Welcome to The Forum

Register now to gain access to all of our features. Once registered and logged in, you will be able to create topics, post replies and more


Suspicious Activity Noticed with FileZilla


ZomPaul

Recommended Posts

ISSUE- Ive noticed my Ark and Smite game has periodically been getting a quick lag stutter then tabbing out of game to the main window.

 

CONNECTION - The last time this happened i saw the icon for FileZilla was at the bottom right corner and disappeared.

 

 

SUSPICION- That FileZilla either with or without being closed through task manager sends packets of information through the upload and when doing do its task momentarily takes priority over the full screen application then closes out immediately.

 

PLEASE INVESTIGATE THIS AND TAKE ACTION TO CORRECT THESE INSTANCES AND IF MALICIOUS.

 

~ZomPaul

 

1/27/2017

 

 

(This was also posted under the ftp guide.)

Share this post


Link to post
Share on other sites

When i feel a program being recommend is being used as a backdoor with possibly including the developer a post of awareness like this and a request for the program to be reviewed by SurvivalServers is a formality. Okay?

Share this post


Link to post
Share on other sites

If someone is reaching into all of our computers with a secret Filezilla backdoor then we have far bigger problems than a bit of stuttering in-game.

 

That said, if this far fetched possibility is in fact a thing, then who cares? We've been exposed since Filezilla was created in 2003.

Share this post


Link to post
Share on other sites

How would it be a far reach that its FileZilla when im seeing that FileZilla is the culprit?

 

To reiterate whats going on is,

After having closed down FileZilla for sometime then playing a game like Smite or Ark. Ill notice in game since getting FileZilla and renting a server, occasionally ill get a brief stutter or my mouse cursor will suddenly show in game.. Once the day before yesterday my Smite game was force tabbed out and i saw the FileZilla icon at the lower right dissappear though i didnt have the application open..... Regardless if it wasnt closed through taskmanager it shouldnt be reopening instances to send information AT ALL.

 

The only reasons i see that itd be behaving in this manner is if

1- FileZilla is being targetted

2- Filezilla was originally designed with a alternative motive to monitor and send information

 

From a non-intentional standpoint that nothing malicious is happening.. FileZilla is displaying issues of not fully terminating when being closed and remaining as a background process

 

 

I find it hilarious and disturbing that random ppl chime in defending the application immediately not with any knowledge but with patronization. As if to discredit what im first hand observing for entirely no reason.. Being a '03 application or a modification of, gives no credence to being other then what im stating.

 

 

PS- seeing as now the FTP guide is now missing makes it harder to prove that the FileZilla link refereed doesnt go to the actual FileZilla page but instead to a 3rd party which probably gave access to a MODIFIED FileZilla

Share this post


Link to post
Share on other sites

POSTING THESE ONLY AS MEANS TO FORTIFY THE VALIDITY OF MY CONCERNS

 

http://intersites.com/guidance/suite_131/filezilla_hacked/

 

hacked user develops filezilla version that encrypts ftp passwords

https://www.bleepingcomputer.com/news/software/hacked-user-develops-filezilla-version-that-encrypts-ftp-passwords/

^not the version on forums but a hacked independent safer version for passwords as Filezilla comp refuses encryptions.

 

https://www.reddit.com/r/hacking/comments/302gh6/hacking_filezilla_server/

 

Youtube- How to hack website using FTP

(Removed link after further consideration as it may breach forum rules)

 

Youtube- Hacking Windows by audisus FileZilla) Exploit

(Removed link after further consideration as it may breach forum rules)

 

Someone is hacking my FTP server https://forum.filezilla-project.org/viewtopic.php?t=16042

 

 

 

Seems the original poster of the FTP/Filezilla guide has removed ALL of his posts or had his posts removed idk

Sorry for posting info on exploits(which i just removed the hyperlink of)

 

 

~ZomPaul

 

 

******* I would honestly devil deeper into the USER that posted the FTP guide thats now missing along with all of his posts**********

Share this post


Link to post
Share on other sites

Filezilla is open source, so if you downloaded it from random joe smoe's website yea its probably got a few extra surprises for you.

 

With that said, Filezilla is in no way affiliated with Survival Servers, so there is literally nothing they would be able to do to help you.

Share this post


Link to post
Share on other sites

lol

 

As stated twice already.. its letting ppl know and the staff know that there has been seen issues with what has been posted on the forums as a guide that a admin gave kudos to the write up.

 

What i would expect done is what has basically happened.. that the stuff is removed so other dont fall victim and awareness of the issue has been posted as some might feel it trustworthy the way it was presented.. not mentioning that the said version may be used to locate pcs specifically using these forums

 

Im not entirely sure whats keeping you from understanding that. derp

 

IF THEY WANTED and SHOULD DO, they could investigate the links that were posted. see if theyre for a modified version then turn it into the authorities to break down on THIER OWN to see if theres something used as an id to locate pcs with the specific FIleZilla... As SurvivalServers has alot of the poster's information it would be pretty ideal to see if the said person or ppl is using a FTPtool to hack into a server provider to some of the most popular pc games.

 

Frankly the more i talk about it i should be doing it myself but frankly its up to Survival servers to just check the old link if it goes to a legit zilla page if not hand it over and his info to be located and monitored. BAM

 

Shouldnt even have to be explaining this

Share this post


Link to post
Share on other sites

Even most of the links you're posting about "Filezilla being hacked" are mostly about people using Filezilla as part of doing hacks of FTP. FTP is not Filezilla. FTP has existed since 1971, and vulnerabilities in FTP have been known for decades as well. Any one of those hacks could be done with any other FTP client, even with the command-line FTP client that's already in the version of DOS that still lingers in some form buried under your Windows.

 

Anyhow, even if Filezilla has some vulnerability in some version or other, that really has nothing to do with anything happening on this forum. That's the real key part here. I mean, there are known vulnerabilities in HTTPS, which is what you're using to read this webpage right now. And there are known vulnerabilities in Chrome, and Internet Explorer, and Firefox, and Edge, and Safari, and odds are, one of those is what you're using to read this page. None of those are germane here. Doesn't mean they're not important. Just means that this is not the place for them.

Share this post


Link to post
Share on other sites

Youre not contributing anything by saying software is vulnerable.. a VERY long winded one at that.

 

I reported that a site posted contained software that was immediately showing suspicious activity. on a post where a Admin gave the guy kudos to a write up that links to a version thats been modified.. Seeing the issue in this i reported it as anyone should do.

 

But sure you can join Rawblin in contributing nothing to this thread but stating software is software with the history of being mistreated.. like software. *claps*

Share this post


Link to post
Share on other sites

Guest
This topic is now closed to further replies.