Sa’ad da wata rana maigidan ya yi tambaya: “Me ya sa wasu suke samun damar shiga kwamfuta mai nisa ba tare da samun ƙarin izini don amfani ba?”,
akwai aiki don "rufe" madogara.
Akwai aikace-aikace da yawa don sarrafawa na nesa kan hanyar sadarwa: 'Ya'yan wasan kwaikwayo na Chrome, Amytadmin, da yawa daga cikin hanyar sadarwa, sannan ikon da aka fi so, da yawa don amfanin kansu, Musamman idan maigidan ya ce "Ba za ku iya ba!"
Idan kun san menene toshe fakitin cibiyar sadarwa ta abubuwan cikin sa kuma ya dace da ku, to sauran kayan
ba a yi niyya ba na ka.
Ƙoƙarin tafiya daga akasin haka, a gaskiya ya ce abin da ya kamata a bar shirin ya yi aiki, bi da bi, an katange rikodin DNS *.net.anydesk.com. Amma AnyDesk ba mai sauƙi ba ne, bai damu da toshe sunan yanki ba.
Da zarar na warware matsalar toshe "Anyplace Control" wanda ya zo mana da wasu software masu ban sha'awa, kuma an warware ta ta hanyar toshe IPs kaɗan kawai (Na amintar da riga-kafi). Matsalar AnyDesk, bayan na tattara adiresoshin IP sama da dozin da hannu, tsokana nisantar aikin hannu na yau da kullun.
An kuma gano cewa a cikin "C: ProgramDataAnyDesk" akwai fayiloli da yawa tare da saituna, da sauransu, kuma a cikin fayil ɗin. ad_svc.trace ana tattara abubuwan da suka faru game da haɗi da kasawa.
1. Lura
Kamar yadda aka riga aka ambata, toshe * .anydesk.com bai ba da wani sakamako a cikin shirin ba, an yanke shawarar yin nazari. halayen shirin a cikin yanayi masu damuwa. TCPView daga Sysinternals a hannu kuma tafi!
1.1. Ana iya ganin cewa matakai da yawa masu ban sha'awa a gare mu suna "rataye", kuma kawai wanda ke sadarwa tare da adireshin daga waje yana da sha'awar mu. Ana matsar da tashar jiragen ruwa da yake haɗawa, daga abin da na gani: 80, 443, 6568. 🙂 80 da 443 ba shakka ba za mu iya toshewa ba.
1.2. Bayan toshe adireshin ta hanyar na'ura mai ba da hanya tsakanin hanyoyin sadarwa, an zaɓi wani adireshin a hankali.
1.3. Na'urar wasan bidiyo namu shine KOMAI! Mun ƙayyade PID sannan na sami ɗan sa'a cewa AnyDesk an shigar da sabis ɗin, bi da bi, PID ɗin da nake nema shine kaɗai.
1.4. Muna ƙayyade adireshin IP na uwar garken sabis ta hanyar PID na tsari.
2. Shiri
Tun da shirin gano adiresoshin IP zai yiwu kawai aiki a kan PC na, Ba ni da wani hani akan dacewa da kasala, don haka C #.
2.1. Duk hanyoyin gano adireshin IP da ake so an riga an san su, ya rage don aiwatarwa.
string pid1_;//узнаем PID сервиса AnyDesk
using (var p = new Process())
{p.StartInfo.FileName = "cmd.exe";
p.StartInfo.Arguments = " /c "tasklist.exe /fi "imagename eq AnyDesk.exe" /NH /FO CsV | findstr "Services""";
p.StartInfo.UseShellExecute = false;
p.StartInfo.RedirectStandardOutput = true;
p.StartInfo.CreateNoWindow = true;
p.StartInfo.StandardOutputEncoding = Encoding.GetEncoding("CP866");
p.Start();
string output = p.StandardOutput.ReadToEnd();
string[] pid1 = output.Split(',');//переводим ответ в массив
pid1_ = pid1[1].Replace(""", "");//берем 2й элемент без кавычек
}Hakazalika, mun sami sabis ɗin da ya kafa haɗin gwiwa, zan ba da babban layi kawai
p.StartInfo.Arguments = "/c " netstat -n -o | findstr /I " + pid1_ + " | findstr "ESTABLISHED""";Sakamakon wanda zai kasance:
Daga layin, kama da mataki na baya, muna cire shafi na 3, kuma cire duk abin da ke bayan ":". A sakamakon haka, muna da IP ɗin da muke so.
2.2. An toshe IP a cikin Windows. Idan Linux yana da Blackhole da iptables, to, hanyar toshe adireshin IP a cikin layi ɗaya, ba tare da amfani da Tacewar zaɓi ba, ya zama sabon abu a cikin Windows.
Amma menene kayan aikin ...
route add наш_найденный_IP_адрес mask 255.255.255.255 10.113.113.113 if 1 -pSigar maɓalli"idan 1" aika hanyar zuwa Loopback (Zaku iya nuna abubuwan da ke samuwa ta hanyar buga hanya). Kuma MUHIMMANCI! Yanzu shirin yana buƙatar gudu. tare da haƙƙin gudanarwasaboda canza hanya yana buƙatar haɓakawa.
2.3. Nunawa da adana adiresoshin IP da aka gano aiki ne mara nauyi kuma baya buƙatar bayani. Idan kuna tunani game da shi, zaku iya sarrafa fayil ɗin ad_svc.trace AnyDesk da kanta, amma ban yi tunaninsa nan da nan ba + watakila akwai ƙuntatawa akansa.
2.4. Halin rashin daidaituwa na shirin shine cewa lokacin da tsarin sabis ɗin ya kasance "aiki" a cikin Windows 10, yana sake farawa ta atomatik, a cikin Windows 8 yana ƙarewa, yana barin tsarin wasan bidiyo kawai kuma ba tare da sake haɗawa ba, gabaɗaya, rashin ma'ana ne kuma kuskure.
Share tsarin da ya haɗa zuwa uwar garken yana ba ku damar "tilasta" sake haɗawa zuwa adireshin na gaba. Ana aiwatar da shi daidai da umarnin da suka gabata, don haka na bayar kawai:
p.StartInfo.Arguments = "/c taskkill /PID " + pid1_ + " /F";Bugu da ƙari, ƙaddamar da shirin AnyDesk.
//запускаем программу которая расположена по пути path_pro
if (File.Exists(path_pro)){
Process p1 = Process.Start(path_pro);}2.5. Za mu duba matsayi na AnyDesk sau ɗaya a minti daya (ko fiye da sau da yawa?), Kuma idan an haɗa shi, watau. Connection ESTABLISHED - toshe wannan IP, kuma a sake maimaitawa - jira har sai ya haɗa, toshe kuma jira.
3. Cin zarafi
An "tsara lambar", an yanke shawarar ganin tsarin aikin "+" saka IP ɗin da aka samo kuma an katange, kuma"."- sake dubawa ba tare da haɗin gwiwa mai nasara daga AnyDesk ba.
→
Saboda…
Shirin ya yi aiki a kan kwamfutoci da yawa tare da Windows OS daban-daban, tare da nau'ikan AnyDesk 5 da 6. An tattara kusan adireshi 500 a cikin 80 iterations. Don 2500 - 87 da sauransu ...
Bayan lokaci, adadin IPs da aka katange ya kai 100+.
Hanyar zuwa ƙarshe fayil ɗin rubutu tare da adireshi: и
An yi! Ana ƙara tafkin adiresoshin IP zuwa ka'idojin babban mai ba da hanya tsakanin hanyoyin sadarwa ta hanyar rubutun, kuma AnyDesk ba zai iya ƙirƙirar haɗin waje ba.
Akwai wani lokaci mai ban mamaki, bisa ga bayanan farko, a bayyane yake cewa adireshin yana da hannu wajen canja wurin bayanai boot-01.net.anydesk.com. Tabbas mun toshe duk *.net.anydesk.com runduna a matsayin gama gari, amma wannan ba shine abin ban mamaki ba. Kowane lokaci ping na al'ada daga kwamfutoci daban-daban wannan sunan yankin yana ba da IP daban-daban. Shiga cikin Linux:
host boot-01.net.anydesk.com
kamar DNSLookup, suna ba da adireshin IP ɗaya ne kawai, amma wannan adireshin yana da canji. Lokacin nazarin haɗin TCPView, muna dawo da bayanan PTR na adiresoshin IP kamar relay-*.net.anydesk.com.
A ka'ida: tun da wani lokacin ping yana zuwa wurin mara izini wanda ba a toshe shi ba boot-01.net.anydesk.com za mu iya samun waɗannan ip da toshe, sanya wannan aiwatarwa ya zama rubutu na yau da kullun a ƙarƙashin Linux OS, anan ba kwa buƙatar shigar da AnyDesk. Binciken ya nuna cewa waɗannan IPs galibi suna "shiga tsakani"tare da waɗanda aka samo daga jerinmu. Wataƙila wannan shine kawai wannan mai masaukin baki, wanda shirin ya haɗu kafin ya fara "warke" sanannun IPs. Wataƙila daga baya zan ƙara labarin tare da kashi na 2 na binciken masu watsa shiri, kodayake a halin yanzu. shirin da kanta ba ya shigar da haɗin gwiwa gaba ɗaya.
Ina fatan ba ku ga wani abu ba bisa doka ba a cikin sama, kuma masu kirkiro AnyDesk za su bi da ayyukana ta hanyar wasanni.
source: www.habr.com