1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Can Socks be detected?

Discussion in 'Proxies' started by TheUploader, Feb 26, 2011.

  1. TheUploader

    TheUploader Registered Member

    Joined:
    Dec 30, 2009
    Messages:
    53
    Likes Received:
    26
    Can Socks5 be detected? I have seen some CPA offers that will either not count a socks5 conversion or not let connect to the offer?

    i thought socks5 are not detectable.
     
  2. beatblackhat

    beatblackhat Newbie

    Joined:
    Jun 29, 2009
    Messages:
    47
    Likes Received:
    7
    if they are not counted, usually they are not anonymous or they were used already for that offer...either way it isn't good to be doing signups...
     
  3. dragondani

    dragondani Junior Member

    Joined:
    Apr 16, 2010
    Messages:
    117
    Likes Received:
    17
    Well, usually they are not detectable, so for a while, you can get some signups.

    But if this CPA agency is serious, they are using some system to detect fake registration:I have some friends that cheat CPA companies until one day the company monitorized his account and caught him.
    I usually don't recomend cheat by this way CPA companies, only if that cheat is the only work you do with them and you could lost some time trying...
     
  4. portalweb

    portalweb Supreme Member Premium Member

    Joined:
    Jan 7, 2010
    Messages:
    1,415
    Likes Received:
    547
    Occupation:
    Hard Core Engineer
    Location:
    New York
    • Thanks Thanks x 1
  5. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,143
    Proxies ARE detectable, period. The kind of proxy is totally irrelevant.

    You need to go to extreme measures to hide the fact that you are behind a proxy. Advanced detection methods use Javascript, Flash and Java. Common trick is to compare the timezone. If your browser reports timezone UTC+5 and the geolocation of the proxy is such that the timezone should be UTC-2, you are BUSTED. ;)
     
    • Thanks Thanks x 2
  6. TheUploader

    TheUploader Registered Member

    Joined:
    Dec 30, 2009
    Messages:
    53
    Likes Received:
    26
    I am not looking into fraud the companies with any fake information. I was just interested in knowing how they can detect it, when many people say that they are "undetectable".
     
  7. dpatel1357

    dpatel1357 Registered Member

    Joined:
    Feb 21, 2010
    Messages:
    82
    Likes Received:
    20
    i can detect socks by the way they smell.

    /sarcasm :p
     
  8. justone

    justone Elite Member

    Joined:
    Oct 12, 2008
    Messages:
    1,516
    Likes Received:
    1,037
    Occupation:
    -
    Location:
    Europe
    Many "public" socks proxies are running on default ports.
    So a simple testing-script can detect that an open proxy is running on those IPs.

    Also public proxies are usually abused by many people, so they have been 'ab'used before and are listed in proxy databases.

    As people noted before, timezones can be checked. Your browser langauge can be checked .. but those are just clues that indicate you might be using a proxy/vpn.
    edit: flash is a risk too
     
    Last edited: Mar 2, 2011
  9. dingdong

    dingdong Junior Member

    Joined:
    Dec 20, 2006
    Messages:
    128
    Likes Received:
    19
    Depends on how serious they're about detecting it and also how serious you are about making your proxy socks anonymous. Takes two to tango :)
     
  10. vieslook

    vieslook Newbie

    Joined:
    Feb 8, 2011
    Messages:
    9
    Likes Received:
    0
    Can you suggest me the source for US SOCKS in a bulk refreshing list? Like 1000+ rotating unique IPs per day? I need it for web browsing like CL, not for spam.
     
  11. eyerish

    eyerish Regular Member

    Joined:
    May 26, 2010
    Messages:
    224
    Likes Received:
    133
    Occupation:
    Jack of all trades...master of bating
    Location:
    Boston, MA
    LOL I was waiing for someone to say something along those lines.
     
  12. Aaric

    Aaric Elite Member

    Joined:
    Mar 7, 2010
    Messages:
    1,575
    Likes Received:
    1,120
    Gender:
    Male
    Location:
    USA
    Socks can be detected with FLASH on. Test via whoer.net :)
     
  13. Crazy

    Crazy Jr. Executive VIP

    Joined:
    Jun 13, 2009
    Messages:
    640
    Likes Received:
    319
    Occupation:
    VB, C#, XHTML, CSS, PHP, MySQL, JavaScript, jQuery
    Location:
    Everywhere
    What you're saying is that proxies are useless when not coupled with other means of disabling detection methods. This is one topic, perhaps the one being discussed, but it would be wrong to say proxy types are irrelevant.

    I wouldn't go so far as to equate detection methodology with detectability when you're dealing with fundamental proxy protocol. Fundamentally, yes, the SOCKS proxy protocol is in fact undetectable because of the nature of it's functionality. So in that way, it would be wrong to tell people proxy type is totally irrelevant.

    If you were to take this debate to winsock software, for example, where headers are constructed by the programmer and where client/server interaction would never render any third party software/scripting/etc on the client-side, SOCKS is in fact undetectable.
     
    • Thanks Thanks x 2
    Last edited: Mar 11, 2011
  14. silentthunder

    silentthunder Jr. VIP Jr. VIP Premium Member

    Joined:
    Feb 6, 2009
    Messages:
    525
    Likes Received:
    1,342
    Occupation:
    cpa
    Location:
    In the pink
    An example of the abuse a proxy will go through can be seen
    by placing it in a google search. A good one might say,
    "This ip has had suspicious activity in the past. It seems to be clean
    now but we're continuing to watch it's activity."
     
  15. savis

    savis Newbie

    Joined:
    Mar 22, 2011
    Messages:
    10
    Likes Received:
    0
    Proxies are detected no matter how smart the user is. Socks are undetectable but it is advised not to cheat as there may be chances of IP getting blocked.
     
  16. KiLLPHiLL

    KiLLPHiLL Newbie

    Joined:
    Jul 5, 2010
    Messages:
    19
    Likes Received:
    2
    I agree proxies are detected no matter what along with other information however the user can spoof information to make them undetectable.

    detectable:

    -port of ip address : dead giveaway if you are using know ports like 8080..

    -time zones of proxy ip does not match actual zone of geolocation: for example ip says you are in new york but your browser is giving geolocation of california (dead giveaway). To detect this go to google and see what time zone it renders for your searches or go to whoer/extended

    -Operating system: even a proxy will not spoof your os information even if you use a proxy. if you use a proxy without spoofing os information your user agent will render one operating system and your browser will render a different os information: (dead giveaway) change your os information is browser config.

    -plugins: if you use a addon or plugins can be detected for example if you use a plugin to change your user agent and advanced detection system can detect the user agent switcher plugin which is a red flag. Normally users do not use user agent switchers. change your user agent manually in browser config.

    -screen resolution: if you try to sign up with the same screen resolution for every signup NOT GOOD. This is another red flag.

    -dns server: most proxies do not change your dns server ip address. if you try to generate fake signups and all of your signups have different external ip address but their internal ip address or the dns ip address is the same. This is a major red flag. How can you determine? get a google analytics account and place the code snipet on your website then change your ip address with proxy but do not change your dns ip address and you will notice google analytics will only give you one unique visit even though you changed your external ip address with a proxy. both the external ip address and the internal ip address have to be changed or your out of luck. how to determine internal ip address: DNSLEAKTEST RESEARCH TO CHANGE DNS SERVER IP!!!

    -flash cookies: even though you think you might of cleaned flash cookies they can be re-spawned so make sure you clear cookies with programs like adwcleaner, ccleaner, and hitman pro. or manually delete them in this folder: AppData\Roaming\Macromedia\Flash Player .... then restart your computer or use virtual os like vmware then after you clean with all three programs close vmware then restart vmware. YOU HAVE TO RESTART YOUR SYSTEM!!!DONT BE LAZY!!!

    disable flash: DO NOT DISABLE JAVA OR FLASH..DEAD GIVEAWAY!

    ip address/spam: if you ip address has already been flagged as spam or blacklisted do not use them...check ip address with IP-SCORE or whatismyipaddress.

    FOR GOOD MEASURES CHAIN YOUR PROXIES!!!!

    HOPE THIS HELPS!
     
  17. proxygo

    proxygo Jr. VIP Jr. VIP Premium Member

    Joined:
    Nov 2, 2008
    Messages:
    10,213
    Likes Received:
    8,691
    congrats phil u replied to a post from 2011 gave a long speach
    and say i hope that helps, lolz oh brother your reply was 3 yrs late
     
  18. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Premium Member

    Joined:
    Nov 10, 2012
    Messages:
    10,116
    Likes Received:
    28,551
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:

    His account is from 2010, he must have been very busy and only just remembered to reply to the thread lol
     
    • Thanks Thanks x 1
  19. proxygo

    proxygo Jr. VIP Jr. VIP Premium Member

    Joined:
    Nov 2, 2008
    Messages:
    10,213
    Likes Received:
    8,691
    hes got the right name [ KiLLPHiLL } even got me thinking lol