In the network, you can often find user reports that various scanners detect the use of antidetect. However, the reason for this can be not only in the browser itself but also in the user's actions. We have collected all the basic parameters due to which it can be seen that the user is spoofing fingerprints and suggested ways how you can reduce the risk of detection. 🤏
Why there are emulation problems in the first place 😐
Any anti-detect has two functions:
Browser fingerprint spoofing. Anti-detect must change real data user's digital fingerprint.
Emulation. Making you look as much like a normal user as possible.
The truth is that so far there is not a single anti-detector in the public domain that can completely turn you into a regular user.
This is due to the fact that each antifraud system has its own unique mechanisms of operation: they analyze different amounts of data, in a different order and draw conclusions from this data in different ways. And just because of this, it happens that one anti-detect is better suited for Twitter and another for Zuckerberg's social network.
At the same time, there are some recommendations, following which you can significantly increase the quality of emulation.
The main parameters that make print spoofing visible
The following are the main parameters by which data spoofing is most often seen:
1️⃣ IP address
This is one of the most popular parameters to have problems with.
What's the problem 🤔
Not hiding the real IP. Some users think that antidetect software automatically change their IP address. In reality, antidetects have the functionality to change the data, but the new IP address itself has to be obtained somewhere. To do this, you need to buy a proxy or VPN. Some browsers have a built-in option to buy proxies from company partners.
Using proxies from the wrong geo. For example, a user plans to work with Brazilian users and creates a Brazilian account, but then purchases Russian proxies. As a result, his data is detected as Russian, which can cause problems on the site.
Buying inappropriate proxies. In order to save money, users buy cheap proxies or even use free ones. In this case, there is a risk that the IP has already been used many times and is blocked by most popular sites. Moreover, such proxies can be dangerous as they can be used by malicious users.
What to do❓
Use proxies when working with antidetect, otherwise the real IP address will not be masked.
Buy proxies only from trusted sellers.
Make sure that the IP address matches the geo of your account.
Select proxies depending on your tasks. The most secure proxies are those with HTTPS and SOCKS5 protocols. However, if you need many IP addresses for different profiles, it is better to choose mobile proxies. They are more expensive, but due to the ability to update IPs, they can be much cheaper.
2️⃣ Fonts
One of the main parameters that gives away the fact that the print has been spoofed.
What's the problem 🤔
Every operating system has a set of fonts: standard and system fonts. Standard fonts include the well-known fonts: Arial, Times New Roman, etc. Their peculiarity is that they can be found in any operating system.
But system fonts can be unique for each particular system.
How it works: let's imagine that a user has a Windows laptop, but in his digital fingerprint he specifies macOS. Because of the differences in the system fonts, anti-fraud systems will realize that he is encrypting his digital footprint. Moreover, the difference will be visible not only in the font set itself, but also in their design: macOS and Windows may display even the same font differently.
What to do❓
If possible, it is very important to select the operating system of the device you plan to work from in the digital anti-detection fingerprint.
Alternatively, you can install Linux as a second operating system and then install the system fonts of the OS you want on it. Linux acts as an "intermediate" system between Windows and MacOS, so you can use it to smooth out the differences in fonts.
3️⃣ Browser
All anti-detectors are based on some standard browser. Typically, this is Chrome (Chromium) or Firefox. Chrome is the same as Chromium, just with Google services enabled and some changes to the browser's internal functionality.
What's the problem 🤔
Each browser has its own unique settings and features that set it apart from others. While normal users won't notice these differences, anti-fraud systems definitely will. This is how they will detect that the user is tampering with the fingerprint.
What to do❓
You need to pay attention to make sure that the digital fingerprint has data that matches the anti-detection browser. This is shown in Useragent. All antidetect vendors make it clear which browsers they are based on. For example, Dolphin{anty} runs on Chromium.
4️⃣ Device Specifications
Some users, in an attempt to convince antifraud in the reality of their fingerprint, change the data of the device parameters: Audio, Canvas 2D (just Canvas), Canvas 3D, etc.
What's the problem 🤔
The fingerprint can become:
unrealistic, since parameters are linked in device fingerprints, manual modification may result in a combination of data that does not occur at all or occurs too infrequently.
too unique, which will attract the attention of anti-fraud systems.
What to do❓
Do not change the print settings that affect the device itself: Canvas, Audio, WebGL.
5️⃣ Mobile device on the web
Some users are trying to emulate a mobile device from the web versions of antidetect.
What's the problem 🤔
Mobile devices differ from the web version in hundreds of ways, including screen resolution, network performance, data transfer methods, device types, etc. Since anti-detect browsers don't provide 100% emulation even for the web version, the emulation quality will be even lower for the mobile version.
What to do❓
Even if your anti-detector has functionality to emulate the web version for mobile, it is better to use it with caution and not to test it on accounts that are important to you. Otherwise, there is a risk that they may be sent for verification or even blocked.