Witcher 3 Complete Edition / GOTY 4.03 (v2)

[SoulOfSorin]

. <= Tactical dot to be informed when a 4.04 version will be released

How to use this cheat table?

1. Install Cheat Engine
2. Double-click the .CT file in order to open it.
3. Click the PC icon in Cheat Engine in order to select the game process.
4. Keep the list.
5. Activate the trainer options by checking boxes or setting values from 0 to 1

[relentlesstech]

has anone managed to use xp multiplier cuase its the only one that crashes the game and the only one i wanted to use

This will fix the XP script for v4.04, just copy/paste this over original script

Code: Select all

[ENABLE]
aobscanmodule(playeR_crfour_player,witcher3.exe,45 33 C9 89 44 24 68 48 8B 01)
alloc(newmem,$200,playeR_crfour_player)

label(code)
label(xp_ptr)
label(cmp_xp)
label(upgradepoints)
label(CCharacterStats_area_ptr)
label(try_the_next)
label(try_next_offset)
label(read_playeR_crfour_player)


registersymbol(xp_ptr)
registersymbol(cmp_xp)
registersymbol(upgradepoints)
registersymbol(CCharacterStats_area_ptr)
registersymbol(read_playeR_crfour_player)

newmem:
  push rdx
  push rdi
  push r8
  mov rdx,rcx
  test rdx,rdx
  jz code
  mov [CCharacterStats_area_ptr],rdx                //cr4Player

  mov rdx,[rdx+1C0]
  test rdx,rdx
  jz code
  mov rdx,[rdx+40]
  test rdx,rdx
  jz code
  mov rdx,[rdx+40]
  test rdx,rdx
  jz code
  mov rdx,[rdx+8]
  test rdx,rdx
  jz code

  cmp dword ptr [rdx+18],0
  jle try_next_offset
  cmp dword ptr [rdx+18],10000000
  jg try_next_offset

  lea rdi,[rdx+18]
  mov [xp_ptr],rdi
  mov r8,rdi
  sub r8,8
  mov [upgradepoints],r8
  jmp code

try_next_offset:
  cmp [rdx+24],0
  jle try_the_next
  cmp dword ptr [rdx+24],10000000
  jg try_the_next

  lea rdi,[rdx+24]
  mov [xp_ptr],rdi
  mov r8,rdi
  sub r8,8
  mov [upgradepoints],r8

try_the_next:
  cmp [rdx+28],0
  jle code
  cmp dword ptr [rdx+28],10000000
  jg code

  lea rdi,[rdx+28]
  mov [xp_ptr],rdi
  mov r8,rdi
  sub r8,8
  mov [upgradepoints],r8

code:
  mov r8,[xp_ptr]
  mov [cmp_xp],r8
  pop r8
  pop rdx
  pop rdi
  mov [rsp+68],eax
  mov rax,[rcx]
  jmp return

read_playeR_crfour_player:
  readmem(playeR_crfour_player,7)

align 10,cc

xp_ptr:
 dq 0

align 10,cc

CCharacterStats_area_ptr:
  dq 0

align 10,cc

upgradepoints:
  dq 0

cmp_xp:
 dq 0

playeR_crfour_player+03:
  jmp newmem
  nop 2
return:
registersymbol(playeR_crfour_player)

[DISABLE]

playeR_crfour_player+03:
  db 89 44 24 68 48 8B 01

unregistersymbol(*)
dealloc(*)

[vamp07]

has anone managed to use xp multiplier cuase its the only one that crashes the game and the only one i wanted to use

This will fix the XP script for v4.04, just copy/paste this over original script

Code: Select all

[ENABLE]
aobscanmodule(playeR_crfour_player,witcher3.exe,45 33 C9 89 44 24 68 48 8B 01)
alloc(newmem,$200,playeR_crfour_player)

label(code)
label(xp_ptr)
label(cmp_xp)
label(upgradepoints)
label(CCharacterStats_area_ptr)
label(try_the_next)
label(try_next_offset)
label(read_playeR_crfour_player)


registersymbol(xp_ptr)
registersymbol(cmp_xp)
registersymbol(upgradepoints)
registersymbol(CCharacterStats_area_ptr)
registersymbol(read_playeR_crfour_player)

newmem:
  push rdx
  push rdi
  push r8
  mov rdx,rcx
  test rdx,rdx
  jz code
  mov [CCharacterStats_area_ptr],rdx                //cr4Player

  mov rdx,[rdx+1C0]
  test rdx,rdx
  jz code
  mov rdx,[rdx+40]
  test rdx,rdx
  jz code
  mov rdx,[rdx+40]
  test rdx,rdx
  jz code
  mov rdx,[rdx+8]
  test rdx,rdx
  jz code

  cmp dword ptr [rdx+18],0
  jle try_next_offset
  cmp dword ptr [rdx+18],10000000
  jg try_next_offset

  lea rdi,[rdx+18]
  mov [xp_ptr],rdi
  mov r8,rdi
  sub r8,8
  mov [upgradepoints],r8
  jmp code

try_next_offset:
  cmp [rdx+24],0
  jle try_the_next
  cmp dword ptr [rdx+24],10000000
  jg try_the_next

  lea rdi,[rdx+24]
  mov [xp_ptr],rdi
  mov r8,rdi
  sub r8,8
  mov [upgradepoints],r8

try_the_next:
  cmp [rdx+28],0
  jle code
  cmp dword ptr [rdx+28],10000000
  jg code

  lea rdi,[rdx+28]
  mov [xp_ptr],rdi
  mov r8,rdi
  sub r8,8
  mov [upgradepoints],r8

code:
  mov r8,[xp_ptr]
  mov [cmp_xp],r8
  pop r8
  pop rdx
  pop rdi
  mov [rsp+68],eax
  mov rax,[rcx]
  jmp return

read_playeR_crfour_player:
  readmem(playeR_crfour_player,7)

align 10,cc

xp_ptr:
 dq 0

align 10,cc

CCharacterStats_area_ptr:
  dq 0

align 10,cc

upgradepoints:
  dq 0

cmp_xp:
 dq 0

playeR_crfour_player+03:
  jmp newmem
  nop 2
return:
registersymbol(playeR_crfour_player)

[DISABLE]

playeR_crfour_player+03:
  db 89 44 24 68 48 8B 01

unregistersymbol(*)
dealloc(*)

hi, could you please update the table to 4.04?? mine didnt work out tho...

[vamp07]

please anyone, update it to 4.04 please... (

[Vorp]

update for 4.04 please/thank you

[NecroRoadKill]

update for 4.04

[Sumber]

Thanks for the table! Could you also please add the option to make the player invisible, so that no enemies can detect you?

[iMail]

hello,

is there a chance to adapt the script to 4.04? for Steam?

[Bhaya]

Could anybody update it to 4.04, please?

[NeoDio40]

Update please Thanks in advance!

[Dusso]

Please update to 4.04

[solidart]

please update to the latest release. Thanks in advance ....