Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) q####.c####.l####.####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) sdk-ope####.g####.com:80
- TCP(HTTP/1.1) cdn-sdk####.g####.com.####.com:80
- TCP(HTTP/1.1) www.zhangy####.cn.####.net:80
- TCP(HTTP/1.1) www.aixu####.cn:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(HTTP/1.1) l####.tbs.qq.com:80
- TCP(TLS/1.0) www.zhangy####.cn.####.net:443
- TCP(TLS/1.0) dualsta####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) app.aixu####.cn.####.net:443
- TCP sdk.o####.t####.####.com:5224
- TCP cm-1####.ig####.com:5226
- 7j####.c####.z0.####.com
- app.aixu####.cn
- app.zhangy####.cn
- c-h####.g####.com
- cdn-sdk####.g####.com
- cm-1####.ig####.com
- l####.tbs.qq.com
- plb####.u####.com
- sdk-ope####.g####.com
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- u####.u####.com
- www.aixu####.cn
- www.zhangy####.cn
- cdn-sdk####.g####.com.####.com/tdata_Qna477
- cdn-sdk####.g####.com.####.com/tdata_trp703
- cdn-sdk####.g####.com.####.com/tdata_xEA084
- q####.c####.l####.####.com/config/hz-hzv6.conf
- q####.c####.l####.####.com/tdata_LRe817
- sdk.o####.p####.####.com/api/addr.htm
- www.aixu####.cn/uploads/news/cover/2020/4/35f2f0cc6f34c5dc87b2e5611bfa19...
- www.aixu####.cn/uploads/news/cover/2020/4/367f394f700a4e9745e530a941f6c7...
- www.aixu####.cn/uploads/news/cover/2020/4/418d2054b7b0b288647ed20418b098...
- www.aixu####.cn/uploads/news/cover/2020/4/5f4e6337a2fb9ea3ebbc0b5dfb7f01...
- www.aixu####.cn/uploads/news/cover/2020/4/71569594018181417608c21816856c...
- www.aixu####.cn/uploads/news/cover/2020/4/72b00384a277b480b193c06520ca96...
- www.aixu####.cn/uploads/news/cover/2020/4/c434e8a1ddb26bab121dba58838a6e...
- www.aixu####.cn/uploads/news/cover/2020/4/e358d1d1579be3c5560c681ba3b32c...
- www.aixu####.cn/uploads/news/cover/2020/4/f864e67ef8585e89f4839cd69a4165...
- www.aixu####.cn/uploads/video/cover/2020/4/11eff3c457a5b03920d5455769ba5...
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1557826099701.png
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585625896992.jpg
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585626203795.jpg
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585626347135.jpg
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585626739081.jpg
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585626859730.jpg
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585626923387.jpg
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585627089228.jpg
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585639943246.png
- www.zhangy####.cn.####.net/uploads/media/user/avatar_url/1585640155767.png
- c-h####.g####.com/api.php?format=####&t=####
- l####.tbs.qq.com/ajax?c=####&k=####
- sdk-ope####.g####.com/api.php?format=####&t=####
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/0185db5c6ced6a5ec70bad8312ad86841505313502f62fc....0.tmp
- /data/data/####/06fbfd0d2144e3768970aeb9c9c0e9a80177d24322d108c....0.tmp
- /data/data/####/09312a761202e387700f6bc2f7ff533822f9d08f84619e8....0.tmp
- /data/data/####/0a33fc2424fcd234eb012d2020df84aa5923e652c93cdaa....0.tmp
- /data/data/####/0ec36c90128052488cb9dcebfc076ee0d8019e28e2f9d19....0.tmp
- /data/data/####/13eb6f34735601e396b0dd774e392cf54cabbdabccde3b5....0.tmp
- /data/data/####/160033252d997bb081921f9584557a2f1c8de65714a1002....0.tmp
- /data/data/####/1b4bf1a104acb4a138e10dc9cb746ce91a13f1f44a741f4....0.tmp
- /data/data/####/258217b81145f9e335c7cec63dcdc32688ec8f29772a964....0.tmp
- /data/data/####/2a8e3a808d517ae1aa58568f8e3dd08cf1d97b66057c97b....0.tmp
- /data/data/####/2bde8f6f64f88a53f18934e9eff5231f76b19147856ab4c....0.tmp
- /data/data/####/2cfa2c37dcd30e7b43b0138c0629135a2c5046b8720bb1c....0.tmp
- /data/data/####/2d92633a863179b0842cf5c83fe49fd11a63232d25c1a1f....0.tmp
- /data/data/####/32ae08535bff5ec57868fb514710469e58f1ae5f862b525....0.tmp
- /data/data/####/360c67f0cbacad15de33103a01d0a3c3d12201518d8b924....0.tmp
- /data/data/####/384cbc8067e805400bdf22c3c319c3fd540e389161b27a6....0.tmp
- /data/data/####/4b145b674be796cf629118fb37b367ed7d48b66c6bf9350....0.tmp
- /data/data/####/4b8b2edb6388e5e0ffe67c6675f8657fad23fca1d6766ff....0.tmp
- /data/data/####/4c8247fb30184980507d9d8b7214248ab53d44c76c2407e....0.tmp
- /data/data/####/598b7d696ae13377af6ae7d4663e19579f9a85384924367....0.tmp
- /data/data/####/5b7e408a639086290110ccc989fe3bdd9b69ec18a989eb9....0.tmp
- /data/data/####/5f0faef2a9e2af8222e9623516116cf97d760ebe6abf3c2....0.tmp
- /data/data/####/605537117c0850e47d9c53ed719e285b686e98771a5db05....0.tmp
- /data/data/####/62c1f65cf00deeac9e7b7ca64d9122de4ad53d131af35f2....0.tmp
- /data/data/####/773b995cd43efd76a4cfb8050f4686cc67d8ab0bbc9212c....0.tmp
- /data/data/####/7a2e01dd2ac6e87dd1f682f19668f968f8e1d397303ada6....0.tmp
- /data/data/####/7d55f9ea93aed3a3ec4271bcc6049dee8e9e56e66b676d3....0.tmp
- /data/data/####/7e90d9783ebedc9ec7f82fe55acb012adf10aa18cf7eadc....0.tmp
- /data/data/####/8315bf7a852232089772dcc2a2498235e10d4ee6bc8ef7e....0.tmp
- /data/data/####/83e4b082d63f79a4f01b6c9afcdc097a0abeaecc43ea91f....0.tmp
- /data/data/####/8620a0f6747ba714289decc2240aaa9bc8872db67db53d5....0.tmp
- /data/data/####/92759a0ea07277b4ce414c2efce92b4df88f80caa8fa774....0.tmp
- /data/data/####/95128372b41ae925d6d67e5807e90cc6956058ae0a120d4....0.tmp
- /data/data/####/99563b7a2b9eb6bcad3799361df31017cb99547cc3ccd8a....0.tmp
- /data/data/####/9b8bdbf2563c5fc4363794d9cf9661dbad4c89d7ef6d33c....0.tmp
- /data/data/####/9f907cb12109f0ace441130fb108536f0231efcbb3d2afe....0.tmp
- /data/data/####/Alvin2.xml
- /data/data/####/ContextData.xml
- /data/data/####/MultiDex.lock
- /data/data/####/UM_PROBE_DATA.xml
- /data/data/####/a3c8f502450072dd5c85780f532c4d51ec844d20a590dd2....0.tmp
- /data/data/####/a888eaf419035755404fbf31813f530235837dba343a238....0.tmp
- /data/data/####/b56b752684c984517487b1d753b4406df99ed02ea3b1127....0.tmp
- /data/data/####/b762183a0d1906b6f07d8e0b0745c4e754c52e729574c0a....0.tmp
- /data/data/####/bc50aec63158f36372ed69330c846a46ae72f415c5a3ac7....0.tmp
- /data/data/####/ca3026288107395fe5a60e441997f057f2444cb5a061f97....0.tmp
- /data/data/####/ccf39eaa506ae2e8a4f41088503775aebc2724ea45ad81f....0.tmp
- /data/data/####/cfc5f63fb9b13d7e1ca400a443983761b442ce59e02f4be....0.tmp
- /data/data/####/core_info
- /data/data/####/d2e47329f0228770c4791c6c8edf4a85b4d2c909e126af0....0.tmp
- /data/data/####/d9e3567bee1739b442bafdf30c95e35f7d39766cabf2064....0.tmp
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTg3MTUxNTQ5MjMy;
- /data/data/####/download_upload
- /data/data/####/e3f9b76e8c06f5f91b01422dbaa26b1c8012df8e2f1bb5e....0.tmp
- /data/data/####/e92d6aa7da5a4ef83e9966ef2307c90faccf858cc99dc53....0.tmp
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f87cd887d678a0ae90181f160bd03bb4fd0b76346f3383d....0.tmp
- /data/data/####/fe52a59e64026e48b5c49b7bfea3521e4979ea16479c2ab....0.tmp
- /data/data/####/gdaemon_20161017
- /data/data/####/getui_sp.xml
- /data/data/####/i==1.2.0&&1.0.3_1587151549315_envelope.log
- /data/data/####/info.xml
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/journal.tmp
- /data/data/####/libjiagu-863533917.so
- /data/data/####/logan.mmap2
- /data/data/####/multidex.version.xml
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/t==8.0.0&&1.0.3_1587151551013_envelope.log
- /data/data/####/tbs_download_config.xml
- /data/data/####/tbs_download_stat.xml
- /data/data/####/tbs_pv_config
- /data/data/####/tbscoreinstall.txt
- /data/data/####/tbslock.txt
- /data/data/####/tdata_Qna477
- /data/data/####/tdata_Qna477.jar
- /data/data/####/tdata_trp703
- /data/data/####/tdata_trp703.jar
- /data/data/####/tdata_xEA084
- /data/data/####/tdata_xEA084.jar
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_location.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.cca.dat
- /data/media/####/.nomedia
- /data/media/####/.umm.dat
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/app.db
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.xcy.aixuedao.bin
- /data/media/####/com.xcy.aixuedao.db
- /data/media/####/tdata_Qna477
- /data/media/####/tdata_trp703
- /data/media/####/tdata_xEA084
- /data/media/####/test.log
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.service.GeTuiPushService 24599 300 0
- chmod 700 <Package Folder>/files/gdaemon_20161017
- getprop ro.product.cpu.abi
- ls /
- ls /sys/class/thermal
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.service.GeTuiPushService 24599 300 0
- X86Bridge
- c++_shared
- getuiext3
- libjiagu-863533917
- logan
- mmkv
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- RSA-ECB-NoPadding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding