How Websites Detect Ban Evasion with Browser Fingerprinting
// My System Information on the Internet
And why creating a new account isn't enough to escape a ban — even with a different IP address.
When a website bans an account, creating a new one and continuing as normal rarely works. Most large platforms use a layered detection system that goes far beyond checking your IP address. Even with a fresh account, new email, and different browser, platforms can often link the new account back to the banned one within hours or days.
IP_ADDRESS...
BROWSER...
GPU_RENDERER...
↑ These are the signals websites can read from your browser right now — without asking.
Browser & Device Fingerprinting
The most reliable ban evasion detection comes from the browser itself. Even before you log in, a platform's scripts can silently collect signals that form a unique identifier for your device and browser configuration. This fingerprint persists across accounts, browsers, and even VPNs.
Canvas Fingerprinting
Websites instruct your browser to render a hidden image. Because every combination of GPU, graphics driver, and operating system renders it with tiny differences, the output is a stable identifier. Your canvas fingerprint is the same whether you are logged in as your original account or a new one.
WebGL Fingerprinting
Similar to canvas, WebGL probes your GPU directly — extracting the vendor name, renderer string, and how your hardware completes 3D rendering tasks. A user with a specific GPU will have the same WebGL fingerprint on a new account as their old one.
GPU_RENDERER...
Screen Resolution & Pixel Ratio
Your screen dimensions and device pixel ratio are readable by any JavaScript on the page. Combined with other signals, an unusual screen resolution and pixel ratio combination narrows down the device significantly.
SCREEN_RESOLUTION...
PIXEL_RATIO...
Browser & OS Combination
Your browser name, version, and operating system are sent automatically with every request. Combined with the other signals, it becomes part of a unique profile that persists across accounts.
Font Fingerprinting
Scripts can test which fonts are installed on your system by measuring how text renders in each font. The specific set of fonts installed — shaped by years of software installations — is often distinctive on its own.
Network Signals
Beyond the browser, platforms check where your connection is coming from.
IP Address
The most obvious signal — your IP address is sent with every request. A ban typically includes the IP, so a new account on the same connection is flagged immediately.
IP_ADDRESS...
IP Reputation
Even with a VPN, the IP address from the VPN provider may already be flagged. VPN providers share IP ranges across many users, and those ranges are well-known to large platforms. Datacenter IPs — the kind most VPNs use — are easily identified and treated with elevated suspicion.
ASN — Internet Service Provider
Your ASN identifies your internet service provider or network. Switching from your home connection to a VPN changes your IP but often reveals a datacenter ASN, which is itself a signal that something unusual is happening.
IPv6 vs IPv4 Patterns
Whether your connection uses IPv4 or IPv6, and the specific address patterns, can reveal information about your ISP and location that persists even when you think you have changed your IP.
Behavioral Signals
Even if your device fingerprint and network signals are clean, your behavior can give you away.
Typing patterns and mouse movement are increasingly used by platforms to build a behavioral profile. The rhythm of your keystrokes, the way you move a mouse, and the time between actions are surprisingly consistent per person and hard to fake.
Platform ML systems also flag accounts that immediately replicate the browsing patterns of a banned account — visiting the same sections in the same order, posting at the same times of day, and engaging with the same communities.
Cookie & Storage Tracking
Clearing your cookies is not enough. Modern tracking uses multiple storage mechanisms simultaneously.
Evercookies
A technique that stores an identifier in a dozen different places simultaneously — regular cookies, localStorage, IndexedDB, cache storage, service workers, and more. Clearing your browser history removes some of these but rarely all of them. The evercookie script then regenerates any missing copies from the ones that survived.
COOKIES...
Service Worker Storage
Service workers can persist data even after cookies are cleared, because they operate at a different level of the browser's storage system. Most users don't know service worker storage exists, let alone how to clear it.
Account Signals
Finally, the account itself carries signals that link it to previous behavior.
Using the same email domain, similar username patterns, immediately visiting the same sections, and posting in the same style as the banned account all contribute to a similarity score. ML systems can identify writing style patterns — sentence length, vocabulary, punctuation habits — that are consistent across accounts even when the user tries to write differently.
What Actually Works for Privacy
For users who need a genuinely fresh start for legitimate privacy reasons — not ban evasion — the only reliable approach combines multiple layers.
It starts with a privacy-focused browser that randomizes fingerprinting signals, such as Brave or Mullvad Browser. On the network side, a residential VPN — rather than a datacenter VPN — provides IPs that look like real home connections instead of the datacenter ranges platforms flag on sight.
Beyond that, it means a completely separate device, or a virtual machine with a fresh browser profile, paired with a new email from a different provider. And it means different behavioral patterns — different posting times, a different writing style, and different browsing habits.
Even this combination is not guaranteed. Platforms continuously improve detection. This section exists to illustrate how sophisticated browser fingerprinting has become — not to encourage ban evasion.
Check What Websites Can See About You
You can see exactly the signals websites and platforms read from your browser right now — no signup required.
See what your browser reveals → MySysInfo.comCheck any website up/down & SSL status → URLWatch.ioWant this data in your app? → MySysInfo APIFrequently asked questions
Common questions about ban detection and browser fingerprinting.
Do websites use browser fingerprinting to detect ban evasion?
Yes. Most large platforms use canvas fingerprinting, WebGL probing, and other browser signals to create a persistent identifier that links accounts even when the user changes their IP address or creates a new account.
Can a VPN help avoid a ban?
A VPN changes your IP address but does not affect your browser fingerprint. Platforms can still identify your device via canvas, WebGL, and other signals. Additionally, VPN IP ranges are well-known and treated with elevated suspicion by most platforms.
Does clearing cookies prevent tracking across accounts?
Not reliably. Modern tracking uses multiple storage mechanisms simultaneously — localStorage, IndexedDB, cache storage, and service workers — so clearing cookies alone leaves most tracking intact.
What browser is best for avoiding fingerprinting?
Brave Browser randomizes fingerprinting signals by default. Mullvad Browser and Tor Browser offer stronger protection by standardizing signals across all users, making individual identification much harder.
What is an evercookie?
An evercookie is a tracking technique that stores an identifier in multiple browser storage locations simultaneously. Even if you delete cookies, the identifier persists in localStorage, IndexedDB, service workers, or other storage, and regenerates the deleted copies automatically.
Can platforms detect a VPN?
Often yes. VPN providers use datacenter IP ranges that are well-documented and easy to identify. Platforms maintain lists of known VPN and proxy IP ranges and flag them automatically.
// Subscribe to MySysInfo blogs - More debunking privacy myths & tools coming soon
// learn more about what gets shared
A banned account and a brand-new one can share the same browser fingerprint — that's the whole point.