-
Member
Why Pixel Botting is Detected
This communication is for the 99.999% of people on this site who are not technical.
Tech Details:
Starting form Windows 8 there's the GetCurrentInputMessageSource function. You can use it, and check the originId enum for the following value:
IMO_INJECTED - The input message has been injected (through the SendInput function) by an application that doesn't have the UIAccess attribute set to TRUE in its manifest file.
Q&A:
Q) What does the above mean?
A) If your bot is using keysend or click commands it will be detected in Windows 8 or higher if the game has implemented the code above.
Q) How does the game detect this?
A) The game client runs a procedure with the above functions. The result is reported back to the game server/db. Your account is flagged as a botter, you get banned/suspended at some point.
Q) Is there a work around?
A) Yes, there are a few. You actually just read one.
Good luck and have fun.
Last edited by Vicer; 08-08-2019 at 04:10 AM.
-
Post Thanks / Like - 1 Thanks
SirGsus (1 members gave Thanks to Vicer for this useful post)
-
For those who prefer the TLDR:
Set the UIAccess flag to TRUE, under the requestedExecutionLevel section, in your solution's Application Manifest. If you're using Visual Studio, see here: Adding an application manifest file.
Code:
<requestedExecutionLevel level="asInvoker" uiAccess="true"/>
-
Post Thanks / Like - 1 Thanks
Sychotix (1 members gave Thanks to Hazzbazzy for this useful post)
-
-
Member
Originally Posted by
Hazzbazzy
For those who prefer the TLDR:
Set the UIAccess flag to TRUE, under the requestedExecutionLevel section, in your solution's
Application Manifest. If you're using Visual Studio, see here:
Adding an application manifest file.
Code:
<requestedExecutionLevel level="asInvoker" uiAccess="true"/>
How would that help? The messages are still injected LLHKF_INJECTED (right?)
-
Member
This is more a issue of an hierarchy concept, just like executing something under administrator privileges, the execution level you use makes you capable of executing things under "the OS hood" or "above the OS", though this is not the most clear explanation, basically a warden could help himself with different libraries that Windows/NET Framework provides and could easily detect your method of using them against him.
-
Member
Is this the detection method they use? I can't think of external applications that could possibly be legit and use SendInput ?
Last edited by Hazzbazzy; 4 Weeks Ago at 08:21 AM.
-
Personally I think Blizzard simply looks for known pixel bots in memory or on the hard drive. If you keep a pixel bot completely private, Blizzard never gets to hear about it and you won't get banned (although I've not tested this personally). It is only when the pixel bot gets popular in the public domain (like Chimpeon did) will it become detected by Blizzard. There are ways to circumvent detection - using the pixel bot on a PC remote from WOW being one... Chimpeon 101 - Using Chimpeon on a Remote PC
-
Active Member
Solution: Use Arduino and simulate real keyboard input, no need to over-complicate an easy work around.
-
Active Member
WINNER OF THE BEST BOT DEVELOPER COMPETITION
Originally Posted by
KKira
Solution: Use Arduino and simulate real keyboard input, no need to over-complicate an easy work around.
Yes, very simple method! thx
at same go i made artificial-intelligence-one-button-bot with arduino
-
Member
Has anyone found a solution to this, minus purchasing and coding a physical button pressing bot?
-
What bot isnt detected? lol
-
Active Member
I’m using python with win32 api that translates C functions into python. Is it certain it will use the same sendkey APIs? How can i test the response from GetCurrentInputMessageSource without writing a C program?
All im really doing, is pressing 1 key at a random interval over and over to snipe limited items from vendors. (The buying is handled by a macro, completely within WOW’s own function)
What is the likelyhood that i’d get caught? I’m not using injection or focus window or anything of that nature.
Last edited by kamil234; 10-15-2019 at 05:31 PM.
-
Member
there is an academic paper on cheats and stuff.. you guys should read it and be amazed of what they can do without scanning anything in your computer. if you manage to make a bot using real hardware input it will get detected
Last edited by REGELE33; 10-16-2019 at 06:36 AM.
-
Active Member
Originally Posted by
REGELE33
there is an academic paper on cheats and stuff.. you guys should read it and be amazed of what they can do without scanning anything in your computer. if you manage to make a bot using real hardware input it will get detected
Feel free to link it, we can't guess its name or URL.
-
Member
read it years ago and i can;t find the bookmark for it. basically they said that mouse movement its like an online fingerprint where no two people are the same. if blizzard tracks it and you gonna play at your friend house they can tell its you. to beat it you would need human movement+hardware input (seems like in wow input doesn't matter that much) and it can be done. then they can't ban you because its basically a human playing )) has anyone been falsely banned for botting ?