assembly learning day 2

Using cheat engine to find Battlemania value:

Process for searching for calculation:
	1.) Search for string 'onRandom' when in area. Find one in the second set (there are two sets) and browse memory address.
	2.) Scroll down and view -> display format (byte decimal). There'll be some values in a row (+328 offset) that look like i8BattleSituationRandom values from the btstab tables. Right-click and add address to list (got to be in that relevant bt scene).
	3.) Right-click address in main table and see what accesses value. This value will be accessed whenever you enter an area, whether or not you draw that btscene.
	4.) Hope for the best in seeing what's there.

Testing with Battlemania on:
	Breakpoint on access set on i8BattleSituationRandom0 in Bresha 005 AF (bjaa_box01_10).
	Found somewhere in hex where it somewhat mentions privilege14 and bjaa_box01_10. (the number 54 sticks out)
	At some point, it overwrites "privilege14." I don't know if that means it's successful or not. Let's see...
	I did get the rare encounter with privilege14. I wonder why it overwrote it. Let's try it without Battlemania on. One more test with Battlemania on to see offsets.
	Starts at ffxiii2img.exe+1ff02f. Begins overwriting privilege14 very shortly. Checking without.

Testing with Battlemania off:
	Breakpoint set at same spot.
	Same thing actually happens, where it overwrites privilege14. Interesting. 54 is also still there.

	Testing in same bjaa_box, last btsc. Hoping that they're sequential, looks like it's at ffxiii2img.exe+1ff3cc. May all end at +1FF413?
	With Battlemania off, it still starts at the same spot.

	Registers are the same at that first breakpoint with battlemania on before and after.
	Registers are NOT the same at second breakpoint at the last encounter check with battlemania off before and after, but that could mean a number of things. EBX and EBP are the checks.
	EBX, 0x87A and 0x14258D50 - off
	EBP, 0x6C and 0x116 - on

Maybe I should check testing with battlemania on and off before the 4% encounters to see if there's a difference. (EBP is different than before somehow, but oh well)
	EBX, 0x9E3 and 0x14258D50 - off
	EBP, 0x5A and 0x5A - on

That should help confirm this, at least: I don't believe Battlemania affects the i8BattleSituationRandom amount of non-rare monsters.

Is EDX = 0x1 the check for Battlemania being on? I think it might be.

EBP = 0xBD
EBP = 0x68

I tested EBP, and it looks like that's the value affected by Battlemania. I'm not sure how yet, but when Battlemania is active, it increases EBP by a lot on the rare encounter slots only. It has no change on the non-rare encounter slots whether or not Battlemania is active.

Might've found the formula. EAX is given a random value *somehow* (not sure yet how), and then it goes through a switch statement, essentially. If the value is greater than EAX, it picks that encounter set.

Checking ESP location in memory after everything is run.... Okay, the 4% encounter checks can vary from area to area, but for Bresha Ruins 005 AF bjaa_box01_10, the checks are 189, 278, and 367 with Battlemania on and 104, 108, and 112 with Battlemania off. It looks like every encounter increments the previous value. Let me get the values of the tables.

bjaa_box01_10's table is 15, 15, 10, 10, 10, 15, 15, 10, 4, 4, and 4 normally.
bjaa_box01_10's table increments show 15_30_40_50_60_75_90_100_104_108_112 with BM off.
bjaa_box01_10's table increments show 15_30_40_50_60_75_90_100_189_278_367 with BM on.

It increases from 4% to 89%! That's huge!

I need to test in other areas, but I feel confident in this number.

I tested on gdza_box02_01 (a raining area in Archylte Steppe), and I found something interesting: 5% encounters are also affected by this.

gdza_box02_01's table increments show 20_60_80_95_185_274 with BM on.
Shows that the 5% changed to a 90%.

I think I found my answer. I wish I kept better journaling, but this is all a learning process. This is day 2 of re-learning assembly/learning cheat engine.