Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) ti####.c####.l####.####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) www.eas####.com.####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) cdn.oss.gaoka####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) a1.eas####.com:80
- TCP(HTTP/1.1) a.appj####.com:80
- TCP(HTTP/1.1) api.gaoka####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(TLS/1.0) 1####.217.17.110:443
- TCP(TLS/1.0) and####.cli####.go####.com:443
- TCP c####.g####.ig####.com:5225
- TCP sdk.o####.t####.####.com:5224
- 7j####.c####.z0.####.com
- a####.u####.com
- a.appj####.com
- a1.eas####.com
- and####.cli####.go####.com
- ap.ga####.com
- ap1.ga####.com
- ap2.ga####.com
- api.gaoka####.com
- c####.g####.ig####.com
- c-h####.g####.com
- cdn.oss.gaoka####.com
- mt####.go####.com
- sdk.c####.ig####.com
- sdk.o####.i####.####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- www.eas####.com
- api.gaoka####.com/api-user_daylogin?uid=####&gkptoken=####
- api.gaoka####.com/app-version
- api.gaoka####.com/index-v260
- cdn.oss.gaoka####.com/mobile/ad/functionicon/cmsupload/20170122/14850558...
- cdn.oss.gaoka####.com/mobile/ad/functionicon/cmsupload/20170621/14980496...
- cdn.oss.gaoka####.com/mobile/ad/functionicon/cmsupload/20170621/14980497...
- cdn.oss.gaoka####.com/mobile/face/liveicon/2017/06/01/1496284939_live.jpg
- cdn.oss.gaoka####.com/mobile/face/liveicon/2017/06/01/1496285300_live.jpg
- cdn.oss.gaoka####.com/mobile/face/liveicon/2017/06/02/1496369500_live.jpg
- cdn.oss.gaoka####.com/mobile/user/avatar/teacher/16121217045828744_teach...
- cdn.oss.gaoka####.com/mobile/user/avatar/teacher/16121410294674840_teach...
- cdn.oss.gaoka####.com/mobile/user/avatar/teacher/16121410312794715_teach...
- cdn.oss.gaoka####.com/mobile/user/avatar/teacher/16121509561614488_teach...
- t####.c####.q####.####.com/tdata_eoG063
- t####.c####.q####.####.com/tdata_sFY840
- ti####.c####.l####.####.com/config/hz-hzv3.conf
- www.eas####.com.####.com/easemob/server.xml?sdk_version=####&app_key=###...
- a####.u####.com/app_logs
- a.appj####.com/ad-service/ad/mark
- a1.eas####.com/gaokaobanghuanxin/gaokao/devices
- api.gaoka####.com/api-user_getui_clientid
- api.gaoka####.com/tiku-getRecommendSchedule
- c-h####.g####.com/api.php?format=####&t=####
- sdk.o####.p####.####.com/api.php?format=####&t=####
- /data/data/####/-1935320886-999408715
- /data/data/####/-814693074853545259
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/1345947901071122392
- /data/data/####/250814241748845522
- /data/data/####/33891895648285698
- /data/data/####/cc.c9cd62f.k4748_preferences.xml
- /data/data/####/classes.jar
- /data/data/####/dbommb-journal
- /data/data/####/device_id.xml.xml
- /data/data/####/easemob.sdk.pref.xml
- /data/data/####/gaokaoInfo.db-journal
- /data/data/####/gaokao_info.xml
- /data/data/####/gdaemon_20161017
- /data/data/####/gx_sp.xml
- /data/data/####/increment.db-journal
- /data/data/####/init.pid
- /data/data/####/jg_app_update_settings_random.xml
- /data/data/####/libjiagu.so
- /data/data/####/mobclick_agent_online_setting_cc.c9cd62f.k4748.xml
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/tdata_eoG063.jar
- /data/data/####/tdata_eoG063.tmp
- /data/data/####/tdata_sFY840.jar
- /data/data/####/tdata_sFY840.tmp
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/media/####/-1332566372.0.tmp
- /data/media/####/-1844115755.0.tmp
- /data/media/####/-1912443958.0.tmp
- /data/media/####/-29542373.0.tmp
- /data/media/####/-784866727.0.tmp
- /data/media/####/.nomedia
- /data/media/####/000.html
- /data/media/####/1312900289.0.tmp
- /data/media/####/654242536.0.tmp
- /data/media/####/app.db
- /data/media/####/cc.c9cd62f.k4748.db
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/journal.tmp
- /data/media/####/tdata_eoG063
- /data/media/####/tdata_sFY840
- /data/media/####/test.log
- <Package Folder>/files/gdaemon_20161017 0 <Package>/com.igexin.sdk.PushService 24173 300 0
- chmod 700 <Package Folder>/files/gdaemon_20161017
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/com.igexin.sdk.PushService 24173 300 0
- BMapApiEngine_v1_3_2
- libjiagu
- AES-CFB-NoPadding
- AES-ECB-PKCS5Padding
- DES-ECB-PKCS5Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-CFB-NoPadding
- AES-ECB-PKCS5Padding