UPDATE: Regarding the recent 3DS banwave

fb-3ds-400x400.jpg

It appears that users are being banned from 3DS online services, en masse. There's no direct cause right now, and seemingly no linking factor. This post is meant as an announcement for users, to be wary, and that GBAtemp will keep you updated as soon as more info rolls in. If you have been banned, please post in the thread below, and we will try to keep tabs on the situation. To be extra sure, it can't hurt to turn off your 3DS's wireless capabilities, so you might as well do that for now.

Edit 1: it appears that e-Shop access isn't restricted if you are banned.

Edit 2: A caller to Nintendo reported that the company said this ban is due to "unauthorized software usage".

Edit 3: @LinkSoraZelda is collecting info. Contact him if you are banned.

Edit 4: Click and fill this out if you were BANNED.

Edit 5:
[11:28:19 PM] Clector: Curiously the page of that error in Nintendo Support website used to have this:Error Code: 002-0102 Situation: You receive the error code 002-0102 when attempting to connect online. What to Do: If you continue to experience this issue, please contact Nintendo by calling 1-800-255-3700. Representatives are available from 6 a.m. to 7 p.m., Pacific Time, 7 days a week.
[11:28:44 PM] Clector: Now it says this: What to Do: If you are experiencing this error code, your Nintendo 3DS family system has been banned due to unauthorized system modifications, play of unauthorized versions of one or more games, and/or connecting to the official game servers in violation of our terms of service. This ban is effective immediately and requests to remove the ban will not be processed.
Thanks to @Joom

Edit 6: Aurora Wright is taking another poll here

Edit 7: Not a lot is known but

There are bans happening, they are happening in all regions.
All models in the 3ds family seem to be candidates for banning.
There is no indication they will be anything other than permanent.
A game or DLC may end up being a cause but there is no one game or DLC that ties banned users together.
The cause or causes are as yet unknown, though it does seem to be related to modifications. Reports of unmodified consoles being banned are as yet unproven.
The banning is tied to something you can modify, thus you can unban. Doing it while the causes are unknown is likely only going to burn a working token though.
There are semi public tokens out there, Nintendo knows how to browse a forum as well as you so don't be surprised if they also get banned.
It does not seem to be limited to a given base firmware version, it does not seem to be limited to any one custom firmware type. There is some speculation that older hacking methods are not being hit as hard but nothing to confirm this yet.
The data collection could have happened this morning, or it could have been months in the making.
A simple check to see is checking your friends list, by itself it will not ban you.
Some are turning their wifi off. It is doubtful this will be of much use and being banned does not seem to come with any downsides that wifi being off will not also mimic.
You may have escaped a ban thus far but it could happen at any point. It could be that they stop in the future, it has happened on other consoles, but you would be living in hope rather than any particularly well founded logic.
The bans are done on the side of Nintendo's servers rather than your 3ds so there is also that.

If you hack your devices/games then their online functionality may be troubled. This has been known for decades, Nintendo seems to have finally caught up with that.

Please continue to share information with the thread or the links in previous edits.

Update 5/30

HOW TO HELP AVOID BANS (we think)​

If I was to guess from the information we have gathered since the ban wave, it seems likely that they are looking for TitleIDs that don't exist. Homebrew shows up in the activity log as the Download Play app, and fake CIA's show up as just ??????. That last one is what I'm guessing they are looking for.

If you are not banned yet or before you unban yourself, go into your friends list, choose settings, and turn off the option to "show friends what game you are playing." This will prevent you from playing games online with friends, so turn it back on when you wanna game with someone, but ALWAYS keep it off when running custom CIAs. Next, go into system settings -> internet settings -> spotpass, and turn off BOTH options. One is auto download software, the other sends system information to Nintendo. Also, make sure you don't have your favorite title set to something stupid like FBI or any other non-Nintendo CIA.

Its VERY likely that these options are what tipped off Nintendo, but we aren't 100% certain yet. The amount of banned people that had one of these options turned on was over 80% for each. If I was to assume that some of those people overlap, its very possible (but not confirmed) that 100% of banned people in the survey had at least one of those options turned on. I personally had all of them off and I have TONS of reasons for Nintendo to ban me.... yet I am not banned (yet).

Another bit of advice: Only run custom CIAs when offline, and after you close them, run a "legit" game like Smash Bros. or something before shutting down or going back online. This way your most recent title won't show up as a fake CIA

Current Theories as to what causes a ban
* SpotPass Settings: 8 users out of 46 users that were banned have SpotPass completely shut off, or SpotPass only (no friends list visibility)
* Firmware Version (Luma, Nintendo): Literally all reports ranged from 10.2+, I can get exact numbers for this if you'd like, but all firmwares were affected.
* Firmware Type (A9LH, B9S): 44 of the 126 B9S users that answered were banned, pattern was mirrored for A9LH users as well.
* Homebrew Titles such as FBI, HBL, Luma Updater, Themely, and freeShop: Literally about 98% of users both banned and unbanned had some combination of these applications installed. However the common ones were: FBI, HBL, LumaUpdater and NTR.
* Save Modification: Equal amounts of users on both sides have reported save modification in some form, either with PKSM or another save editor
* System Transfers: 188 users said that they had not previously system transfered, 61 of those users were banned; 16 users said they transferred from a hacked console, only three of them received a ban; 13 said they transferred from a stock system and likewise were banned. The rest of our sample did not answer this question.
* Activity Log Information: A majority of those who have not been banned have said they had NOT cleaned their activity logs. I can get exact numbers for this too on request.

This information is just what I've found. Like I said, there could be variables or things we haven't even checked for yet. But these are things that I feel should be disproven, at least with the current dataset we have.

  • From the information that we've gathered from some people that have used a packet sniffer such as WireShark, the following data is sent to Nintendo's online gaming servers as soon as the 3DS connects to the internet:
    • Amount of time spent online (timer stops when either the system is disconnected from the internet, or connection drops out, then starts the timer again in a new session when it reconnects to the internet).
    • The game being played and amount of time spent on it during that session.
    • The console's unique hexadecimal ID used in the LocalFriendCodeSeedB, along with it's RSA-signed signature.
    • The console's serial number in which is broadcasted from the SoC and is hard coded in the SoC.
    • Friend Code generated on the Nintendo 3DS system, if one has been generated.
    • Internet connection status (either online or offline).
    • The Nintendo Network ID, if there is one linked to it.
    • Even if the sending of SpotPass Information is switched off, or even hiding your currently playing games. It does not prevent the system from sending currently playing information to Nintendo's online gaming servers, it only hides it from your friends in your friend list (like being invisible on the forum, while mods and admins can still see you). Why? Because even people without a Friend Code on their system have been getting banned too!

  • The following data is NOT sent to Nintendo's online gaming servers:
    • The data from the Nintendo 3DS's Activity Log. Oddly enough, while Nintendo does explicitly state that they collect Activity Log data, they're actually referring to their own server's Activity Log, which always tracks every console's online activity, and keeps a record of them that is stored forever. And is only collected in increments of data through a timer and a currently playing list.
    • Games or apps that have not been played, regardless if they're legitimate or not. You only get tracked when you're online and using that game or app.
    • Using games or apps while offline. Even though it is stored on the 3DS console's Activity Log, that data is NOT sent to Nintendo's online gaming servers.
    • Custom Firmware. Though we can't rule out the possibility of them releasing a 3DS update in the future that adds such function to collect MD5 hashes of files and FIRM data and send them to Nintendo online gaming servers (which would also be updated in a maintenance).

  • Things that people think what happens with consoles, but really doesn't:
    • "LocalFriendCodeSeedB is transferred to the system upon doing a system transfer". This is false, the LocalFriendCodeSeedB remains on the system and does not move to another system.
    • "The console generates a LocalFriendCodeSeedB upon first startup". Again, this is false, the LocalFriendCodeSeedB is made during the manufacturing process at Foxconn. It is generated at the factory, flashed to the NAND flash memory storage, then created as an account on Nintendo's online gaming server and Nintendo eShop server immediately when being manufactured. It is absolutely impossible to generate a LocalFriendCodeSeedB and be able to connect to Nintendo's online gaming server and/or Nintendo eShop server, even if you knew the RSA generation key for it. You'd end up with Error Code 002-0102 "This console's online services have been restricted by Nintendo" if you even tried (the error can either mean two things: The hexadecimal ID doesn't exist on the server, or the request to access the hexadecimal ID has been denied which in other words... banned). So a LocalFriendCodeSeedB generator will NEVER happen! Because it's not worth doing, if it can't connect.
    • Switching off "Currently Playing" information. Once again, this does not hide your online activity from Nintendo's online gaming server, it only hides it from your friends.
    • Switching off SpotPass. Nope, this too doesn't hide your online activity from Nintendo's online gaming server, it only opts-out of receiving SpotPass data, sorry.

So pretty much the bottom line is, if anyone has been using custom apps and/or titles not installed through Nintendo eShop while online in the past, guess what? You're screwed! And it is only a matter of time before your console's unique hexadecimal ID in the LocalFriendCodeSeedB is banned from Nintendo's online gaming server. This will mean, your console can't access the Friend List or play any online functions in games.

If you have been online while using custom apps and/or titles not installed through Nintendo eShop and haven't been banned yet, that's because Nintendo hasn't caught up to you yet. They're still going through each unique hexadecimal ID's Activity Log on their server, and by Activity Log, I mean the Activity Log on their server, not the 3DS console's activity log. And it will be only a matter of time before you're banned too.

Thanks to @Platinum Lucario @MadMageKefka and @ShadowEO !
 
D

Deleted User

Guest
So far, at least using freeShop will probably detected by Nintendo.

I believe lots of ppl here hope to use freeShop with the least risk.
And we've know Nintenhell can't collect anything with internet off.
So we need a software that download contents from pc, so that we can install games upgrades without connect to the Internet.

By the way how to post a poll? I wanna see how many ppl have interest in this software.

After all the banwave controlled by Nintendo, why not do some small pieces that probably helpful? :)
 

ShadowEO

Well-Known Member
Member
Joined
Mar 31, 2009
Messages
542
Trophies
0
Age
31
Location
Ohio, USA
XP
436
Country
United States
So far, at least using freeShop will probably detected by Nintendo.

I believe lots of ppl here hope to use freeShop with the least risk.
And we've know Nintenhell can't collect anything with internet off.
So we need a software that download contents from pc, so that we can install games upgrades without connect to the Internet.

By the way how to post a poll? I wanna see how many ppl have interest in this software.

After all the banwave controlled by Nintendo, why not do some small pieces that probably helpful? :)

You can actually see that, it's one of the questions in the poll we ran last night. The link to responses is: https://docs.google.com/spreadsheets/d/1R3QQQtab18zavz0enZpSj5WijAWZFTlwTLjbkMe6cW0/edit?usp=sharing

Freeshop was present in the majority of the responses, both banned and not.
 

deadmaker

Well-Known Member
Newcomer
Joined
Mar 24, 2011
Messages
87
Trophies
1
Age
34
XP
245
Country
Brazil
I have a noob question: I dumped my game carts so that I could play them whenever I wanted. If I play my dumped version of MK7 online, for example, will it count as a pirated game to Nintendo?

Worth mentioning, I've downloaded many things for free in the past, but I am not banned yet.
 
Last edited by deadmaker,

nitroBW

warum nicht?
Member
Joined
Nov 1, 2016
Messages
755
Trophies
0
Age
24
Location
donut piss wasteland
XP
871
Country
Germany
So far, at least using freeShop will probably detected by Nintendo.

I believe lots of ppl here hope to use freeShop with the least risk.
And we've know Nintenhell can't collect anything with internet off.
So we need a software that download contents from pc, so that we can install games upgrades without connect to the Internet.

By the way how to post a poll? I wanna see how many ppl have interest in this software.

After all the banwave controlled by Nintendo, why not do some small pieces that probably helpful? :)
You mean like FunKeyCIA or just using that iso site?
 

ShadowEO

Well-Known Member
Member
Joined
Mar 31, 2009
Messages
542
Trophies
0
Age
31
Location
Ohio, USA
XP
436
Country
United States
I have a noob question: I dumped my game carts so that I could play them whenever I wanted. If I play my dumped version of MK7 online, for example, will it count as a pirated game to Nintendo?
If these are game carts, no. Dumped cartridges have a unique header which your copy will only match your cartridge. As long as you don't share that copy, your dumped copy will continue to look legitimate.
 
  • Like
Reactions: Awakened_Xander

hiten

Well-Known Member
Member
Joined
Jan 1, 2007
Messages
140
Trophies
1
XP
379
Country
Indonesia
  • From the information that we've gathered from some people that have used a packet sniffer such as WireShark, the following data is sent to Nintendo's online gaming servers as soon as the 3DS connects to the internet:

Hi,mate,
I'm also trying to use wireshark, found all the information is tls encrypted.

Could you please let me how to decoding the information?

Cheers

Sent from my SM-G9350 using Tapatalk

I'd like to know too, for educational purposes ofc. @Platinum Lucario, how did you get the raw request data? Did you MiTM somehow, and if so, what did you use? I'd like to learn the specifics, if possible. (Always curious, Never tried to MiTM something or break TLS/SSL.)

Edit: I notice you said that some others found this info, do you have any links? I'm interested in taking a look at their findings if their research is public!


I'm surprised that Nintendo doesn't encrypt the traffic. Could you share the captured Wireshark .pcap or tcpdump file?

Thanks
 
Last edited by hiten,

BARNWEY

Well-Known Member
Member
Joined
Oct 11, 2016
Messages
1,268
Trophies
0
XP
648
Country
United States
I have a noob question: I dumped my game carts so that I could play them whenever I wanted. If I play my dumped version of MK7 online, for example, will it count as a pirated game to Nintendo?

Worth mentioning, I've downloaded many things for free in the past, but I am not banned yet.
Is it dumped in the .cia or the .3ds format?

--------------------- MERGED ---------------------------

I'm surprised that Nintendo doesn't encrypt the traffic. Could you share the Wireshark captured .pcap or tcpdump file?

Thanks
I'm bumping this because I want to see this get released too XD
 

ShadowEO

Well-Known Member
Member
Joined
Mar 31, 2009
Messages
542
Trophies
0
Age
31
Location
Ohio, USA
XP
436
Country
United States
I'm surprised that Nintendo doesn't encrypt the traffic. Could you share the Wireshark captured .pcap or tcpdump file?

Thanks
That's why I'm asking for more info. Nintendo afaik and remember, does encrypt traffic. So the people who captured these would have needed to MiTM this or somehow intercept TLS/SSL communications, which is interesting in it's own right.
 
  • Like
Reactions: BL4Z3D247

droople

Well-Known Member
Member
Joined
May 20, 2006
Messages
186
Trophies
1
XP
548
Country
Australia
I'm surprised that Nintendo doesn't encrypt the traffic. Could you share the captured Wireshark .pcap or tcpdump file?

Thanks
huh, if you read again, you will find it's tls encrypted, and it's not recommended to share the dump due to the security/privacy/legal issue.
 
  • Like
Reactions: ShadowEO

Zaphod77

Well-Known Member
Member
Joined
Aug 25, 2015
Messages
663
Trophies
0
Age
48
XP
599
Country
United States
It's safe to use a .3ds dump of your own cart with sky3ds, if you keep it's header.

the conversion to cia is not safe, because the cart header is lost.
 

deadmaker

Well-Known Member
Newcomer
Joined
Mar 24, 2011
Messages
87
Trophies
1
Age
34
XP
245
Country
Brazil
If these are game carts, no. Dumped cartridges have a unique header which your copy will only match your cartridge. As long as you don't share that copy, your dumped copy will continue to look legitimate.

That's kind of a relief. Thanks for the answer!

Is it dumped in the .cia or the .3ds format?

--------------------- MERGED ---------------------------


I'm bumping this because I want to see this get released too XD

It's in the .cia format.
 

TinchoX

Azure Flame Kite
Member
Joined
Apr 18, 2015
Messages
627
Trophies
0
Age
35
XP
492
Country
Argentina
Just removed A9LH from my O3DS so that I can play through Sun on it without taking any risks. Now going through a system update. Luma, you will (not) be missed!
That's a bit too extreme... there's no proof if by doing so you will be completely safe from future bans...

Gosh people stop crying if you are banned and please USE FREAKING GOOGLE before posting....i mean wtf is wrong ...closing your wifi or not using HBL for weeks wont help iv been using them and im not banned you all did something that triggered nintendo you are all guilty so stop freaking OUT......
wtf is wrong with you idiot??? i was just asking... you are on your period???holy god cannot believe how much stupid can be a human.i alredy know that stud down wifi now is useless and is not what i have asked.i have simply asked if ppl with ofw was banned using hbl.i am not crying and nothing.stupid
Children, please, be nice, everybody is trying to help but you two are just adding more confusion/salt into the problem.

I was banned, and I did have spotpass and friends list settings on.
And yet another one bites the dust... welcome to the family.

what if the culprit was actually a game?
what if it was the recent free to play kirby one? it had a spotpass-feature that people used to get those free apples.
It wouldn't surprise me, but if that was the case, it must be a wave of game updates with the included code that detects us h4x0rzs using ... h4x.
Though I doubt it's anything like this, as it's been said multiple times that, even untouched systems got banned.
Also, keep in mind not everybody used the same games when this happened, some played kirby, others pokemon, some even avoided these two altogether and played something else when they got it.

So in the end, we are still as clueless as ever.
 

BARNWEY

Well-Known Member
Member
Joined
Oct 11, 2016
Messages
1,268
Trophies
0
XP
648
Country
United States
That's kind of a relief. Thanks for the answer!



It's in the .cia format.
So you don't have to even worry about private headers. The game should be safe to play no matter what. As long as it is also released on the eShop, you're fine...

--------------------- MERGED ---------------------------

That's a bit too extreme... there's no proof if by doing so you will be completely safe from future bans...



Children, please, be nice, everybody is trying to help but you two are just adding more confusion/salt into the problem.


And yet another one bites the dust... welcome to the family.


It wouldn't surprise me, but if that was the case, it must be a wave of game updates with the included code that detects us h4x0rzs using ... h4x.
Though I doubt it's anything like this, as it's been said multiple times that, even untouched systems got banned.
Also, keep in mind not everybody used the same games when this happened, some played kirby, others pokemon, some even avoided these two altogether and played something else when they got it.

So in the end, we are still as clueless as ever.
I would probably just use a publicfriendcodeseed_B until this whole thing blows over. That's what I'm doing, at least....
 
D

Deleted User

Guest
You mean like FunKeyCIA or just using that iso site?

I don't know about FunKeyCIA.

As I said before freeShop fetch keys from the database, then construct a fake ticket with titleID, titlekey and titleversion filled in and compute the location of resources (TMD, Contents.. etc). Downloading the resource and finally call system routines to install them properly.

What my design comparing with freeShop is I move the download feature to PC side. Users only need to copy the "Bundle" to the 3DS, then install them with internet switch to OFF.
 

Zaphod77

Well-Known Member
Member
Joined
Aug 25, 2015
Messages
663
Trophies
0
Age
48
XP
599
Country
United States
no no no.

remember online play with a cia sends your console header. they can then look up the purchase history for said console, and when they don't see an issued ticket for the game...

They may or may not actually be doing it, but they certainly could.
 

BARNWEY

Well-Known Member
Member
Joined
Oct 11, 2016
Messages
1,268
Trophies
0
XP
648
Country
United States
no no no.

remember online play with a cia sends your console header. they can then look up the purchase history for said console, and when they don't see an issued ticket for the game...

They may or may not actually be doing it, but they certainly could.
They could do that, but there's so many reasons why they probably aren't....
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
    Xdqwerty @ Xdqwerty: