Comments on: Blue Hat Technique #14 - Other Spammers: The Ultimate Proxy

by: Ori

Fri, 15 Aug 2008 09:50:56 +0000

Great articel , i really enjoyed reading.

by: wigger mcgavin

Wed, 23 Jul 2008 00:31:34 +0000

Wow. This is sweeettt !

by: Prosperity Writer

Mon, 24 Mar 2008 09:04:11 +0000

this is a great post indeed. i won’t be surprised if a chinese guy uses this technique to load a 0 iframe page that automatically perform searches and commit click fraud.

by: Richard

Fri, 02 Nov 2007 06:32:22 +0000

Hi,

I’m kindda new to this proxy thinggy. I have 2 questions here:

1) Eli, in your reply at 2006-11-03 22:41:39, you said that “If they try to search Yahoo through your proxy. Your website still comes up.” Do you mean “they” as a real visitor? Does that mean I could redirect them through my “broken” proxy to a website that sells something to have more visitors which will resulted in more sales?

2) I’m interested in the Yahoo & iframe redirect to gain high yahoo rank. How does that works? I mean I’m trying to build 3 pages (2 iframes & 1 container), however the redirected iframe said that the referer is from the container not from the other iframe. Could somebody explain more on how to build this system?

Regards,

by: tke71709

Tue, 01 May 2007 08:27:33 +0000

—
so I don’t fine something useful serving an adsense page to a script
—

You’re missing the point entirely, this isn’t to serve adsense up to them it’s to inflate visitor stats, etc…

by: Chris

Sat, 24 Mar 2007 21:29:11 +0000

Hey,

Newb question: how exactly do you script out the action the proxy users will be doing for you?

Script? Program? What?

Where should I be look? elance?

by: Cecile Picard

Mon, 12 Feb 2007 08:26:48 +0000

WOW !! I WILL USE THIS FER SURE !!!!!!!!

by: pau

Mon, 12 Feb 2007 04:52:27 +0000

I think I missed something when u talk about landing pages, I suppose spammers use proxy to tunnel their spamming script, not to surf hiding their IP, so I don’t fine something useful serving an adsense page to a script

and don’t forget that, when u enter in some public proxies list, at the same time u enter in some other ip proxies list that bans public proxies to get access to their apps…

by: Matt

Sun, 05 Nov 2006 05:44:52 +0000

The possibilities for this are mind boggling - GREAT idea - thanks!
Matt

by: Eli

Sat, 04 Nov 2006 11:38:58 +0000

Thats exactly right Andrew. Through javascript however there are ways to do a post method. Its just kind of tricky.

by: Andrew Peacock

Sat, 04 Nov 2006 02:49:32 +0000

I think I’m there. So it’s a bit like setting up set up a 301 from your proxy to (say) Google search. Is that it?

Let me put it more concretely. I use proxies to post RSS feed URLs to feedping.com, and checking the response back from them. The problem that I was having was seeing how this would work in your model - I don’t think it would, since I can’t get their browser to post details to feedping in the same way as my PHP script does.

But I *could* have their browser point to any URL and pass in GET parameters, right? Just not POST parameters.

Andy

If I set up blocked proxy

by: Eli

Fri, 03 Nov 2006 17:41:39 +0000

Andrew, very good question. Their ip gets used because it is them who actually does the task. Not your server. Your server simply blocks anything they do. So if they go to google through your proxy. Your website comes up. If they try to search Yahoo through your proxy. Your website still comes up. So its not really a proxy. Think of it like a broken proxy. Now since you have them at your website no matter what they try to do or where they try to go you can redirect them however you would like. So if you make it so anyone who goes to your website gets redirected to Google search. So they are the ones that are actually doing the google search, your proxy server didn’t pull the google search their browser or script did. Therefore it uses their ip to accomplish the task. I hope that clears it up a bit for you.

by: Andrew Peacock

Fri, 03 Nov 2006 17:14:19 +0000

Eli,
I think I’m missing something. You said “The world is yours. Their IP accomplishes the task”… but surey the reason they’re using the proxy is to use YOUR IP, not theirs.

So how does their’s get used?

Andy

by: Rob

Thu, 26 Oct 2006 20:27:27 +0000

Also if you wanted to accurately contact their isp. Rather than traceroute’ing which can have bogus web addresses as host names.. You can use the ARIN (American Registery of Internet Numbers) to lookup the owner of the IP. The person who pays to lease the IP address. The link is http://www.arin.net/whois/

by: Rob

Thu, 26 Oct 2006 20:17:16 +0000

Eli, good work - awsome read… Seeya at the office.