Warden detection?

[juggenizer]

Hi!

First of all i would like to say that i did use this application a lot before patch 6.1.2. Then i stopped for a while, and started last week again. But only after 5 hours i got instant 72h ban. I'm just wondering if it is likely too be bad luck and blizz detected suspicious activity, or does the WoW Warden detect this app nowadays?
"Warden uses API function calls to collect data on open programs on the user's computer and sends it back to Blizzard servers as hash values to be compared to those of known cheating programs.[1] Privacy advocates consider the program to be spyware.[2]" - http://wowwiki.wikia.com/Warden_%28software%29

[gmillerd]

Are you really running a program named fishbot or ultimate fishbot? What do you see as the name of it in taskmgr.exe Did you download it or compile it yourself?

Its likely remarkably sad to run a program like this with the default name and default project name. I would recompile with wowhead client or logitech, etc

It should be strenghtened up on this front by default, but i believe he stopped actively developing it in vanilla with warden1

[juggenizer]

Downloaded it. Yes maybe i should recompile it... The process is called UltimateFishBot 32 bit (UltimateFishBot v 4.0). But will the change of the process name really help?

[gmillerd]

the apps are being fingerprinted to known apps they have collected, and
apps that read wow memory regions of course, much like a virus scanner.
recompile, why not change the project name from 'obviousbot' and remove
strings and resources not needed to avoid this.

On Mon, May 25, 2015 at 3:42 PM, juggenizer notifications@github.com
wrote:

Downloaded it. Yes maybe i should recompile it... The process is called
UltimateFishBot 32 bit (UltimateFishBot v 4.0). But will the change of the
process name really help?

—
Reply to this email directly or view it on GitHub
#54 (comment)
.

Gabriel Millerd

[juggenizer]

That could work, but before i start refactor any code i'll try to have the app running but not fishing. Could be a good experiment to see if warden detects it or if it was just "suspicius activity" when i was banned :)

[gmillerd]

I use the fishingbuddy addon like the rest of the world, so i dont need all
the fancy stuff except for the one button. i dont need the frozen food
icon, etc.

dont need to refactor really.

On Mon, May 25, 2015 at 3:51 PM, juggenizer notifications@github.com
wrote:

That could work, but before i start refactor any code i'll try to have the
app running but not fishing. Could be a good experiment to see if warden
detects it or if it was just "suspicius activity" when i was banned :)

—
Reply to this email directly or view it on GitHub
#54 (comment)
.

Gabriel Millerd

[juggenizer]

But that addon is not automated, right?

[gmillerd]

All the of bait, spear, lure stuff is

On Monday, May 25, 2015, juggenizer notifications@github.com wrote:

But that addon is not automated, right?

—
Reply to this email directly or view it on GitHub
#54 (comment)
.

Gabriel Millerd

[juggenizer]

Okay. I did some changes in the code, re-compiled it. Then tested it for a couple of days straight, no detection! Success!

[gmillerd]

You should forkit on GitHub

On Saturday, May 30, 2015, juggenizer notifications@github.com wrote:

Okay. I did some changes in the code, re-compiled it. Then tested it for a
couple of days straight, no detection! Success!

—
Reply to this email directly or view it on GitHub
#54 (comment)
.

Gabriel Millerd

[muzza01]

Sorry, could anyone please explain how to re-compile the code to have it so the program has a different name in the processor tree? I'm really inexperienced in coding :(

[Gasur]

Here you go.

[juggenizer]

U could Re compile it for you. I've been using it now with my own build for
quite a while. Not a single detection or warning.
On 5 Jul 2016 14:38, "Gasur" notifications@github.com wrote:

Here you go
#74 (comment)
.

—
You are receiving this because you modified the open/close state.
Reply to this email directly, view it on GitHub
#54 (comment),
or mute the thread
https://github.com/notifications/unsubscribe/ADIi-TI6FjXSSgo-optszxAAILS05ps6ks5qSlA7gaJpZM4EpHzU
.

[Gasur]

Sure, but his question was how to change the name in the process tree/task manager. I showed him exactly how to :)

[juggenizer]

Ok. Good then. I would suggest to change all strings containing the
characters "bot" as well.
On 5 Jul 2016 19:54, "Gasur" notifications@github.com wrote:

Sure, but his question was how to change the name in the process tree/task
manager. I showed him exactly how to :)

—
You are receiving this because you modified the open/close state.
Reply to this email directly, view it on GitHub
#54 (comment),
or mute the thread
https://github.com/notifications/unsubscribe/ADIi-cmAyRnKT5TgByBPSXOOk5PUd6eTks5qSppSgaJpZM4EpHzU
.

[Gasur]

Yep, I also tell him how to do that (where it's changed in the task manager). Just edit the AssemblyInfo.cs & you're good to go. Takes 2 minutes.

[juggenizer]

Ye. Maybe it's possible to do a script so that edit the assemblyinfo file
On 6 Jul 2016 05:06, "Gasur" notifications@github.com wrote:

Yep, I also tell him how to do that (where it's changed in the task
manager). Just edit the AssemblyInfo.cs & you're good to go. Takes 2
minutes.

—
You are receiving this because you modified the open/close state.
Reply to this email directly, view it on GitHub
#54 (comment),
or mute the thread
https://github.com/notifications/unsubscribe/ADIi-WxQMRdQDMb1DaTamvtjPGwkYYnLks5qSxvCgaJpZM4EpHzU
.

[Gasur]

It is. But is it worth it? Maybe, maybe not.

Seems like the developers of this bot has stopped supporting it, so I doubt he will.

[Gasur]

The main issue with it, is being that you need to have visual studio or at least a compiler anyways. If you already have visual studio, it's so easy to change yourself. Literally open the file/project, change it to whatever you want - and then compile/build. So the hard steps are not really changing the file, but more so that people refuse to do two minutes of googling or trail and error. Google "How to compile C# project" or something along those lines, with the directions I showed. It should be sufficient to be honest.

[juggenizer]

Yes, indeed it is necessary to recompile the project each time. You can do
it without VS as well, of course. If it's worth it? It depends on the
demand I guess. And this build is really unstable. Like, there's so many
unnecessary features as well. And some of them doesn't work. I would like
to strip it down a bit too.
On 8 Jul 2016 01:19, "Gasur" notifications@github.com wrote:

The main issue with it, is being that you need to have visual studio or at
least a compiler anyways. If you already have visual studio, it's so easy
to change yourself. Literally open the file/project, change it to whatever
you want - and then compile/build. So the hard steps are not really
changing the file, but more so that people refuse to do two minutes of
googling or trail and error. Google "How to compile C# project" or
something along those lines, with the directions I showed. It should be
sufficient to be honest.

—
You are receiving this because you modified the open/close state.
Reply to this email directly, view it on GitHub
#54 (comment),
or mute the thread
https://github.com/notifications/unsubscribe/ADIi-RvQM9u0W76FOmG9LL34tqNCMUr2ks5qTYlpgaJpZM4EpHzU
.

[Gasur]

The problem is that this "script" will turn out to be a program, and with it, you need the whole compiler which contain a large chunk of data. Possibly even in the hundreds of megabytes (haven't checked). So the user have to download a lot regardless. You could always download the latest release (see the tags), so you don't go by the development version. If you want to strip it down and start working on it again, I would suggest you fork it and I'll be willing to lend a hand wherever needed.