1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Proxies & Malware: Yes, you should worry...

Discussion in 'Proxies' started by Jonny Quick, Aug 13, 2011.

  1. Jonny Quick

    Jonny Quick BANNED BANNED

    Joined:
    Aug 26, 2010
    Messages:
    231
    Likes Received:
    340
    http://www.zdnet.com/blog/google/google-warning-users-of-malware-infection/3145

    I read the above just now. Note this:

    I've been playing with proxies for a while, and have noticed that several seem to take over your browser and redirect it to places different than you want to go. That's a violation of ettiquette, and if it's willing to do that, it's willing to do anything, i.e. install malware, or spoof some kind of warning message to trick you into installing malware.

    I've been installing proxie software and testing them. Some promoted here on BHW, and some from "in the wild" on the internet. One in particular insisted on running at every boot, and had no switch that I could find that would turn the "automatic start" off. Ettiquette violation, and from that you can assume it's capable of anything.

    My machine & network has odd & intermittant symptoms that Time Warner cannot seem to nail down. I have to consider the possiblity that my proxy software experimentation has installed something undetectable, at least for the next few days. (If the symptoms go away for good, I can assume TW already fixed it, otherwise it could be anything, including malware.)

    I'm worried. I do my online banking with this machine. Note, I'm not asking for advice, I'm posting a warning to anyone that (like me) installs "free software" and plays with it for a while. My point here is that it might be a dangerous thing to do, and to stay alert and monitor your system closely. One thing in particular is to make certain that System Restore is turned on and is capable of sending you back to a time prior to when the software was installed. That has saved me several times in the past, and one of the first things malware tries to do is turn off the System Restore, so if it suddenly stops working, you should be worried.
     
  2. thxflash

    thxflash Power Member

    Joined:
    Jan 20, 2009
    Messages:
    786
    Likes Received:
    131
    Location:
    Newport Beach, CA
    Home Page:
    Thanks for sharing this. Always run public proxies in a virtual machine or VPS that wouldn't contain any login credentials.
     
  3. persyme

    persyme Regular Member

    Joined:
    Dec 19, 2008
    Messages:
    401
    Likes Received:
    51


    Hi Jonny Quick. You should always validate files using online virus scanners.

    These links are sites where you can upload files or executables, to be scanned through the major virus scanner providers.

    http://www.virustotal.com/
    http://virusscan.jotti.org/


    Also, my Norton Security stops suspicious download before installing or being opened. In fact when I downloaded a demo of that Adnuke spammer's software Norton deleted it for "trying to do something suspicious to my computer". I think the software tries to hijack your machine to use it as a btn3t that he uses to flag ads with.
     
    • Thanks Thanks x 1
    Last edited: Aug 13, 2011
  4. Jonny Quick

    Jonny Quick BANNED BANNED

    Joined:
    Aug 26, 2010
    Messages:
    231
    Likes Received:
    340
    It's possible that is the heart of the idea; a whole group of computers acting as a b0tn3t in a cooperative manner to flag ads. Not necessarily a bad thing. I think it depends on the degree of control over your machine you are giving up.

    The hacker group "anonymous" does this for the Denial of Service attacks. The BitCoin mining malware mentioned above, also.

    One thing I've noticed is that they've got Windows 7 set up so counter-intuitively and they set up obstacles for you to get proficient in navigating the file system (no "up" button, disfunctional file groupings, default file saving structure that forces you to fight with it constantly so that you lose focus on the larger picture you need to see in order to accomplish your larger goals. They want you to have a small view, a small mind and accomplish small things.

    Tired. Going to bed now. Must. Sleep. Now.
     
  5. persyme

    persyme Regular Member

    Joined:
    Dec 19, 2008
    Messages:
    401
    Likes Received:
    51
    Not at all. It's the best way to flag ads, precisely the way I'm trying to find a source of (must be geo-specific).

    That may be their method of choice (only the Anonymous members that are involved in the plan) to bring down Facebook on 5 November over conflicts regarding privacy issues and / or concerns with not being able to delete accounts / information.
     
    Last edited: Aug 13, 2011