ISP letter - how possible given use of proxy + encryption within Deluge?

ci290

Received a letter from my ISP with the name of a file being shared via P2P. ISP was contacted by someone who had my IP address.

In Deluge, I have enabled Socks v5 with Auth using PIA's proxy, and in Network settings, I have Forced encryption on both Inbound and Outbound. All other Deluge settings are the defaults.

Given the encryption within Deluge and use of a PIA proxy, how would someone:
1. figure out what the content was?
2. see my IP address?

Omnibus_IV

If you had an IP leak your IP address would show up in the swarm. This is how they found out your were D/L a file. To the best of my knowledge, there is no other way possible unless they are sitting inside your router watching.

You must determine if your system is vulnerable. There are several sites that will detect if you have any vulnerability.

IPLeak
DNSLeak
Whoer

Next check for WEBRtc leak. Each one of those sites above will tell you if your have a IP leak from your browser. They will also tell you how to fix it.

Also those sites have a means of testing to see if you have a Torrent leak. Use those torrent leak test to see if your IP shows up. You can confirm with a torrent leak test if your Sock5 is working properly.

Last, make sure that your DNS is PIA's DNS server even when you are not using PIA at the time. Check your NIC interface for DNS and your router for DNS. This PIA DNS IP address is

Primary - 209.222.18.222
Secondary - 209.222.18.218

OpenVPN

ci290 said:

Received a letter from my ISP with the name of a file being shared via P2P. ISP was contacted by someone who had my IP address.

In Deluge, I have enabled Socks v5 with Auth using PIA's proxy, and in Network settings, I have Forced encryption on both Inbound and Outbound. All other Deluge settings are the defaults.

Given the encryption within Deluge and use of a PIA proxy, how would someone:
1. figure out what the content was?
2. see my IP address?

Omnibus_IV said:

If you had an IP leak your IP address would show up in the swarm. This is how they found out your were D/L a file. To the best of my knowledge, there is no other way possible unless they are sitting inside your router watching.

You must determine if your system is vulnerable. There are several sites that will detect if you have any vulnerability.

IPLeak
DNSLeak
Whoer

Next check for WEBRtc leak. Each one of those sites above will tell you if your have a IP leak from your browser. They will also tell you how to fix it.

Also those sites have a means of testing to see if you have a Torrent leak. Use those torrent leak test to see if your IP shows up. You can confirm with a torrent leak test if your Sock5 is working properly.

Last, make sure that your DNS is PIA's DNS server even when you are not using PIA at the time. Check your NIC interface for DNS and your router for DNS. This PIA DNS IP address is

Primary - 209.222.18.222
Secondary - 209.222.18.218

 It wouldn’t matter if someone was spying on your router because the VPN encrypts everything at the pack level which will defeat even the most aggressive of surveillance tactics.  The only possible ways someone could know your real IP address is if you had a DNS or IPv6 lleak while connected to the VPN of If an attacker has  access to your computer via either a remote connection or direct physical access.

ci290

These responses make it sound like I need to use VPN. As I wrote in the OP, I was only using PIA's proxy service with Deluge and enabling Deluge's encryption option. Using PIA's proxy with Deluge, the torrent address detection at https://ipleak.net/ shows a different IP address (good). But I guess there's some other leak since my ISP was contacted by someone who had my IP address.

The browser leak tests obviously all fail because I'm not using a proxy with my web browser.

So I guess I need to use a VPN and accept the much slower speeds? Or is there a way to stop my IP from leaking by using only the PIA proxy plus Deluge encryption?

Omnibus_IV

You might try TOR. But that is only for browsing. Anything else will require a VPN.