingIcarus »

hahahayouredead wrote:
Fri Oct 09, 2020 2:46 am
 Is there a GOG version?
I'm using GOG and these work just fine for me.
Top
shuiko
Expert Cheater
Expert Cheater
Posts: 78
Joined: Tue Feb 13, 2018 8:21 am
Reputation: 0

Re: z Baldur's Gate 3

Post by shuiko »

Zanzer wrote:
Fri Oct 09, 2020 2:43 am
 Added Ignore Action/Spell Costs

Haven't tested it in real combat yet.
Don't know if it effects enemies.
Works, but also gives enemies infinite shoot actions. now health and win rolls doesn't work. weird. I'll try again later thanks anyway!
Top
User avatar
TemptingIcarus
Expert Cheater
Expert Cheater
Posts: 412
Joined: Thu Aug 16, 2018 11:32 pm
Reputation: 54

Re: z Baldur's Gate 3

Post by TemptingIcarus »

shuiko wrote:
Fri Oct 09, 2020 4:24 am
Zanzer wrote:
Fri Oct 09, 2020 2:43 am
 Added Ignore Action/Spell Costs

Haven't tested it in real combat yet.
Don't know if it effects enemies.
Works, but also gives enemies infinite shoot actions. now health and win rolls doesn't work. weird. I'll try again later thanks anyway!
Can confirm. Gives enemies an infinite amount of actions against you. Lmao.
Top
Post Reply

Return to “Tables”

Who is online

Users browsing this forum: Animull84, DieterA, Google Adsense [Bot], Maccad101, rnd, ShadowRyku