Its possible and maybe its truth for sure, but if gproxy(or loader) can identify hack tools in user PC and can identify it without it is running so it must at least scan(running app or local folder) (or there is one more way how to do it). So I am little skeptical as relates with gproxy
So can you conntact owner of lagabuse(Jason Pawlikowski, I dont know his nick here) and MadMax, if they get some mail, to be good and solve it ?