Banwave in effect
So, unless you live under a rock, you’ve noticed there is a rather wide-spread banwave in effect right now. Finding the proper sources are providing difficult due to the overwhelming amount of cross-contamination from the many sources reporting bans.
If any of you have been banned, please write a list of the Bots/Hacks you have used in the past 4 weeks, preferably in chronological order.
Clarification (Updated):
Well, after searching around for a while with Harko; he found the culprit. He, being on Windows XP, ran his logger over LuaNinja.dll and found that it was in-fact reporting back detection flags. However, when i ran my logger over LuaNinja, it returned clean flags.
I run Windows 7, as does Cypher; which would appear to be how he missed the Windows XP incompatibility.
Long story short? LuaNinja’s protection only worked on certain operating systems and Warden has been detecting LuaNinja since December 19th.
Update #02:
It’s got to be something in the client – too many reports contradicting earlier theories.
42e3d28a01319e58661ca4c201e7dc376ee1e7fa
WowInfinity and LuaNinja, thats it. Nobody has reported any bans on wowinfinity forums yet.
Oops, sorry. Maclone’s object radar thing too. I’ve used all of these in the past couple months regularly.
Pirox (had for over a year, used a lot inc a couple days ago)
luaninja about a month ago
Mr.fish it, 11 hours ago.
Luaninja 2 days ago.
Hope im right with that order now :P
It’s Luaninja folks.
Gremlin last 3 or 4 weeks, then Gatherbuddy last 3 or 4 days.
Main account: Only used LuaNinja
Bot account 1: Omega, private gathering bot, and LuaNinja
Bot account 2: Private gathering bot and LuaNinja
Sidenote: Have been and am still currently running Honorbuddy on 1 account.
Forgot to add that all were in use at the time of being banned except Omega. I used Omega on the 10th to check out the API changes.
all my pirox bot accounts are still runing fine. it seems it will be a interesting day and i hope all my accounts survive :) no Ban at the moment
Honorbuddy / gatherbuddy with luaninja
2 accounts banned
Lulaninja for weeks
Honor Buddy over the last week.
I ran it once, to automate some disenchanting like two weeks ago. I run on Win7 also, and I got hit. Obv. the ‘protection’ didn’t work on Win7 either.
Which architecture? x64 or x86?
Kynox, x64 (Win7 Pro)
Likwise, W7 x64 with Luaninja. Bans on accounts aswell on which I didn’t use it either.
At this stage, I doubt they are combining accounts. You probably logged in with your other account while the client was injected.
Correct that, after some more thinking, it was only the accounts I used it on. Still only on W7x64
Im running Windows 7 x64 Kynox
Got banned too, luaninja, w7 x64.
luaninja
mrfishit
those 2 only
kynox, as always, thank you for the fast infos about whats going on with the warden.
Mr. Fishit. Account banned
muhaaaa hahaha pirox is save!!!! xD you lose! xD
So it seems both x86 & x64 of Win7 and WinXP (couldn’t check with anyone using Vista) got hit, regardless. Seems this is not simply a case of WinXP compability.
I think the fact that Cypher made fun of ‘Wardenguy’ in his post on MMOwned, triggered his fury. ^^
Only Programms I used ever on my Computer is
* Glider – 31.03.2008 to 12.3.2009 – No Ban
* Gnometools – 21.04 2009 until now – No Ban
Good n00z, everyone!
Blizzard can check the amount of times you got flagged for running protected LUA commands. I simply used it once to just run the test command, but cba to bother with the scripts in the end which saved me.
Account cancellation was reverted to a 3 hours suspension, and is once again open.
So are the banwaves continuing? Should I be worried about being hit if I used Luaninja for about an hour last night created one script used it on a target dummy then logged off. :(
Hope I don’t get the banhammer… oh well guess that is the chance you take using any sort of external tool like that.
Yeah they do, check out some of the LUA files that relate to parsing inside the client, there’s something VERY VERY small that returns a yes if the client is able to run secure code.
Of course, not that I should say much about it :3
look at the comments its easy to find.
The detection had nothing to do with lua files or “secure” checks.
HashMeNot, can you confirm they flag accounts that use protected LUA commands too many times? They can’t check it on the server so it must be some protection implemented in the client itself. I wonder how though they inform the server about it.
How did you contact them to tell them you only used it once?
So, luaninja fails then.
Used it maybe twice on windows 7 x64. Woke up this morning to find my account banned, so, avoid it people.
HB and GB Accounts both fine…
But my one Gremlin Account got hit (on the same IP)
So much for Zuruss´s “Reverser” and Killswitch
(muhaha thanks for the Lying ….!!!)
to bad it did not hit Pirox
Yeah i run vista accounts they got hit.
Any other theories ?
I like the patch theory on gremlin website.
Only problem is GB / HB seem to be safe.
(Unless blizzard is banning accounts in a certain pattern to allow others to believe they are safe.
This would explain why there was 20+ days of detection to allow them organize the wave. Theory)
@dergingo i wish you a Piroxbannwave tonight
Meh, let’s hope pirox doesn’t get hit.
I have 5 accounts.
Windowx xp 64
1 used with Gremlin (flybot)
4 used with HonorBuddy
ONLY the Gremlin account got banned (so far)
XP 64 is based on Server 2003 Code so the Reverser Bullshit Zuruss says cant be true then….
got 3 accounts activley used eBot, Omega and wowRobot no bans on any of them. OS is XP SP3 x86
Urgh first time posting publicly. But i have to post this, HAHA Gremlin’s comment was uncalled for.
Yea Zuruss was an ass when AIO went down, but i believe his going through hell now, i know this cause i have experienced it, when AIO auth server went down. In addition to having no income. You gotta deal with massive influx of complains and flames.
I have no clue about his financial situation, but as for me it aint pleasent having to survive with 10 bucks a day. Manage to learn a few good low cost recipes though :D
To be honest, there is no 100% guaranteed safe bot out there. We just have to do our best to keep it safe.
I am only happy that the banwave didnt get us, and a warning that we need to be extremely careful. Also it shows that we have no relations to mimic finally i can say it jeez thats the only thing thats been bugging me.
Last note, keep the comments relevant to the issue people. Kynox could you please delete HAHA Gremlins comment. Also my comment if you deem it irrelevant. Never like getting involved with flames.
Cheers
Actually,
There are 100% safe bots out there… They’re private…
Thanks for that clarification kynox, Luaninja owned WoW in a way no other hacks would, but i guess its hard to keep it safe when it comes into subsystem of a game ;) feels good to know i was flagged long time ago.
Omega / Mr. FishIt (tracking only) No bans as of yet
Zuruss got what he deserved because he promised a Memory read only Gremlin but did rather make a PVP and Flybot…
Interesting thought you have with Update #2. This makes me more concerned, if they are starting to do client changes again, there is a greater chance of some popular bots getting caught. It now makes me curious if HonnorBuddy’s Lua.DoString is a major risk.
42e3d28a01319e58661ca4c201e7dc376ee1e7fa ?
:)
My personal bets for detections are LUA DoString executions and movement. If I was on their side these are the two things I’d rig as it’s almost impossible to write a bot without using these two.
Actually blackdot, using doString is just a crutch. Everything can be done by directly using the C++ based functions. It’s just that the LUA functions have lots of documentation so it’s easier to reverse them and so many people use the LUA functions instead of going a bit deeper.
I coded my bot without using any LUA dostring and it is capable of handling everything including all raid positions except for navigation and some tanking things.
Using GatherBuddy + Honor buddy windows 7 + xp no bans! 5 accounts
1 acc – Aio + Gatgerbuddy = ban lifetime ( Use of third-party software )
2 acc – Aio + Gatherbuddy = ban 72 hours ( trade gold )
Can’t lie at how hilarious this is… Cypher and Kynox have been beaten by the Warden Guy =/… I agree its each and every users fault for using any 3rd party apps with their accounts, but it goes to show, even the self proclaimed LUA/Warden Experts really aren’t as good as they think ^_^
I can’t lie at how hilarious your stance is. We don’t claim to be the masters of everything related to Warden, in-fact what allowed Warden to detect LuaNinja came from a source no-one monitored, and had no reason to monitor up until this point. * In addition to this point, Mercury and Lax (The two people who know more about Warden than any other) were beaten by him on a number of occasions.
He out-smarted us, and the consequences is that we now monitor the source used; narrowing the means of detection paths down even further.
What doesn’t kill you, only makes you stronger.
You know, it doesn’t take a genius to figure out that running protected LUA commands (being lazy) is probably many times more dangerous then writing your own code and just executing the LUA functions directly from inside or outside.
Anyone who didn’t see this coming needs to get a mental health check.