For Support and Advertisement you can contact  701491310 c0defire@xmpp.jp
Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
i´m i been haked???
08-28-2019, 09:35 PM,
Post: #1
i´m i been haked???
hi, i just found some files in my phone and they really scared me, 1st, because they look SO weird, they are logs from some sort of app, i reallt have NO idea of what app it is, it is located in: /storage/emulated/0/tencent/tpush/logs

-----> WHAT I WANT IS TO KNOW IF MY ANDROID PHONE OR THE APP "ICSee" HAS A TROJAN OR SO!!!

i downloaded king root some time ago and i´ve read in some forums that this app install the same folders in the same route.

however i have made some investigation and it all looks to be an app from google play store, the app is iCSee "

iCSee link here

"com.xm.csee" is app ID from google play store app iCSEE!!!!!!!!


also i googled this line of one of the files:
com.xm.csee.AUTH_XGPUSH,com.xm.csee,com.tencent.android.tpush.XGPushProvider

and it showed me results from iCSee - Apps on Google Play
wich I DID INSTALLED IN MY PHONE TIME BEFORE!!!!! i think we have a winner

but i´m worried because:

1.- inside of several files they use the word "horse" several times,

2.- then it uses an ip from china: 203.205.146.122. Shenzhen Tencent Computer Systems Company Limited. and another ip from hong konk, wich has been reported for abuse.
and WHY is it sending and receiving data from china, specially SENDING data 
from wifi networks wich i was connected to.


3.- somewhere i could read also the word: Main Activity (the same filename when you make a metasploit venom android apk)

4.- looks pretty weird to me. so i really hope somebody have an idea of what can this be.

the files are over the 8000 characters so i will have to upload them to github, logs link is here

thank you guys in advance for any help on this issue
Quote
For Support and Advertisement you can contact  701491310 c0defire@xmpp.jp


Forum Jump:


Users browsing this thread: 1 Guest(s)
For Support and Advertisement you can contact  701491310 c0defire@xmpp.jp


All rights reserved © 2012-2015 OffensiveCommunity, Designed at WallBB Co Uk
Powered By MyBB, © 2002-2019 MyBB Group.