Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8011
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8012
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(TLS/1.0) cr####.tonys####.com:443
- TCP(TLS/1.0) et2-na6####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) pc####.tonys####.com:443
- a####.b####.qq.com
- aexcep####.b####.qq.com
- and####.b####.qq.com
- cr####.tonys####.com
- log.u####.com
- pc####.tonys####.com
- plb####.u####.com
- sdk.o####.p####.####.com
- u####.u####.com
- aexcep####.b####.qq.com:8011/rqd/async
- aexcep####.b####.qq.com:8012/rqd/async
- and####.b####.qq.com/rqd/async
- sdk.o####.p####.####.com/api.php?format=####&t=####
- /data/data/####/00f2e27e64d52020ac67567cd2ccbc078b8497652bc2f9a....0.tmp
- /data/data/####/07889fa9dd28dcf55c84df9ce4f0d6ce61213c9dfeb146e....0.tmp
- /data/data/####/0b1556979f8c1519b57e9f07510e8e5e50413933d363085....0.tmp
- /data/data/####/0f50d9e7d6706225d29536d03a581199067434f5fc9372c....0.tmp
- /data/data/####/15099eb8955923021168f93391e24ff1535efbc2abd6d3e....0.tmp
- /data/data/####/168c79a17d25171fb1f82228c7680916c11875cea4b801f....0.tmp
- /data/data/####/1d9622461073aa9f458bc8f6497121950f7517712e7fcd9....0.tmp
- /data/data/####/2041b9c0b056c1ef88406a320f2c71ef2b3fd44e3e0d345....0.tmp
- /data/data/####/244d3adfeb7df086833ceb2e5d2044e4846382eebb219ae....0.tmp
- /data/data/####/254d07ec0daad1d127bc9b66d162a9e077758d07cbf00fb....0.tmp
- /data/data/####/2dd6f7ed97797dc876a7da3b57b8716ed467ec84ac4e3cd....0.tmp
- /data/data/####/31ceadb00473614b6c4b9f03f52fe99a5e24703c83963ff....0.tmp
- /data/data/####/34e86be961f1ce0791aa4637dbe3ec2f7a618ab6f92c98c....0.tmp
- /data/data/####/37950f3c7945e2176870f8dece32bbec62dccee9763ec76....0.tmp
- /data/data/####/3a131902a354abe4f7a50c6dc555265321cc4a85a0eb866....0.tmp
- /data/data/####/3b6ca439cce2c96924b0a8fd26c91f953281125c65cef58....0.tmp
- /data/data/####/432324f6bfc33c84f40d7f16bc646d8f74246c03e9359d9....0.tmp
- /data/data/####/4838159e5e0c3c3e357670b8ffbb1e740b11e53982ed64d....0.tmp
- /data/data/####/4cdb8796530dabe89ed39c02235a5a2f91e4699787be385....0.tmp
- /data/data/####/5eabe14924fc633b5b0469b19cfa7f771a3a9a656cdd9e8....0.tmp
- /data/data/####/608660846171b949a97c01a5a4352d8154e5219d345131b....0.tmp
- /data/data/####/64cc43d1acb476dd8f7c79a1be013f2726823e33a82b469....0.tmp
- /data/data/####/6524daa1b191bd31b5108d8c1647c11d
- /data/data/####/6665be8a2a38027e2662470a901c219465675121dc56a98....0.tmp
- /data/data/####/6ba7606bab7941cad0e34b2f334a179a64f996f22605ec2....0.tmp
- /data/data/####/7e9e34d7dfd1585c08c8e810f98761f14edc3d0a73b5257....0.tmp
- /data/data/####/826682d7bbabaa0a1ccf18d3063f774b30ffaaa7f777dd9....0.tmp
- /data/data/####/8506e15149b26680079e57b87c8b5c82e70aa5d36931bae....0.tmp
- /data/data/####/88b7dd33152f6f5e8a3a5b343d3ec50804a99f5a6ac58e9....0.tmp
- /data/data/####/8f0e9f4df50ad695a26cb90a7f1115808ff25675c98f22e....0.tmp
- /data/data/####/8f8383b50b99a3144a24353e1a5f5de5843904173a061e3....0.tmp
- /data/data/####/95567443ea5e1dfed49a9a0fad7e4db3fb07249ca97d20c....0.tmp
- /data/data/####/98647b96e696944c7b412fce12a547fc3bb547e50115897....0.tmp
- /data/data/####/99af8e845e22fb4959d80b5c577ea7053cb83d1ff2e935c....0.tmp
- /data/data/####/9d7ed9be7d70f1a1f567e7b70d8311ce61f24e872445327....0.tmp
- /data/data/####/BMWEEXOPEN_JS_SP.xml
- /data/data/####/BMWEEXOPEN_NATIVE_SP.xml
- /data/data/####/MultiDex.lock
- /data/data/####/a173a47889235b6b9086d7c215237d3012c9d4c3b791b5c....0.tmp
- /data/data/####/a3ce6538a6cb398cacbc2481a0e76305809ee06450daaa0....0.tmp
- /data/data/####/a4ede86ca69f2335b2ad165b2512273e347078765047923....0.tmp
- /data/data/####/aa15d8026ea36d42775a7d00c06549780abfbbf6864090c....0.tmp
- /data/data/####/b5a8550223fe17bf299e42f71bf86f84c4788be3d552832....0.tmp
- /data/data/####/b87ba40a98aede0f597e2461854665b4b0372834158a112....0.tmp
- /data/data/####/b9ecea074b09a3a6ea705e7c19ba857055c6977642e83ff....0.tmp
- /data/data/####/baa643992057d75711e1c134c2b3bb5f0d30d3060044d61....0.tmp
- /data/data/####/bef66b5146e10dfd95ef94df080e99455fea65dbc18ed81....0.tmp
- /data/data/####/bugly_db_legu-journal
- /data/data/####/c8d1a46baa09e2ab0f0d02b51320f71cbef36eee69ff45c....0.tmp
- /data/data/####/ca8fd0e2e2ac26d8687ff414ebe4d20590662e9feab6e6c....0.tmp
- /data/data/####/cedacf0bf100fc004dce278f1ac551e2920c3776fc8142e....0.tmp
- /data/data/####/d2c3079beb30c87ca1aac2119df02320c5724266dfb03b2....0.tmp
- /data/data/####/d447ace24a8e3042066df939aab8405aa7c7156cee8336e....0.tmp
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4NjY3NDg1NzAy;
- /data/data/####/dd2fc5c5f5421a11cccbc3067f982c26bb2a5ea5a1d08a0....0.tmp
- /data/data/####/e17a2476dcc590c6d77ade387e4c7e67139d7d1e0acc123....0.tmp
- /data/data/####/e3bbd9f64ca017b0177cb2b9769320700a1e15d795fff33....0.tmp
- /data/data/####/e4d4d21f0053ce0213b3fa7c4609f2dfd73921e393005e0....0.tmp
- /data/data/####/eb63991037428ad21d0e642d06318b3ad20aacf066d5345....0.tmp
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f0207d39c1fe97bf6fe4b202dc57582365e1e89d70dbdca....0.tmp
- /data/data/####/f49b8686b6a75e003a6a10028f977156ddab139bec42055....0.tmp
- /data/data/####/f6531d18027c78b3940df22a33e120858a72811cc5e6da6....0.tmp
- /data/data/####/f7d72b2af3db20ce43239c08014dd10e49a299344cb2e95....0.tmp
- /data/data/####/f8d54921d6029c4cb27134b36c54e3746cda5a191cba4f7....0.tmp
- /data/data/####/fd9845114a8b9ac283040ef05a78736ee14534ee60b681a....0.tmp
- /data/data/####/getui_sp.xml
- /data/data/####/i==1.2.0&&2.1.2_1548667485720_envelope.log
- /data/data/####/info.xml
- /data/data/####/init_c1.pid
- /data/data/####/init_er.pid
- /data/data/####/journal.tmp
- /data/data/####/jsserver_crash_info.log
- /data/data/####/libnfix.so
- /data/data/####/libshella-2.9.1.2.so
- /data/data/####/libufix.so
- /data/data/####/libweexjsb.so
- /data/data/####/local_crash_lock
- /data/data/####/mix.dex
- /data/data/####/multidex.version.xml
- /data/data/####/native_record_lock
- /data/data/####/security_info
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_config.xml.bak
- /data/data/####/umeng_common_location.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/media/####/1.png
- /data/media/####/2.png
- /data/media/####/3.png
- /data/media/####/BalancePage.js
- /data/media/####/CartPage.js
- /data/media/####/DetailPage.js
- /data/media/####/GoodListPage.js
- /data/media/####/ItemListPage.js
- /data/media/####/OpenPackagePage.js
- /data/media/####/OrderPage.js
- /data/media/####/PreferenceEdit.js
- /data/media/####/ResultPage.js
- /data/media/####/SearchPage.js
- /data/media/####/SpecialPage.js
- /data/media/####/WechatIMG21.png
- /data/media/####/about.js
- /data/media/####/aboutPage.js
- /data/media/####/addressListPage.js
- /data/media/####/addressUpdatePage.js
- /data/media/####/agreement.js
- /data/media/####/amount.png
- /data/media/####/appGuide.js
- /data/media/####/avatar.js
- /data/media/####/back@2x.png
- /data/media/####/back@3x.png
- /data/media/####/bindPhone.js
- /data/media/####/bundle.zip
- /data/media/####/cardExchange.js
- /data/media/####/categoryBg.png
- /data/media/####/chat.js
- /data/media/####/chat@2x.png
- /data/media/####/chat_ed@2x.png
- /data/media/####/choose.js
- /data/media/####/collecting.js
- /data/media/####/contactUSPage.js
- /data/media/####/couponPage.js
- /data/media/####/default.png
- /data/media/####/detail.js
- /data/media/####/editName.js
- /data/media/####/effective.png
- /data/media/####/empty-car.png
- /data/media/####/empty-chat.png
- /data/media/####/empty-driver.png
- /data/media/####/emptyBg.png
- /data/media/####/emptyBg@2x.png
- /data/media/####/emptyInfo.js
- /data/media/####/err-network.png
- /data/media/####/errNetwork-320.png
- /data/media/####/errNetwork.js
- /data/media/####/exinput.png
- /data/media/####/fenlei_pressed@2x.png
- /data/media/####/fenlei_unpress@2x.png
- /data/media/####/finish.js
- /data/media/####/form.js
- /data/media/####/geo.png
- /data/media/####/gouwuche_press@2x.png
- /data/media/####/gouwuche_unpress@2x.png
- /data/media/####/guide.js
- /data/media/####/home.js
- /data/media/####/home@2x.png
- /data/media/####/home_ed@2x.png
- /data/media/####/iconfont.ttf
- /data/media/####/index.js
- /data/media/####/info.js
- /data/media/####/lazyImg.png
- /data/media/####/login.js
- /data/media/####/logo.png
- /data/media/####/logo_mini.png
- /data/media/####/logo_mini1.png
- /data/media/####/main_pressed@2x.png
- /data/media/####/main_unpress@2x.png
- /data/media/####/md5.json
- /data/media/####/memberCharge.js
- /data/media/####/messages.js
- /data/media/####/mine_press@2x.png
- /data/media/####/mine_unpress@2x.png
- /data/media/####/myCreditPage.js
- /data/media/####/myPage.js
- /data/media/####/none.png
- /data/media/####/order-cancel.png
- /data/media/####/order-finish.png
- /data/media/####/order-pay.png
- /data/media/####/order@2x.png
- /data/media/####/orderDetailPage.js
- /data/media/####/orderListPage.js
- /data/media/####/order_ed@2x.png
- /data/media/####/owner-menu.png
- /data/media/####/owner-pull.png
- /data/media/####/owner-scan.png
- /data/media/####/partner.js
- /data/media/####/preference.js
- /data/media/####/productBg.png
- /data/media/####/qrcode.js
- /data/media/####/record.js
- /data/media/####/remaining.js
- /data/media/####/setPassPage.js
- /data/media/####/setting.js
- /data/media/####/settingPage.js
- /data/media/####/shopping_cart.png
- /data/media/####/ssumapchoose.html
- /data/media/####/store.js
- /data/media/####/system.js
- /data/media/####/tel.js
- /data/media/####/topbg.png
- /data/media/####/unable.png
- /data/media/####/used.png
- /data/media/####/user.js
- /data/media/####/user@2x.png
- /data/media/####/user_ed@2x.png
- /data/media/####/vehicles.js
- /data/media/####/ver-ing.png
- /data/media/####/wait.js
- /data/media/####/weixin.png
- /data/media/####/withdraw.js
- /data/media/####/wxqrcode.png
- /data/app-lib/<Package>-1/libweexjsb.so 60 0
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- /system/bin/sh -c getprop ro.aa.romver
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/sh -c getprop ro.build.fingerprint
- /system/bin/sh -c getprop ro.build.nubia.rom.name
- /system/bin/sh -c getprop ro.build.rom.id
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
- /system/bin/sh -c getprop ro.build.version.emui
- /system/bin/sh -c getprop ro.build.version.opporom
- /system/bin/sh -c getprop ro.gn.gnromvernumber
- /system/bin/sh -c getprop ro.lenovo.series
- /system/bin/sh -c getprop ro.lewa.version
- /system/bin/sh -c getprop ro.meizu.product.model
- /system/bin/sh -c getprop ro.miui.ui.version.name
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
- /system/bin/sh -c type su
- chmod 700 <Package Folder>/tx_shell/libnfix.so
- chmod 700 <Package Folder>/tx_shell/libshella-2.9.1.2.so
- chmod 700 <Package Folder>/tx_shell/libufix.so
- getprop ro.aa.romver
- getprop ro.board.platform
- getprop ro.build.fingerprint
- getprop ro.build.nubia.rom.name
- getprop ro.build.rom.id
- getprop ro.build.tyd.kbstyle_version
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.gn.gnromvernumber
- getprop ro.lenovo.series
- getprop ro.lewa.version
- getprop ro.meizu.product.model
- getprop ro.miui.ui.version.name
- getprop ro.vivo.os.build.display.id
- getprop ro.yunos.version
- logcat -d -v threadtime
- ls /sys/class/thermal
- Bugly
- Patcher
- getuiext2
- libnfix
- libshella-2.9.1.2
- libufix
- nfix
- ufix
- weexjsc
- AES-CBC-PKCS7Padding
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding
- AES-CBC-PKCS5Padding
- AES-GCM-NoPadding