Quote:
Originally Posted by ddrake999999
buddy, i need to share this. a few weeks ago i was basically going crazy dealing with hwid bans. i tried almost every product on this forum — none of them lasted more than 3 days without getting hit with another hwid ban. i also checked your guide, but since my english isn’t great, it was pretty hard to follow.
then i saw zsoftware offering a trial for their rust product with a spoofer included — and somehow, it just worked. zsoftware is the only provider that actually helped me bypass hwid bans on rust and fortnite. he gave me a 1-week trial key, and during that week i used cheats pretty heavily and kinda obviously. i’m sure i got reported a lot, but i never got kicked from the game.
the only downside is that zsoftware’s spoofer only comes bundled with rust and it’s slot-limited. i can’t afford to buy it right now been spending way too much on fn tournaments lately.
AMD GPU's seem to have unique DSN's, tho i cant confirm due to lack of data
thanks for the 1-week trial, i really appreciate it — that was honestly crazy for me :yes:
|
I appreciate the kind words, but unfortunately it isnt working for everyone either. Been investigating the issue and it seems like a mixed bag. For some disabling TPM will do it, others you need to spoof the ARP table and Mac address (in a different way then usual) and then there is the last part i am trying to figure out still.
For thread owner but other spoofer devs, this might be interesting for you. EAC is collecting ACPI tables via ntoskrnl export HalAcpiGetTableEx, while most of this seems to be DMA, they do collect MCFG table at the same time as network related serials (MAC). Here you can find the physical address of your PCIE configuration space, which some DMA devs here might know can contain so called Device Serial Numbers (DSN). It could be entirely possible that EAC is just doing it for DMA, but them collecting it at the same time they do HWID checks and the massive potential (will explain later) behind using DSN's makes it quite likely they are at least collecting it
The issue with this is that DSN numbers are stored in memory that you can't modify in a traditional sense, so spoofing them might be out the window. perm spoofing these could be impossible on certain devices too. You could try and modify MCFG to give a different physical address, but it can be integrity checked incredibly easily. Only real way to accomplish fool proof spoofing here is with a hypervisor, from my observation
Quote:
Originally Posted by ZSOFTWARE
I appreciate the kind words, but unfortunately it isnt working for everyone either. Been investigating the issue and it seems like a mixed bag. For some disabling TPM will do it, others you need to spoof the ARP table and Mac address (in a different way then usual) and then there is the last part i am trying to figure out still.
For thread owner but other spoofer devs, this might be interesting for you. EAC is collecting ACPI tables via ntoskrnl export HalAcpiGetTableEx, while most of this seems to be DMA, they do collect MCFG table at the same time as network related serials (MAC). Here you can find the physical address of your PCIE configuration space, which some DMA devs here might know can contain so called Device Serial Numbers (DSN). It could be entirely possible that EAC is just doing it for DMA, but them collecting it at the same time they do HWID checks and the massive potential (will explain later) behind using DSN's makes it quite likely they are at least collecting it
The issue with this is that DSN numbers are stored in memory that you can't modify in a traditional sense, so spoofing them might be out the window. perm spoofing these could be impossible on certain devices too. You could try and modify MCFG to give a different physical address, but it can be integrity checked incredibly easily. Only real way to accomplish fool proof spoofing here is with a hypervisor, from my observation
|
edit: important note, many devices don't have DSN's or they share them with others. so it is possible to make this HWID check useless by having the right machine. I have been collecting data from some users and there is a link between it