Cheat Engine

[popo84]

Hi, i just scanned a game and I did the 4bytes decrease value, until I found 1 remaining value. Which i think is the gold. gold was around 5000 ish and the value in 4bytes was 65522878, every time I opened up a chest ( which uses 300 gold ) , this value decreases by 4. if I open 3 chests, it would be, 65522878 - 4 = 65522874 - 4 = 65522870 - 6 = 65522864. from time to time, it's -4 then -4 then -4 then -6.
what I did was, add 8 to see if I could get 600 worth of gold, nothing.
I checked the box under Active, to lock the value and leave it unchanged, nothing.
Not sure how to handle this...any help would be appreciated, thanks!

[rog9001]

That may not be gold. Do changed/unchanged to be sure. If you see that the value which you have right now is the only one remaining after changed/unchanged search then idk what to do. But if you find another value which when activated your gold doesn't decrease/increase then you can mess around with that and see what you can make out of it (I mostly search for a sub or add next to the instruction I get after pressing F5).

[popo84]

Hi, thanks for the reply. I did that, but I am left with too many values, at some point, it gets stuck at about 400+ values that even using the change/unchange just keeps it at that amount. Also, the gold is displayed in this format: if say I have 2000, it will show as 2,000.
I tried searching for float, I ended up with a value 1.433998001E34 -30 something, don't remember.

[rog9001]

[popo84]

alright, I got 3 values. 4bytes, which is a display value, since every time I edit that, it changes back...
other 2 values are a d or double and the other one is a S.
I added them to the table, changed it to 4bytes. Added few zeros at the end of each value, and nothing...doesn't seem to change, yet when I add or spend gold, these values changes...

[Ecoste]

[rog9001]

As Ecoste said

[popo84]

hi, thanks for the reply again...could you please, give me the steps on how it's done? never done it before...

Ok update: I found the display value, then added it to the table, then right clicked and went to memory viewer. Then, tried to find the flashing red numbers. I found 3, added them to the list, edit them. Still goes back...

[Ecoste]

[rog9001]

Ok well basically here are a few basic steps to get you started with backtracing. First of all find the visual value and press f5 on it after adding it to the table, find out what accesses the address (if to much appears then close the window and press f6 and spend some gold (see what writes to the address)) then after you get a instruction in the small window press on it and then press "Show disassembler" and from there on right click the instruction and press on "find out what addresses this instruction accesses" and make sure that the only address which appears is the visual gold address and nothing else! After you have made sure its only gold then (example):

if you have a instruction lets say

[popo84]

ntdll.RtlImageNtHeader+3E9 - add dword ptr [eax+04],-02

in 4bytes, this is what I found. I checked what wrote to that address and then view. Confusing cause it's an "add" there's no Mov or Xor.

btw, thanks a bunch for taking the time to reply with the steps, I have viewed that video before and didn't help much.

[rog9001]

try changing it to

[popo84]

Hey man, thanks again for your quick replies...I did a little more searches for the value, and the for the visual value. I actually got this...I watched the video you recommended me, but the values/names are a bit different so it's quite confusing tbh. I would rather find how to do it myself, as I want to learn. thanks again for the offer, although I would really appreciate your input and expertise on this. The highlighted line, is the address the money write to. How do I work from here?

[rog9001]

The instruction you have is