Sometimes I just can't understand...
Is it really so easy?
Turn on proxy, made a CCleaner, create email and that is all???
Then why sites buy, creates or renting a anti-fraud system?
Sites can see your computer. If you do not change anything then what do you hope?
Even the most ordinary IP can fuck you.
Every IP has its own "Fraud-Score", When 0 - best, 100 - shit.
Sites can see if he proxy.
There are services that analyze email and give "reputation". And much more...
Here is a list of what sites can see :
Identifier levels – Hardware:
* Monitor - Screen Resolution and color depth.
* CPU – Number of cores.
* Graphics Card - Brand, Model, Specifications.
* battery - Charge percentage, Charge status.
* RAM - Memory size.
* Microphone.
* Webcam - Brand, Model.
* USB Devices - Keyboard, Mouse etc…
Identifier levels – Operating system:
* Type and version OS - Headers, Canvas, Font.
# Headers - Site can see your “user-agent”.
User-agent can give information about: Browser (Firefox, Chrome, Opera etc…), Browser version, OS (Mac, Win, Linux, Android), OS version, System type (32 or 64 bit).
# Canvas – Canvas used to draw graphics via scripting (usually JavaScript).
Canvas FP (FingerPrint) can tell about your OS.
# Font – Font FP.
Every OS has it own fonts for every version.
Headers, Canvas, Font should fit together.
* Computer name.
* Geolocation – IP address, Nearest WiFi, Windows Location Service. (Basic)
# IP address – The public IP address can show the approximate location.
# Nearest WiFi - Sometimes sites ask permission for your location. (If you use WiFi, He can see the nearest points).
# Win location service - The site must be allowed to see locations through windows location service. You can disable the service.
* keyboard layouts.
* Timezone and time.
The time & timezone must match the location.
* Local IP address – WebRTC.
Web Real-Time Communications (WebRTC) is an open source project created by Google to enable peer-to-peer communication in web browsers and mobile applications through application programming interfaces.
It’s can detect real IP.
Identifier levels – Browser:
The browser consists of 3 levels:
1) Functions:
* User-Agent.
* Browser Engine.
* WebGL Extensions.
The extensions must match the browser version, browser engine and graphics card.
* API Support – USB Devices.
Firefox don’t have this support (It’s good).
* CSS Support.
* WebRTC.
2) Properties: Properties allow to unique the browser.
* Hardware graphics acceleration (Graphics card).
* Overall performance.
With the help of this, the site can understand who is in front of him (Person, Virtual machine or server).
* Settings.
* Regional settings.
The site checks if the languages and time match the location/IP.
3) FP (FingerPrint):
Independents:
* Canvas
* WebGL
* AudioContext
* Font FP
* ClientRect
* Engine FP
Dependents:
* Ubercookie
* Bluecava
* JS FP
Identifier levels – Network:
* IPv4
* IPv6
* DNS
* WebRTC IP (oRTC, AhoyRTC)
* Open ports
* TLS/SSL FP
* Distance (Hops)
* Bilateral ping
IP analysis:
* ASN number
* Subnet
* Fraud list
* Black list
* IP source
* IP type
* Region
* Bot check
Maybe I really do not understand something and everything is simple?
P.S. I wrote this list from what studied, so better if you check it yourself.
