531
"Screenshotting Table"
3D7C40
1
21
"Money"
9A281F
4 Bytes
Bayonetta.exe+565F344
499
"Infinite Health by fantomas - F11"
C73D58
1
252
"Invincibility "
1B3DB4
Auto Assembler Script
//by fantomas
[ENABLE]
aobscanmodule(aobHealth,Bayonetta.exe,89 86 08 35 09 00 85)
alloc(newmem,$1000)
label(code)
label(return)
newmem:
mov [esi+00093508],#99999
jmp return
code:
mov [esi+00093508],eax
jmp return
aobHealth:
jmp newmem
nop
return:
registersymbol(aobHealth)
[DISABLE]
aobHealth:
db 89 86 08 35 09 00
unregistersymbol(aobHealth)
dealloc(newmem)
Toggle Activation
122
0
{MRDescription} Activated
{MRDescription} Deactivated
530
"Freecam - F1"
3539CE
1
257
"Free cam "
3225CF
Auto Assembler Script
[ENABLE]
// X
aobscanmodule(camkilla,Bayonetta.exe,F3 0F 58 54 24 28 F3 0F 11 86 B0 01 00 00 F3 0F 10 44 24 2C) // should be unique
alloc(newmema,$1000)
label(codea)
label(returna)
label(camcoord)
registersymbol(camcoord)
// Y
aobscanmodule(camkillb,Bayonetta.exe,C0 F3 0F 11 8E B4 01 00 00) // should be unique
alloc(newmemb,$1000)
label(codeb)
label(returnb)
// Z
aobscanmodule(camkillc,Bayonetta.exe,F3 0F 11 96 B8 01 00 00 83) // should be unique
alloc(newmemc,$1000)
label(codec)
label(returnc)
// Pitch
alloc(newmemd,1000)
label(returnhered)
label(originalcoded)
label(exitd)
// Jaw
alloc(newmeme,1000)
label(returnheree)
label(originalcodee)
label(exite)
//
// CODE
// X
newmema:
mov [camcoord],esi
codea:
//movss [esi+000001B0],xmm0
jmp returna
camcoord:
dd 0
camkilla+6:
jmp newmema
nop
nop
nop
returna:
registersymbol(camkilla)
//
// Y
newmemb:
codeb:
// movss [esi+000001B4],xmm1
jmp returnb
camkillb+01:
jmp newmemb
nop
nop
nop
returnb:
registersymbol(camkillb)
//
// Z
newmemc:
codec:
// movss [esi+000001B8],xmm2
jmp returnc
camkillc:
jmp newmemc
nop
nop
nop
returnc:
registersymbol(camkillc)
//
// Pitch
newmemd: //this is allocated memory, you have read,write,execute access
//place your code here
originalcoded:
//movss [esi+000001C0],xmm0
exitd:
jmp returnhered
"Bayonetta.exe"+68C7C7:
jmp newmemd
nop
nop
nop
returnhered:
//
// Jaw
newmeme: //this is allocated memory, you have read,write,execute access
//place your code here
originalcodee:
//movss [esi+000001C4],xmm1
exite:
jmp returnheree
"Bayonetta.exe"+68C7D5:
jmp newmeme
nop
nop
nop
returnheree:
//
[DISABLE]
// X
camkilla:
db F3 0F 58 54 24 28 F3 0F 11 86 B0 01 00 00 F3 0F 10 44 24 2C
unregistersymbol(camkilla)
unregistersymbol(camcoord)
dealloc(newmema)
//
// Y
camkillb+01:
db F3 0F 11 8E B4 01 00 00
unregistersymbol(camkillb)
dealloc(newmemb)
//
// Z
camkillc:
db F3 0F 11 96 B8 01 00 00
unregistersymbol(camkillc)
dealloc(newmemc)
//
// Pitch
dealloc(newmemd)
"Bayonetta.exe"+68C7C7:
movss [esi+000001C0],xmm0
//
// Jaw
dealloc(newmeme)
"Bayonetta.exe"+68C7D5:
movss [esi+000001C4],xmm1
//
Toggle Activation
112
0
{MRDescription} Activated
{MRDescription} Deactivated
303
"-old script Free cam F1 - do not use"
3225CF
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-04-29
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(camkilla,Bayonetta.exe,F3 0F 58 54 24 28 F3 0F 11 86 B0 01 00 00 F3 0F 10 44 24 2C) // should be unique
alloc(newmema,$1000)
//
aobscanmodule(camkillb,Bayonetta.exe,C0 F3 0F 11 8E B4 01 00 00) // should be unique
alloc(newmemb,$1000)
//
aobscanmodule(camkillc,Bayonetta.exe,F3 0F 11 96 B8 01 00 00 83) // should be unique
alloc(newmemc,$1000)
// e Pitch 1 of 2
alloc(newmeme,1000)
//
// e Pitch 2 of 2
alloc(newmemf,1000)
//
// f Jaw 1 of 2
alloc(newmemg,1000)
//
// f Jaw 1 of 2
alloc(newmemh,1000)
//
// i Cam constraint
alloc(newmemi,1000)
//
// j Cam constraint
alloc(newmemj,1000)
//
label(codea)
label(returna)
//
label(codeb)
label(returnb)
//
label(codec)
label(returnc)
//
label(camcoord)
registersymbol(camcoord)
//
label(returnheree)
label(originalcodee)
label(exite)
//
label(returnheref)
label(originalcodef)
label(exitf)
//
label(returnhereg)
label(originalcodeg)
label(exitg)
//
label(returnhereh)
label(originalcodeh)
label(exith)
//
label(returnherei)
label(originalcodei)
label(exiti)
//
label(returnherej)
label(originalcodej)
label(exitj)
//
newmema:
codea:
// movss [esi+000001B0],xmm0
mov [camcoord],esi
jmp returna
camcoord:
dd 0
camkilla:
jmp newmema
nop
nop
nop
returna:
registersymbol(camkilla)
//
newmemb:
codeb:
// movss [esi+000001B4],xmm1
jmp returnb
camkillb+01:
jmp newmemb
nop
nop
nop
returnb:
registersymbol(camkillb)
//
newmemc:
codec:
// movss [esi+000001B8],xmm2
jmp returnc
camkillc:
jmp newmemc
nop
nop
nop
returnc:
registersymbol(camkillc)
//
// e pitch 1 of 2
newmeme: //this is allocated memory, you have read,write,execute access
//place your code here
originalcodee:
//movss [esi+000001C0],xmm0
exite:
jmp returnheree
"Bayonetta.exe"+692D1D:
jmp newmeme
nop
nop
nop
returnheree:
//
// e pitch 2 of 2
newmemf: //this is allocated memory, you have read,write,execute access
//place your code here
originalcodef:
//movss [esi+000001C0],xmm0
exitf:
jmp returnheref
"Bayonetta.exe"+68C7C7:
jmp newmemf
nop
nop
nop
returnheref:
//
// Jaw 1 of 2
newmemg: //this is allocated memory, you have read,write,execute access
//place your code here
originalcodeg:
//movss [esi+000001C8],xmm0
exitg:
jmp returnhereg
"Bayonetta.exe"+692D4D:
jmp newmemg
nop
nop
nop
returnhereg:
//
// Jaw 2 of 2
newmemh: //this is allocated memory, you have read,write,execute access
//place your code here
originalcodeh:
//movss [esi+000001C8],xmm2
exith:
jmp returnhereh
"Bayonetta.exe"+68C7DD:
jmp newmemh
nop
nop
nop
returnhereh:
//
// i cam constraint
newmemi: //this is allocated memory, you have read,write,execute access
//place your code here
originalcodei:
//movss [esi+000001C4],xmm0
exiti:
jmp returnherei
"Bayonetta.exe"+692D35:
jmp newmemi
nop
nop
nop
returnherei:
//
// j cam constraint
newmemj: //this is allocated memory, you have read,write,execute access
//place your code here
originalcodej:
//movss [esi+000001C4],xmm1
exitj:
jmp returnherej
"Bayonetta.exe"+68C7D5:
jmp newmemj
nop
nop
nop
returnherej:
//
[DISABLE]
camkilla:
db F3 0F 58 54 24 28 F3 0F 11 86 B0 01 00 00 F3 0F 10 44 24 2C
unregistersymbol(camkilla)
dealloc(newmema)
//
camkillb+01:
db F3 0F 11 8E B4 01 00 00
unregistersymbol(camkillb)
dealloc(newmemb)
//
camkillc:
db F3 0F 11 96 B8 01 00 00
unregistersymbol(camkillc)
dealloc(newmemc)
//
unregistersymbol(camcoord)
//
dealloc(newmeme)
"Bayonetta.exe"+692D1D:
movss [esi+000001C0],xmm0
//
dealloc(newmemf)
"Bayonetta.exe"+68C7C7:
movss [esi+000001C0],xmm0
//
dealloc(newmemg)
"Bayonetta.exe"+692D4D:
movss [esi+000001C8],xmm0
//
dealloc(newmemh)
"Bayonetta.exe"+68C7DD:
movss [esi+000001C8],xmm2
//
dealloc(newmemi)
"Bayonetta.exe"+692D35:
movss [esi+000001C4],xmm0
//
dealloc(newmemj)
"Bayonetta.exe"+68C7D5:
movss [esi+000001C4],xmm1
//
260
"X - 4 - 6 + Ctrl"
6459E1
Float
camcoord
1B0
Increase Value
102
0.5
0
Decrease Value
100
0.5
1
Increase Value
17
102
0.05
2
Decrease Value
17
100
0.05
3
266
"No Description"
Float
00EE5C90
281
"Y - 3 - 9 + Ctrl"
6459E1
Float
camcoord
1B4
Increase Value
105
0.5
0
Decrease Value
99
0.5
1
Increase Value
17
105
0.05
2
Decrease Value
17
99
0.05
3
282
"No Description"
Float
00EE5C94
288
"Z - 2 - 8 + Ctrl"
6459E1
Float
camcoord
1B8
Increase Value
104
0.5
0
Decrease Value
98
0.5
1
Increase Value
17
104
0.05
2
Decrease Value
17
98
0.05
3
289
"No Description"
Float
00EE5C98
263
"Pitch arrow keys + Ctrl"
6459E1
Float
camcoord
1c0
Decrease Value
37
0.4
0
Increase Value
39
0.4
1
Decrease Value
17
37
0.02
2
Increase Value
17
39
0.02
3
264
"kill 1"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,100)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [esi+000001C0],xmm0
exit:
jmp returnhere
"Bayonetta.exe"+692D1D:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+692D1D:
movss [esi+000001C0],xmm0
//Alt: db F3 0F 11 86 C0 01 00 00
265
"kill 2"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,100)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [esi+000001C0],xmm0
exit:
jmp returnhere
"Bayonetta.exe"+68C7C7:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+68C7C7:
movss [esi+000001C0],xmm0
//Alt: db F3 0F 11 86 C0 01 00 00
290
"Jaw arrow keys + Ctrl"
6459E1
Float
camcoord
1C4
Decrease Value
40
0.4
0
Increase Value
38
0.4
1
Decrease Value
17
40
0.02
2
Increase Value
17
38
0.02
3
293
"kill 3"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-04-30
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(kill3,Bayonetta.exe,F3 0F 11 86 C8 01 00 00 F3 0F 10 86) // should be unique
alloc(newmem,$100)
label(code)
label(return)
newmem:
code:
//movss [esi+000001C8],xmm0
jmp return
kill3:
jmp newmem
nop
nop
nop
return:
registersymbol(kill3)
[DISABLE]
kill3:
db F3 0F 11 86 C8 01 00 00
unregistersymbol(kill3)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+692D4D
"Bayonetta.exe"+692D15: F3 0F 58 86 50 0C 00 00 - addss xmm0,[esi+00000C50]
"Bayonetta.exe"+692D1D: E9 DE D2 61 43 - jmp 440B0000
"Bayonetta.exe"+692D22: 90 - nop
"Bayonetta.exe"+692D23: 90 - nop
"Bayonetta.exe"+692D24: 90 - nop
"Bayonetta.exe"+692D25: F3 0F 10 86 C4 01 00 00 - movss xmm0,[esi+000001C4]
"Bayonetta.exe"+692D2D: F3 0F 58 86 54 0C 00 00 - addss xmm0,[esi+00000C54]
"Bayonetta.exe"+692D35: F3 0F 11 86 C4 01 00 00 - movss [esi+000001C4],xmm0
"Bayonetta.exe"+692D3D: F3 0F 10 86 C8 01 00 00 - movss xmm0,[esi+000001C8]
"Bayonetta.exe"+692D45: F3 0F 58 86 58 0C 00 00 - addss xmm0,[esi+00000C58]
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+692D4D: F3 0F 11 86 C8 01 00 00 - movss [esi+000001C8],xmm0
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+692D55: F3 0F 10 86 CC 01 00 00 - movss xmm0,[esi+000001CC]
"Bayonetta.exe"+692D5D: F3 0F 58 86 5C 0C 00 00 - addss xmm0,[esi+00000C5C]
"Bayonetta.exe"+692D65: F3 0F 11 86 CC 01 00 00 - movss [esi+000001CC],xmm0
"Bayonetta.exe"+692D6D: 8B CE - mov ecx,esi
"Bayonetta.exe"+692D6F: E8 1C 59 01 00 - call Bayonetta.exe+6A8690
"Bayonetta.exe"+692D74: F7 05 C4 5C 16 05 00 00 00 80 - test [Bayonetta.exe+4D65CC4],80000000
"Bayonetta.exe"+692D7E: 75 1E - jne Bayonetta.exe+692D9E
"Bayonetta.exe"+692D80: 8B 86 78 07 00 00 - mov eax,[esi+00000778]
"Bayonetta.exe"+692D86: 03 C0 - add eax,eax
"Bayonetta.exe"+692D88: 03 C0 - add eax,eax
}
294
"kill 4"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-04-30
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(kill4,Bayonetta.exe,F3 0F 11 96 C8 01 00 00 F3 0F 11 86 CC) // should be unique
alloc(newmem,$100)
label(code)
label(return)
newmem:
code:
//movss [esi+000001C8],xmm2
jmp return
kill4:
jmp newmem
nop
nop
nop
return:
registersymbol(kill4)
[DISABLE]
kill4:
db F3 0F 11 96 C8 01 00 00
unregistersymbol(kill4)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+68C7DD
"Bayonetta.exe"+68C7B0: F3 0F 10 44 24 20 - movss xmm0,[esp+20]
"Bayonetta.exe"+68C7B6: F3 0F 58 43 30 - addss xmm0,[ebx+30]
"Bayonetta.exe"+68C7BB: F3 0F 58 4C 24 24 - addss xmm1,[esp+24]
"Bayonetta.exe"+68C7C1: F3 0F 58 54 24 28 - addss xmm2,[esp+28]
"Bayonetta.exe"+68C7C7: E9 34 38 61 43 - jmp 440A0000
"Bayonetta.exe"+68C7CC: 90 - nop
"Bayonetta.exe"+68C7CD: 90 - nop
"Bayonetta.exe"+68C7CE: 90 - nop
"Bayonetta.exe"+68C7CF: F3 0F 10 44 24 2C - movss xmm0,[esp+2C]
"Bayonetta.exe"+68C7D5: F3 0F 11 8E C4 01 00 00 - movss [esi+000001C4],xmm1
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+68C7DD: F3 0F 11 96 C8 01 00 00 - movss [esi+000001C8],xmm2
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+68C7E5: F3 0F 11 86 CC 01 00 00 - movss [esi+000001CC],xmm0
"Bayonetta.exe"+68C7ED: F3 0F 10 86 40 13 00 00 - movss xmm0,[esi+00001340]
"Bayonetta.exe"+68C7F5: 8D 86 40 13 00 00 - lea eax,[esi+00001340]
"Bayonetta.exe"+68C7FB: 51 - push ecx
"Bayonetta.exe"+68C7FC: F3 0F 11 44 24 50 - movss [esp+50],xmm0
"Bayonetta.exe"+68C802: F3 0F 10 86 10 13 00 00 - movss xmm0,[esi+00001310]
"Bayonetta.exe"+68C80A: F3 0F 11 04 24 - movss [esp],xmm0
"Bayonetta.exe"+68C80F: F3 0F 10 86 B0 0B 00 00 - movss xmm0,[esi+00000BB0]
"Bayonetta.exe"+68C817: 50 - push eax
"Bayonetta.exe"+68C818: 83 EC 08 - sub esp,08
}
317
"Roll 1 - 7 + Ctrl"
6459E1
Float
camcoord
1C8
Decrease Value
97
0.4
0
Increase Value
103
0.4
1
Decrease Value
17
97
0.02
2
Increase Value
17
103
0.02
3
318
"kill 3"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-04-30
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(kill3,Bayonetta.exe,F3 0F 11 86 C8 01 00 00 F3 0F 10 86) // should be unique
alloc(newmem,$100)
label(code)
label(return)
newmem:
code:
//movss [esi+000001C8],xmm0
jmp return
kill3:
jmp newmem
nop
nop
nop
return:
registersymbol(kill3)
[DISABLE]
kill3:
db F3 0F 11 86 C8 01 00 00
unregistersymbol(kill3)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+692D4D
"Bayonetta.exe"+692D15: F3 0F 58 86 50 0C 00 00 - addss xmm0,[esi+00000C50]
"Bayonetta.exe"+692D1D: E9 DE D2 61 43 - jmp 440B0000
"Bayonetta.exe"+692D22: 90 - nop
"Bayonetta.exe"+692D23: 90 - nop
"Bayonetta.exe"+692D24: 90 - nop
"Bayonetta.exe"+692D25: F3 0F 10 86 C4 01 00 00 - movss xmm0,[esi+000001C4]
"Bayonetta.exe"+692D2D: F3 0F 58 86 54 0C 00 00 - addss xmm0,[esi+00000C54]
"Bayonetta.exe"+692D35: F3 0F 11 86 C4 01 00 00 - movss [esi+000001C4],xmm0
"Bayonetta.exe"+692D3D: F3 0F 10 86 C8 01 00 00 - movss xmm0,[esi+000001C8]
"Bayonetta.exe"+692D45: F3 0F 58 86 58 0C 00 00 - addss xmm0,[esi+00000C58]
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+692D4D: F3 0F 11 86 C8 01 00 00 - movss [esi+000001C8],xmm0
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+692D55: F3 0F 10 86 CC 01 00 00 - movss xmm0,[esi+000001CC]
"Bayonetta.exe"+692D5D: F3 0F 58 86 5C 0C 00 00 - addss xmm0,[esi+00000C5C]
"Bayonetta.exe"+692D65: F3 0F 11 86 CC 01 00 00 - movss [esi+000001CC],xmm0
"Bayonetta.exe"+692D6D: 8B CE - mov ecx,esi
"Bayonetta.exe"+692D6F: E8 1C 59 01 00 - call Bayonetta.exe+6A8690
"Bayonetta.exe"+692D74: F7 05 C4 5C 16 05 00 00 00 80 - test [Bayonetta.exe+4D65CC4],80000000
"Bayonetta.exe"+692D7E: 75 1E - jne Bayonetta.exe+692D9E
"Bayonetta.exe"+692D80: 8B 86 78 07 00 00 - mov eax,[esi+00000778]
"Bayonetta.exe"+692D86: 03 C0 - add eax,eax
"Bayonetta.exe"+692D88: 03 C0 - add eax,eax
}
319
"kill 4"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-04-30
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(kill4,Bayonetta.exe,F3 0F 11 96 C8 01 00 00 F3 0F 11 86 CC) // should be unique
alloc(newmem,$100)
label(code)
label(return)
newmem:
code:
//movss [esi+000001C8],xmm2
jmp return
kill4:
jmp newmem
nop
nop
nop
return:
registersymbol(kill4)
[DISABLE]
kill4:
db F3 0F 11 96 C8 01 00 00
unregistersymbol(kill4)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+68C7DD
"Bayonetta.exe"+68C7B0: F3 0F 10 44 24 20 - movss xmm0,[esp+20]
"Bayonetta.exe"+68C7B6: F3 0F 58 43 30 - addss xmm0,[ebx+30]
"Bayonetta.exe"+68C7BB: F3 0F 58 4C 24 24 - addss xmm1,[esp+24]
"Bayonetta.exe"+68C7C1: F3 0F 58 54 24 28 - addss xmm2,[esp+28]
"Bayonetta.exe"+68C7C7: E9 34 38 61 43 - jmp 440A0000
"Bayonetta.exe"+68C7CC: 90 - nop
"Bayonetta.exe"+68C7CD: 90 - nop
"Bayonetta.exe"+68C7CE: 90 - nop
"Bayonetta.exe"+68C7CF: F3 0F 10 44 24 2C - movss xmm0,[esp+2C]
"Bayonetta.exe"+68C7D5: F3 0F 11 8E C4 01 00 00 - movss [esi+000001C4],xmm1
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+68C7DD: F3 0F 11 96 C8 01 00 00 - movss [esi+000001C8],xmm2
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+68C7E5: F3 0F 11 86 CC 01 00 00 - movss [esi+000001CC],xmm0
"Bayonetta.exe"+68C7ED: F3 0F 10 86 40 13 00 00 - movss xmm0,[esi+00001340]
"Bayonetta.exe"+68C7F5: 8D 86 40 13 00 00 - lea eax,[esi+00001340]
"Bayonetta.exe"+68C7FB: 51 - push ecx
"Bayonetta.exe"+68C7FC: F3 0F 11 44 24 50 - movss [esp+50],xmm0
"Bayonetta.exe"+68C802: F3 0F 10 86 10 13 00 00 - movss xmm0,[esi+00001310]
"Bayonetta.exe"+68C80A: F3 0F 11 04 24 - movss [esp],xmm0
"Bayonetta.exe"+68C80F: F3 0F 10 86 B0 0B 00 00 - movss xmm0,[esi+00000BB0]
"Bayonetta.exe"+68C817: 50 - push eax
"Bayonetta.exe"+68C818: 83 EC 08 - sub esp,08
}
307
"Aditional coord disabler"
1
Toggle Activation
112
0
306
"Writes to X 1 of 2"
11149F
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [ebx],xmm0
movss xmm0,[ebx+04]
exit:
jmp returnhere
"Bayonetta.exe"+692CD3:
jmp newmem
nop
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+692CD3:
movss [ebx],xmm0
movss xmm0,[ebx+04]
//Alt: db F3 0F 11 03 F3 0F 10 43 04
308
"Writes to X 2 of 2"
11149F
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//fstp dword ptr [edi+00000100]
exit:
jmp returnhere
"Bayonetta.exe"+860C1A:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+860C1A:
fstp dword ptr [edi+00000100]
//Alt: db D9 9F 00 01 00 00
309
"Writes to Y 1 of 2"
0FA216
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [ebx+04],xmm0
exit:
jmp returnhere
"Bayonetta.exe"+692CE4:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+692CE4:
movss [ebx+04],xmm0
//Alt: db F3 0F 11 43 04
310
"Writes to Y 2 of 2"
0FA216
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//fstp dword ptr [esi+04]
fld dword ptr [eax+08]
exit:
jmp returnhere
"Bayonetta.exe"+860C29:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+860C29:
fstp dword ptr [esi+04]
fld dword ptr [eax+08]
//Alt: db D9 5E 04 D9 40 08
311
"Writes to Z 1 of 2"
9F3111
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [ebx+08],xmm0
exit:
jmp returnhere
"Bayonetta.exe"+692CF6:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+692CF6:
movss [ebx+08],xmm0
//Alt: db F3 0F 11 43 08
312
"Writes to Z 2 of 2"
9F3111
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//fstp dword ptr [esi+08]
fld dword ptr [eax+0C]
exit:
jmp returnhere
"Bayonetta.exe"+860C2F:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+860C2F:
fstp dword ptr [esi+08]
fld dword ptr [eax+0C]
//Alt: db D9 5E 08 D9 40 0C
313
"Pitch 1 of 2"
407071
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [esi+000001C0],xmm0
exit:
jmp returnhere
"Bayonetta.exe"+692D1D:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+692D1D:
movss [esi+000001C0],xmm0
//Alt: db F3 0F 11 86 C0 01 00 00
314
"Pitch 2 of 2"
407071
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//fstp dword ptr [edi+00000110]
exit:
jmp returnhere
"Bayonetta.exe"+860CDA:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+860CDA:
fstp dword ptr [edi+00000110]
//Alt: db D9 9F 10 01 00 00
315
"Jaw 1 of 2"
676B45
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [esi+000001C4],xmm0
exit:
jmp returnhere
"Bayonetta.exe"+692D35:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+692D35:
movss [esi+000001C4],xmm0
//Alt: db F3 0F 11 86 C4 01 00 00
316
"Jaw 2 of 2"
676B45
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//fstp dword ptr [esi+04]
fld dword ptr [eax+08]
exit:
jmp returnhere
"Bayonetta.exe"+860CE9:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+860CE9:
fstp dword ptr [esi+04]
fld dword ptr [eax+08]
//Alt: db D9 5E 04 D9 40 08
320
"Roll 1 of 2"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [esi+000001C8],xmm0
exit:
jmp returnhere
"Bayonetta.exe"+692D4D:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+692D4D:
movss [esi+000001C8],xmm0
//Alt: db F3 0F 11 86 C8 01 00 00
321
"Roll 2 of 2"
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [esi+000001C8],xmm2
exit:
jmp returnhere
"Bayonetta.exe"+68C7DD:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+68C7DD:
movss [esi+000001C8],xmm2
//Alt: db F3 0F 11 96 C8 01 00 00
86
"Alt Pause Menu Cam- buggy -XYZ-no rotation -E Q Ctrl Shift"
448A46
Float
Bayonetta.exe+AE5D04
Increase Value
69
0.00025
0
Decrease Value
81
0.00025
1
Increase Value
17
69
0.0025
2
Decrease Value
17
81
0.0025
3
Increase Value
16
69
0.00005
4
Decrease Value
16
81
0.00005
5
128
"2d bitmap sync Y"
448A46
Float
00EE5BB4
Increase Value
69
0.00025
0
Decrease Value
81
0.00025
1
Increase Value
17
69
0.001
2
Decrease Value
17
81
0.001
3
Increase Value
16
69
0.00005
4
Decrease Value
16
81
0.00005
5
89
"Pause Cam VPM X - A - D"
448A46
Float
Bayonetta.exe+AE5D00
Increase Value
68
0.00025
0
Decrease Value
65
0.00025
1
Increase Value
17
68
0.0025
2
Decrease Value
17
65
0.0025
3
Increase Value
16
68
0.00005
4
Decrease Value
16
65
0.00005
5
127
"2d bitmap sync VPM X"
448A46
Float
00EE5BC0
Increase Value
68
0.002
0
Decrease Value
65
0.002
1
Increase Value
17
68
0.02
2
Decrease Value
17
65
0.02
3
Increase Value
16
68
0.000005
4
Decrease Value
16
65
0.000005
5
90
"Pause Cam VPM Z - W - S"
448A46
Float
Bayonetta.exe+AE5D08
Increase Value
87
0.00025
0
Decrease Value
83
0.00025
1
Increase Value
17
87
0.0025
2
Decrease Value
17
83
0.0025
3
Increase Value
16
87
0.00005
4
Decrease Value
16
83
0.00005
5
129
"2d bitmap syncZ -"
448A46
Float
00EE5BB8
Decrease Value
87
0.00025
0
Increase Value
83
0.00025
1
Decrease Value
17
87
0.0025
2
Increase Value
17
83
0.0025
3
Decrease Value
16
87
0.00005
4
Increase Value
16
83
0.00005
5
91
"Pause Cam VPM Z - 2 - W - S"
448A46
Float
Bayonetta.exe+AE5D0C
Increase Value
87
0.00025
0
Decrease Value
83
0.00025
1
Increase Value
17
87
0.0025
2
Decrease Value
17
83
0.0025
3
Increase Value
16
87
0.00005
4
Decrease Value
16
83
0.00005
5
87
"Info about d3d cam"
448A46
Auto Assembler Script
//The script below doesn't really work as it tampers with other stuff.
//Manipulating the d3d directly works though, found by searching for Y and using decreases when going up instead of increased!!!
// X is at offset 0 while Y is at 4 - Z is at 08 and 0C (2 addresses), both need to be changed at the same time using the same hotkey or the screen goes black!
// Chapter 1 Value is -0.2633259296 when at the start standing still, in case I need to find it again quickly.
[ENABLE]
aobscanmodule(PauseCamY,d3dx9_43.dll,0F 13 72 20 0F 17 72 28) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
label(PCamY)
registersymbol(PCamY)
newmem:
code:
//movlps [edx+20],xmm6
mov [PCamY],edx
movhps [edx+28],xmm6
jmp return
PCamY:
dd 0
PauseCamY:
jmp code
nop
nop
nop
return:
registersymbol(PauseCamY)
[DISABLE]
PauseCamY:
db 0F 13 72 20 0F 17 72 28
unregistersymbol(PauseCamY)
unregistersymbol(PCamY)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "d3dx9_43.dll"+1BA361
"d3dx9_43.dll"+1BA33D: 0F 59 D7 - mulps xmm2,xmm7
"d3dx9_43.dll"+1BA340: F3 0F 10 78 3C - movss xmm7,[eax+3C]
"d3dx9_43.dll"+1BA345: 0F C6 FF 00 - shufps xmm7,xmm7,00
"d3dx9_43.dll"+1BA349: 0F 59 DF - mulps xmm3,xmm7
"d3dx9_43.dll"+1BA34C: 0F 13 22 - movlps [edx],xmm4
"d3dx9_43.dll"+1BA34F: 0F 17 62 08 - movhps [edx+08],xmm4
"d3dx9_43.dll"+1BA353: 0F 58 C1 - addps xmm0,xmm1
"d3dx9_43.dll"+1BA356: 0F 13 6A 10 - movlps [edx+10],xmm5
"d3dx9_43.dll"+1BA35A: 0F 17 6A 18 - movhps [edx+18],xmm5
"d3dx9_43.dll"+1BA35E: 0F 58 D3 - addps xmm2,xmm3
// ---------- INJECTING HERE ----------
"d3dx9_43.dll"+1BA361: 0F 13 72 20 - movlps [edx+20],xmm6
"d3dx9_43.dll"+1BA365: 0F 17 72 28 - movhps [edx+28],xmm6
// ---------- DONE INJECTING ----------
"d3dx9_43.dll"+1BA369: 0F 58 C2 - addps xmm0,xmm2
"d3dx9_43.dll"+1BA36C: 0F 13 42 30 - movlps [edx+30],xmm0
"d3dx9_43.dll"+1BA370: 0F 17 42 38 - movhps [edx+38],xmm0
"d3dx9_43.dll"+1BA374: 8B 45 08 - mov eax,[ebp+08]
"d3dx9_43.dll"+1BA377: 5D - pop ebp
"d3dx9_43.dll"+1BA378: C2 0C 00 - ret 000C
"d3dx9_43.dll"+1BA37B: CC - int 3
"d3dx9_43.dll"+1BA37C: CC - int 3
"d3dx9_43.dll"+1BA37D: CC - int 3
"d3dx9_43.dll"+1BA37E: CC - int 3
}
349
"Kiss Symbol Disabler WIP - F9"
3517DD
1
348
"No Kiss "
3517DD
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-05-01
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(targetsymbol,Bayonetta.exe,F3 0F 10 46 34 F3 0F 58 43 04 F3) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
// movss xmm0,[esi+34]
jmp return
targetsymbol:
jmp newmem
return:
registersymbol(targetsymbol)
[DISABLE]
targetsymbol:
db F3 0F 10 46 34
unregistersymbol(targetsymbol)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+17CABB
"Bayonetta.exe"+17CA9C: 8B B6 8C 00 00 00 - mov esi,[esi+0000008C]
"Bayonetta.exe"+17CAA2: 85 F6 - test esi,esi
"Bayonetta.exe"+17CAA4: 74 33 - je Bayonetta.exe+17CAD9
"Bayonetta.exe"+17CAA6: 56 - push esi
"Bayonetta.exe"+17CAA7: 53 - push ebx
"Bayonetta.exe"+17CAA8: 53 - push ebx
"Bayonetta.exe"+17CAA9: E8 CC 55 70 00 - call Bayonetta.exe+88207A
"Bayonetta.exe"+17CAAE: F3 0F 10 03 - movss xmm0,[ebx]
"Bayonetta.exe"+17CAB2: F3 0F 58 46 30 - addss xmm0,[esi+30]
"Bayonetta.exe"+17CAB7: F3 0F 11 03 - movss [ebx],xmm0
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+17CABB: F3 0F 10 46 34 - movss xmm0,[esi+34]
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+17CAC0: F3 0F 58 43 04 - addss xmm0,[ebx+04]
"Bayonetta.exe"+17CAC5: F3 0F 11 43 04 - movss [ebx+04],xmm0
"Bayonetta.exe"+17CACA: F3 0F 10 46 38 - movss xmm0,[esi+38]
"Bayonetta.exe"+17CACF: F3 0F 58 43 08 - addss xmm0,[ebx+08]
"Bayonetta.exe"+17CAD4: F3 0F 11 43 08 - movss [ebx+08],xmm0
"Bayonetta.exe"+17CAD9: 5E - pop esi
"Bayonetta.exe"+17CADA: 5B - pop ebx
"Bayonetta.exe"+17CADB: C3 - ret
"Bayonetta.exe"+17CADC: CC - int 3
"Bayonetta.exe"+17CADD: CC - int 3
}
Toggle Activation
120
0
{MRDescription} Activated
{MRDescription} Deactivated
354
"Auto Assemble script"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-05-01
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(kiss,Bayonetta.exe,F3 0F 10 46 34 F3 0F 58 43 04 F3) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
label(kissbol)
registersymbol(kissbol)
newmem:
mov [kissbol],esi
code:
// movss xmm0,[esi+34]
jmp return
kissbol:
dd 0
kiss:
jmp newmem
return:
registersymbol(kiss)
[DISABLE]
kiss:
db F3 0F 10 46 34
unregistersymbol(kiss)
dealloc(newmem)
unregistersymbol(kissbol)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+17CABB
"Bayonetta.exe"+17CA9C: 8B B6 8C 00 00 00 - mov esi,[esi+0000008C]
"Bayonetta.exe"+17CAA2: 85 F6 - test esi,esi
"Bayonetta.exe"+17CAA4: 74 33 - je Bayonetta.exe+17CAD9
"Bayonetta.exe"+17CAA6: 56 - push esi
"Bayonetta.exe"+17CAA7: 53 - push ebx
"Bayonetta.exe"+17CAA8: 53 - push ebx
"Bayonetta.exe"+17CAA9: E8 CC 55 70 00 - call Bayonetta.exe+88207A
"Bayonetta.exe"+17CAAE: F3 0F 10 03 - movss xmm0,[ebx]
"Bayonetta.exe"+17CAB2: F3 0F 58 46 30 - addss xmm0,[esi+30]
"Bayonetta.exe"+17CAB7: F3 0F 11 03 - movss [ebx],xmm0
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+17CABB: F3 0F 10 46 34 - movss xmm0,[esi+34]
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+17CAC0: F3 0F 58 43 04 - addss xmm0,[ebx+04]
"Bayonetta.exe"+17CAC5: F3 0F 11 43 04 - movss [ebx+04],xmm0
"Bayonetta.exe"+17CACA: F3 0F 10 46 38 - movss xmm0,[esi+38]
"Bayonetta.exe"+17CACF: F3 0F 58 43 08 - addss xmm0,[ebx+08]
"Bayonetta.exe"+17CAD4: F3 0F 11 43 08 - movss [ebx+08],xmm0
"Bayonetta.exe"+17CAD9: 5E - pop esi
"Bayonetta.exe"+17CADA: 5B - pop ebx
"Bayonetta.exe"+17CADB: C3 - ret
"Bayonetta.exe"+17CADC: CC - int 3
"Bayonetta.exe"+17CADD: CC - int 3
}
247
"Menu Hud Value - 13 on - 7 off - 19 invisible - F2 and F3 (on/off)"
808000
1
246
"Menu HUD toggle - F2 OFF"
808000
1
94
"Menu time freeze"
808000
Auto Assembler Script
//// How this works, press H then esc twice. Hud should be gone and game is frozen.
//Freecam works now. To get the hud back press J, for further screenshots just press esc twice again and then J again to
//get the HUD back.
// If the HUD OFF script becomes problematic, press H again to turn it off.
[ENABLE]
aobscanmodule(menuHud,Bayonetta.exe,C7 46 0C 07 00 00 00 E9) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
// mov [esi+0C],00000007
mov [esi+0C],00000013
jmp return
menuHud:
jmp code
nop
nop
return:
registersymbol(menuHud)
[DISABLE]
menuHud:
db C7 46 0C 07 00 00 00
unregistersymbol(menuHud)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+661D63
"Bayonetta.exe"+661D40: 8B 42 2C - mov eax,[edx+2C]
"Bayonetta.exe"+661D43: FF D0 - call eax
"Bayonetta.exe"+661D45: B9 B4 25 B2 05 - mov ecx,Bayonetta.exe+57225B4
"Bayonetta.exe"+661D4A: E8 71 D7 0C 00 - call Bayonetta.exe+72F4C0
"Bayonetta.exe"+661D4F: 8D 0C 40 - lea ecx,[eax+eax*2]
"Bayonetta.exe"+661D52: 8B 14 8D 84 44 EE 00 - mov edx,[ecx*4+Bayonetta.exe+AE4484]
"Bayonetta.exe"+661D59: 53 - push ebx
"Bayonetta.exe"+661D5A: 52 - push edx
"Bayonetta.exe"+661D5B: E8 70 99 05 00 - call Bayonetta.exe+6BB6D0
"Bayonetta.exe"+661D60: 83 C4 08 - add esp,08
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+661D63: C7 46 0C 07 00 00 00 - mov [esi+0C],00000007
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+661D6A: E9 64 01 00 00 - jmp Bayonetta.exe+661ED3
"Bayonetta.exe"+661D6F: 8B 4E 20 - mov ecx,[esi+20]
"Bayonetta.exe"+661D72: 85 C9 - test ecx,ecx
"Bayonetta.exe"+661D74: 74 0F - je Bayonetta.exe+661D85
"Bayonetta.exe"+661D76: 8B 01 - mov eax,[ecx]
"Bayonetta.exe"+661D78: 8B 50 34 - mov edx,[eax+34]
"Bayonetta.exe"+661D7B: FF D2 - call edx
"Bayonetta.exe"+661D7D: 85 C0 - test eax,eax
"Bayonetta.exe"+661D7F: 0F 84 4E 01 00 00 - je Bayonetta.exe+661ED3
"Bayonetta.exe"+661D85: C7 46 0C 0A 00 00 00 - mov [esi+0C],0000000A
}
Toggle Activation
113
0
{MRDescription} Activated
{MRDescription} Deactivated
93
"game"
808000
2 Bytes
Bayonetta.exe+AE4508
Set Value
114
13
0
{MRDescription} Activated
131
"FX - Need pause menu toggle activated !!!"
465964
1
100
"Brightness Character etc GFX param U-I"
465964
Float
00EE5C44
Increase Value
73
1
0
Decrease Value
85
1
1
Increase Value
17
73
0.1
2
Decrease Value
17
85
0.1
3
97
"Hair Specular T - Z"
465964
Float
00EE5CB8
Increase Value
84
1
0
Decrease Value
90
1
1
Increase Value
17
84
0.5
2
Decrease Value
17
90
0.5
3
130
"FX normal stretching fog fire etc F - G"
465964
Float
00EE5BD0
Increase Value
71
0.05
0
Decrease Value
70
0.05
1
Increase Value
17
71
0.005
2
Decrease Value
17
70
0.005
3
126
"Camera Clipping Near Plane N - M Ctrl"
465964
Float
00EE5D18
Increase Value
77
0.15
0
Decrease Value
78
0.15
1
Increase Value
17
77
0.005
2
Decrease Value
17
78
0.005
3
356
"Gradient - Bloom as Seperator V - B"
465964
Float
00EE5BA8
Increase Value
66
0.1
0
Decrease Value
86
0.1
1
Increase Value
17
66
0.01
2
Decrease Value
17
86
0.01
3
359
"Gradient - Bloom as Seperator V - B"
465964
Float
00EE5BA8
Increase Value
66
1
0
Decrease Value
86
1
1
Increase Value
17
66
0.01
2
Decrease Value
17
86
0.01
3
358
"Gradient - Bloom as Seperator V - B"
465964
Float
00EE5B98
Increase Value
66
1
0
Decrease Value
86
1
1
Increase Value
17
66
0.01
2
Decrease Value
17
86
0.01
3
360
"Gradient - Bloom as Seperator V - B"
465964
Float
00EE5B94
Increase Value
66
1
0
Decrease Value
86
1
1
Increase Value
17
66
0.01
2
Decrease Value
17
86
0.01
3
361
"Gradient - Bloom as Seperator V - B"
465964
Float
00EE5B90
Increase Value
66
1
0
Decrease Value
86
1
1
Increase Value
17
66
0.01
2
Decrease Value
17
86
0.01
3
275
"Time Manipulation"
0F0FC4
1
245
"Witchtime w/o fx enemies only - F4"
A8413E
1
244
"Witchtime blank"
44734E
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
mov [edi+5C],(float)0.5
exit:
jmp returnhere
"Bayonetta.exe"+110EED:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Bayonetta.exe"+110EED:
movss [edi+5C],xmm0
//Alt: db F3 0F 11 47 5C
Toggle Activation
115
0
{MRDescription} Activated
{MRDescription} Deactivated
238
"No description"
Float
Bayonetta.exe+AAE614
237
"No description"
Float
Bayonetta.exe+AAE608
236
"No description"
Float
Bayonetta.exe+AAE604
276
"Half Speed - F5"
A8413E
1
Toggle Activation
0
274
"half speed"
267746
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
//a
alloc(newmema,100)
label(returnherea)
label(originalcodea)
label(exita)
//b
alloc(newmemb,100)
label(returnhereb)
label(originalcodeb)
label(exitb)
//
//c
alloc(newmemc,100)
label(returnherec)
label(originalcodec)
label(exitc)
//d
alloc(newmemd,100)
label(returnhered)
label(originalcoded)
label(exitd)
//
//e
alloc(newmeme,100)
label(returnheree)
label(originalcodee)
label(exite)
//
//f
alloc(newmemf,100)
label(returnheref)
label(originalcodef)
label(exitf)
//
//code
//a
newmema: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+58],(float)0.5
originalcodea:
//movss [edi+58],xmm0
exita:
jmp returnherea
"Bayonetta.exe"+110EC1:
jmp newmema
returnherea:
//b
newmemb: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+5C],(float)0.5
originalcodeb:
//movss [edi+5C],xmm0
exitb:
jmp returnhereb
"Bayonetta.exe"+110EED:
jmp newmemb
returnhereb:
//c
newmemc: //this is allocated memory, you have read,write,execute access
//place your code here
mov [eax+08],(float)0.5
originalcodec:
//movss [eax+08],xmm1
exitc:
jmp returnherec
"Bayonetta.exe"+110F1D:
jmp newmemc
returnherec:
//
//d
newmemd: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+64],(float)0.5
originalcoded:
//movss [edi+64],xmm0
exitd:
jmp returnhered
"Bayonetta.exe"+110ECC:
jmp newmemd
returnhered:
//
//e
newmeme: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+68],(float)0.5
originalcodee:
//movss [edi+68],xmm0
exite:
jmp returnheree
"Bayonetta.exe"+110EF8:
jmp newmeme
returnheree:
//
//f
newmemf: //this is allocated memory, you have read,write,execute access
//place your code here
mov [eax+08],(float)0.5
originalcodef:
//movss [eax+08],xmm1
exitf:
jmp returnheref
"Bayonetta.exe"+110F1D:
jmp newmemf
returnheref:
//
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//a
dealloc(newmema)
"Bayonetta.exe"+110EC1:
movss [edi+58],xmm0
//b
dealloc(newmemb)
"Bayonetta.exe"+110EED:
movss [edi+5C],xmm0
//
//c
dealloc(newmemc)
"Bayonetta.exe"+110F1D:
movss [eax+08],xmm1
//
//d
dealloc(newmemd)
"Bayonetta.exe"+110ECC:
movss [edi+64],xmm0
//
//e
dealloc(newmeme)
"Bayonetta.exe"+110EF8:
movss [edi+68],xmm0
//
//f
dealloc(newmemf)
"Bayonetta.exe"+110F1D:
movss [eax+08],xmm1
//
//Alt: db F3 0F 11 47 58
Toggle Activation
116
0
{MRDescription} Activated
{MRDescription} Deactivated
497
"Slowmo - F6"
A8413E
1
498
"Slowmotion "
267746
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
//a
alloc(newmema,100)
label(returnherea)
label(originalcodea)
label(exita)
//b
alloc(newmemb,100)
label(returnhereb)
label(originalcodeb)
label(exitb)
//
//c
alloc(newmemc,100)
label(returnherec)
label(originalcodec)
label(exitc)
//d
alloc(newmemd,100)
label(returnhered)
label(originalcoded)
label(exitd)
//
//e
alloc(newmeme,100)
label(returnheree)
label(originalcodee)
label(exite)
//
//f
alloc(newmemf,100)
label(returnheref)
label(originalcodef)
label(exitf)
//
//code
//a
newmema: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+58],(float)0.05
originalcodea:
//movss [edi+58],xmm0
exita:
jmp returnherea
"Bayonetta.exe"+110EC1:
jmp newmema
returnherea:
//b
newmemb: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+5C],(float)0.05
originalcodeb:
//movss [edi+5C],xmm0
exitb:
jmp returnhereb
"Bayonetta.exe"+110EED:
jmp newmemb
returnhereb:
//c
newmemc: //this is allocated memory, you have read,write,execute access
//place your code here
mov [eax+08],(float)0.05
originalcodec:
//movss [eax+08],xmm1
exitc:
jmp returnherec
"Bayonetta.exe"+110F1D:
jmp newmemc
returnherec:
//
//d
newmemd: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+64],(float)0.05
originalcoded:
//movss [edi+64],xmm0
exitd:
jmp returnhered
"Bayonetta.exe"+110ECC:
jmp newmemd
returnhered:
//
//e
newmeme: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+68],(float)0.05
originalcodee:
//movss [edi+68],xmm0
exite:
jmp returnheree
"Bayonetta.exe"+110EF8:
jmp newmeme
returnheree:
//
//f
newmemf: //this is allocated memory, you have read,write,execute access
//place your code here
mov [eax+08],(float)0.05
originalcodef:
//movss [eax+08],xmm1
exitf:
jmp returnheref
"Bayonetta.exe"+110F1D:
jmp newmemf
returnheref:
//
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//a
dealloc(newmema)
"Bayonetta.exe"+110EC1:
movss [edi+58],xmm0
//b
dealloc(newmemb)
"Bayonetta.exe"+110EED:
movss [edi+5C],xmm0
//
//c
dealloc(newmemc)
"Bayonetta.exe"+110F1D:
movss [eax+08],xmm1
//
//d
dealloc(newmemd)
"Bayonetta.exe"+110ECC:
movss [edi+64],xmm0
//
//e
dealloc(newmeme)
"Bayonetta.exe"+110EF8:
movss [edi+68],xmm0
//
//f
dealloc(newmemf)
"Bayonetta.exe"+110F1D:
movss [eax+08],xmm1
//
//Alt: db F3 0F 11 47 58
Toggle Activation
117
0
{MRDescription} Activated
{MRDescription} Deactivated
277
"Timestop - F7"
A8413E
1
278
"Timestop"
267746
Auto Assembler Script
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
//a
alloc(newmema,100)
label(returnherea)
label(originalcodea)
label(exita)
//b
alloc(newmemb,100)
label(returnhereb)
label(originalcodeb)
label(exitb)
//
//c
alloc(newmemc,100)
label(returnherec)
label(originalcodec)
label(exitc)
//d
alloc(newmemd,100)
label(returnhered)
label(originalcoded)
label(exitd)
//
//e
alloc(newmeme,100)
label(returnheree)
label(originalcodee)
label(exite)
//
//f
alloc(newmemf,100)
label(returnheref)
label(originalcodef)
label(exitf)
//
//code
//a
newmema: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+58],(float)0.00001
originalcodea:
//movss [edi+58],xmm0
exita:
jmp returnherea
"Bayonetta.exe"+110EC1:
jmp newmema
returnherea:
//b
newmemb: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+5C],(float)0.00001
originalcodeb:
//movss [edi+5C],xmm0
exitb:
jmp returnhereb
"Bayonetta.exe"+110EED:
jmp newmemb
returnhereb:
//c
newmemc: //this is allocated memory, you have read,write,execute access
//place your code here
mov [eax+08],(float)0.00001
originalcodec:
//movss [eax+08],xmm1
exitc:
jmp returnherec
"Bayonetta.exe"+110F1D:
jmp newmemc
returnherec:
//
//d
newmemd: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+64],(float)0.00001
originalcoded:
//movss [edi+64],xmm0
exitd:
jmp returnhered
"Bayonetta.exe"+110ECC:
jmp newmemd
returnhered:
//
//e
newmeme: //this is allocated memory, you have read,write,execute access
//place your code here
mov [edi+68],(float)0.00001
originalcodee:
//movss [edi+68],xmm0
exite:
jmp returnheree
"Bayonetta.exe"+110EF8:
jmp newmeme
returnheree:
//
//f
newmemf: //this is allocated memory, you have read,write,execute access
//place your code here
mov [eax+08],(float)0.00001
originalcodef:
//movss [eax+08],xmm1
exitf:
jmp returnheref
"Bayonetta.exe"+110F1D:
jmp newmemf
returnheref:
//
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
//a
dealloc(newmema)
"Bayonetta.exe"+110EC1:
movss [edi+58],xmm0
//b
dealloc(newmemb)
"Bayonetta.exe"+110EED:
movss [edi+5C],xmm0
//
//c
dealloc(newmemc)
"Bayonetta.exe"+110F1D:
movss [eax+08],xmm1
//
//d
dealloc(newmemd)
"Bayonetta.exe"+110ECC:
movss [edi+64],xmm0
//
//e
dealloc(newmeme)
"Bayonetta.exe"+110EF8:
movss [edi+68],xmm0
//
//f
dealloc(newmemf)
"Bayonetta.exe"+110F1D:
movss [eax+08],xmm1
//
//Alt: db F3 0F 11 47 58
Toggle Activation
118
0
{MRDescription} Activated
{MRDescription} Deactivated
481
"Bayo Teleport - F10"
3538A8
1
478
"Teleport"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-05-04
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,Bayonetta.exe,C0 F3 0F 11 A6 D0 00 00 00 F3 0F 11 8E D4 00 00 00) // should be unique
alloc(newmema,$1000)
//
//camchange
aobscanmodule(fallattack,Bayonetta.exe,C7 86 74 13 00 00 01 00 00 00 5F) // should be unique
alloc(newmemb,$1000)
label(codeb)
label(returnb)
label(codea)
label(returna)
label(bayocoord)
registersymbol(bayocoord)
//camchange
label(codeb)
label(returnb)
//
newmema:
mov [bayocoord],esi
codea:
// movss [esi+000000D4],xmm1
jmp returna
bayocoord:
dd 0
INJECT+09:
jmp newmema
nop
nop
nop
returna:
registersymbol(INJECT)
//camchange
newmemb:
mov [esi+00001374],00000000
codeb:
//mov [esi+00001374],00000001
jmp returnb
fallattack:
jmp newmemb
nop
nop
nop
nop
nop
returnb:
registersymbol(fallattack)
//
[DISABLE]
INJECT+09:
db F3 0F 11 8E D4 00 00 00
unregistersymbol(INJECT)
unregistersymbol(bayocoord)
dealloc(newmema)
//camchange
fallattack:
db C7 86 74 13 00 00 01 00 00 00
unregistersymbol(fallattack)
dealloc(newmemb)
//
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+5CB597
"Bayonetta.exe"+5CB55C: F3 0F 59 CC - mulss xmm1,xmm4
"Bayonetta.exe"+5CB560: F3 0F 58 8E D4 00 00 00 - addss xmm1,[esi+000000D4]
"Bayonetta.exe"+5CB568: F3 0F 59 D4 - mulss xmm2,xmm4
"Bayonetta.exe"+5CB56C: F3 0F 58 96 D8 00 00 00 - addss xmm2,[esi+000000D8]
"Bayonetta.exe"+5CB574: F3 0F 59 DC - mulss xmm3,xmm4
"Bayonetta.exe"+5CB578: F3 0F 10 A6 D0 00 00 00 - movss xmm4,[esi+000000D0]
"Bayonetta.exe"+5CB580: F3 0F 58 9E DC 00 00 00 - addss xmm3,[esi+000000DC]
"Bayonetta.exe"+5CB588: F3 0F 58 E0 - addss xmm4,xmm0
"Bayonetta.exe"+5CB58C: 0F 57 C0 - xorps xmm0,xmm0
"Bayonetta.exe"+5CB58F: F3 0F 11 A6 D0 00 00 00 - movss [esi+000000D0],xmm4
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+5CB597: F3 0F 11 8E D4 00 00 00 - movss [esi+000000D4],xmm1
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+5CB59F: F3 0F 11 96 D8 00 00 00 - movss [esi+000000D8],xmm2
"Bayonetta.exe"+5CB5A7: F3 0F 11 9E DC 00 00 00 - movss [esi+000000DC],xmm3
"Bayonetta.exe"+5CB5AF: C7 86 3C 36 09 00 00 00 00 00 - mov [esi+0009363C],00000000
"Bayonetta.exe"+5CB5B9: F3 0F 11 86 40 36 09 00 - movss [esi+00093640],xmm0
"Bayonetta.exe"+5CB5C1: 5F - pop edi
"Bayonetta.exe"+5CB5C2: 5E - pop esi
"Bayonetta.exe"+5CB5C3: 8B E5 - mov esp,ebp
"Bayonetta.exe"+5CB5C5: 5D - pop ebp
"Bayonetta.exe"+5CB5C6: C3 - ret
"Bayonetta.exe"+5CB5C7: CC - int 3
}
Toggle Activation
121
0
{MRDescription} Activated
{MRDescription} Deactivated
480
"X 7-8"
Float
bayocoord
D0
Decrease Value
56
1
0
Increase Value
55
1
1
Decrease Value
17
56
0.25
2
Increase Value
17
55
0.25
3
483
"Y ß - ´"
Float
bayocoord
d4
Decrease Value
219
1
0
Increase Value
221
1
1
Decrease Value
17
219
0.25
2
Increase Value
17
221
0.25
3
482
"Z 9-0"
Float
bayocoord
D8
Decrease Value
48
1
0
Increase Value
57
1
1
Decrease Value
17
48
0.25
2
Increase Value
17
57
0.25
3
493
"Disables Fallattack sound and effects - do not use-could crash your game"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-05-04
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(fattackfx,Bayonetta.exe,89 BE 70 4A 09 00 EB 0B) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
// mov [esi+00094A70],edi
jmp return
fattackfx:
jmp newmem
nop
return:
registersymbol(fattackfx)
[DISABLE]
fattackfx:
db 89 BE 70 4A 09 00
unregistersymbol(fattackfx)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+4F23AA
"Bayonetta.exe"+4F2386: 89 BE 70 4A 09 00 - mov [esi+00094A70],edi
"Bayonetta.exe"+4F238C: EB 2F - jmp Bayonetta.exe+4F23BD
"Bayonetta.exe"+4F238E: 68 F4 01 00 00 - push 000001F4
"Bayonetta.exe"+4F2393: 68 03 01 00 00 - push 00000103
"Bayonetta.exe"+4F2398: 51 - push ecx
"Bayonetta.exe"+4F2399: 8D 4C 24 2C - lea ecx,[esp+2C]
"Bayonetta.exe"+4F239D: F3 0F 11 14 24 - movss [esp],xmm2
"Bayonetta.exe"+4F23A2: 51 - push ecx
"Bayonetta.exe"+4F23A3: 8B CE - mov ecx,esi
"Bayonetta.exe"+4F23A5: E8 46 55 0D 00 - call Bayonetta.exe+5C78F0
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+4F23AA: 89 BE 70 4A 09 00 - mov [esi+00094A70],edi
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+4F23B0: EB 0B - jmp Bayonetta.exe+4F23BD
"Bayonetta.exe"+4F23B2: 0F 57 C0 - xorps xmm0,xmm0
"Bayonetta.exe"+4F23B5: F3 0F 11 86 F8 06 00 00 - movss [esi+000006F8],xmm0
"Bayonetta.exe"+4F23BD: 39 9E 28 5E 09 00 - cmp [esi+00095E28],ebx
"Bayonetta.exe"+4F23C3: 74 0C - je Bayonetta.exe+4F23D1
"Bayonetta.exe"+4F23C5: 6A 37 - push 37
"Bayonetta.exe"+4F23C7: B9 E0 5A EE 00 - mov ecx,Bayonetta.exe+AE5AE0
"Bayonetta.exe"+4F23CC: E8 7F 36 19 00 - call Bayonetta.exe+685A50
"Bayonetta.exe"+4F23D1: 39 9E 2C 5E 09 00 - cmp [esi+00095E2C],ebx
"Bayonetta.exe"+4F23D7: 0F 84 3E 01 00 00 - je Bayonetta.exe+4F251B
}
485
"cam change disabler"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-05-04
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(fallattack,Bayonetta.exe,C7 86 74 13 00 00 01 00 00 00 5F) // should be unique
alloc(newmemb,$1000)
label(codeb)
label(returnb)
newmemb:
mov [esi+00001374],00000000
codeb:
//mov [esi+00001374],00000001
jmp returnb
fallattack:
jmp newmemb
nop
nop
nop
nop
nop
returnb:
registersymbol(fallattack)
[DISABLE]
fallattack:
db C7 86 74 13 00 00 01 00 00 00
unregistersymbol(fallattack)
dealloc(newmemb)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+6877D8
"Bayonetta.exe"+6877AD: E8 8E 84 E5 FF - call Bayonetta.exe+4DFC40
"Bayonetta.exe"+6877B2: 85 C0 - test eax,eax
"Bayonetta.exe"+6877B4: 75 32 - jne Bayonetta.exe+6877E8
"Bayonetta.exe"+6877B6: 39 BE 8C 13 00 00 - cmp [esi+0000138C],edi
"Bayonetta.exe"+6877BC: 75 2A - jne Bayonetta.exe+6877E8
"Bayonetta.exe"+6877BE: 39 BE A0 13 00 00 - cmp [esi+000013A0],edi
"Bayonetta.exe"+6877C4: 74 22 - je Bayonetta.exe+6877E8
"Bayonetta.exe"+6877C6: 8B 86 30 11 00 00 - mov eax,[esi+00001130]
"Bayonetta.exe"+6877CC: 39 B8 70 4A 09 00 - cmp [eax+00094A70],edi
"Bayonetta.exe"+6877D2: 0F 84 79 02 00 00 - je Bayonetta.exe+687A51
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+6877D8: C7 86 74 13 00 00 01 00 00 00 - mov [esi+00001374],00000001
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+6877E2: 5F - pop edi
"Bayonetta.exe"+6877E3: 5E - pop esi
"Bayonetta.exe"+6877E4: 8B E5 - mov esp,ebp
"Bayonetta.exe"+6877E6: 5D - pop ebp
"Bayonetta.exe"+6877E7: C3 - ret
"Bayonetta.exe"+6877E8: 39 BE E4 14 00 00 - cmp [esi+000014E4],edi
"Bayonetta.exe"+6877EE: 75 0C - jne Bayonetta.exe+6877FC
"Bayonetta.exe"+6877F0: 39 BE 8C 13 00 00 - cmp [esi+0000138C],edi
"Bayonetta.exe"+6877F6: 0F 84 55 02 00 00 - je Bayonetta.exe+687A51
"Bayonetta.exe"+6877FC: 39 BE E0 14 00 00 - cmp [esi+000014E0],edi
}
560
"CAREFUL POTENTIALLY CRASHES YOUR GAME"
0020FD
1
559
"Wicked Weave Model Change disabler - K - L"
1
546
"Always Clothed"
Auto Assembler Script
{ Game : Bayonetta.exe
Version:
Date : 2017-05-06
Author : User
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,Bayonetta.exe,C7 86 30 63 09 00 02 00 00 00) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
// mov [esi+00096330],00000002
jmp return
INJECT:
jmp newmem
nop
nop
nop
nop
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db C7 86 30 63 09 00 02 00 00 00
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+4B3BFC
"Bayonetta.exe"+4B3BCC: 8D 8E A0 60 09 00 - lea ecx,[esi+000960A0]
"Bayonetta.exe"+4B3BD2: E8 79 38 BF FF - call Bayonetta.exe+A7450
"Bayonetta.exe"+4B3BD7: FF 86 30 63 09 00 - inc [esi+00096330]
"Bayonetta.exe"+4B3BDD: 8D 8E A0 60 09 00 - lea ecx,[esi+000960A0]
"Bayonetta.exe"+4B3BE3: E8 A8 68 BF FF - call Bayonetta.exe+AA490
"Bayonetta.exe"+4B3BE8: 33 DB - xor ebx,ebx
"Bayonetta.exe"+4B3BEA: 89 5C 24 0C - mov [esp+0C],ebx
"Bayonetta.exe"+4B3BEE: 89 9E 38 6B 09 00 - mov [esi+00096B38],ebx
"Bayonetta.exe"+4B3BF4: 39 9E 90 4A 09 00 - cmp [esi+00094A90],ebx
"Bayonetta.exe"+4B3BFA: 74 0F - je Bayonetta.exe+4B3C0B
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+4B3BFC: C7 86 30 63 09 00 02 00 00 00 - mov [esi+00096330],00000002
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+4B3C06: E9 2D 03 00 00 - jmp Bayonetta.exe+4B3F38
"Bayonetta.exe"+4B3C0B: 3B FB - cmp edi,ebx
"Bayonetta.exe"+4B3C0D: 0F 84 25 03 00 00 - je Bayonetta.exe+4B3F38
"Bayonetta.exe"+4B3C13: C7 86 30 63 09 00 08 00 00 00 - mov [esi+00096330],00000008
"Bayonetta.exe"+4B3C1D: E9 16 03 00 00 - jmp Bayonetta.exe+4B3F38
"Bayonetta.exe"+4B3C22: 6A 00 - push 00
"Bayonetta.exe"+4B3C24: 6A 00 - push 00
"Bayonetta.exe"+4B3C26: 83 EC 0C - sub esp,0C
"Bayonetta.exe"+4B3C29: F3 0F 11 44 24 08 - movss [esp+08],xmm0
"Bayonetta.exe"+4B3C2F: 0F 57 C0 - xorps xmm0,xmm0
}
Toggle Activation
75
0
{MRDescription} Activated
{MRDescription} Deactivated
552
"hair gone"
Auto Assembler Script
//this noped makes swimsuit permanent
[ENABLE]
aobscanmodule(INJECT,Bayonetta.exe,F3 0F 10 05 68 14 D6 00 83 F8 13) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
// movss xmm0,[Bayonetta.exe+961468]
jmp return
INJECT:
jmp newmem
nop
nop
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db F3 0F 10 05 68 14 D6 00
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Bayonetta.exe"+4B3B8B
"Bayonetta.exe"+4B3B64: 74 1F - je Bayonetta.exe+4B3B85
"Bayonetta.exe"+4B3B66: 8B 8E E8 0C 00 00 - mov ecx,[esi+00000CE8]
"Bayonetta.exe"+4B3B6C: 85 C9 - test ecx,ecx
"Bayonetta.exe"+4B3B6E: 74 15 - je Bayonetta.exe+4B3B85
"Bayonetta.exe"+4B3B70: F3 0F 10 05 68 49 D6 00 - movss xmm0,[Bayonetta.exe+964968]
"Bayonetta.exe"+4B3B78: 6A 00 - push 00
"Bayonetta.exe"+4B3B7A: 51 - push ecx
"Bayonetta.exe"+4B3B7B: F3 0F 11 04 24 - movss [esp],xmm0
"Bayonetta.exe"+4B3B80: E8 CB BF 13 00 - call Bayonetta.exe+5EFB50
"Bayonetta.exe"+4B3B85: 8B 86 30 63 09 00 - mov eax,[esi+00096330]
// ---------- INJECTING HERE ----------
"Bayonetta.exe"+4B3B8B: F3 0F 10 05 68 14 D6 00 - movss xmm0,[Bayonetta.exe+961468]
// ---------- DONE INJECTING ----------
"Bayonetta.exe"+4B3B93: 83 F8 13 - cmp eax,13
"Bayonetta.exe"+4B3B96: 0F 87 9C 03 00 00 - ja Bayonetta.exe+4B3F38
"Bayonetta.exe"+4B3B9C: FF 24 85 B0 41 8B 00 - jmp dword ptr [eax*4+Bayonetta.exe+4B41B0]
"Bayonetta.exe"+4B3BA3: 6A 00 - push 00
"Bayonetta.exe"+4B3BA5: 6A 00 - push 00
"Bayonetta.exe"+4B3BA7: 83 EC 0C - sub esp,0C
"Bayonetta.exe"+4B3BAA: F3 0F 11 44 24 08 - movss [esp+08],xmm0
"Bayonetta.exe"+4B3BB0: 0F 57 C0 - xorps xmm0,xmm0
"Bayonetta.exe"+4B3BB3: F3 0F 11 44 24 04 - movss [esp+04],xmm0
"Bayonetta.exe"+4B3BB9: F3 0F 11 04 24 - movss [esp],xmm0
}
Toggle Activation
76
0
{MRDescription} Activated
{MRDescription} Deactivated
Change of movss [esi+000001B4],xmm1
00A8C39E
Bayonetta.exe
68C39E
00
00
0F
57
C0
F3
0F
11
8E
B4
01
00
00
F3
0F
11
96
B8
Change of movss [ebx+08],xmm0
00A92CF6
Bayonetta.exe
692CF6
86
58
0C
00
00
F3
0F
11
43
08
F3
0F
10
86
5C
Change of movss [esi+000001B8],xmm2
00A8C3A6
Bayonetta.exe
68C3A6
8E
B4
01
00
00
F3
0F
11
96
B8
01
00
00
83
BE
50
15
00
Change of movss [esi+000001BC],xmm0
00A8C393
Bayonetta.exe
68C393
0F
10
44
24
2C
F3
0F
11
86
BC
01
00
00
0F
57
C0
90
90
Change of movss [ebx+04],xmm0
00A92CE4
Bayonetta.exe
692CE4
86
54
0C
00
00
F3
0F
11
43
04
F3
0F
10
43
08
Change of fld dword ptr [eax+04]
0050DC88
Bayonetta.exe
10DC88
48
D5
05
D9
1E
D9
40
04
8B
0C
BD
38
9D
Change of movss [esi+000000D4],xmm1
009CB355
Bayonetta.exe
5CB355
96
D8
00
00
00
F3
0F
11
8E
D4
00
00
00
F3
0F
11
86
DC
Change of movss [esi+000000D4],xmm1
009CB597
Bayonetta.exe
5CB597
A6
D0
00
00
00
F3
0F
11
8E
D4
00
00
00
F3
0F
11
96
D8
Change of movss [eax+000000D4],xmm1
00C0DDC4
Bayonetta.exe
80DDC4
80
D0
00
00
00
F3
0F
11
88
D4
00
00
00
F3
0F
11
90
D8
Change of fstp dword ptr [esi+000000D4]
008E0721
Bayonetta.exe
4E0721
E8
BF
CE
B7
FF
D9
9E
D4
00
00
00
F3
0F
10
86
D8
Change of movss [esi+000000D4],xmm1
008E06D8
Bayonetta.exe
4E06D8
44
24
1C
6A
04
F3
0F
11
8E
D4
00
00
00
F3
0F
11
96
D8
Change of movss [esi+000000D4],xmm0
009C8326
Bayonetta.exe
5C8326
0F
58
44
24
14
F3
0F
11
86
D4
00
00
00
F3
0F
10
86
D8
Change of movss [eax+000000D4],xmm0
004A7365
Bayonetta.exe
A7365
0F
58
44
24
04
F3
0F
11
80
D4
00
00
00
F3
0F
10
80
D8
Change of movhps [edx+08],xmm4
58C0A34F
d3dx9_43.dll
1BA34F
59
DF
0F
13
22
0F
17
62
08
0F
58
C1
0F
13
Change of movss [esi+000001B0],xmm0
00A8C385
Bayonetta.exe
68C385
0F
58
54
24
28
F3
0F
11
86
B0
01
00
00
F3
0F
10
44
24
Change of fstp dword ptr [edi+00000100]
00C60C1A
Bayonetta.exe
860C1A
00
56
57
8B
F9
D9
9F
00
01
00
00
8D
B7
00
01
00
Change of movss [edi+5C],xmm0
00510EED
Bayonetta.exe
110EED
0F
10
44
24
28
F3
0F
11
47
5C
F3
0F
10
44
24
Change of movss [esp+000000A0],xmm0
004E0C16
Bayonetta.exe
E0C16
24
A4
00
00
00
F3
0F
11
84
24
A0
00
00
00
F3
0F
11
84
24
Change of movss [esp+000000A8],xmm0
004E0C04
Bayonetta.exe
E0C04
24
C0
00
00
00
F3
0F
11
84
24
A8
00
00
00
F3
0F
11
84
24
Change of movlps [edx+30],xmm0
652EA36C
d3dx9_43.dll
1BA36C
72
28
0F
58
C2
0F
13
42
30
0F
17
42
38
8B
Change of movlps [edx+20],xmm6
652EA361
d3dx9_43.dll
1BA361
6A
18
0F
58
D3
0F
13
72
20
0F
17
72
28
0F
Change of movss [esp+74],xmm0
004E0C61
Bayonetta.exe
E0C61
0F
11
44
24
78
F3
0F
11
44
24
74
F3
0F
10
05
68
Change of movss [esp+00000094],xmm0
004E0C28
Bayonetta.exe
E0C28
24
9C
00
00
00
F3
0F
11
84
24
94
00
00
00
F3
0F
11
84
24
Change of movhps [edx+38],xmm0
652EA370
d3dx9_43.dll
1BA370
C2
0F
13
42
30
0F
17
42
38
8B
45
08
5D
C2
Change of mov eax,[ebp+08]
652EA374
d3dx9_43.dll
1BA374
30
0F
17
42
38
8B
45
08
5D
C2
0C
00
CC
Change of movss [esp+7C],xmm0
004E0C55
Bayonetta.exe
E0C55
24
80
00
00
00
F3
0F
11
44
24
7C
F3
0F
11
44
24
Change of repe movsd
58B91ED7
MSVCR100.dll
1ED7
83
F9
08
72
29
F3
A5
FF
24
95
F0
1F
Change of movlps [edx+20],xmm6
6389A361
d3dx9_43.dll
1BA361
6A
18
0F
58
D3
0F
13
72
20
0F
17
72
28
0F
Change of movlps xmm2,[ecx+20]
6389A262
d3dx9_43.dll
1BA262
10
0F
16
49
18
0F
12
51
20
0F
16
51
28
0F
Change of movss [esi+000001C8],xmm2
00A8C7DD
Bayonetta.exe
68C7DD
8E
C4
01
00
00
F3
0F
11
96
C8
01
00
00
F3
0F
11
86
CC
Change of movss [esi+000001C8],xmm0
00A92D4D
Bayonetta.exe
692D4D
86
58
0C
00
00
F3
0F
11
86
C8
01
00
00
F3
0F
10
86
CC
Change of fstp dword ptr [esi+08]
00C60CEF
Bayonetta.exe
860CEF
5E
04
D9
40
08
D9
5E
08
D9
40
0C
D9
5E
Change of fld dword ptr [eax+08]
0050DCD3
Bayonetta.exe
10DCD3
AE
05
D9
5E
04
D9
40
08
D9
5E
08
D9
40
Change of movss xmm0,[eax+08]
0049FCD1
Bayonetta.exe
9FCD1
0F
11
44
24
24
F3
0F
10
40
08
F3
0F
5C
46
08
Change of movss xmm0,[eax+08]
0043C72C
Bayonetta.exe
3C72C
0F
11
44
24
44
F3
0F
10
40
08
F3
0F
5C
43
08
Change of movss xmm2,[eax+08]
005594D2
Bayonetta.exe
1594D2
F3
0F
10
48
04
F3
0F
10
50
08
F3
0F
10
58
0C
Change of movss xmm0,[eax+08]
0055FC75
Bayonetta.exe
15FC75
0F
11
44
24
64
F3
0F
10
40
08
F3
0F
5C
43
08
Change of movss xmm0,[eax+08]
0057B5B0
Bayonetta.exe
17B5B0
0F
11
44
24
24
F3
0F
10
40
08
F3
0F
5C
44
24
Change of movss xmm0,[eax+08]
0050E70C
Bayonetta.exe
10E70C
0F
11
44
24
64
F3
0F
10
40
08
F3
0F
11
44
24
Change of movss xmm0,[eax+08]
009CA608
Bayonetta.exe
5CA608
0F
11
44
24
44
F3
0F
10
40
08
F3
0F
11
44
24
Change of movss xmm2,[esi+000001C8]
00A92B94
Bayonetta.exe
692B94
8E
B4
01
00
00
F3
0F
10
96
C8
01
00
00
F3
0F
5C
96
B8
Change of movss xmm0,[esi+000001C8]
00A92D3D
Bayonetta.exe
692D3D
86
C4
01
00
00
F3
0F
10
86
C8
01
00
00
F3
0F
58
86
58
Change of movss xmm0,[eax+08]
646BAF57
d3dx9_43.dll
1BAF57
59
01
0F
58
C8
F3
0F
10
40
08
8B
43
08
0F
C6
Change of fld dword ptr [ebx+000001C8]
00AA3F92
Bayonetta.exe
6A3F92
9B
D4
0A
00
00
D9
83
C8
01
00
00
D9
9B
D8
0A
00
Change of movss xmm2,[esi+00000118]
00C608AC
Bayonetta.exe
8608AC
8E
00
01
00
00
F3
0F
10
96
18
01
00
00
F3
0F
5C
96
08
Change of fld dword ptr [eax+08]
00C65E62
Bayonetta.exe
865E62
40
04
D8
61
04
D9
40
08
D8
61
08
D9
C1
Change of fld dword ptr [eax+08]
00C60CEC
Bayonetta.exe
860CEC
40
04
D9
5E
04
D9
40
08
D9
5E
08
D9
40
Change of movss xmm3,[esi+000001C8]
00C4BC97
Bayonetta.exe
84BC97
96
C4
01
00
00
F3
0F
10
9E
C8
01
00
00
F3
0F
10
A6
CC
Change of movss xmm0,[ecx+08]
005181EA
Bayonetta.exe
1181EA
0F
11
44
24
14
F3
0F
10
41
08
F3
0F
5C
40
08
Change of fld dword ptr [esi+000001C8]
00A92F9F
Bayonetta.exe
692F9F
9E
94
0C
00
00
D9
86
C8
01
00
00
5F
D9
9E
98
0C
Change of movss xmm2,[eax+08]
00566FD8
Bayonetta.exe
166FD8
0F
5C
44
24
10
F3
0F
10
50
08
F3
0F
5C
54
24
Change of subss xmm1,[ecx+08]
00AA9A12
Bayonetta.exe
6A9A12
F3
0F
10
48
08
F3
0F
5C
49
08
F3
0F
11
44
24
Change of movss xmm0,[eax+08]
6517AF57
d3dx9_43.dll
1BAF57
59
01
0F
58
C8
F3
0F
10
40
08
8B
43
08
0F
C6
Change of movss [esi+000001CC],xmm0
00A8C7E5
Bayonetta.exe
68C7E5
96
C8
01
00
00
F3
0F
11
86
CC
01
00
00
F3
0F
10
86
40
Change of movss xmm2,[esp+18]
00C4F279
Bayonetta.exe
84F279
81
C8
02
00
00
F3
0F
10
54
24
18
56
8B
74
24
18
Change of mov esi,[esp+18]
00C4F280
Bayonetta.exe
84F280
10
54
24
18
56
8B
74
24
18
F3
0F
10
0E
F3
Change of movss xmm0,[eax+08]
0043C72C
Bayonetta.exe
3C72C
0F
11
44
24
44
F3
0F
10
40
08
F3
0F
5C
43
08
Change of movss xmm0,[eax+08]
0057B5B0
Bayonetta.exe
17B5B0
0F
11
44
24
24
F3
0F
10
40
08
F3
0F
5C
44
24
Change of movss xmm0,[eax+08]
0055FC75
Bayonetta.exe
15FC75
0F
11
44
24
64
F3
0F
10
40
08
F3
0F
5C
43
08
Change of movss xmm2,[eax+08]
005594D2
Bayonetta.exe
1594D2
F3
0F
10
48
04
F3
0F
10
50
08
F3
0F
10
58
0C
Change of movss xmm0,[eax+08]
0050E70C
Bayonetta.exe
10E70C
0F
11
44
24
64
F3
0F
10
40
08
F3
0F
11
44
24
Change of movss xmm0,[eax+08]
009CA608
Bayonetta.exe
5CA608
0F
11
44
24
44
F3
0F
10
40
08
F3
0F
11
44
24
Change of movss xmm2,[esi+000001C8]
00A92B94
Bayonetta.exe
692B94
8E
B4
01
00
00
F3
0F
10
96
C8
01
00
00
F3
0F
5C
96
B8
Change of movss xmm2,[esi+00000118]
00C608AC
Bayonetta.exe
8608AC
8E
00
01
00
00
F3
0F
10
96
18
01
00
00
F3
0F
5C
96
08
Change of movss [esi+000001C4],xmm1
00A8C7D5
Bayonetta.exe
68C7D5
0F
10
44
24
2C
F3
0F
11
8E
C4
01
00
00
F3
0F
11
96
C8
Change of movss xmm0,[esi+00000CC8]
00A8C160
Bayonetta.exe
68C160
00
53
56
8B
F1
F3
0F
10
86
C8
0C
00
00
F3
0F
58
86
C8
Change of movss xmm1,[esi+00000CC4]
00A8C170
Bayonetta.exe
68C170
86
C8
02
00
00
F3
0F
10
8E
C4
0C
00
00
0F
2F
C8
57
0F
Change of movss [eax+30],xmm0
00C62625
Bayonetta.exe
862625
F3
0F
11
40
34
F3
0F
11
40
30
F3
0F
11
40
2C
Change of movss [eax+20],xmm0
00C62634
Bayonetta.exe
862634
F3
0F
11
40
24
F3
0F
11
40
20
F3
0F
11
40
1C
Change of movss [eax+04],xmm0
00C62652
Bayonetta.exe
862652
F3
0F
11
40
08
F3
0F
11
40
04
F3
0F
10
05
68
Change of movss [eax+28],xmm0
00C6265F
Bayonetta.exe
86265F
05
68
14
D6
00
F3
0F
11
40
28
F3
0F
11
40
14
Change of movhps [edx+38],xmm0
61EAA370
d3dx9_43.dll
1BA370
C2
0F
13
42
30
0F
17
42
38
8B
45
08
5D
C2
Change of movlps [edx+30],xmm0
61EAA36C
d3dx9_43.dll
1BA36C
72
28
0F
58
C2
0F
13
42
30
90
90
90
90
8B
Change of movlps [edx+10],xmm5
61EAA356
d3dx9_43.dll
1BA356
62
08
0F
58
C1
0F
13
6A
10
0F
17
6A
18
0F
Change of movss [eax+08],xmm2
00C56F51
Bayonetta.exe
856F51
0F
10
44
24
18
F3
0F
11
50
08
F3
0F
10
54
24
Change of movss xmm2,[esp+04]
00C56F20
Bayonetta.exe
856F20
05
68
14
D6
00
F3
0F
10
54
24
04
F3
0F
10
4C
24
Change of movss [eax+38],xmm0
00C56EFA
Bayonetta.exe
856EFA
24
38
0F
57
C0
F3
0F
11
40
38
F3
0F
11
40
34
Change of movss [eax+2C],xmm0
00C56F09
Bayonetta.exe
856F09
F3
0F
11
40
30
F3
0F
11
40
2C
F3
0F
11
40
1C
Change of movss [eax+18],xmm2
00C56F6C
Bayonetta.exe
856F6C
0F
10
4C
24
24
F3
0F
11
50
18
F3
0F
10
54
24
Change of movss [esi+000001C0],xmm0
00A8C7C7
Bayonetta.exe
68C7C7
0F
58
54
24
28
F3
0F
11
86
C0
01
00
00
F3
0F
10
44
24
Change of movss xmm0,[esi+34]
004A3B1D
Bayonetta.exe
A3B1D
0F
11
44
24
30
F3
0F
10
46
34
F3
0F
58
44
24
Change of movlps [edx+30],xmm0
5FB3A36C
d3dx9_43.dll
1BA36C
72
28
0F
58
C2
0F
13
42
30
0F
17
42
38
8B
Change of movlps xmm3,[ecx+30]
5FB3A26A
d3dx9_43.dll
1BA26A
20
0F
16
51
28
0F
12
59
30
0F
16
59
38
F3
Change of movss [eax+08],xmm1
00510F1D
Bayonetta.exe
110F1D
08
F3
0F
59
C8
F3
0F
11
48
08
83
C0
0C
49
75
Change of inc [eax+04]
00CB090D
Bayonetta.exe
8B090D
FF
85
C0
74
03
FF
40
04
8B
C3
8B
4D
FC
Change of mov [eax+04],ecx
00C5C3D6
Bayonetta.exe
85C3D6
C1
33
C9
89
08
89
48
04
89
48
08
89
48
Change of mov [ecx+04],eax
00C5C404
Bayonetta.exe
85C404
CC
33
C0
89
01
89
41
04
89
41
08
89
41
Change of movss [ebx],xmm0
00A92CD3
Bayonetta.exe
692CD3
86
50
0C
00
00
F3
0F
11
03
F3
0F
10
43
04
Change of movss [esi+000001C0],xmm0
00A92D1D
Bayonetta.exe
692D1D
86
50
0C
00
00
F3
0F
11
86
C0
01
00
00
F3
0F
10
86
C4
Change of fstp dword ptr [esi+04]
00C60C29
Bayonetta.exe
860C29
00
00
D9
40
04
D9
5E
04
D9
40
08
D9
5E
Change of fld dword ptr [eax+04]
00551584
Bayonetta.exe
151584
B9
E0
0E
AE
05
D9
40
04
D9
5E
04
D9
40
Change of movss xmm0,[eax+04]
0049FC7C
Bayonetta.exe
9FC7C
0F
11
44
24
40
F3
0F
10
40
04
F3
0F
5C
46
04
Change of movss xmm0,[eax+04]
0043B732
Bayonetta.exe
3B732
0F
11
44
24
20
F3
0F
10
40
04
F3
0F
11
44
24
Change of subss xmm0,[ebx+04]
0043C721
Bayonetta.exe
3C721
F3
0F
10
40
04
F3
0F
5C
43
04
F3
0F
11
44
24
Change of movss xmm0,[eax+04]
004A399C
Bayonetta.exe
A399C
0F
11
44
24
40
F3
0F
10
40
04
F3
0F
11
44
24
Change of movss xmm1,[eax+04]
004E0031
Bayonetta.exe
E0031
00
F3
0F
5C
01
F3
0F
10
48
04
F3
0F
5C
49
04
Change of movss xmm1,[eax+04]
00558A86
Bayonetta.exe
158A86
0F
11
44
24
10
F3
0F
10
48
04
F3
0F
5C
8E
24
Change of movss xmm1,[eax+04]
0057F0A6
Bayonetta.exe
17F0A6
00
F3
0F
5C
07
F3
0F
10
48
04
F3
0F
10
50
08
Change of movss xmm1,[eax+04]
00560ECB
Bayonetta.exe
160ECB
00
F3
0F
10
00
F3
0F
10
48
04
F3
0F
10
50
08
Change of subss xmm0,[ebx+04]
0055FC6A
Bayonetta.exe
15FC6A
F3
0F
10
40
04
F3
0F
5C
43
04
F3
0F
11
44
24
Change of movss xmm0,[eax+04]
0050E738
Bayonetta.exe
10E738
0F
11
44
24
70
F3
0F
10
40
04
F3
0F
11
44
24
Change of movss xmm0,[eax+04]
005AB2F8
Bayonetta.exe
1AB2F8
E8
88
4F
6B
00
F3
0F
10
40
04
0F
2F
05
A4
AB
Change of movss xmm0,[eax+04]
0048D8CE
Bayonetta.exe
8D8CE
0F
11
44
24
10
F3
0F
10
40
04
F3
0F
11
44
24
Change of movss xmm0,[eax+04]
004903E3
Bayonetta.exe
903E3
0F
11
44
24
20
F3
0F
10
40
04
F3
0F
11
44
24
Change of movss xmm1,[eax+04]
00A1CA41
Bayonetta.exe
61CA41
0F
5C
44
24
10
F3
0F
10
48
04
F3
0F
5C
4C
24
Change of movss xmm0,[eax+04]
009CA63D
Bayonetta.exe
5CA63D
0F
11
44
24
50
F3
0F
10
40
04
F3
0F
11
44
24
Change of subss xmm0,[edi+04]
00A1CADC
Bayonetta.exe
61CADC
F3
0F
10
40
04
F3
0F
5C
47
04
F3
0F
11
44
24
Change of subss xmm0,[eax+04]
00A1CB32
Bayonetta.exe
61CB32
0F
10
44
24
14
F3
0F
5C
40
04
F3
0F
11
44
24
Change of movss xmm1,[eax+04]
0089A6E1
Bayonetta.exe
49A6E1
0F
5C
44
24
10
F3
0F
10
48
04
F3
0F
5C
4C
24
Change of subss xmm0,[edi+04]
0089A77C
Bayonetta.exe
49A77C
F3
0F
10
40
04
F3
0F
5C
47
04
F3
0F
11
44
24
Change of subss xmm0,[eax+04]
0089A7D2
Bayonetta.exe
49A7D2
0F
10
44
24
14
F3
0F
5C
40
04
F3
0F
11
44
24
Change of subss xmm1,[eax+04]
00A19E5E
Bayonetta.exe
619E5E
0F
10
4C
24
14
F3
0F
5C
48
04
F3
0F
10
54
24
Change of subss xmm1,[eax+04]
009D0153
Bayonetta.exe
5D0153
0F
10
4C
24
24
F3
0F
5C
48
04
F3
0F
10
54
24
Change of movss xmm1,[eax+04]
004BA40A
Bayonetta.exe
BA40A
0F
11
44
24
30
F3
0F
10
48
04
F3
0F
58
44
24
Change of subss xmm1,[eax+04]
009D01D4
Bayonetta.exe
5D01D4
0F
10
4C
24
24
F3
0F
5C
48
04
F3
0F
10
54
24
Change of movss xmm1,[eax+04]
004BA6B7
Bayonetta.exe
BA6B7
0F
11
44
24
50
F3
0F
10
48
04
F3
0F
58
44
24
Change of subss xmm0,[eax+04]
009EAC9F
Bayonetta.exe
5EAC9F
0F
10
44
24
14
F3
0F
5C
40
04
F3
0F
59
C0
F3
Change of subss xmm0,[eax+04]
009EAD23
Bayonetta.exe
5EAD23
0F
10
44
24
14
F3
0F
5C
40
04
F3
0F
59
C0
F3
Change of subss xmm1,[eax+04]
0085EEFE
Bayonetta.exe
45EEFE
0F
10
4C
24
14
F3
0F
5C
48
04
F3
0F
10
54
24
Change of movss xmm3,[eax+04]
00B61926
Bayonetta.exe
761926
0F
11
44
24
20
F3
0F
10
58
04
F3
0F
58
44
24
Change of subss xmm1,[esi+000001B4]
00A92B8C
Bayonetta.exe
692B8C
8E
C4
01
00
00
F3
0F
5C
8E
B4
01
00
00
F3
0F
10
96
C8
Change of movss xmm0,[ecx+04]
004F5278
Bayonetta.exe
F5278
08
8B
44
24
04
F3
0F
10
41
04
0F
2F
40
54
76
Change of movss xmm0,[ebx+04]
00A92CD7
Bayonetta.exe
692CD7
00
F3
0F
11
03
F3
0F
10
43
04
F3
0F
58
86
54
Change of movlps xmm0,[eax]
642BAF3F
d3dx9_43.dll
1BAF3F
F6
C1
0F
75
38
0F
12
00
0F
28
C8
0F
C6
Change of fld dword ptr [ebx+000001B4]
00AA4005
Bayonetta.exe
6A4005
9B
C0
0A
00
00
D9
83
B4
01
00
00
D9
9B
C4
0A
00
Change of fld dword ptr [eax+04]
00C60C26
Bayonetta.exe
860C26
B7
00
01
00
00
D9
40
04
D9
5E
04
D9
40
Change of subss xmm0,[esi+00000104]
00C608C4
Bayonetta.exe
8608C4
86
14
01
00
00
F3
0F
5C
86
04
01
00
00
F3
0F
11
4C
24
Change of fsub dword ptr [ecx+04]
00C65E5F
Bayonetta.exe
865E5F
D8
21
D9
40
04
D8
61
04
D9
40
08
D8
61
Change of movss xmm0,[esi+000001B4]
00C4BD12
Bayonetta.exe
84BD12
0F
11
44
24
60
F3
0F
10
86
B4
01
00
00
F3
0F
58
DA
F3
Change of subss xmm0,[eax+04]
005181DF
Bayonetta.exe
1181DF
F3
0F
10
41
04
F3
0F
5C
40
04
F3
0F
11
44
24
Change of movss xmm0,[eax+04]
00566FA3
Bayonetta.exe
166FA3
0F
11
44
24
10
F3
0F
10
40
04
F3
0F
11
44
24
Change of subss xmm0,[eax+04]
0056740C
Bayonetta.exe
16740C
0F
10
44
24
34
F3
0F
5C
40
04
B9
E0
0E
AE
05
Change of subss xmm0,[eax+04]
00567503
Bayonetta.exe
167503
0F
10
44
24
2C
F3
0F
5C
40
04
F3
0F
10
4C
24
Change of fld dword ptr [ebx+04]
00A92F6C
Bayonetta.exe
692F6C
9E
80
0C
00
00
D9
43
04
D9
9E
84
0C
00
Change of fld dword ptr [eax+04]
005181B6
Bayonetta.exe
1181B6
8B
4D
0C
D9
1E
D9
40
04
57
D9
5E
04
8D
Change of movss [esi+000001C4],xmm0
00A92D35
Bayonetta.exe
692D35
86
54
0C
00
00
F3
0F
11
86
C4
01
00
00
F3
0F
10
86
C8
Change of movss [esi+00000130],xmm0
00C608FD
Bayonetta.exe
8608FD
18
F2
0F
5A
C0
F3
0F
11
86
30
01
00
00
F3
0F
10
44
24
Change of movlps [edx+30],xmm0
62A5A36C
d3dx9_43.dll
1BA36C
72
28
0F
58
C2
0F
13
42
30
0F
17
42
38
8B
Change of fld dword ptr [eax]
0050DCB3
Bayonetta.exe
10DCB3
E8
ED
94
59
00
D9
00
8B
14
BD
38
9D
Change of movss xmm0,[eax]
0050E6F7
Bayonetta.exe
10E6F7
E8
A9
8A
59
00
F3
0F
10
00
F3
0F
11
44
24
Change of movss xmm0,[eax]
0057B58F
Bayonetta.exe
17B58F
E8
01
4D
6E
00
F3
0F
10
00
F3
0F
5C
44
24
Change of movss xmm0,[eax]
0055FC57
Bayonetta.exe
15FC57
E8
39
06
70
00
F3
0F
10
00
F3
0F
5C
03
F3
Change of movss xmm0,[eax]
005594C9
Bayonetta.exe
1594C9
E8
C7
6D
70
00
F3
0F
10
00
F3
0F
10
48
04
Change of movss xmm0,[eax]
0043C70E
Bayonetta.exe
3C70E
E8
82
3B
82
00
F3
0F
10
00
F3
0F
5C
03
F3
Change of movss xmm0,[eax]
0049FCB3
Bayonetta.exe
9FCB3
E8
DD
05
7C
00
F3
0F
10
00
F3
0F
5C
06
F3
Change of fstp dword ptr [eax]
00C5C84B
Bayonetta.exe
85C84B
D5
D9
04
02
41
D9
18
83
C0
04
3B
0B
Change of fstp dword ptr [edi-08]
643B9034
d3dx9_43.dll
E9034
7B
08
D9
41
E0
D9
5F
F8
D9
41
F0
D9
5F
Change of mov ebx,[eax]
58913470
d3d9.dll
43470
2B
C8
8D
24
24
8B
18
89
1C
01
8B
58
Change of mov ecx,[eax]
51201DB3
nvd3dum.dll
651DB3
F6
74
23
2B
D0
8B
08
8D
40
10
89
4C
Change of fstp dword ptr [edi-3C]
643B9047
d3dx9_43.dll
E9047
C7
40
D9
41
10
D9
5F
C4
D9
41
E4
D9
5F
Change of mov ebx,[eax+0C]
58913483
d3d9.dll
43483
08
89
5C
01
08
8B
58
0C
89
5C
01
0C
83
Change of mov ecx,[eax-04]
51201DCA
nvd3dum.dll
651DCA
F8
89
4C
02
F8
8B
48
FC
89
4C
02
FC
4E
Change of mov ebx,[eax+04]
58913475
d3d9.dll
43475
8B
18
89
1C
01
8B
58
04
89
5C
01
04
8B
Change of mov ecx,[eax-0C]
51201DBC
nvd3dum.dll
651DBC
10
89
4C
02
F0
8B
48
F4
89
4C
02
F4
8B
Change of movss xmm0,[esi+000012D0]
00A9B03E
Bayonetta.exe
69B03E
0F
11
44
24
08
F3
0F
10
86
D0
12
00
00
F3
0F
11
44
24
Change of movss xmm0,[esi+000012D0]
00A9144E
Bayonetta.exe
69144E
E9
6E
01
00
00
F3
0F
10
86
D0
12
00
00
F3
0F
10
8E
D4
Change of movss xmm0,[esi+000012D0]
00A871BB
Bayonetta.exe
6871BB
0F
11
44
24
1C
F3
0F
10
86
D0
12
00
00
F3
0F
11
44
24
Change of movss xmm0,[esi+000012D0]
00A86702
Bayonetta.exe
686702
86
30
11
00
00
F3
0F
10
86
D0
12
00
00
F3
0F
11
84
24
Change of movss xmm1,[ebx+000012D0]
00AA2CE8
Bayonetta.exe
6A2CE8
83
E4
12
00
00
F3
0F
10
8B
D0
12
00
00
F3
0F
58
8B
50
Change of movlps xmm0,[eax]
6448AF3F
d3dx9_43.dll
1BAF3F
F6
C1
0F
75
38
0F
12
00
0F
28
C8
0F
C6
Change of movss xmm7,[eax+34]
6448A328
d3dx9_43.dll
1BA328
FF
00
0F
59
C7
F3
0F
10
78
34
0F
C6
FF
00
0F
Change of movss xmm0,[edi+34]
0057DC7C
Bayonetta.exe
17DC7C
06
F3
0F
11
06
F3
0F
10
47
34
F3
0F
58
46
04
Change of movss xmm0,[esi+34]
0057CABB
Bayonetta.exe
17CABB
30
F3
0F
11
03
F3
0F
10
46
34
F3
0F
58
43
04
Change of addss xmm0,[ebx+04]
0057CAC0
Bayonetta.exe
17CAC0
F3
0F
10
46
34
F3
0F
58
43
04
F3
0F
11
43
04
Change of movlps xmm3,[ecx+30]
6448A26A
d3dx9_43.dll
1BA26A
20
0F
16
51
28
0F
12
59
30
0F
16
59
38
F3
Change of addss xmm0,[esi+30]
0057CAB2
Bayonetta.exe
17CAB2
00
F3
0F
10
03
F3
0F
58
46
30
F3
0F
11
03
F3
Change of movss [ebx],xmm0
0057CAB7
Bayonetta.exe
17CAB7
F3
0F
58
46
30
F3
0F
11
03
F3
0F
10
46
34
Change of movss [esi+00000168],xmm0
0057CA62
Bayonetta.exe
17CA62
86
88
01
00
00
F3
0F
11
86
68
01
00
00
EB
30
D9
86
50
Change of movss [ebx+08],xmm0
0057CAD4
Bayonetta.exe
17CAD4
F3
0F
58
43
08
F3
0F
11
43
08
5E
5B
C3
CC
CC
Change of movss [eax+28],xmm2
00C56F80
Bayonetta.exe
856F80
24
F3
0F
11
20
F3
0F
11
50
28
F3
0F
11
68
10
Change of mov ecx,[esp+18]
0058431A
Bayonetta.exe
18431A
E8
90
DD
6F
00
8B
4C
24
18
51
56
56
E8
5A
Change of push Bayonetta.exe+9E9950
0058BD02
Bayonetta.exe
18BD02
FF
83
C4
04
50
68
50
99
DE
00
E8
A4
BC
EC
FF
Change of push Bayonetta.exe+9E9DF4
0058E553
Bayonetta.exe
18E553
84
58
FF
FF
FF
68
F4
9D
DE
00
8D
8E
4C
02
00
Change of movhps [edx+38],xmm0
5315A370
d3dx9_43.dll
1BA370
C2
0F
13
42
30
0F
17
42
38
8B
45
08
5D
C2
Change of movss [eax+000000D8],xmm2
00C0DDCC
Bayonetta.exe
80DDCC
88
D4
00
00
00
F3
0F
11
90
D8
00
00
00
F3
0F
11
98
DC
Change of movss [eax+000000D8],xmm0
004A737B
Bayonetta.exe
A737B
0F
58
44
24
08
F3
0F
11
80
D8
00
00
00
F3
0F
10
80
DC
Change of movss [esi+000000D8],xmm0
009C833C
Bayonetta.exe
5C833C
0F
58
44
24
18
F3
0F
11
86
D8
00
00
00
F3
0F
10
86
DC
Change of movss [esi+000000D8],xmm2
009CB36D
Bayonetta.exe
5CB36D
05
DC
4B
D6
00
F3
0F
11
96
D8
00
00
00
F3
0F
58
EC
F3
Change of movss [esi+000000D8],xmm2
009CB59F
Bayonetta.exe
5CB59F
8E
D4
00
00
00
F3
0F
11
96
D8
00
00
00
F3
0F
11
9E
DC
Change of movlps [edx],xmm4
637AA34C
d3dx9_43.dll
1BA34C
FF
00
0F
59
DF
0F
13
22
0F
17
62
08
0F
Change of movss [eax+000000D0],xmm0
004A734F
Bayonetta.exe
A734F
80
D0
00
00
00
F3
0F
11
80
D0
00
00
00
F3
0F
10
80
D4
Change of movss xmm0,[eax+000000DC]
004A7383
Bayonetta.exe
A7383
B0
43
90
90
90
F3
0F
10
80
DC
00
00
00
F3
0F
58
44
24
Change of movss [eax+000000DC],xmm0
004A7391
Bayonetta.exe
A7391
0F
58
44
24
0C
F3
0F
11
80
DC
00
00
00
F3
0F
10
89
60
Change of movss xmm0,[eax+000000D0]
0050DFC3
Bayonetta.exe
10DFC3
5B
3B
C1
74
40
F3
0F
10
80
D0
00
00
00
F3
0F
11
05
90
Change of fld dword ptr [eax+000000D0]
005B0A2B
Bayonetta.exe
1B0A2B
A1
60
DA
EA
00
D9
80
D0
00
00
00
D9
5E
20
D9
80
Change of movss xmm0,[esi+000000D0]
0049804E
Bayonetta.exe
9804E
53
56
8B
75
08
F3
0F
10
86
D0
00
00
00
F3
0F
11
44
24
Change of movss xmm0,[edi+000000D0]
004984EE
Bayonetta.exe
984EE
0F
11
44
24
18
F3
0F
10
87
D0
00
00
00
F3
0F
11
44
24
Change of movss xmm0,[edi+000000D0]
00498288
Bayonetta.exe
98288
0F
11
44
24
18
F3
0F
10
87
D0
00
00
00
F3
0F
11
44
24
Change of fld dword ptr [ebx+000000D0]
008BB829
Bayonetta.exe
4BB829
44
24
1C
75
C7
D9
83
D0
00
00
00
D9
9B
A0
07
00
Change of movss xmm0,[esi+000000D0]
004972D9
Bayonetta.exe
972D9
0F
11
44
24
14
F3
0F
10
86
D0
00
00
00
F3
0F
11
44
24
Change of addss xmm0,[eax+000000D0]
004A7347
Bayonetta.exe
A7347
0F
11
64
24
0C
F3
0F
58
80
D0
00
00
00
F3
0F
11
80
D0
Change of movss xmm0,[esi+000000D0]
009C8302
Bayonetta.exe
5C8302
E8
78
9D
2B
00
F3
0F
10
86
D0
00
00
00
F3
0F
58
44
24
Change of movss [esi+000000D0],xmm0
009C8310
Bayonetta.exe
5C8310
0F
58
44
24
10
F3
0F
11
86
D0
00
00
00
F3
0F
10
86
D4
Change of movss xmm5,[esi+000000D0]
009CB313
Bayonetta.exe
5CB313
A6
D0
5B
09
00
F3
0F
10
AE
D0
00
00
00
F3
0F
59
E0
0F
Change of movss [esi+000000D0],xmm5
009CB379
Bayonetta.exe
5CB379
00
F3
0F
58
EC
F3
0F
11
AE
D0
00
00
00
F3
0F
10
8E
D0
Change of movss xmm4,[esi+000000D0]
009CB578
Bayonetta.exe
5CB578
00
F3
0F
59
DC
F3
0F
10
A6
D0
00
00
00
F3
0F
58
9E
DC
Change of movss [esi+000000D0],xmm4
009CB58F
Bayonetta.exe
5CB58F
58
E0
0F
57
C0
F3
0F
11
A6
D0
00
00
00
E9
64
4A
5B
43
Change of movlps xmm0,[eax]
637AAF3F
d3dx9_43.dll
1BAF3F
F6
C1
0F
75
38
0F
12
00
0F
28
C8
0F
C6
Change of movss [esi+000000D0],xmm0
008E06C8
Bayonetta.exe
4E06C8
0F
58
54
24
18
F3
0F
11
86
D0
00
00
00
F3
0F
10
44
24
Change of movss xmm0,[esi+000000D0]
008E06F0
Bayonetta.exe
4E06F0
86
DC
00
00
00
F3
0F
10
86
D0
00
00
00
51
F3
0F
11
04
Change of mov [esi+00094A70],edi
008F23AA
Bayonetta.exe
4F23AA
E8
46
55
0D
00
89
BE
70
4A
09
00
EB
0B
0F
57
C0
Change of mov [ecx+00000350],eax
004B9FDD
Bayonetta.exe
B9FDD
00
8B
54
24
10
89
81
50
03
00
00
89
91
54
03
00
Change of mulps xmm1,[ecx+10]
5335AF49
d3dx9_43.dll
1BAF49
C8
0F
C6
C8
55
0F
59
49
10
0F
C6
C0
00
0F
Change of movhps xmm1,[ecx+18]
5335A25E
d3dx9_43.dll
1BA25E
08
0F
12
49
10
0F
16
49
18
0F
12
51
20
0F
Change of mov [ecx+04],edx
00429586
Bayonetta.exe
29586
4F
24
8B
56
14
89
51
04
8B
7F
24
8B
4E
Change of mov [ecx+08],edx
00429564
Bayonetta.exe
29564
8B
10
8B
4F
24
89
51
08
8B
56
04
8B
4F
Change of mov eax,[ebx+08]
00D23015
Bayonetta.exe
923015
E8
FB
35
FF
FF
8B
43
08
8B
88
E4
00
00
Change of jne Bayonetta.exe+4B4170
008B415E
Bayonetta.exe
4B415E
A9
00
00
00
C0
75
10
83
BE
48
03
00
Change of mov eax,[esi+00096330]
008B3B85
Bayonetta.exe
4B3B85
E8
CB
BF
13
00
8B
86
30
63
09
00
F3
0F
10
05
68
Change of movss xmm0,[Bayonetta.exe+961468]
008B3B8B
Bayonetta.exe
4B3B8B
86
30
63
09
00
F3
0F
10
05
68
14
D6
00
83
F8
13
0F
87
Change of push Bayonetta.exe+A1C474
008B3BBE
Bayonetta.exe
4B3BBE
F3
0F
11
04
24
68
74
C4
E1
00
E8
78
86
3A
00
Change of mov eax,[ebp+08]
5168A374
d3dx9_43.dll
1BA374
30
0F
17
42
38
8B
45
08
5D
C2
0C
00
CC