Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) s####.m####.com:80
- TCP(HTTP/1.1) pc.m####.com:80
- TCP(HTTP/1.1) sdk-ope####.g####.com:80
- TCP(HTTP/1.1) ugc.moj####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) www.go####.com:80
- TCP(HTTP/1.1) cs.api.m####.com:80
- UDP(NTP) 1.cn.p####.####.org:123
- TCP(TLS/1.0) ssl.gst####.com:443
- TCP(TLS/1.0) app.x####.com:443
- TCP(TLS/1.0) www.go####.com:443
- TCP(TLS/1.0) www.gst####.com:443
- TCP sdk.o####.t####.####.com:5224
- TCP c####.g####.ig####.com:5224
- TCP adla####.m####.com:8080
- 1.cn.p####.####.org
- adla####.m####.com
- and####.b####.qq.com
- app.x####.com
- c####.g####.ig####.com
- c-h####.g####.com
- crystal####.opt####.cn
- cs.api.m####.com
- i####.cn
- pc.m####.com
- s####.m####.com
- sdk-ope####.g####.com
- sdk.c####.ig####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- ssl.gst####.com
- ugc.moj####.com
- www.go####.com
- www.gst####.com
- t####.c####.q####.####.com/config/hz-hzv6.conf
- www.go####.com/complete/search?hl=####&client=####&q=####
- and####.b####.qq.com/rqd/async?aid=####
- c-h####.g####.com/api.php?format=####&t=####
- cs.api.m####.com/point/json/get_task_list
- pc.m####.com/push/json/push/sync_terminal
- s####.m####.com/aMoUp
- sdk-ope####.g####.com/api.php?format=####&t=####
- ugc.moj####.com/sns/json/profile/get_unread
- ugc.moj####.com/sns/json/weather/city/get_background
- /data/data/####/.jg.ic
- /data/data/####/1004
- /data/data/####/TD_app_pefercen_profile.xml
- /data/data/####/TD_app_pefercen_profile.xml.bak (deleted)
- /data/data/####/TDpref_longtime.xml
- /data/data/####/TDpref_shorttime.xml
- /data/data/####/TDtcagent.db
- /data/data/####/TDtcagent.db-journal
- /data/data/####/WEATHER_BG_PREFER.xml
- /data/data/####/alarms.db-journal
- /data/data/####/appwidget_prefer.xml
- /data/data/####/bugly_db_-journal
- /data/data/####/buglylog_com.moji.mjweather_.txt
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/com.moji.mjweather_preferences.xml
- /data/data/####/crashrecord.xml
- /data/data/####/credit_info.xml
- /data/data/####/creditask.db
- /data/data/####/creditask.db-journal
- /data/data/####/default.xml
- /data/data/####/default.xml.bak (deleted)
- /data/data/####/default_process_safe.xml
- /data/data/####/i2wapi.db-journal
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/libjiagu.so
- /data/data/####/lla.log
- /data/data/####/lla.zip
- /data/data/####/local_crash_lock
- /data/data/####/locations.db-journal
- /data/data/####/mjad.db
- /data/data/####/mjad.db-journal
- /data/data/####/mjtabad.db
- /data/data/####/mjtabad.db-journal
- /data/data/####/mobclick_agent_cached_com.moji.mjweather6010502
- /data/data/####/mojiSnsUser.db
- /data/data/####/mojiSnsUser.db-journal
- /data/data/####/moji_ad.xml
- /data/data/####/mojicity9.db
- /data/data/####/mojiweather-journal
- /data/data/####/mojiwidget.db-journal
- /data/data/####/multidex.version.xml
- /data/data/####/notify_info.xml
- /data/data/####/notify_info.xml.bak
- /data/data/####/push.pid
- /data/data/####/push_info_prefer.xml
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/security_info
- /data/data/####/setting_notification_prefer.xml
- /data/data/####/setting_preference.xml
- /data/data/####/td.lock
- /data/data/####/tdid.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/weather.db-journal
- /data/media/####/.nomedia
- /data/media/####/.tcookieid
- /data/media/####/UserLog.txt
- /data/media/####/app.db
- /data/media/####/avatarDefault_2.png
- /data/media/####/avatar_xmm.csv
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.moji.mjweather.db
- /data/media/####/lla.log
- /data/media/####/lla.zip
- /data/media/####/xmm_0-1.png
- /data/media/####/xmm_0-10.png
- /data/media/####/xmm_0-11.png
- /data/media/####/xmm_0-2.png
- /data/media/####/xmm_0-3.png
- /data/media/####/xmm_0-4.png
- /data/media/####/xmm_0-5.png
- /data/media/####/xmm_0-6.png
- /data/media/####/xmm_0-7.png
- /data/media/####/xmm_0-8.png
- /data/media/####/xmm_1-1.png
- /data/media/####/xmm_10-1.png
- /data/media/####/xmm_11-1.png
- /data/media/####/xmm_12-1.png
- /data/media/####/xmm_13-1.png
- /data/media/####/xmm_13-2.png
- /data/media/####/xmm_14-2.png
- /data/media/####/xmm_14-3.png
- /data/media/####/xmm_14-4.png
- /data/media/####/xmm_3-1.png
- /data/media/####/xmm_3-2.png
- /data/media/####/xmm_3-6.png
- /data/media/####/xmm_4-1.png
- /data/media/####/xmm_4-11.png
- /data/media/####/xmm_4-12.png
- /data/media/####/xmm_4-2.png
- /data/media/####/xmm_4-3.png
- /data/media/####/xmm_4-4.png
- /data/media/####/xmm_4-5.png
- /data/media/####/xmm_4-8.png
- /data/media/####/xmm_5-10-1.png
- /data/media/####/xmm_5-10-2.png
- /data/media/####/xmm_5-10-3.png
- /data/media/####/xmm_5-11-2.png
- /data/media/####/xmm_5-11-3.png
- /data/media/####/xmm_5-2-1.png
- /data/media/####/xmm_5-2-2.png
- /data/media/####/xmm_5-2-3.png
- /data/media/####/xmm_5-4-1.png
- /data/media/####/xmm_5-4-2.png
- /data/media/####/xmm_5-4-3.png
- /data/media/####/xmm_5-5-1.png
- /data/media/####/xmm_5-6-1.png
- /data/media/####/xmm_5-6-2.png
- /data/media/####/xmm_5-6-3.png
- /data/media/####/xmm_5-7-1.png
- /data/media/####/xmm_5-7-2.png
- /data/media/####/xmm_5-7-3.png
- /data/media/####/xmm_5-8-1.png
- /data/media/####/xmm_5-8-2.png
- /data/media/####/xmm_5-8-3.png
- /data/media/####/xmm_5-9-1.png
- /data/media/####/xmm_6-1.png
- /data/media/####/xmm_7-1-1.png
- /data/media/####/xmm_7-1-2.png
- /data/media/####/xmm_7-1-3.png
- /data/media/####/xmm_7-2-1.png
- /data/media/####/xmm_7-2-2.png
- /data/media/####/xmm_7-2-3.png
- /data/media/####/xmm_7-3-1.png
- /data/media/####/xmm_7-3-2.png
- /data/media/####/xmm_7-3-3.png
- /data/media/####/xmm_7-5-1.png
- /data/media/####/xmm_7-5-2.png
- /data/media/####/xmm_7-5-3.png
- /data/media/####/xmm_7-6-1.png
- /data/media/####/xmm_7-6-2.png
- /data/media/####/xmm_7-6-3.png
- /data/media/####/xmm_7-7-1.png
- /data/media/####/xmm_7-7-2.png
- /data/media/####/xmm_7-7-3.png
- /data/media/####/xmm_7-8-1.png
- /data/media/####/xmm_7-8-2.png
- /data/media/####/xmm_7-8-3.png
- /data/media/####/xmm_9-1.png
- /data/media/####/xmm_default.png
- /system/bin/cat /proc/meminfo
- /system/bin/sh -c getprop androVM.vbox_dpi
- /system/bin/sh -c getprop gsm.sim.state
- /system/bin/sh -c getprop gsm.sim.state2
- /system/bin/sh -c getprop qemu.sf.fake_camera
- /system/bin/sh -c getprop ro.aa.romver
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/sh -c getprop ro.build.fingerprint
- /system/bin/sh -c getprop ro.build.nubia.rom.name
- /system/bin/sh -c getprop ro.build.rom.id
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
- /system/bin/sh -c getprop ro.build.version.emui
- /system/bin/sh -c getprop ro.build.version.opporom
- /system/bin/sh -c getprop ro.debuggable
- /system/bin/sh -c getprop ro.genymotion.version
- /system/bin/sh -c getprop ro.gn.gnromvernumber
- /system/bin/sh -c getprop ro.lenovo.series
- /system/bin/sh -c getprop ro.lewa.version
- /system/bin/sh -c getprop ro.meizu.product.model
- /system/bin/sh -c getprop ro.miui.ui.version.name
- /system/bin/sh -c getprop ro.secure
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
- /system/bin/sh -c ps|grep 'moji'|grep 'daemon'
- /system/bin/sh -c type su
- cat /proc/cpuinfo
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- getprop androVM.vbox_dpi
- getprop gsm.sim.state
- getprop gsm.sim.state2
- getprop qemu.sf.fake_camera
- getprop ro.aa.romver
- getprop ro.board.platform
- getprop ro.build.fingerprint
- getprop ro.build.nubia.rom.name
- getprop ro.build.rom.id
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.debuggable
- getprop ro.genymotion.version
- getprop ro.gn.gnromvernumber
- getprop ro.lenovo.series
- getprop ro.lewa.version
- getprop ro.meizu.product.model
- getprop ro.miui.ui.version.name
- getprop ro.secure
- getprop ro.vivo.os.build.display.id
- grep daemon
- grep moji
- ps
- Bugly
- getuiext2
- libjiagu
- AES-CBC-PKCS7Padding
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-GCM-NoPadding