Technical information
- Adware.Gexin.3.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) yun.pop####.com.####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) et2-na6####.wagbr####.ali####.####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(TLS/1.0) av1.x####.com:443
- TCP(TLS/1.0) dualsta####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) c####.x####.com:443
- TCP(TLS/1.0) adt.x####.com:443
- TCP(TLS/1.0) and####.xing####.cn:443
- TCP(TLS/1.0) i####.xing####.cn:443
- TCP sdk.o####.t####.####.com:5224
- TCP cm-1####.ig####.com:5224
- adt.x####.com
- and####.xing####.cn
- av1.x####.com
- c####.x####.com
- c####.x####.com
- c-h####.g####.com
- cm-1####.ig####.com
- i####.xing####.cn
- i####.xing####.cn
- log.u####.com
- plb####.u####.com
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- u####.u####.com
- yun.pop####.com
- et2-na6####.wagbr####.ali####.####.com/bar/get/5b67b501a40fa33d25000013/...
- sdk.o####.p####.####.com/api/addr.htm
- yun.pop####.com.####.com/h5-mami/msdk/base64.js
- yun.pop####.com.####.com/h5-mami/msdk/tmk.js
- c-h####.g####.com/api.php?format=####&t=####
- sdk.o####.p####.####.com/api.php?format=####&t=####
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/007f3badc7d3dd7f2cfa2bee8405f6152319dfd4e4a175d....0.tmp
- /data/data/####/022b906bb969a970eff43ea9a68973f47db681d437679ea....0.tmp
- /data/data/####/02ed7c60ea7b3b7e5b4fc99bf24c9614150938ecce66ce0....0.tmp
- /data/data/####/070871c211ef77888375fbc5c1965f6cd1e038d3147e12d....0.tmp
- /data/data/####/09daf72a2b6e9e973d4e49a50058cd58dd6a98de95e5ef9....0.tmp
- /data/data/####/0cf617b9cd8d4f9d7732644c48b81e9eb405fff1d2615cb....0.tmp
- /data/data/####/11b5690508164d9f81778d24b4dfce1c0a4accd9f477cb1....0.tmp
- /data/data/####/125e1ddea5f2d130445327727e3b2744081fd4d8302000f....0.tmp
- /data/data/####/13a201b2dbce6ee4289e1aef68e506534f1255302b556cf....0.tmp
- /data/data/####/145e893be467870024fe271ca1f7e9edc2b6ee1aee5cb3e....0.tmp
- /data/data/####/1560f83ec544546299c6e03816c1b2db40327f160e5febd....0.tmp
- /data/data/####/1567812839333_2156
- /data/data/####/1567812839506_2156
- /data/data/####/1567812839692_2156
- /data/data/####/1567812840186_2156
- /data/data/####/1567812842387_2156
- /data/data/####/1567812842429_2156
- /data/data/####/1567812842925_2156
- /data/data/####/1567812842957_2156
- /data/data/####/1567812842994_2156
- /data/data/####/1567812843016_2156
- /data/data/####/1567812844066_2156
- /data/data/####/1567812846475_2156
- /data/data/####/1567812876696_2156
- /data/data/####/1567812876730_2156
- /data/data/####/1567812878738_2156
- /data/data/####/1567812878801_2156
- /data/data/####/1567812880559_2577
- /data/data/####/1567812880715_2577
- /data/data/####/1567812880953_2577
- /data/data/####/1567812882206_2156
- /data/data/####/1567812882228_2156
- /data/data/####/1567812882251_2577
- /data/data/####/1567812882436_2577
- /data/data/####/1567812888264_2156
- /data/data/####/1567812888286_2156
- /data/data/####/1567812888735_2156
- /data/data/####/1567812904892_2156
- /data/data/####/1a93b63c77d1765fb23ad52c40b0ae95ea6782522d4da70....0.tmp
- /data/data/####/20c220ed36aea5682844eadfb6ad6b89f4591bdcc9a00c9....0.tmp
- /data/data/####/212edc972cefdcaeeb6ee5aeb4f5db39524c99720a949c2....0.tmp
- /data/data/####/2206827260e08513cf032276724470ebe8f580e6ac67b98....0.tmp
- /data/data/####/26acce41978223e557a39b73367d8e7c967a09a11126148....0.tmp
- /data/data/####/29c454879e6a536fd015ec1f37d2bbefe3bdbe4356e2822....0.tmp
- /data/data/####/2ed7f27e1f3df9367be09477e080824f0a05faa7938246f....0.tmp
- /data/data/####/360e56a5d7cfad1c7ce4fa20e48cbf9b0f08a46e93482ba....0.tmp
- /data/data/####/37e1424e757b418a9f60efbf26330e04795fede7de12fd9....0.tmp
- /data/data/####/38d917275581b0deeef3d11e8b29f9efe713d2c1385fe3c....0.tmp
- /data/data/####/38d917275581b0deeef3d11e8b29f9efe713d2c1385fe3c...26e6.0
- /data/data/####/4571d5faa696436311d4ce5eb8312b5a5a1f7ea1495c94a....0.tmp
- /data/data/####/4653c186c133384ead1dd2ca30d4cf8e7ef1765540d8805....0.tmp
- /data/data/####/494ed1bb07d37b9230e2982aaeea8fae67f9e704e9cc87f....0.tmp
- /data/data/####/49b23d343f8e70ba19555a4c0a5f91e161ec0d319eeaf7a....0.tmp
- /data/data/####/4b2f050a7e195e81a63af251b27d902e0a0036bbba59eb1....0.tmp
- /data/data/####/4b40d974327194d0c298ad587308cfbbd8fe55cad2a4125....0.tmp
- /data/data/####/4fef74c03eb8a5bdbef11eb5e6a2a4c723b71585b551294....0.tmp
- /data/data/####/5a8e3678d64ac329b8255a0dbdb7eb27dad63d9e995ed49....0.tmp
- /data/data/####/5b2cd7135040fa656f3b05a7e13ac23de5f4e3a192ba5ff....0.tmp
- /data/data/####/60bab38c77396b3eb0620a94161ce06dc6bb9f79b15da25....0.tmp
- /data/data/####/61920fe64f9bc584e838958afea6397f607332c6d0518e8....0.tmp
- /data/data/####/62e28934b57a8a34be076f60a96c64064eda52e271b506b....0.tmp
- /data/data/####/667e4df6cb215252a6d11b555f564db76852ebdaea712c7....0.tmp
- /data/data/####/6e171aef191cd6bec09e07fac7fa143706b657f31606587....0.tmp
- /data/data/####/711d322b5d53768296d295941bbbc2f7f0adbcbf09cf1bc....0.tmp
- /data/data/####/756529f1ef53ad3aa78867cbd9b75646678f2fbf19f2990....0.tmp
- /data/data/####/7c59754e2576d498c276db4ae1bc63d888abc38c76f2bf9....0.tmp
- /data/data/####/7c989da9b658aec8e10f6ad4d51041a6bd62be1b1ce8006....0.tmp
- /data/data/####/7e57d1dec0a95ed0ebffafa6216792ddd3c7e6ec2a09db2....0.tmp
- /data/data/####/8491cb3579b33a02f62d5f8774eaf5ea8493a0dcc186932....0.tmp
- /data/data/####/89619b19c3c7e021d3a3ada35ab134dea208510d5d71152....0.tmp
- /data/data/####/89ecdc90efde4182b9b6854cb2daa609a562597e71b7c3f....0.tmp
- /data/data/####/9196a2bc672dcccf59b770ca1c894b168f53a0b29a5b361....0.tmp
- /data/data/####/92ac2d7635cdad997f8e294888ea1fb1c6e485e41177aaf....0.tmp
- /data/data/####/93f132356749a314655703ad8cfded020f6709e00183f8e....0.tmp
- /data/data/####/96fff86a0485e2d8bc8e63f8ce9f94c8f277d752b465c10....0.tmp
- /data/data/####/9dc3b339162baea28a1e5f4bd2acd7f7e234598f7416045....0.tmp
- /data/data/####/9e377c7ab58497e201ab5771554ca0f0d86bda72e397f0f....0.tmp
- /data/data/####/Archimedes_p1
- /data/data/####/Archimedes_p2
- /data/data/####/Archimedes_p3
- /data/data/####/Archimedes_p4
- /data/data/####/Archimedes_p5
- /data/data/####/MiscDATA.xml
- /data/data/####/MultiDex.lock
- /data/data/####/TDCloudSettingsConfigF027E88952234A098C94BEA915CF51D7.xml
- /data/data/####/TD_app_pefercen_profile.xml
- /data/data/####/TDpref_cloudcontrol1.xml
- /data/data/####/TDpref_cloudcontrol2.xml
- /data/data/####/TDpref_longtime.xml
- /data/data/####/TDpref_longtime0.xml
- /data/data/####/TDpref_longtime1.xml
- /data/data/####/TDpref_shorttime.xml
- /data/data/####/TDpref_shorttime0.xml
- /data/data/####/TDpref_shorttime1.xml
- /data/data/####/TalingDataConfigF027E88952234A098C94BEA915CF51D7.xml
- /data/data/####/UM_PROBE_DATA.xml
- /data/data/####/UserDATA.xml
- /data/data/####/a25bb32d46a364f7c4726f1215690a961afa8c3728efb85....0.tmp
- /data/data/####/a8fc1ff5136cbc0d3d8ab9567e9c7173e37a72099d44dda....0.tmp
- /data/data/####/a==7.5.4&&3.6.2_1567812844113_envelope.log
- /data/data/####/b14be8c14c3ca83f9fcaf0555133d99a7e6a01483036268....0.tmp
- /data/data/####/b28f7f062efb2cb3b8d98e7bee1c2f8f6bc0b1f0a5ca13c....0.tmp
- /data/data/####/b2ae175e0f5207089eadce59ae15ee1bc6b7d8d6e5a5b9d....0.tmp
- /data/data/####/b495b1bc5fc9c698b2638dfbb36b57190b14f615d1a1368....0.tmp
- /data/data/####/b5531b1ed20dec778d395018546c9d0ba34348962ae7c26....0.tmp
- /data/data/####/befa1de4abc49bf36a8722a8657faa22b0be9bf75cc7adb....0.tmp
- /data/data/####/bf5e9e146b28cc6b2e8fe927c82bf09cd49098189ac0798....0.tmp
- /data/data/####/c35dbf5f789e40c8d98da9268d46d9463c82e85b3920e56....0.tmp
- /data/data/####/c5c44069e40cccd08153fa2cee5b37efb0abd0a6abe3dbf....0.tmp
- /data/data/####/c7da58a3f2a63ce14aa7a555cfbeb2b7e8f192ce278701b....0.tmp
- /data/data/####/c8ad93952852d20c1ddce1fcf76a5ed0409864503ecc430....0.tmp
- /data/data/####/c986fef7becb8ea7ac37eb4bd57930717ecfc4212c99d96....0.tmp
- /data/data/####/caa01961b015ea5b3c823d9fa024157f597bef8f97f501f....0.tmp
- /data/data/####/ccd7d00da1937179e7089604be0dc3243b2ebdbbf2ca283....0.tmp
- /data/data/####/cd9139c2b93b5a1ce420de6a5aca8a31c7350bb82b7f968....0.tmp
- /data/data/####/cfe356df0b4b828de523bc6d41e621ddcf8e044c93487a6....0.tmp
- /data/data/####/collect_config_file.xml
- /data/data/####/d57cd0e59141eebf2a01ae1eb6c3d59ac4959ac1b9b0d49....0.tmp
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTY3ODEyODM4NTY5;
- /data/data/####/da30296342b0aa49143b4ce7c25b167284f76504f845c42....0.tmp
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/dcd9780d107e8893fc4152f93791acc5fe310b7b32df0c3....0.tmp
- /data/data/####/e1fad95b58498e9b6e970846b83d93b6329824c0190b870....0.tmp
- /data/data/####/e410b48feee0bd245d7387b32fe268821a1c6f4eaf15457....0.tmp
- /data/data/####/e8d3955ff9a2fc01a2ab4cde08574254d9853f43308fc70....0.tmp
- /data/data/####/eaa96b358c8d0ef701b608358856ed628ea5f018c2fc673....0.tmp
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f4befb2a647f3a397a101719a1a54b86c8c6431b2fc7a7c....0.tmp
- /data/data/####/f4e11e3fd0ecaeb2c6fcd411decb55944c56a66f63c0fe4....0.tmp
- /data/data/####/f7cdc5454bf13aad1927adac5427ba3f032b763901e28e0....0.tmp
- /data/data/####/f_000001
- /data/data/####/ff98a54a469270268b334c07069b3c965f64fa9f734cdd4....0.tmp
- /data/data/####/first_install_time.xml
- /data/data/####/fistInstall.xml
- /data/data/####/gdaemon_20161017
- /data/data/####/gdt_ad_info.xml
- /data/data/####/gdt_first_install_file.xml
- /data/data/####/getui_sp.xml
- /data/data/####/gx_sp.xml
- /data/data/####/hong.db-journal
- /data/data/####/hsfirstopen.xml
- /data/data/####/i==1.2.0&&3.6.2_1567812838631_envelope.log
- /data/data/####/index
- /data/data/####/info.xml
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/iv
- /data/data/####/journal.tmp
- /data/data/####/last_pop_window_time_file.xml
- /data/data/####/libjiagu-1939308213.so
- /data/data/####/multidex.version.xml
- /data/data/####/pop_config_file.xml
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/salt
- /data/data/####/select_class_id_file.xml
- /data/data/####/tdid.xml
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_location.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_socialize.xml
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/-1471325777
- /data/media/####/-927843996
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.cca.dat
- /data/media/####/.nomedia
- /data/media/####/.umm.dat
- /data/media/####/101397.sht
- /data/media/####/101399.sht
- /data/media/####/101401.sht
- /data/media/####/101403.sht
- /data/media/####/101405.sht
- /data/media/####/101407.sht
- /data/media/####/101409.sht
- /data/media/####/101411.sht
- /data/media/####/101413.sht
- /data/media/####/101415.sht
- /data/media/####/311480.sht
- /data/media/####/311481.sht
- /data/media/####/311482.sht
- /data/media/####/311483.sht
- /data/media/####/311484.sht
- /data/media/####/311485.sht
- /data/media/####/311486.sht
- /data/media/####/311487.sht
- /data/media/####/311488.sht
- /data/media/####/311489.sht
- /data/media/####/591679.sht
- /data/media/####/591680.sht
- /data/media/####/591681.sht
- /data/media/####/591682.sht
- /data/media/####/591683.sht
- /data/media/####/591684.sht
- /data/media/####/591685.sht
- /data/media/####/591686.sht
- /data/media/####/591687.sht
- /data/media/####/591688.sht
- /data/media/####/62890.sht
- /data/media/####/62891.sht
- /data/media/####/62892.sht
- /data/media/####/62893.sht
- /data/media/####/62894.sht
- /data/media/####/62895.sht
- /data/media/####/62896.sht
- /data/media/####/62897.sht
- /data/media/####/62898.sht
- /data/media/####/62899.sht
- /data/media/####/app.db
- /data/media/####/cn.xingread.free.bin
- /data/media/####/cn.xingread.free.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/test.log
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.push.PushService 24569 300 0
- chmod 700 <Package Folder>/files/gdaemon_20161017
- getprop
- ls /
- ls /sys/class/thermal
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.push.PushService 24569 300 0
- getuiext2
- libjiagu-1939308213
- AES
- AES-CBC-NoPadding
- AES-CBC-PKCS7Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES
- AES-CBC-NoPadding
- AES-CBC-PKCS7Padding