Ban Using Device ID

Inscrit
6 Juillet 2017
Messages
8
Reactions
6
#1
Hello
After some tests , i have found the logic behind some mystery bans. (Anti-Bot)
So here is the Deal :
send_device_infos can be found inside the dofus client .

postParams["session_id"] = toPathValue(session_id);
postParams["connection_type"] = toPathValue(connection_type);
postParams["client_type"] = toPathValue(client_type);
postParams["os"] = toPathValue(os);
postParams["device"] = toPathValue(device);
postParams["partner"] = toPathValue(partner);
postParams["device_uid"] = toPathValue(device_uid);
postParams["session_id_string"] = toPathValue(session_id_string);




so , my theory is :
When you create a new bot account , you will send the device_uid once you connect using dofus client (this can be found under the AppData folder inside one of the dofus subfolders Named device_uid.dat )

the account will be linked to that computer once you connect to the dofus client , since the device_uid is made using your Cpu , Ram , and other hardware and mac address I think (last time I checked 2014)

Now that the account is linked. even if you change IP or run on a different pc. When another account linked to the same device_uid gets banned all other accounts will get banned.

No you might ask what if I don't connect my bot to any dofus client ... ?
Well you will get banned !! Because an account with No device_uid is an account that don't use the official Dofus Client so ankama will know Right away your account is botting.

So how to combat this ?

Virtual Pc

Create a Virtual pc , and clone it , and each time you create a new account and connect it , just shut down the computer and change the Ram , Lan , Cpu , Cores settings , and you will find that the device_uid is changing each time I think .


you can Replace the device_uid by program if you want, you just have to find the Code responsible for creating the device_uid file and Trick the client into making a different one by intercepting the Post Request.

If you find the wrong , please let me know .
 
Inscrit
10 Mai 2015
Messages
357
Reactions
47
#2
Hi,
I don't think that devide_uid is made using CPU RAM etc... You can check how it is generated with game sources (DofusInvokers.swf)

Second thing, I don't think this value is used by anti-bot because this value is used to send stats on the server and sometimes the server don't ask this informations.
 
Inscrit
6 Juillet 2017
Messages
8
Reactions
6
#3
Hi,
I don't think that devide_uid is made using CPU RAM etc... You can check how it is generated with game sources (DofusInvokers.swf)

Second thing, I don't think this value is used by anti-bot because this value is used to send stats on the server and sometimes the server don't ask this informations.
well I had about 20 accounts banned fresh with new IP (seprate) , because I connected using a 8 year old pc that had some accounts banned on it 6 years ago .
 
Inscrit
26 Janvier 2016
Messages
101
Reactions
33
#4
well I had about 20 accounts banned fresh with new IP (seprate) , because I connected using a 8 year old pc that had some accounts banned on it 6 years ago .
ça en fait pas une preuve de l'utilisation de ce système de ban ...
 
Haut Bas