Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) qin####.com.www.####.com:80
- TCP(HTTP/1.1) sdk-ope####.g####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(TLS/1.0) api.growi####.com:443
- TCP(TLS/1.0) pdl####.oss-cn-####.aliy####.com:443
- TCP(TLS/1.0) acc####.kejidai####.com:443
- TCP(TLS/1.0) fe####.zhenron####.com:443
- TCP(TLS/1.0) das.bai####.cn:443
- TCP(TLS/1.0) fp.fraudme####.cn:443
- TCP(TLS/1.0) bt.kejidai####.com:443
- TCP(TLS/1.0) t####.growi####.com:443
- TCP(TLS/1.0) t.growi####.com:443
- TCP(TLS/1.0) b####.oss-cn-####.aliy####.com:443
- TCP sdk.o####.t####.####.com:5224
- TCP c####.g####.ig####.com:5227
- 7j####.c####.z0.####.com
- a####.u####.com
- acc####.kejidai####.com
- api.growi####.com
- b####.oss-cn-####.aliy####.com
- bt.kejidai####.com
- c####.g####.ig####.com
- c-h####.g####.com
- das.bai####.cn
- fe####.zhenron####.com
- fp.fraudme####.cn
- pdl####.oss-cn-####.aliy####.com
- pub-####.qin####.com
- sdk-ope####.g####.com
- sdk.c####.ig####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- t####.growi####.com
- t.growi####.com
- qin####.com.www.####.com/tdata_EDT369
- t####.c####.q####.####.com/config/hz-hzv6.conf
- t####.c####.q####.####.com/tdata_Soq141
- t####.c####.q####.####.com/tdata_fEV688
- t####.c####.q####.####.com/tdata_ilz707
- t####.c####.q####.####.com/tdata_siA393
- a####.u####.com/app_logs
- c-h####.g####.com/api.php?format=####&t=####
- sdk-ope####.g####.com/api.php?format=####&t=####
- sdk-ope####.g####.com/api.php?format=####&t=####&d=####&k=####
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/.xml
- /data/data/####/100credit_contents_zw.xml
- /data/data/####/19b9b43937405fc791c21b8246a96a8a.0.tmp
- /data/data/####/19b9b43937405fc791c21b8246a96a8a.1.tmp
- /data/data/####/2bbf840efec3ff2da4268e2a2070d961.0.tmp
- /data/data/####/2bbf840efec3ff2da4268e2a2070d961.1.tmp
- /data/data/####/3aed496b5f45266a644fe1229a425efe.0.tmp
- /data/data/####/3aed496b5f45266a644fe1229a425efe.1.tmp
- /data/data/####/421b37fcb171f529f8b39860ba8a5d88b9c0cf00de1b042....0.tmp
- /data/data/####/46459eb0c772813ca7e6585697a0c3b5.0.tmp
- /data/data/####/46459eb0c772813ca7e6585697a0c3b5.1.tmp
- /data/data/####/48fab46e50bf2b5f2203f78470ef19a8.0.tmp
- /data/data/####/48fab46e50bf2b5f2203f78470ef19a8.1.tmp
- /data/data/####/63f111e8ef9516233fdbc96c05ca1039.0.tmp
- /data/data/####/63f111e8ef9516233fdbc96c05ca1039.1.tmp
- /data/data/####/6665c4b1d6dbb883471c100370f66df6.0.tmp
- /data/data/####/6665c4b1d6dbb883471c100370f66df6.1.tmp
- /data/data/####/74d7cc1a6bd1a7d47ecafa6ee367c699f34dff6a8484d0c....0.tmp
- /data/data/####/85e27287caf2f02f7af6307c565e155554c743d907c136c....0.tmp
- /data/data/####/989f0304689c51f2571e5d96615ff565.0.tmp
- /data/data/####/989f0304689c51f2571e5d96615ff565.1.tmp
- /data/data/####/MultiDex.lock
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/com.kwkx.songjindai;pushservice.growing.db
- /data/data/####/com.kwkx.songjindai;pushservice.growing.db-journal
- /data/data/####/d0933c57bb6f
- /data/data/####/de120b8c4a573b7841c71dd5fa001bdd.0.tmp
- /data/data/####/de120b8c4a573b7841c71dd5fa001bdd.1.tmp
- /data/data/####/default.xml
- /data/data/####/device_id.xml.xml
- /data/data/####/e0de5be3d920c782b7feb94e41d47f9b.0.tmp
- /data/data/####/e0de5be3d920c782b7feb94e41d47f9b.1.tmp
- /data/data/####/e5c0e9a89c27ee2527a8c44c880974c71538571ebf93a02....0.tmp
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f4c81d035937af797851af5babf6294e.0.tmp
- /data/data/####/f4c81d035937af797851af5babf6294e.1.tmp
- /data/data/####/fm_shared.xml
- /data/data/####/gdaemon_20161017
- /data/data/####/getui_sp.xml
- /data/data/####/gkt-journal
- /data/data/####/growing.db
- /data/data/####/growing.db-journal
- /data/data/####/growing_ecsid.xml
- /data/data/####/growing_persist_data.xml
- /data/data/####/growing_profile.xml
- /data/data/####/growing_server_pref.xml
- /data/data/####/gx_sp.xml
- /data/data/####/ikwkx.db-journal
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/journal.tmp
- /data/data/####/libjiagu1036419398.so
- /data/data/####/multidex.version.xml
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushk.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/sp_cache.xml
- /data/data/####/td_fm.jar
- /data/data/####/tdata_Soq141
- /data/data/####/tdata_Soq141.jar
- /data/data/####/tdata_fEV688
- /data/data/####/tdata_fEV688.jar
- /data/data/####/tdata_ilz707
- /data/data/####/tdata_ilz707.jar
- /data/data/####/tdata_siA393
- /data/data/####/tdata_siA393.jar
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/media/####/.dev_id.txt
- /data/media/####/.gid_bairong
- /data/media/####/.nomedia
- /data/media/####/1556120709769
- /data/media/####/1556120711750
- /data/media/####/1556120712406
- /data/media/####/1556120712446
- /data/media/####/1556120712771
- /data/media/####/1556120712853
- /data/media/####/app.db
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.kwkx.songjindai.bin
- /data/media/####/com.kwkx.songjindai.db
- /data/media/####/gkt-journal
- /data/media/####/gktper
- /data/media/####/tdata_Soq141
- /data/media/####/tdata_fEV688
- /data/media/####/tdata_ilz707
- /data/media/####/tdata_siA393
- /data/media/####/test.log
- <Package Folder>/files/gdaemon_20161017 0 <Package>/com.kejidaikuan.kafenqi.igexin.GeTuiPushService 24926 300 0
- cat /sys/class/net/wlan0/address
- chmod 700 <Package Folder>/files/gdaemon_20161017
- getprop net.dns1
- ls -l /system/xbin/su
- mount
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/com.kejidaikuan.kafenqi.igexin.GeTuiPushService 24926 300 0
- anti
- basesec_client
- basesec_client_jni
- getuiext2
- libjiagu1036419398
- pl_droidsonroids_gif
- tongdun
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-CFB-NoPadding
- AES-ECB-PKCS5Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding