Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) pub-####.qin####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP c####.g####.ig####.com:5225
- TCP sdk.o####.t####.####.com:5224
- 7j####.c####.z0.####.com
- c####.g####.ig####.com
- c-h####.g####.com
- plb####.u####.com
- pub-####.qin####.com
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- u####.u####.com
- pub-####.qin####.com/tdata_EDT356
- t####.c####.q####.####.com/config/hz-hzv3.conf
- t####.c####.q####.####.com/tdata_MkX219
- t####.c####.q####.####.com/tdata_iGj879
- c-h####.g####.com/api.php?format=####&t=####
- sdk.o####.p####.####.com/api.php?format=####&t=####
- /data/data/####/.jg.ic
- /data/data/####/MultiDex.lock
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjc4ODE1;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjc5NjU4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjg1ODEz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjg2NDQ2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjg3MTQz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjg4NjE5;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjg5MjA1;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjg5OTUy;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MjgyNjA2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjk0MjUw;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjk2OTI3;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5Mjk4MjE0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MjkwNzIz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MjkxNDM3;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MjkyMDM3;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MjkzNTY2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzA0OTQ1;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzA3OTQ2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzA4NjA0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzA5MjQ0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzAxMjYz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzAxOTA2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzAyNTE0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzAzNjA4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzE0MDY0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzE0Njc5;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzE1MjU2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzE3Mzcz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzE3OTc3;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzE4Njg2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzEwMDA3;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzEwNjU4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzExMjIz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzEyMDI4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzEyNTY0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzI2ODA1;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzI3NDc0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzI4MTgz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzIxNDIy;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzIxOTgw;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzIyNjk4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzIzMzA3;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzM2ODY0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzM3NTcy;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzMwMTg5;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzMwODUz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzMxNDU4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzMyNDcz;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzMzMTc2;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzMzNzc4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzQ0MTEy;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQyMjQ5MzQyMjY1;
- /data/data/####/df8ae3ca66b4
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/gdaemon_20161017
- /data/data/####/getui_sp.xml
- /data/data/####/gx_sp.xml
- /data/data/####/i==1.2.0&&1.1.1_1542249279665_envelope.log
- /data/data/####/info.xml
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/libjiagu2053580399.so
- /data/data/####/multidex.version.xml
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/qihoo_jiagu_crash_report.xml
- /data/data/####/run.pid
- /data/data/####/tdata_MkX219
- /data/data/####/tdata_MkX219.jar
- /data/data/####/tdata_iGj879
- /data/data/####/tdata_iGj879.jar
- /data/data/####/um_pri.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/media/####/2018-11-15-02-34-38.log
- /data/media/####/2018-11-15-02-34-39.log
- /data/media/####/2018-11-15-02-34-40.log
- /data/media/####/2018-11-15-02-34-42.log
- /data/media/####/2018-11-15-02-34-43.log
- /data/media/####/2018-11-15-02-34-45.log
- /data/media/####/2018-11-15-02-34-46.log
- /data/media/####/2018-11-15-02-34-47.log
- /data/media/####/2018-11-15-02-34-48.log
- /data/media/####/2018-11-15-02-34-49.log
- /data/media/####/2018-11-15-02-34-50.log
- /data/media/####/2018-11-15-02-34-51.log
- /data/media/####/2018-11-15-02-34-52.log
- /data/media/####/2018-11-15-02-34-53.log
- /data/media/####/2018-11-15-02-34-54.log
- /data/media/####/2018-11-15-02-34-56.log
- /data/media/####/2018-11-15-02-34-57.log
- /data/media/####/2018-11-15-02-34-58.log
- /data/media/####/2018-11-15-02-35-01.log
- /data/media/####/2018-11-15-02-35-02.log
- /data/media/####/2018-11-15-02-35-03.log
- /data/media/####/2018-11-15-02-35-04.log
- /data/media/####/2018-11-15-02-35-07.log
- /data/media/####/2018-11-15-02-35-08.log
- /data/media/####/2018-11-15-02-35-09.log
- /data/media/####/2018-11-15-02-35-10.log
- /data/media/####/2018-11-15-02-35-11.log
- /data/media/####/2018-11-15-02-35-12.log
- /data/media/####/2018-11-15-02-35-13.log
- /data/media/####/2018-11-15-02-35-14.log
- /data/media/####/2018-11-15-02-35-15.log
- /data/media/####/2018-11-15-02-35-17.log
- /data/media/####/2018-11-15-02-35-18.log
- /data/media/####/2018-11-15-02-35-20.log
- /data/media/####/2018-11-15-02-35-21.log
- /data/media/####/2018-11-15-02-35-22.log
- /data/media/####/2018-11-15-02-35-23.log
- /data/media/####/2018-11-15-02-35-26.log
- /data/media/####/2018-11-15-02-35-27.log
- /data/media/####/2018-11-15-02-35-28.log
- /data/media/####/2018-11-15-02-35-30.log
- /data/media/####/2018-11-15-02-35-31.log
- /data/media/####/2018-11-15-02-35-32.log
- /data/media/####/2018-11-15-02-35-33.log
- /data/media/####/2018-11-15-02-35-36.log
- /data/media/####/2018-11-15-02-35-37.log
- /data/media/####/2018-11-15-02-35-38.log
- /data/media/####/2018-11-15-02-35-42.log
- /data/media/####/2018-11-15-02-35-44.log
- /data/media/####/app.db
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.szrxy.staff.bin
- /data/media/####/com.szrxy.staff.db
- /data/media/####/tdata_MkX219
- /data/media/####/tdata_iGj879
- /data/media/####/test.log
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- <Package Folder>/files/gdaemon_20161017 0 <Package>/com.byt.staff.service.GetuiService 24535 300 0
- cat /sys/class/net/wlan0/address
- chmod 700 <Package Folder>/files/gdaemon_20161017
- ls /sys/class/thermal
- mount
- getuiext2
- libjiagu2053580399
- RSA-NONE-OAEPWithSHA1AndMGF1Padding