V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
工单节点使用指南
• 请用平和的语言准确描述你所遇到的问题
• 厂商的技术支持和你一样也是有喜怒哀乐的普通人类,尊重是相互的
• 如果是关于 V2EX 本身的问题反馈,请使用 反馈 节点
HanSonJ
V2EX  ›  全球工单系统

向日葵突然被未知设备远程控制

  •  1
     
  •   HanSonJ · 218 天前 · 748 次点击
    这是一个创建于 218 天前的主题,其中的信息可能已经有所发展或是发生改变。

    在 2024-04-29 01:52 的时候,我还在看剧,然后电脑右下角提示向日葵有设备远程了,后面他自己取消了远程,估计是看到我在检查向日葵的设置

    该设备不是我的常用设备,估计是通过 本机识别码+本机验证码 登录的,至于是暴力破解还是向日葵内部原因未知,后面我自己也改了验证码

    大家也多多注意吧,万一是漏洞被黑进去那就得不偿失了

    --------------------------------- 分割线 -----------------------------------------------

    下面是远程日志

    [21964]	2024-04-29 01:52:03.441	- Info  -	[CheckEnvironment] CheckDXGISupport
    [20264]	2024-04-29 01:52:03.441	- Info  -	[client] current session id 1, ProcessID 24468
    
    [20264]	2024-04-29 01:52:03.450	- Info  -	[CSockConnector] attempt to connect server 127.0.0.1:1030(127.0.0.1:1030)
    [20264]	2024-04-29 01:52:03.451	- Info  -	[DesktopAgentClient] connect DesktopServer ok.
    [20820]	2024-04-29 01:52:03.451	- Info  -	[client::handler] connected sid(1), thread(20820)
    [20820]	2024-04-29 01:52:03.451	- Info  -	[DesktopAgentClient] on_connect ok. sid:1, id:1
    [20820]	2024-04-29 01:52:03.451	- Info  -	[agent]client::handler::OnPluginStop.
    [20820]	2024-04-29 01:52:03.454	- Info  -	[agent] start new plugin.
    [25688]	2024-04-29 01:52:03.473	- Info  -	[DesktopMonitorServer] set compression 8/100->9/15
    [25688]	2024-04-29 01:52:03.473	- Info  -	[desktop] display core OK
    [25688]	2024-04-29 01:52:03.473	- Info  -	[desktop] control core OK
    [25688]	2024-04-29 01:52:03.491	+Warning+	[controlsvr] init uu hardware failed, reason:open hid device failed, forcing to software input simulation
    [25688]	2024-04-29 01:52:03.504	- Info  -	[softmouseproxy] SetMouseMoveRelative false
    [25688]	2024-04-29 01:52:03.513	- Info  -	[desktop] system manager core OK
    [23720]	2024-04-29 01:52:03.513	- Info  -	[desktop] InitListener at 740
    [25688]	2024-04-29 01:52:03.513	+Warning+	packet losted, message1 :244,12, message2:2,4, size=20
    [25688]	2024-04-29 01:52:03.513	- Info  -	[desktop] OnCtrlMessage ctrl 1,type 1
    [25688]	2024-04-29 01:52:03.516	- Info  -	[DesktopMonitorServer] set compression 8/100->9/15
    [25688]	2024-04-29 01:52:03.516	- Info  -	[DesktopMonitorServer] bDelayedRun_Sendconfig = TRUE
    [25688]	2024-04-29 01:52:03.516	- Info  -	[desktop/676c7f10] GetInitBuffer image header compress size(12) time(67898078).
    [16716]	2024-04-29 01:52:03.516	- Info  -	[DesktopMonitorServer] delay send config
    [25688]	2024-04-29 01:52:03.516	- Info  -	[desktop] OnCtrlMessage ctrl 1,type 3
    [25688]	2024-04-29 01:52:03.516	- Info  -	[desktop] OnCtrlMessage ctrl 1,type 6
    [25688]	2024-04-29 01:52:03.516	- Info  -	[desktop] OnCtrlMessage ctrl 1,type 7
    [25688]	2024-04-29 01:52:03.516	- Info  -	[desktop] receive Enum Screen Request
    [25688]	2024-04-29 01:52:03.526	- Info  -	[DesktopMonitorServer] set compression 9/15->11/40
    [25688]	2024-04-29 01:52:03.526	- Info  -	[DesktopMonitorServer] DesktopMonitorServer::Build
    [23720]	2024-04-29 01:52:03.528	- Info  -	[desktop] RunSubModule at 759
    [23720]	2024-04-29 01:52:03.530	- Info  -	[desktop] disable_clipboard:0, disable_file:0, disable_print:0, disable_chat:0
    [23720]	2024-04-29 01:52:03.530	- Info  -	[singledesktop]Run Keyboard and mouse control ok
    [23720]	2024-04-29 01:52:03.538	- Info  -	[desktop] DisplayRefreshRateDetect hz=60
    [23720]	2024-04-29 01:52:03.539	- Info  -	[clipboard] clipboard_agent_server created with port 0.
    [23720]	2024-04-29 01:52:03.541	- Info  -	[CDragServer::Run] Get port ok 2060
    [25688]	2024-04-29 01:52:03.723	- Info  -	[DXGI] Current desktop(0) size -> (2560, 1440)
    [21964]	2024-04-29 01:52:03.735	- Info  -	[CheckEnvironment] CheckHWAccelEnvironment
    [25688]	2024-04-29 01:52:03.766	- Info  -	[DXGI] Initialize DXGI duplication device ok! from oray::plugin::remotedesktop::DXGIScreenCapture::StartCapture
    [25688]	2024-04-29 01:52:03.766	- Info  -	[DesktopMonitorServer] using 2 mode. (0-full, 1-gditracer, 2-mirrortracer, 3-dwm, 4-idd) with watermark(no)
    [25688]	2024-04-29 01:52:03.766	- Info  -	[DesktopMonitorServer] Create new capture mode=2 (0-full, 1-gditracer, 2-mirrortracer, 3-dwm, 4-idd). 
    [25688]	2024-04-29 01:52:03.766	- Info  -	[DesktopMonitorServer] Need resize screen buffer, dpi=120, [2560, 1440]
    [27264]	2024-04-29 01:52:03.766	- Info  -	[DuplMgr] output(0) left(0), top(0), right(2560), bottom(1440), rotation(1)
    [27264]	2024-04-29 01:52:03.773	- Info  -	[DXGI] Support gpu pre process
    [27264]	2024-04-29 01:52:03.773	- Info  -	[DXGI] use dxgi mode
    [27264]	2024-04-29 01:52:03.773	- Info  -	[DXGI] Display Changed -> 1
    [25688]	2024-04-29 01:52:03.780	- Info  -	ChangeRegion::FormatBuffer, color: 32
    [21964]	2024-04-29 01:52:03.814	- Info  -	[HWAccelHelper] Nvidia card
    [21964]	2024-04-29 01:52:03.814	- Info  -	[HWAccelHelper] check env, result=1
    [25688]	2024-04-29 01:52:03.862	- Info  -	[HWAccelComp] Nvidia card
    [25688]	2024-04-29 01:52:03.862	- Info  -	[NvEnc] set encode type 1
    [12340]	2024-04-29 01:52:03.909	- Info  -	[clipboard::clipboard_router::OnConnect] new agent client connected!
    
    [12340]	2024-04-29 01:52:03.909	- Info  -	[clipboard] stop plugin
    [12340]	2024-04-29 01:52:03.909	- Info  -	[clipboard] enable clipboard text:1 
    [12340]	2024-04-29 01:52:03.909	- Info  -	[clipboard] enable clipboard file:1 
    [25688]	2024-04-29 01:52:03.942	- Info  -	[NvEnc] init nvidia environment ok, use avc
    [25688]	2024-04-29 01:52:03.942	- Info  -	[HWAccelComp] Init ok, encType=1, internal=0
    [25688]	2024-04-29 01:52:03.942	- Info  -	[NvEnc] Set fps 40
    [25688]	2024-04-29 01:52:03.942	- Info  -	[DesktopMonitorServer] ID_START_DESKTOP_STREAM 67898515
    [16716]	2024-04-29 01:52:03.942	- Info  -	[DXGI] Uninitialize device.
    [16716]	2024-04-29 01:52:03.953	- Info  -	[DXGI] Current desktop(0) size -> (2560, 1440)
    [16716]	2024-04-29 01:52:03.992	- Info  -	[DXGI] Initialize DXGI duplication device ok! from oray::plugin::remotedesktop::DXGIScreenCapture::Reset
    [16716]	2024-04-29 01:52:03.993	- Info  -	[DesktopMonitorServer] Need resize screen buffer, dpi=120, [2560, 1440]
    [16716]	2024-04-29 01:52:03.993	- Info  -	[desktop/767b93d0] GetInitBuffer, image size=2560x1440, compress format(11).
    [16716]	2024-04-29 01:52:04.999	- Info  -	[DesktopMonitorServer] Need resize screen buffer, dpi=120, [2560, 1440]
    [25688]	2024-04-29 01:52:04.999	- Info  -	[DXGI] Uninitialize device.
    [25688]	2024-04-29 01:52:04.079	- Info  -	[DXGI] Current desktop(0) size -> (2560, 1440)
    [25688]	2024-04-29 01:52:04.111	- Info  -	[DXGI] Initialize DXGI duplication device ok! from oray::plugin::remotedesktop::DXGIScreenCapture::StartCapture
    [25688]	2024-04-29 01:52:04.111	- Info  -	[DesktopMonitorServer] using 2 mode. (0-full, 1-gditracer, 2-mirrortracer, 3-dwm, 4-idd) with watermark(no)
    [25688]	2024-04-29 01:52:04.111	- Info  -	[DesktopMonitorServer] Create new capture mode=2 (0-full, 1-gditracer, 2-mirrortracer, 3-dwm, 4-idd). 
    [25688]	2024-04-29 01:52:04.111	- Info  -	[DXGI] Uninitialize device.
    [25688]	2024-04-29 01:52:04.123	- Info  -	[DXGI] Current desktop(0) size -> (2560, 1440)
    [23720]	2024-04-29 01:52:04.137	- Info  -	[ipc][dragclient] point(0,0) size(2560,1440)
    [25688]	2024-04-29 01:52:04.156	- Info  -	[DXGI] Initialize DXGI duplication device ok! from oray::plugin::remotedesktop::DXGIScreenCapture::Reset
    [25688]	2024-04-29 01:52:04.156	- Info  -	ChangeRegion::FormatBuffer, color: 32
    [22484]	2024-04-29 01:52:04.156	- Info  -	[DuplMgr] output(0) left(0), top(0), right(2560), bottom(1440), rotation(1)
    [25688]	2024-04-29 01:52:04.157	- Info  -	[DesktopMonitorServer] change capture mode to 2. (0-full, 1-gditracer, 2-mirrortracer, 3-dwm, 4-idd), color: 32
    [22484]	2024-04-29 01:52:04.161	- Info  -	[DXGI] Support gpu pre process
    [22484]	2024-04-29 01:52:04.161	- Info  -	[DXGI] use dxgi mode
    [22484]	2024-04-29 01:52:04.161	- Info  -	[DXGI] Display Changed -> 1
    [25688]	2024-04-29 01:52:04.161	- Info  -	[DesktopMonitorServer] set compression 11/40->11/30
    [25688]	2024-04-29 01:52:04.161	- Info  -	[vpx] SetCompressionParam, layer=1;encoding=4;format=1;reserved=0;mode=2, layer=1, encoding=4, format=1.
    [25688]	2024-04-29 01:52:04.202	- Info  -	[DXGI] Uninitialize device.
    [25688]	2024-04-29 01:52:04.202	- Info  -	[DXGI] Current desktop(0) size -> (2560, 1440)
    [25688]	2024-04-29 01:52:04.243	- Info  -	[DXGI] Initialize DXGI duplication device ok! from oray::plugin::remotedesktop::DXGIScreenCapture::Reset
    [25688]	2024-04-29 01:52:04.249	- Info  -	[drag] CDragServer::OnQueryVersionReq installed
    [25688]	2024-04-29 01:52:04.249	- Info  -	[drag] CDragServer::OnQueryVersionReq is installed
    [25688]	2024-04-29 01:52:04.249	* Error *	[drag] QueryVersion send is true
    [16716]	2024-04-29 01:52:04.289	- Info  -	[DXGI] Uninitialize device.
    [16716]	2024-04-29 01:52:04.305	- Info  -	[DXGI] Current desktop(0) size -> (2560, 1440)
    [16716]	2024-04-29 01:52:04.347	- Info  -	[DXGI] Initialize DXGI duplication device ok! from oray::plugin::remotedesktop::DXGIScreenCapture::Reset
    [16716]	2024-04-29 01:52:04.347	- Info  -	[DesktopMonitorServer] Need resize screen buffer, dpi=120, [2560, 1440]
    [16716]	2024-04-29 01:52:04.347	- Info  -	[desktop/69aaf540] GetInitBuffer, image size=2560x1440, compress format(11).
    [16716]	2024-04-29 01:52:04.360	- Info  -	[DesktopMonitorServer] Need resize screen buffer, dpi=120, [2560, 1440]
    [16716]	2024-04-29 01:52:04.360	- Info  -	[DesktopMonitorServer] reconfig crf=28 @ 1952
    [16716]	2024-04-29 01:52:04.479	- Info  -	[desktop] run statistical task
    [25688]	2024-04-29 01:52:04.596	- Info  -	[DesktopMonitorServer] rf control received first remote frame count.
    [25688]	2024-04-29 01:52:04.780	- Info  -	[drag] QueryVersionRes is true
    [25688]	2024-04-29 01:52:04.930	- Info  -	[DesktopMonitorServer] ResumeDesktopThemes
    [25688]	2024-04-29 01:52:04.930	- Info  -	[drag] CDragServer::OnQueryVersionReq installed
    [25688]	2024-04-29 01:52:04.930	- Info  -	[drag] CDragServer::OnQueryVersionReq is installed
    [25688]	2024-04-29 01:52:04.930	* Error *	[drag] QueryVersion send is true
    [25688]	2024-04-29 01:52:04.930	- Info  -	[DesktopMonitorServer] set compression 11/30->11/30
    [25688]	2024-04-29 01:52:04.930	- Info  -	[NvEnc] Set fps 30
    [25688]	2024-04-29 01:52:04.930	- Info  -	[DesktopMonitorServer] set max frame rate=30
    [25688]	2024-04-29 01:52:04.934	- Info  -	[desktop] Receive MY REQ_REMOTE_UPDATE message
    [16716]	2024-04-29 01:52:05.513	- Info  -	[DesktopMonitorServer] reconfig crf=31 @ 1952
    [16716]	2024-04-29 01:52:06.513	- Info  -	[DesktopMonitorServer] reconfig crf=32 @ 1952
    [16716]	2024-04-29 01:52:26.497	- Info  -	[DesktopMonitorServer] reconfig crf=35 @ 1952
    [20820]	2024-04-29 01:52:50.615	- Info  -	[client::handler] disconnected
    [20820]	2024-04-29 01:52:50.615	- Info  -	[DesktopAgentClient] on_disconnect ok.
    [20264]	2024-04-29 01:52:50.623	- Info  -	[agent] stop last plugin.
    [25688]	2024-04-29 01:52:50.682	- Info  -	[DesktopMonitorServer] ResumeDesktopThemes
    [25688]	2024-04-29 01:52:50.682	- Info  -	[DXGI] Uninitialize device.
    [25688]	2024-04-29 01:52:50.706	- Info  -	[clipboard::handler] agent(0) client disconnected!
    
    [16716]	2024-04-29 01:52:52.734	- Info  -	[NvEnc] uninit nvidia environment ok
    [16716]	2024-04-29 01:52:52.764	- Info  -	[HWAccelComp] UnInit ok, internal=0
    [24020]	2024-04-29 01:52:52.820	- Info  -	[messagethread] recv WM_CLOSE, end thread.
    [20264]	2024-04-29 01:52:52.822	- Info  -	[agent] Exit program
    
    1 条回复    2024-05-01 11:54:18 +08:00
    id7368
        1
    id7368  
       217 天前 via iPhone
    关注🤨🤨🤨
    关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   5945 人在线   最高记录 6679   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 24ms · UTC 02:18 · PVG 10:18 · LAX 18:18 · JFK 21:18
    Developed with CodeLauncher
    ♥ Do have faith in what you're doing.