Technical information
- Adware.Gexin.2.origin
- UDP(DNS) 8####.8.4.4:53
- TCP(HTTP/1.1) y####.popad####.com:80
- TCP(HTTP/1.1) 1####.31.213.162:80
- TCP(HTTP/1.1) api.map.b####.com:80
- TCP(HTTP/1.1) norma-e####.m####.com:80
- TCP(HTTP/1.1) m.d####.mob.com:80
- TCP(HTTP/1.1) a.e####.cn:80
- TCP(HTTP/1.1) 47.97.2####.214:80
- TCP(HTTP/1.1) pic.e####.cn:80
- TCP(HTTP/1.1) res####.a####.com:80
- TCP(HTTP/1.1) amdc####.m.ta####.com:80
- TCP(HTTP/1.1) 1####.55.28.235:801
- TCP(HTTP/1.1) 47.1####.40.225:80
- TCP(HTTP/1.1) adash####.man.aliy####.com:80
- TCP(TLS/1.0) 2####.58.208.110:443
- TCP(TLS/1.0) android####.go####.com:443
- TCP(TLS/1.0) msg.umengc####.com:443
- TCP(TLS/1.0) na61-####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) 2####.107.1.97:443
- TCP(TLS/1.0) al####.u####.com:443
- TCP(TLS/1.0) www.gst####.com:443
- TCP(TLS/1.0) www.google####.com:443
- TCP(TLS/1.0) ad-cont####.oss-cn-####.aliy####.com:443
- TCP(TLS/1.0) api.e####.cn:443
- TCP(TLS/1.0) plb####.u####.com:443
- TCP(TLS/1.2) www.google####.com:443
- TCP(TLS/1.2) 2####.58.208.99:443
- TCP(TLS/1.2) 1####.250.179.174:443
- TCP zb-cent####.m.ta####.com:443
- TCP zb-cent####.m.ta####.com:80
- a####.exc.mob.com
- a####.man.aliy####.com
- a.e####.cn
- ad-cont####.oss-cn-####.aliy####.com
- amdc####.m.ta####.com
- and####.google####.com
- android####.go####.com
- api####.a####.com
- api.e####.cn
- api.map.b####.com
- api.s####.mob.com
- ax.admo####.top
- c.d####.mob.com
- eco.ta####.com
- instant####.google####.com
- m####.go####.com
- m.d####.mob.com
- msg.umengc####.com
- norma-e####.m####.com
- pic.e####.cn
- plb####.u####.com
- u####.u####.com
- umen####.m.ta####.com
- umengj####.m.ta####.com
- www.google####.com
- www.gst####.com
- y####.popad####.com
- a.e####.cn/favicon.ico
- a.e####.cn/public/getClickUrlPoList.shtml?sd=####&androidid=####&sign=##...
- a.e####.cn/public/rab.shtml?id=####&network=####&machine=####
- a.e####.cn/public/showUrlVisit.shtml?os=####&osversion=####&appversion=#...
- ad-cont####.oss-cn-####.aliy####.com:443/images/551872b2d89840cf08eb2d8e...
- ad-cont####.oss-cn-####.aliy####.com:443/images/8cfd8ca2de0f6ea471b03f11...
- api.e####.cn:443/pub/home/data?machine=####&appid=####&terminal=####&dev...
- api.e####.cn:443/public/clearMachineUser.shtml?machine=####&appid=####&t...
- api.e####.cn:443/public/getHomeList.shtml?machine=####&appid=####&id=###...
- api.e####.cn:443/public/getPushConfig.shtml?machine=####&appid=####&term...
- api.e####.cn:443/public/statisticDeviceApp.shtml?machine=####&appid=####...
- api.map.b####.com/location/ip?ak=####&qq-pf-to=####&machine=####&appid=#...
- m.d####.mob.com/v4/cconf?appkey=####&plat=####&apppkg=####&appver=####&n...
- norma-e####.m####.com/android/exchange/getpublickey.do
- pic.e####.cn/web/2021122316004834258038551.jpg!m720
- pic.e####.cn/web/2021122407422240258498484.jpg!m720
- pic.e####.cn/web/2021122412012116263701469.jpg!m720
- pic.e####.cn/web/235925933.jpg!m720
- pic.e####.cn/web/256212156.jpg!m720
- pic.e####.cn/web/256590609.jpg!m720
- pic.e####.cn/web/256851646.jpg!m720
- pic.e####.cn/web/257030970.jpg!m720
- pic.e####.cn/web/257742895.jpg!m720
- pic.e####.cn/web/257763564.jpg!m720
- pic.e####.cn/web/257812608.jpg!m720
- pic.e####.cn/web/257816865.jpg!m720
- pic.e####.cn/web/258633038.jpg!m720
- pic.e####.cn/web/258798625.jpg!m720
- pic.e####.cn/web/260083464.jpg!m720
- pic.e####.cn/web/260410953.jpg!m720
- pic.e####.cn/web/262562690.jpg!m720
- pic.e####.cn/web/263450220.jpg!m720
- pic.e####.cn/web/263664498.jpg!s2
- pic.e####.cn/web/263664517.jpg!s2
- pic.e####.cn/web/263664519.jpg!s2
- pic.e####.cn/web/263664520.jpg!s2
- pic.e####.cn/web/263771002.jpg!m720
- pic.e####.cn/web/264314714.jpg!m720
- pic.e####.cn/web/264554863.jpg!m720
- pic.e####.cn/web/264566986.jpg!m720
- pic.e####.cn/web/265887871.jpg!m720
- pic.e####.cn/web/5053654.jpg!m720
- adash####.man.aliy####.com/man/api?ak=####&s=####
- al####.u####.com:443/unify_logs
- amdc####.m.ta####.com/amdc/mobileDispatch?appkey=####&deviceId=####&plat...
- api.e####.cn:443/public/getSystemStartParameter.shtml
- m.d####.mob.com/conf5
- m.d####.mob.com/conn
- m.d####.mob.com/errconf
- m.d####.mob.com/log4
- m.d####.mob.com/snsconf
- m.d####.mob.com/v3/cdata
- msg.umengc####.com:443/alias
- msg.umengc####.com:443/tag/add
- msg.umengc####.com:443/tag/get
- na61-####.wagbr####.ali####.####.com:443/router/rest
- norma-e####.m####.com/push/android/external/add.do
- plb####.u####.com:443/umpx_internal
- res####.a####.com/v3/log/init
- y####.popad####.com//sdk/init
- /data/data/####/.artc_lock
- /data/data/####/.dh-journal
- /data/data/####/.dhlock
- /data/data/####/.dic_lock
- /data/data/####/.duid
- /data/data/####/.globalLock
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/.jg.store.report_cf
- /data/data/####/.jgck
- /data/data/####/.lecd
- /data/data/####/.lesd_lock
- /data/data/####/.lock
- /data/data/####/.mrecord
- /data/data/####/.mrecord (deleted)
- /data/data/####/.mrlock
- /data/data/####/.pkg_lock
- /data/data/####/.slw
- /data/data/####/.statistics
- /data/data/####/.vpl_lock
- /data/data/####/07c5eb9cadd55c9d7e0895508486a316e15d420080d35bf....0.tmp
- /data/data/####/0d10b07bdc189d7515c3c39c41130fc1ed7c58c43b5d237....0.tmp
- /data/data/####/0f75221a0e9a24e2f8fd6fadbade2f46af575cb7c86938d....0.tmp
- /data/data/####/114c04b73e8ce275813d1760eab8776da372a42a83c5926....0.tmp
- /data/data/####/126ef5e8d95cc7eb49231c990a50e78ee879c52f65d224e...6c06.0
- /data/data/####/1437a40e1190076ec4e38f0347db50ccd515bfb883eb1b1...3684.0
- /data/data/####/1ae117f879683fe063ba110873943c784d051e306f6eb8a....0.tmp
- /data/data/####/220a4c1ef677d90cbf2ffd791727013a2140cbaccb3eed7....0.tmp
- /data/data/####/2f55bbea683f432a6b0ca6f3a39bc569d6104933cf5be08....0.tmp
- /data/data/####/2fb5e07b8a5e76ae9c74b62ce495ff150a179b41ff48660....0.tmp
- /data/data/####/305d651191108e6b_0
- /data/data/####/33687256b304124cfb87e61aa36f576274018bd38665b8e....0.tmp
- /data/data/####/374068ee1dc40bb055310dc1e2532ee98fef001805118dc....0.tmp
- /data/data/####/52cf263bb7d8a3e9c680cd2c5b76ca1c4d51a361624914b....0.tmp
- /data/data/####/58588a6c719c1f56e961499c4828d79b3932e0c0ac894db...3e42.0
- /data/data/####/6283606d50121c7511e972ae232322dc719a891d9c58761...0a7d.0
- /data/data/####/6635f6ac27e8cf921ed592b66e3a43e5.xml
- /data/data/####/75a10406400b7d12f8aa65f630d513995c7756bff02680e...eadd.0
- /data/data/####/855026a45b6a2455_0
- /data/data/####/8658679ecef8d2e2220659840b09cbecee89a3abcdecfd8....0.tmp
- /data/data/####/86a25f51a41f843a37ecf340bcfc41fd8fa98b24dd845b9....0.tmp
- /data/data/####/8a71ff69439519662ef3c1cac96be2899475a95eefa0cd1...9aa8.0
- /data/data/####/989e511613350b6fa495b6ffa7d0ffac11f8784f56a26ba....0.tmp
- /data/data/####/ACCS_BINDumeng;4f84d47f527015462b00002a.xml
- /data/data/####/ACCS_SDK.xml
- /data/data/####/ACCS_SDK_CHANNEL.xml
- /data/data/####/AGOO_BIND.xml
- /data/data/####/AdmobileApiAd_3.5.0.dex
- /data/data/####/AdmobileApiAd_3.5.0.dex (deleted)
- /data/data/####/AdmobileApiAd_3.5.0.dex.flock (deleted)
- /data/data/####/Agoo_AppStore.xml
- /data/data/####/Alvin2.xml
- /data/data/####/AndroidLogPlusXl_5.5.2.dex
- /data/data/####/AndroidLogPlusXl_5.5.2.dex (deleted)
- /data/data/####/AndroidLogPlusXl_5.5.2.dex.flock (deleted)
- /data/data/####/ContextData.xml
- /data/data/####/Cookies-journal
- /data/data/####/MessageStore.db-journal
- /data/data/####/MsgLogStore.db-journal
- /data/data/####/StrategyConfig
- /data/data/####/ThrowalbeLog.db-journal
- /data/data/####/UM_PROBE_DATA.xml
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/a166ee93c6a41719a876af35a513c28faf21c30fc64a627...b2a1.0
- /data/data/####/a19ddd73dc6ea71d08d023ab2781de0657259c7253691c7...498f.0
- /data/data/####/a==7.5.4&&15.7.0_1641168003158_envelope.log
- /data/data/####/accs.db-journal
- /data/data/####/aea5e3a4803978168790a1dbe0dbb1e00f654c0dfee66ca....0.tmp
- /data/data/####/agoo.pid
- /data/data/####/app_open_times.xml
- /data/data/####/b71f8acf3a294ab9901069f9409ae27a
- /data/data/####/bd51e05c32dd6c7fb793ae9a8a3924ca30df4e6c661291f...d23e.0
- /data/data/####/c09569c0ec5f488087bc7c2ec3164235
- /data/data/####/c2b8585cbbd6b6f2804729a17feac788c61ac0065b9b738....0.tmp
- /data/data/####/caed9edf2397b491461bf6a2126cafe9557cfcbdac619d2...343a.0
- /data/data/####/channel_umeng_common_config.xml
- /data/data/####/classes.dex
- /data/data/####/classes.dex;classes2.dex
- /data/data/####/classes.dex;classes3.dex
- /data/data/####/classes.dex;classes4.dex
- /data/data/####/classes.oat
- /data/data/####/cn.ecook.xml
- /data/data/####/cn.ecook.xml.bak
- /data/data/####/cn.ecook_preferences.xml
- /data/data/####/com.ciba.data.xml
- /data/data/####/com.x.y.1.xml
- /data/data/####/com.x.y.2.xml
- /data/data/####/dW1weF9pbnRlcm5hbF8xNjQxMTY4MDAwMTMx;
- /data/data/####/daf652740306d442ca2309973258cd32a50e312cb14a141....0.tmp
- /data/data/####/df179b308ae53206dcf0a126fc690bd825a56b3ea558d89....0.tmp
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f532f875a76571a45f959fdc089b7c44983b1964513aaac...db0e.0
- /data/data/####/httpdns_config_cache.xml
- /data/data/####/i==1.2.0&&15.7.0_1641168000166_envelope.log
- /data/data/####/index
- /data/data/####/info.xml
- /data/data/####/journal
- /data/data/####/last_know_location.xml
- /data/data/####/libjiagu.so
- /data/data/####/message_accs_db
- /data/data/####/message_accs_db-journal
- /data/data/####/metrics_guid
- /data/data/####/mob_commons_1
- /data/data/####/mob_sdk_exception_1
- /data/data/####/mz_push_preference.xml
- /data/data/####/proc_auxv
- /data/data/####/share_sdk_1
- /data/data/####/sharesdk.db-journal
- /data/data/####/temp-index
- /data/data/####/the-real-index
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_location.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_general_config.xml.bak (deleted)
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_message_state.xml
- /data/misc/####/primary.prof
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- cat /sys/class/net/wlan0/address
- ls /
- ls /sys/class/thermal
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- AES-ECB-PKCS7Padding
- RSA-ECB-PKCS1Padding
- AES
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- RSA-NONE-PKCS1Padding