Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) gl####.w.kunl####.####.com:80
- TCP(HTTP/1.1) lia####.500.com:80
- TCP(HTTP/1.1) aliyun-####.al####.com:80
- TCP(HTTP/1.1) st####.sport####.cn.####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.net:80
- TCP(HTTP/1.1) et2-na6####.wagbr####.ali####.####.com:80
- TCP(HTTP/1.1) a####.a####.m.####.com:80
- TCP(SSL/3.0) lec####.1####.com:443
- TCP(TLS/1.0) 1####.217.17.46:443
- TCP(TLS/1.0) sport####.moj####.com:443
- TCP(TLS/1.0) z.c####.com:443
- TCP(TLS/1.0) qy-swa####.qi####.com:443
- TCP(TLS/1.0) t.growi####.com:443
- TCP(TLS/1.0) dn-gro####.q####.me:443
- TCP(TLS/1.0) as####.growi####.com.####.net:443
- TCP(TLS/1.0) c25477a####.c####.qingc####.com:443
- TCP(TLS/1.0) gl####.w.kunl####.####.com:443
- TCP(TLS/1.0) t####.for####.q####.####.net:443
- TCP(TLS/1.0) gm.mm####.com:443
- TCP(TLS/1.0) c.c####.com:443
- TCP(TLS/1.0) lec####.1####.com:443
- TCP(TLS/1.0) api.growi####.com:443
- TCP(TLS/1.0) hm.b####.com:443
- TCP(TLS/1.0) t####.growi####.com:443
- TCP zb-cent####.m.ta####.com:443
- 7v####.c####.z0.####.com
- 7v####.c####.z0.####.com
- a####.m.ta####.com
- a####.u####.com
- accscdn####.m.ta####.com
- acs4pu####.m.ta####.com
- ag####.m.ta####.com
- api.growi####.com
- as####.growi####.com
- c####.mm####.com
- c.c####.com
- cdn.c####.com
- dn-gro####.q####.me
- hm.b####.com
- lec####.1####.com
- lia####.500.com
- log.u####.com
- m.c####.com
- mpush####.al####.com
- ohduo####.q####.com
- ojhwh####.q####.com
- qy-swa####.qi####.com
- s####.u####.com
- s4.c####.com
- sport####.moj####.com
- st####.sport####.cn
- t####.growi####.com
- t.growi####.com
- z11.c####.com
- z4.c####.com
- et2-na6####.wagbr####.ali####.####.com/bar/get/5978426c7f2c745c4e002084/...
- gl####.w.kunl####.####.com/o_1d44gvj261pue15ve13199jovp119.png
- gl####.w.kunl####.####.com/o_1d4hr3k5o4csbo71nsaft11ou7j.png
- lia####.500.com/static/soccerdata/images/BasketBallTeamPic/64a3e1774ad08...
- st####.sport####.cn.####.com/sinaimg/basketball/teampic/161.png
- st####.sport####.cn.####.com/sinaimg/basketball/teampic/88.png
- st####.sport####.cn.####.com/sinaimg/basketball/teampic/94.png
- t####.c####.q####.####.net/image/bteam/123.png
- t####.c####.q####.####.net/image/bteam/124.png
- t####.c####.q####.####.net/image/bteam/125.png
- t####.c####.q####.####.net/image/bteam/126.png
- t####.c####.q####.####.net/image/bteam/129.png
- t####.c####.q####.####.net/image/bteam/131.png
- t####.c####.q####.####.net/images/bteam/1130.png
- t####.c####.q####.####.net/images/team/1180.png
- t####.c####.q####.####.net/images/team/50.png
- t####.c####.q####.####.net/images/team/98.png
- a####.a####.m.####.com/amdc/mobileDispatch?appkey=####&deviceId=####&pla...
- a####.u####.com/app_logs
- aliyun-####.al####.com/config
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/07ad50579766064cc160eab6af2782822966888b2664418....0.tmp
- /data/data/####/07ee767f2e3142fcd70e923aca41761c3665a4ddc241460....0.tmp
- /data/data/####/1567891990322.log
- /data/data/####/1567891990322.log.bak (deleted)
- /data/data/####/2117723914
- /data/data/####/3417674
- /data/data/####/3af940bd75124c1c19375ddefab215830c788f7e0b6ace6....0.tmp
- /data/data/####/3f80fab63a072f90828a14d4c639d57aa92dff5b905bac2....0.tmp
- /data/data/####/48e0aa606ed15ed6bf19f268c2980a725fbb00520bdbcfd....0.tmp
- /data/data/####/4a370f6ec67adf236d12ab71523f1dd1d288ac10dfeda0a....0.tmp
- /data/data/####/4ccfea8fc6bbb2e64759fef852347c766d34c4e94468224....0.tmp
- /data/data/####/52083201d92428d7ef82c6a0a77b07025222d3acaa84b2a....0.tmp
- /data/data/####/669fceaa7d50afd6e49bca00e96625c23f7594f6a0f84fc....0.tmp
- /data/data/####/6c08a613d57608cedb050044fed4412d953db5ee298937d....0.tmp
- /data/data/####/77523824d37243fa9fadd3f7f115ce0f2bb4deb2624618d....0.tmp
- /data/data/####/8d4087ddede61334c30de2f73fe98c7ebb17afcc7860e3e....0.tmp
- /data/data/####/94756344
- /data/data/####/ACCS_BIND24730104.xml
- /data/data/####/ACCS_SDK.xml
- /data/data/####/ACCS_SDK_CHANNEL.xml
- /data/data/####/ACCS_SDK_CHANNEL.xml.bak (deleted)
- /data/data/####/AGOO_BIND.xml
- /data/data/####/Agoo_AppStore.xml
- /data/data/####/Alvin2.xml
- /data/data/####/ContextData.xml
- /data/data/####/DaemonServer
- /data/data/####/MultiDex.lock
- /data/data/####/accs.db-journal
- /data/data/####/agoo.pid
- /data/data/####/appSaveFile.xml
- /data/data/####/c2edc4b8edc157782e0c480895a1ec2c1df6a1474ebb2c5....0.tmp
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/com.capricorn.capricornsports.yjcpyc;channel.gr...ournal
- /data/data/####/com.capricorn.capricornsports.yjcpyc;channel.growing.db
- /data/data/####/com.capricorn.capricornsports.yjcpyc;core.growi...ournal
- /data/data/####/com.capricorn.capricornsports.yjcpyc;core.growing.db
- /data/data/####/com.capricorn.capricornsports.yjcpyc;pushservic...ing.db
- /data/data/####/com.capricorn.capricornsports.yjcpyc;pushservic...ournal
- /data/data/####/com.capricorn.capricornsports.yjcpyc_preferences.xml
- /data/data/####/com.qiyukf.analytics.xml
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/ee36c09d33d78d0b56ab78cfc67a787b7119e4688c9d3a8....0.tmp
- /data/data/####/eudemon
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f3ee47314aeb113414026449f4df51618d3dbd0666e220d....0.tmp
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/f_000005
- /data/data/####/getui_sp.xml
- /data/data/####/growing.db
- /data/data/####/growing.db-journal
- /data/data/####/growing_ecsid.xml
- /data/data/####/growing_persist_data.xml
- /data/data/####/growing_profile.xml
- /data/data/####/index
- /data/data/####/init_c1.pid
- /data/data/####/journal.tmp
- /data/data/####/libjiagu.so
- /data/data/####/message_accs_db
- /data/data/####/message_accs_db-journal
- /data/data/####/multidex.version.xml
- /data/data/####/qiyu_save_ed93d7a4c94a4c428ab47fe9bec8a03b.xml
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_socialize.xml
- /data/data/####/unicorn#cheese#
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/webviewCookiesChromiumPrivate.db
- /data/data/####/webviewCookiesChromiumPrivate.db-journal
- /data/media/####/.nomedia
- /data/media/####/1939d3122f9f4a1dacc0094bce0ffde9
- /data/media/####/2c822b7b4c064597acf13ec7de5ce690
- /data/media/####/58b3ca8d2b134785a34b4c360a3ae5fc
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/e1c5fb6042c0438ab4efa37175d032a7
- /data/media/####/journal.tmp
- <Package Folder>/files/DaemonServer -s <Package Folder>/lib/ -n runServer -p startservice -n <Package>/com.taobao.accs.ChannelService --user 0 -f <Package Folder> -t 600 -c agoo.pid -P <Package Folder> -K 1009527 -U tb_accs_eudemon_1.1.3 -L http://agoodm.m.taobao.com/agoo/report -D {"package":"<Package>","appKey":"24730104","utdid":"XXQiFKVTTwcDAGdzx1EuK/7Z","sdkVersion":"221"} -I agoodm.m.taobao.com -O 80 -T -Z
- chmod 500 <Package Folder>/files/DaemonServer
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- sh
- getuiext2
- libjiagu
- tnet-3.1
- ut_c_api
- AES-CBC-NoPadding
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-CBC-NoPadding
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding