Техническая информация
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) norma-e####.m####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) pub-####.qin####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(TLS/1.0) api.map.b####.com:443
- TCP(TLS/1.0) c####.m####.cn:443
- TCP(TLS/1.0) o####.map.b####.com:443
- TCP(TLS/1.0) loc.map.b####.com:443
- TCP(TLS/1.0) pus####.b0.a####.com:443
- TCP(TLS/1.0) 1####.217.168.206:443
- TCP c####.g####.ig####.com:5224
- TCP 1####.224.167.110:5222
- TCP sdk.o####.t####.####.com:5224
- 7j####.c####.z0.####.com
- a####.u####.com
- and####.b####.qq.com
- api.map.b####.com
- c####.g####.ig####.com
- c####.m####.cn
- c-h####.g####.com
- i####.mw####.cn
- loc.map.b####.com
- m.mw####.cn
- norma-e####.m####.com
- o####.map.b####.com
- pub-####.qin####.com
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- smarts####.com.cn
- norma-e####.m####.com/android/exchange/getpublickey.do
- pub-####.qin####.com/tdata_EDT369
- t####.c####.q####.####.com/config/hz-hzv3.conf
- t####.c####.q####.####.com/tdata_bca864
- t####.c####.q####.####.com/tdata_fyR930
- a####.u####.com/app_logs
- and####.b####.qq.com/rqd/async?aid=####
- c-h####.g####.com/api.php?format=####&t=####
- norma-e####.m####.com/push/android/external/add.do
- sdk.o####.p####.####.com/api.php?format=####&t=####
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/1002
- /data/data/####/1004
- /data/data/####/258home_activity_element.cache
- /data/data/####/258home_banner.cache
- /data/data/####/258home_hot_shop_element_node.cache
- /data/data/####/258home_shop_type_element_node.cache
- /data/data/####/5c344c17bd394.zip.download
- /data/data/####/BD_report.db
- /data/data/####/BD_report.db-journal
- /data/data/####/BD_report.db-shm (deleted)
- /data/data/####/BD_report.db-wal
- /data/data/####/BUGLY_COMMON_VALUES.xml
- /data/data/####/MultiDex.lock
- /data/data/####/a12209d1947b
- /data/data/####/authStatus_com.puscene.client;remote.xml
- /data/data/####/bugly_db_-journal
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/com.puscene.client.BETA_VALUES.xml
- /data/data/####/com.puscene.client.MwTrack.db-journal
- /data/data/####/com.x.y.1.xml
- /data/data/####/com.x.y.2.xml
- /data/data/####/crashrecord.xml
- /data/data/####/default.png
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/firll.dat
- /data/data/####/gal.db
- /data/data/####/gal.db-journal
- /data/data/####/gdaemon_20161017
- /data/data/####/getui_client_id.cachekey
- /data/data/####/getui_sp.xml
- /data/data/####/gx_sp.xml
- /data/data/####/home_groups_258_V2.cache
- /data/data/####/hst.db
- /data/data/####/hst.db-journal
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/libcuid.so
- /data/data/####/libjiagu-1271489437.so
- /data/data/####/local_crash_lock
- /data/data/####/multidex.version.xml
- /data/data/####/native_record_lock
- /data/data/####/netWork.sp.xml
- /data/data/####/nowaitOpen.xml
- /data/data/####/ofl.config
- /data/data/####/ofl_location.db
- /data/data/####/ofl_location.db-journal
- /data/data/####/ofl_statistics.db
- /data/data/####/ofl_statistics.db-journal
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/scroll.png
- /data/data/####/security_info
- /data/data/####/selected.png
- /data/data/####/sp_device.xml
- /data/data/####/tabbar_data.sp.xml
- /data/data/####/tdata_bca864
- /data/data/####/tdata_bca864.jar
- /data/data/####/tdata_fyR930
- /data/data/####/tdata_fyR930.jar
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/userceter_258.cache
- /data/data/####/xmpp_connect.xml
- /data/media/####/.cuid
- /data/media/####/.cuid2
- /data/media/####/04a5014495ed7a05faee3cbbb0f1172f140cea51a2f4f6....0.tmp
- /data/media/####/0c98f802feab2231bb531c44893468749c4edbf20c0d01....0.tmp
- /data/media/####/0f44d9bd16fbc5a64e890f709e154561e00ab7b378d62b....0.tmp
- /data/media/####/2019-01-09.log.txt
- /data/media/####/257aa8e8ed57fce0d0dfe511ed81f8c9e951a4799122e3....0.tmp
- /data/media/####/30b402b7afc0c4b42ca9bb49ac5b2bfb7e3a8073e0c8dc....0.tmp
- /data/media/####/3fa6af039d198bc27b1423f9fe8c4e4644d221d578aa56....0.tmp
- /data/media/####/52ae901c8a8dbd9ac9321241238ad10c60a57446b4e41e....0.tmp
- /data/media/####/5874fc376d89eec39826c80c7e3af0e5e4bb8fff11fc51....0.tmp
- /data/media/####/5cb234c6c4c00f4e28dbadfe43ddcedac155337e7a605e....0.tmp
- /data/media/####/749b8a64fd2fc35bbb72212df5bf65a5f10122757ab094....0.tmp
- /data/media/####/7c8d769fb3c613c9e30e0c6b705bc713933ab74c996cb0....0.tmp
- /data/media/####/803114aebead5b1c1322bc70ebc595ca423ee4a5d62a5d....0.tmp
- /data/media/####/8ea708a462fe37714d715f3629ad7f3dff3e2d0c4ac8e8....0.tmp
- /data/media/####/9ea5578d82794a6292eece04ecbadff39a553852fd21d7....0.tmp
- /data/media/####/af1777982a10f22699f1c05e6ea9834bcbdc70324113c4....0.tmp
- /data/media/####/app.db
- /data/media/####/b33d78f068c1ecc9c4eba471e23f5f2d0ae63dd34ae7b0....0.tmp
- /data/media/####/c5cd2d6357344a1ca8a80cb0dbdd1749d9cd1d8b59fefa....0.tmp
- /data/media/####/cd8194d4484e61d85c24cc2e80674b30ead8df6604ecc0....0.tmp
- /data/media/####/cdd96715a73a1d8eb869ccb205e57be67830cd4e90f00e....0.tmp
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.puscene.client.bin
- /data/media/####/com.puscene.client.db
- /data/media/####/conlts.dat
- /data/media/####/d28bef041d0f73e27ccf246b4911e677f48f741b53399c....0.tmp
- /data/media/####/d81ae31734cf122e4d905bcfeb2b02a4e285e68252c4ce....0.tmp
- /data/media/####/e132388b0501168968acbc62d714d714b79b3f8d0a1d3d....0.tmp
- /data/media/####/e4ddb9fbf5de075dcaf77d60871d00001d9ac94d8ae610....0.tmp
- /data/media/####/fe11fbc3eb29de4604350ecc65926235a30d8c2ba025ac....0.tmp
- /data/media/####/journal.tmp
- /data/media/####/ls.db
- /data/media/####/ls.db-journal
- /data/media/####/tdata_bca864
- /data/media/####/tdata_fyR930
- /data/media/####/test.log
- /data/media/####/uuid.mw
- /system/bin/sh -c getprop
- <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.xmpp.getui.GTPushService 24805 300 0
- cat /sys/class/net/wlan0/address
- chmod 700 <Package Folder>/files/gdaemon_20161017
- getprop
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.miui.ui.version.name
- getprop ro.smartisan.version
- getprop ro.vivo.os.version
- mount
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.xmpp.getui.GTPushService 24805 300 0
- Bugly
- getuiext3
- libjiagu-1271489437
- locSDK7a
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-CBC-PKCS5Padding
- AES-GCM-NoPadding