Share via

Potential Proxyback Issue

Andrew O'Neill 1 Reputation point
2022-08-08T23:47:49.64+00:00

Hi all - we received the following:

"Network traffic analysis indicates that your machine (IP xx.xx.xx.xx) has communicated with what is possibly a Command and Control center for a malware of type ProxyBack"

The computer is patched and had a malware scan that returned negative - however there are still multiple connections a day with IPs that are not relate to the operations of the server

I can't find any info on the malware (Proxyback) other than it was discovered in 2015...

Anyone have info on how to confirm and how to remediate?

Windows for business Windows Server Devices and deployment Configure application groups
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Limitless Technology 39,916 Reputation points
    2022-08-09T14:04:55.563+00:00

    Hi,

    Where has this error message originated from? Is it your anti-malware or ant-virus software? If so, it's likely that it has been neutralized. However, proxy back turns your computer into a proxy server for various unwanted purposes. Can you use a different antimalware application to complete a secondary search?

    I hope this answers your question.

    -----------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept as answer--

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.