Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) q####.c####.l####.####.com:80
- TCP(HTTP/1.1) dm.zhihu####.ren:80
- TCP(HTTP/1.1) ti####.c####.l####.####.com:80
- TCP(HTTP/1.1) norma-e####.m####.com:80
- TCP(HTTP/1.1) pubtran####.oss-cn-####.aliy####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(HTTP/1.1) as####.growi####.com.####.net:80
- TCP(HTTP/1.1) a8ba####.n####.126.net:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) t####.growi####.com:80
- TCP(HTTP/1.1) amdc####.m.ta####.com:80
- TCP(HTTP/1.1) app.zj####.gov.cn:80
- TCP(HTTP/1.1) qin####.com.www.####.com:80
- TCP(HTTP/1.1) sh.wagbr####.aliyun####.com:80
- TCP(TLS/1.0) et2-na6####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) www.googlet####.com:443
- TCP(TLS/1.0) carbon####.ibusc####.com:443
- TCP(TLS/1.0) dualsta####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) api.clo####.online:443
- TCP(TLS/1.0) www.go####.com:443
- TCP(TLS/1.0) sf3-ttc####.ps####.com:443
- TCP(TLS/1.0) res####.a####.com:443
- TCP(TLS/1.0) s####.g.doublec####.net:443
- TCP(TLS/1.0) 2####.107.1.97:443
- TCP(TLS/1.0) m.publict####.dtd####.com:8443
- TCP(TLS/1.0) m.ibusc####.com:443
- TCP(TLS/1.0) api.growi####.com:443
- TCP(TLS/1.0) www.google-####.com:443
- TCP(TLS/1.0) hm.b####.com:443
- TCP(TLS/1.0) www.go####.nl:443
- TCP(TLS/1.0) pubtran####.oss-cn-####.aliy####.com:443
- TCP(TLS/1.0) app.ibusc####.com:443
- TCP c####.g####.ig####.com:5226
- TCP sdk.o####.t####.####.com:5224
- TCP zb-cent####.m.ta####.com:443
- TCP zb-cent####.m.ta####.com:80
- 7j####.c####.z0.####.com
- a####.man.aliy####.com
- a####.u####.com
- ag####.m.ta####.com
- amdc####.m.ta####.com
- api.clo####.online
- api.growi####.com
- app.ibusc####.com
- app.zj####.gov.cn
- as####.growi####.com
- c####.g####.ig####.com
- c-h####.g####.com
- carbon####.ibusc####.com
- dm.zhihu####.ren
- hdg####.bay####.com
- hm.b####.com
- img####.yiyou####.com
- is.sn####.com
- log.u####.com
- m.ibusc####.com
- m.publict####.dtd####.com
- norma-e####.m####.com
- plb####.u####.com
- pub-####.qin####.com
- pubtran####.oss-cn-####.aliy####.com
- res####.a####.com
- s####.g.doublec####.net
- sdk-ope####.g####.com
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- sf3-ttc####.ps####.com
- t####.growi####.com
- u####.u####.com
- umen####.m.ta####.com
- umengj####.m.ta####.com
- www.go####.com
- www.go####.nl
- www.google-####.com
- www.googlet####.com
- a8ba####.n####.126.net/icovr-20190810-72719607f96a42775bb43703575faa20.j...
- a8ba####.n####.126.net/icovr-20190810-87953d3661c471a676b0ae989b62867e.j...
- a8ba####.n####.126.net/icovr-20190810-ad37d20c8a52a881b5767b69a8a43a7f.j...
- a8ba####.n####.126.net/icovr-20190811-4f5d3116cd5df7623e0bd8026db9b523.j...
- a8ba####.n####.126.net/icovr-20190812-2426d1634d1f6503c8d7b6b3367c4547.j...
- a8ba####.n####.126.net/icovr-20190813-26dca349f4a966b52f73c9b860ce30c7.j...
- a8ba####.n####.126.net/icovr-20190814-0603d283c0aa1b602571b0a438ecd8ca.j...
- a8ba####.n####.126.net/icovr-20190814-0667a32938672bc45476008f999d0b4b.j...
- a8ba####.n####.126.net/icovr-20190814-81a06bf88da44f2d441f13b1358c7598.j...
- a8ba####.n####.126.net/icovr-20190814-cb776251b96b4a6c8d866d9629828373.j...
- a8ba####.n####.126.net/icovr-20190815-04fff66dc04fc6d7466cc75556e42d90.j...
- a8ba####.n####.126.net/icovr-20190815-05b95f4661124fdf0af329c2fe860090.j...
- a8ba####.n####.126.net/icovr-20190815-492b451a07d4046182ad90bace4c84fc.j...
- a8ba####.n####.126.net/icovr-20190815-6e1848a8e959ef87e80ca48d7557326e.j...
- a8ba####.n####.126.net/icovr-20190815-815354c481fc57c0709e0fc88a0da823.j...
- a8ba####.n####.126.net/icovr-20190815-934b0f40b981e2728920f01a0bdffe72.j...
- a8ba####.n####.126.net/icovr-20190815-9595046dcda314c6325c0db65917f850.j...
- a8ba####.n####.126.net/icovr-20190815-a45ce61fa42fa27b051c10c469f06cb8.j...
- a8ba####.n####.126.net/icovr-20190815-a99dcf44a15179e1012e3c074d42f338.j...
- a8ba####.n####.126.net/icovr-20190815-e9f74e30c03306ac65b5c03d54b7b234.j...
- a8ba####.n####.126.net/icovr-20190816-601e8a3e7e1a12d39a3a217280c29e60.j...
- a8ba####.n####.126.net/icovr-20190816-65d18611a07e5904e2a8bbe6fcba5734.j...
- a8ba####.n####.126.net/icovr-20190816-773f974a9cdb87e35106e8997ad37c32.j...
- a8ba####.n####.126.net/icovr-20190816-9447216cb286901d992dd68f4ffd9849.j...
- a8ba####.n####.126.net/icovr-20190816-e9d5eda55aae713616bb7e376e940265.j...
- a8ba####.n####.126.net/icovr-20190816-ed2ceea85b2200e8cc3c432f854d1c29.j...
- a8ba####.n####.126.net/icovr-20190817-0135d840ae884052aef4420dfd242577.j...
- a8ba####.n####.126.net/icovr-20190817-20dda99978ab8618761616f710f1dca6.j...
- a8ba####.n####.126.net/icovr-20190817-63e10cf612ded0145e438146f35d5404.j...
- a8ba####.n####.126.net/icovr-20190817-a94d9e197e0d7a67d4331759d74daaab.j...
- a8ba####.n####.126.net/icovr-20190817-b49fa7703360c90d0a750c4abcec1d94.j...
- a8ba####.n####.126.net/icovr-20190817-ca3348817ffcdd8a91ec2d7b0b6b9ddc.j...
- a8ba####.n####.126.net/icovr-20190817-d6810faffa93194b8d169b15543a4a3b.j...
- a8ba####.n####.126.net/icovr-20190817-e7a30c93899777039dd450dca11a8f70.j...
- a8ba####.n####.126.net/icovr-20190818-2e603b44e634a4e14342f710c4c944fa.j...
- a8ba####.n####.126.net/icovr-20190818-99de0954904a8dd684182c1d2bdcee74.j...
- a8ba####.n####.126.net/icovr-20190818-acb92c9873595de29557a67e29ab6fe6.j...
- a8ba####.n####.126.net/icovr-20190818-b319c4617e9876e8ab560fd0e779d42d.j...
- a8ba####.n####.126.net/icovr-20190818-d2f539487967572c9e6da284014a94f3.j...
- a8ba####.n####.126.net/icovr-20190819-15f65a7c36d9fbbc60def33a6cdb35e8.j...
- a8ba####.n####.126.net/icovr-20190819-37c1ea299663bc304e72c99beddbeaff.j...
- a8ba####.n####.126.net/icovr-20190819-4d7ec838ae56265d9394f8f7b6330cf1.j...
- a8ba####.n####.126.net/icovr-20190820-932748c5d3d33ec8cc49ab31ac828a5b.j...
- a8ba####.n####.126.net/icovr-20190820-adb95090c82535cd712d1fb21fe67a0e.j...
- app.zj####.gov.cn/client/jssdkJS/js/jquery-1.8.3.min.js
- as####.growi####.com.####.net/vds.js
- dm.zhihu####.ren/gameHtml?appkey=####&adSpaceKey=####&from=####&1=####
- dm.zhihu####.ren/static/dazhuanpan79/css/alertBaoxiang.css
- dm.zhihu####.ren/static/dazhuanpan79/css/alertCommon.css
- dm.zhihu####.ren/static/dazhuanpan79/css/common.css?v=####
- dm.zhihu####.ren/static/dazhuanpan79/css/reset.css
- dm.zhihu####.ren/static/dazhuanpan79/index.html?hdgghtmlid=####&appkey=#...
- dm.zhihu####.ren/static/dazhuanpan79/js/awardRotate.js
- dm.zhihu####.ren/static/dazhuanpan79/js/common.js
- dm.zhihu####.ren/static/dazhuanpan79/js/jquery-1.8.3.min.js
- dm.zhihu####.ren/static/hdgg.css
- dm.zhihu####.ren/static/hdgg.js
- norma-e####.m####.com/android/exchange/getpublickey.do
- pubtran####.oss-cn-####.aliy####.com/announcement/43361565244535148.gif
- pubtran####.oss-cn-####.aliy####.com/announcement/75271564555208797.png
- pubtran####.oss-cn-####.aliy####.com/announcement/82971558678870029.png
- pubtran####.oss-cn-####.aliy####.com/announcement/98541565773213852.gif
- pubtran####.oss-cn-####.aliy####.com/announcement/99651566270645771.gif
- q####.c####.l####.####.com/config/hz-hzv6.conf
- qin####.com.www.####.com/tdata_EDT369
- t####.growi####.com/products/bdd0f83d74ae607c/web/dm.zhihuitui.ren/setti...
- ti####.c####.l####.####.com/tdata_LRe817
- ti####.c####.l####.####.com/tdata_OxN092
- ti####.c####.l####.####.com/tdata_ZPR725
- ti####.c####.l####.####.com/tdata_bca864
- a####.u####.com/app_logs
- amdc####.m.ta####.com/amdc/mobileDispatch?appkey=####&deviceId=####&plat...
- c-h####.g####.com/api.php?format=####&t=####
- norma-e####.m####.com/push/android/external/add.do
- sdk.o####.p####.####.com/api.php?format=####&t=####
- sdk.o####.p####.####.com/api.php?format=####&t=####&d=####&k=####
- sh.wagbr####.aliyun####.com/man/api?ak=####&s=####
- /data/data/####/-5998622401067643521
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/0addPosition.db
- /data/data/####/0addPosition.db-journal
- /data/data/####/0history.db
- /data/data/####/0history.db-journal
- /data/data/####/1d2b904cbeadfb72ed9546111a231c85.0
- /data/data/####/5e550beacff1
- /data/data/####/ACCS_BINDumeng;59bf55d8734be45c6400012b.xml
- /data/data/####/ACCS_SDK.xml
- /data/data/####/ACCS_SDK_CHANNEL.xml
- /data/data/####/ACCS_SDK_CHANNEL.xml.bak
- /data/data/####/AGOO_BIND.xml
- /data/data/####/Agoo_AppStore.xml
- /data/data/####/Alvin2.xml
- /data/data/####/ContextData.xml
- /data/data/####/DaemonServer
- /data/data/####/MessageStore.db-journal
- /data/data/####/MsgLogStore.db-journal
- /data/data/####/MultiDex.lock
- /data/data/####/SP_AROUTER_CACHE.xml
- /data/data/####/UM_PROBE_DATA.xml
- /data/data/####/accs.db-journal
- /data/data/####/agoo.pid
- /data/data/####/c0586a10777146560765a69231d89beb.xml
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/com.x.y.1.xml
- /data/data/####/com.x.y.2.xml
- /data/data/####/config.xml
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTY2MzM4MTExMjQ5;
- /data/data/####/dW1weF9wdXNoX2xhdW5jaF8xNTY2MzM4MTI0ODYw;
- /data/data/####/dW1weF9wdXNoX3JlZ2lzdGVyXzE1NjYzMzgxMTQ1NDg=;
- /data/data/####/dW1weF9zaGFyZV8xNTY2MzM4MTE2ODA0;
- /data/data/####/dW1weF9zaGFyZV8xNTY2MzM4MTE2ODQ3;
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/downloader.db-journal
- /data/data/####/e2de83cfb9fc4a24b695972002e85480
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f1f095a0e4484bbe9ae07f228eb4a4d8
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/f_000005
- /data/data/####/f_000006
- /data/data/####/f_000007
- /data/data/####/f_000008
- /data/data/####/f_000009
- /data/data/####/f_00000a
- /data/data/####/f_00000b
- /data/data/####/f_00000c
- /data/data/####/f_00000d
- /data/data/####/f_00000e
- /data/data/####/f_00000f
- /data/data/####/f_000010
- /data/data/####/f_000011
- /data/data/####/f_000012
- /data/data/####/f_000013
- /data/data/####/f_000014
- /data/data/####/f_000015
- /data/data/####/f_000016
- /data/data/####/f_000017
- /data/data/####/f_000018
- /data/data/####/f_000019
- /data/data/####/f_00001a
- /data/data/####/f_00001b
- /data/data/####/f_00001c
- /data/data/####/f_00001d
- /data/data/####/f_00001e
- /data/data/####/f_00001f
- /data/data/####/f_000020
- /data/data/####/f_000021
- /data/data/####/f_000022
- /data/data/####/f_000023
- /data/data/####/f_000024
- /data/data/####/f_000025
- /data/data/####/f_000026
- /data/data/####/f_000027
- /data/data/####/f_000028
- /data/data/####/f_000029
- /data/data/####/f_00002a
- /data/data/####/f_00002b
- /data/data/####/f_00002c
- /data/data/####/f_00002d
- /data/data/####/f_00002e
- /data/data/####/f_00002f
- /data/data/####/f_000030
- /data/data/####/f_000031
- /data/data/####/f_000032
- /data/data/####/f_000033
- /data/data/####/f_000034
- /data/data/####/f_000035
- /data/data/####/gdaemon_20161017
- /data/data/####/getui_sp.xml
- /data/data/####/gkt-journal
- /data/data/####/gx_sp.xml
- /data/data/####/hmdb
- /data/data/####/hmdb-journal
- /data/data/####/httpdns_config_cache.xml
- /data/data/####/i==1.2.0&&1.3.2_1566338111276_envelope.log
- /data/data/####/index
- /data/data/####/info.xml
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/journal
- /data/data/####/journal.tmp
- /data/data/####/k.store
- /data/data/####/libjiagu-1855809005.so
- /data/data/####/logdb.db
- /data/data/####/logdb.db-journal
- /data/data/####/message_accs_db
- /data/data/####/message_accs_db-journal
- /data/data/####/multidex.version.xml
- /data/data/####/mz_push_preference.xml
- /data/data/####/pref.xml
- /data/data/####/publictransport-db-journal
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushk.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/pushservice_umeng_common_config.xml
- /data/data/####/run.pid
- /data/data/####/share.db-journal
- /data/data/####/tdata_LRe817
- /data/data/####/tdata_LRe817.jar
- /data/data/####/tdata_OxN092
- /data/data/####/tdata_OxN092.jar
- /data/data/####/tdata_ZPR725
- /data/data/####/tdata_ZPR725.jar
- /data/data/####/tdata_bca864
- /data/data/####/tdata_bca864.jar
- /data/data/####/tt_sdk_settings.xml
- /data/data/####/ttopenadsdk.xml
- /data/data/####/ttopensdk.db-journal
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_location.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_message_state.xml
- /data/data/####/umeng_socialize.xml
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.cca.dat
- /data/media/####/.nomedia
- /data/media/####/.umm.dat
- /data/media/####/1566338117188.db
- /data/media/####/2019-08-20.log.txt
- /data/media/####/794fdbff1104beadba13f6f4859917af.tmp
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/alsn20170807.db
- /data/media/####/alsn20170807.db-journal
- /data/media/####/app.db
- /data/media/####/ccb79b34a97b88769173a6d24b216637.tmp
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.ibuscloud.publictransit.bin
- /data/media/####/com.ibuscloud.publictransit.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/deviceToken
- /data/media/####/gkt-journal
- /data/media/####/gktper
- /data/media/####/tdata_LRe817
- /data/media/####/tdata_OxN092
- /data/media/####/tdata_ZPR725
- /data/media/####/tdata_bca864
- /data/media/####/temp_pkg_info.json
- /data/media/####/test.log
- /system/bin/cat /proc/cpuinfo
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- <Package Folder>/files/DaemonServer -s <Package Folder>/lib/ -n runServer -p startservice -n <Package>/com.taobao.accs.ChannelService --user 0 -f <Package Folder> -t 600 -c agoo.pid -P <Package Folder> -K 1009527 -U tb_accs_eudemon_1.1.3 -L http://agoodm.m.taobao.com/agoo/report -D {"package":"<Package>","appKey":"umeng:59bf55d8734be45c6400012b","utdid":"XVxsPmLUURMDAGdzx1H1XQz+","sdkVersion":"221"} -I agoodm.m.taobao.com -O 80 -T -Z
- <Package Folder>/files/gdaemon_20161017 0 <Package>/com.dtchuxing.dtcommon.service.IBusPushService 25793 300 0
- cat /sys/class/net/wlan0/address
- chmod 700 <Package Folder>/files/gdaemon_20161017
- getprop ro.build.version.emui
- getprop ro.letv.release.version
- getprop ro.vivo.os.build.display.id
- ls /
- ls /sys/class/thermal
- mount
- sh
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/com.dtchuxing.dtcommon.service.IBusPushService 25793 300 0
- getuiext3
- libjiagu-1855809005
- nms
- tnet-3.1
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-CFB-NoPadding
- AES-ECB-PKCS5Padding
- RSA-ECB-PKCS1Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding