Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) q####.c####.l####.####.com:80
- TCP(HTTP/1.1) ti####.c####.l####.####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) sdk-ope####.g####.com:80
- TCP(HTTP/1.1) cdn-sdk####.g####.com.####.com:80
- TCP(HTTP/1.1) cl####.m####.cn:11011
- TCP(HTTP/1.1) cl####.m####.cn:14028
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(TLS/1.0) dualsta####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) et2-na6####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) cl####.m####.cn:11014
- TCP sdk.o####.t####.####.com:5224
- TCP cm-1####.ig####.com:5224
- 7j####.c####.z0.####.com
- c-h####.g####.com
- cdn-sdk####.g####.com
- cl####.m####.cn
- cl####.u####.cn
- cl####.u####.net
- cm-1####.ig####.com
- log.u####.com
- plb####.u####.com
- sdk-ope####.g####.com
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- u####.u####.com
- cdn-sdk####.g####.com.####.com/tdata_HNa879
- cl####.m####.cn:11011/client
- cl####.m####.cn:11011/uuzz/logo/btn/nav/cyq.png?v=####
- cl####.m####.cn:11011/uuzz/logo/btn/nav/gcdt_f.png?v=####
- cl####.m####.cn:11011/uuzz/logo/btn/nav/grzh.png?v=####
- cl####.m####.cn:11011/uuzz/logo/btn/nav/kjxx.png?v=####
- cl####.m####.cn:11011/uuzz/logo/btn/nav/more.png?v=####
- cl####.m####.cn:11011/uuzz/logo/lottery/adv/etc.png?v=####
- cl####.m####.cn:11011/uuzz/logo/lottery/dlt.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/ind_huodong.png?v=####
- cl####.m####.cn:11011/uuzz/logo/lottery/index_zqbfzb.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/jczq.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/jkc.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/pl3.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/pl5.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/qxc.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/zc_bqc.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/zc_jq.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/zc_r9.png?version=####
- cl####.m####.cn:11011/uuzz/logo/lottery/zc_sfc.png?version=####
- cl####.m####.cn:14028/info/titleImg_8_202004071018040_a9ff1c4d9d0d4cb099...
- cl####.m####.cn:14028/info/titleImg_8_202004071018050_ab51a6bf90264ffd9f...
- cl####.m####.cn:14028/info/titleImg_8_202004131654032_0ae7d15257b74b6486...
- cl####.m####.cn:14028/info/titleImg_8_202004131657016_14b9b7fb893e48a0b0...
- cl####.m####.cn:14028/info/titleImg_8_202004171032040_338e4e6f630c4757b9...
- q####.c####.l####.####.com/config/hz-hzv6.conf
- sdk.o####.p####.####.com/api/addr.htm
- ti####.c####.l####.####.com/tdata_BAI450
- c-h####.g####.com/api.php?format=####&t=####
- sdk-ope####.g####.com/api.php?format=####&t=####
- /data/data/####/.edata
- /data/data/####/.imprint
- /data/data/####/0cc888fa6aa048880b6e8f8e54eef47214fe2055c0f51b1....0.tmp
- /data/data/####/104e513b95e220327c7f0c8b97cc3f403c20988b06117ee....0.tmp
- /data/data/####/1fdc5b3260593bb95aceaed4fbcbb7e247c991f066157a3....0.tmp
- /data/data/####/30a03ddc08316aed14d4aad198e1e2e0f891f26d4030e58....0.tmp
- /data/data/####/361277418-1470897835
- /data/data/####/361277418-1784498374
- /data/data/####/361277418-328998455
- /data/data/####/361277418-692028158
- /data/data/####/361277418-921617404
- /data/data/####/3612774181709057834
- /data/data/####/3612774181873683348
- /data/data/####/361277418657332786
- /data/data/####/3b12cbd3c2b8fa0fc8a029db731e55f9cef2b63e0380e5a....0.tmp
- /data/data/####/4uw0NnQCJB00lEnswF1Jo1-c_Zo.-454862789.tmp
- /data/data/####/52898c20de887e3d6ef840aa216ba049b2862e38b82c331....0.tmp
- /data/data/####/6079a58bc508132de93c90ff9090d7958417d49dda76b6c....0.tmp
- /data/data/####/708af6d70e0eec543c5f681d9bc3d5e8f97ff9d9c2b1661....0.tmp
- /data/data/####/7fae737ae771fcdb4ce16a4bef3497783d184becb205a1a....0.tmp
- /data/data/####/RtNeTfFW5-PDmmMcU3UOakBQ6wc.-1245997159.tmp
- /data/data/####/SD41xM74WT2wrM53xFFSbOqAirg.2021675959.tmp
- /data/data/####/a4797b0db82c3ba87a70f0cf485adedba5d6651fe380672....0.tmp
- /data/data/####/b13010342f9796a17660b00b01eb42ad29a67a811d1c776....0.tmp
- /data/data/####/cc98b9457a9e643345d2cfd935c137df9f0d60856014a2c....0.tmp
- /data/data/####/cd435eb5c524a479f87f3bed474a67d5878850ff9c7149c....0.tmp
- /data/data/####/classes.dex
- /data/data/####/classes.dve
- /data/data/####/classes.jar
- /data/data/####/classes2.dex
- /data/data/####/classes3.dex
- /data/data/####/com.lottery.client_preferences.xml
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTg3NDgxMTU0NTk0;
- /data/data/####/dW1weF9zaGFyZV8xNTg3NDgxMTc1NjEx;
- /data/data/####/dW1weF9zaGFyZV8xNTg3NDgxMTczODIy;
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f4706e6507c39fe7090a104510d5961356a1fa0840f7495....0.tmp
- /data/data/####/fd75ada78e67544fd9bde78a87b5cf0d4f5469e2820dbfc....0.tmp
- /data/data/####/getui_sp.xml
- /data/data/####/i==1.2.0&&1.8.7_1587481154606_envelope.log
- /data/data/####/info.xml
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/journal.tmp
- /data/data/####/miui_notify2133
- /data/data/####/miui_notify2174
- /data/data/####/miui_notify2616
- /data/data/####/miui_notify2728
- /data/data/####/multidex.version.xml
- /data/data/####/push.pid
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/share.db-journal
- /data/data/####/tdata_HNa879
- /data/data/####/tdata_HNa879.jar
- /data/data/####/ttLPKVekH3xsxtxQYl_S9immKXo.1618865178.tmp
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_location.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_socialize.xml
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.cca.dat
- /data/media/####/.umm.dat
- /data/media/####/app.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.lottery.client.bin
- /data/media/####/com.lottery.client.db
- /data/media/####/tdata_HNa879
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- ls /
- ls /sys/class/thermal
- DexHelper
- SecUtils
- bitmaps
- getuiext2
- memchunk
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- 1