Техническая информация
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- UDP(DNS) 1####.114.114.114:53
- TCP(HTTP/1.1) z12.tua####.com.####.com:80
- TCP(HTTP/1.1) maa####.chinane####.com:80
- TCP(HTTP/1.1) na61-####.wagbr####.ali####.####.com:80
- TCP(HTTP/1.1) pi####.qq.com:80
- TCP(HTTP/1.1) hk.wagbr####.non####.####.com:80
- TCP(HTTP/1.1) z11.tua####.com.####.cn:80
- TCP(HTTP/1.1) zb-cent####.m.ta####.com:80
- TCP(HTTP/1.1) anal####.tua####.com:80
- TCP(HTTP/1.1) t####.qq.com:443
- TCP(HTTP/1.1) ad####.m.ta####.com:80
- TCP(HTTP/1.1) 1####.254.116.117:80
- TCP(HTTP/1.1) res####.a####.com:80
- TCP(HTTP/1.1) m####.wa####.com:80
- TCP(HTTP/1.1) reso####.msg.xi####.net:80
- TCP(HTTP/1.1) sh.wagbr####.aliyun####.com:80
- TCP(HTTP/1.1) 2####.243.236.22:80
- TCP(HTTP/1.1) ada####.m.ta####.com:80
- TCP(HTTP/1.1) t####.qq.com:80
- TCP(TLS/1.0) nbsdk-b####.al####.com:443
- TCP(TLS/1.0) res####.a####.com:443
- TCP(TLS/1.0) hotfix####.aliy####.com:443
- TCP(TLS/1.0) regi####.xm####.xi####.com:443
- TCP(TLS/1.0) and####.cli####.go####.com:443
- TCP 47.74.1####.155:5222
- TCP 4####.62.94.2:443
- TCP t####.qq.com:80
- TCP t####.qq.com:14000
- TCP maa####.chinane####.com:6666
- a####.man.aliy####.com
- acs4bai####.m.ta####.com
- ad####.m.ta####.com
- ada####.m.ta####.com
- amap####.cn-hang####.oss####.####.com
- anal####.tua####.com
- and####.cli####.go####.com
- api####.a####.com
- hotfix####.aliy####.com
- i0.tua####.com
- m####.m.zh####.com
- m####.wa####.com
- m.api.zh####.com
- m.k####.com
- maa####.chinane####.com
- nbsdk-b####.al####.com
- p####.m.zh####.com
- pi####.qq.com
- regi####.xm####.xi####.com
- res####.a####.com
- reso####.msg.xi####.net
- t####.qq.com
- th5.m.zh####.com
- wb.110.ta####.com
- y####.al####.com
- z####.zh####.com
- z11.tua####.com
- z12.tua####.com
- ad####.m.ta####.com/rest/gc2?ak=####&av=####&c=####&d=####&sv=####&t=###...
- anal####.tua####.com/app/cart/item/count
- anal####.tua####.com/app/cart/item/list?paid=####
- anal####.tua####.com/app/cart/newuser/coupon
- anal####.tua####.com/app_record/monitor.gif?logData=####
- anal####.tua####.com/cn/f/brand_and_deal/status
- anal####.tua####.com/cn/zhe800_n_api/muying/baby_info
- anal####.tua####.com/cns/push/query_download_by_pin.jsonp
- anal####.tua####.com/config/switch/shopdetail?platform=####&version=####
- anal####.tua####.com/config/switch?keys=####&platform=####&trackid=####&...
- anal####.tua####.com/deals/count/today/v1?user_type=####&user_role=####&...
- anal####.tua####.com/deals/muying/filter/v1
- anal####.tua####.com/feedback/unreadcounts
- anal####.tua####.com/gateway/mapi/personal?user_type=####&user_role=####...
- anal####.tua####.com/h5new/real/homemodule?area=####&model=####&paid=###...
- anal####.tua####.com/homepromotion/suspension/v2?user_type=####&user_rol...
- anal####.tua####.com/j/wireless/rest/bubble/list?point=####
- anal####.tua####.com/jxh5/js_dtz?ver=####
- anal####.tua####.com/list/deals/v2?image_type=####&tab=####&url_name=###...
- anal####.tua####.com/list/deals/v2?parent_tag=####&url_name=####&tab=###...
- anal####.tua####.com/mobilelog/activelog/v2/activeinfo.gif?data=####
- anal####.tua####.com/mobilelog/applog/mobilelog.gif?key=####&header=####...
- anal####.tua####.com/mobilelog/normal/report.gif?header=####&data=####
- anal####.tua####.com/ms/zhe800h5/ntfiles/dotmenu.json
- anal####.tua####.com/operation/abtest/pageconfig/v1
- anal####.tua####.com/operation/banner/v1?cityid=####&show_location=####&...
- anal####.tua####.com/operation/click/v2/getmobileinit?ip=####&bssid=####
- anal####.tua####.com/operation/notipopupinterval
- anal####.tua####.com/operation/startinfo/v1?cityid=####&image_model=####...
- anal####.tua####.com/operation/userinfo/v1
- anal####.tua####.com/push/sdkconfig?brand=####&model=####
- anal####.tua####.com/search/recommend/v1?user_type=####&user_role=####&s...
- anal####.tua####.com/tao800/clientcontrol/android/1/client.json
- anal####.tua####.com/tao800/commonbanner.json?ad_type=####&image_model=#...
- anal####.tua####.com/tao800/hotbanner.json?pagetype=####&platform=####&c...
- maa####.chinane####.com/pin_api/list/get_subject_list.json?version=####
- maa####.chinane####.com/zhe800_n_api/xsq/na/bottom_tab?new_user=####&ver...
- reso####.msg.xi####.net/gslb/?ver=4.0&type=wap&conpt=dvidpodv >>4>>4>>4...
- sh.wagbr####.aliyun####.com/sdkcoor/android/x86/libJni_wgs2gcj.so
- z11.tua####.com.####.cn/bi/sca/android_043300_tao800.json?time=####
- z11.tua####.com.####.cn/imagev2/customerservice/50x52.d7079f4ab8a0cbebac...
- z11.tua####.com.####.cn/imagev2/wxyy/110x110.0b15f3f5c2662fd885b6c713088...
- z11.tua####.com.####.cn/imagev2/wxyy/110x110.3455a7ea7a46db29cc03c8de352...
- z11.tua####.com.####.cn/imagev2/wxyy/110x110.495d9905ec8870fe2002002bcb3...
- z11.tua####.com.####.cn/imagev2/wxyy/110x110.5cae34f688346b579a49f9b7e18...
- z11.tua####.com.####.cn/imagev2/wxyy/110x110.811ccbf96e033e8a9142cf4d18e...
- z11.tua####.com.####.cn/imagev2/wxyy/110x110.a568816d3fc22f07cd5047bd2c0...
- z11.tua####.com.####.cn/imagev2/wxyy/128x50.68a798fc32a7b99dab3db916f858...
- z11.tua####.com.####.cn/imagev2/wxyy/128x50.ac6b89b6be9ff265ef72be041ed9...
- z11.tua####.com.####.cn/imagev2/wxyy/150x150.9ffacd92111314a6f62d98da543...
- z11.tua####.com.####.cn/imagev2/wxyy/187x188.7186628de41a4b517b24844b02c...
- z11.tua####.com.####.cn/imagev2/wxyy/187x188.863644a40ae0744b9fb77e5f97e...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.04b244561307ef919dc8febc4d0...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.093895b0aab9e6c40c8f2a7e5ae...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.353b044c62d39bef9b2420ae299...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.68527724143d7f576ce6fa78164...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.7fa7b849c014872029013efe226...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.a6010f28ca136bed664578a5f71...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.c43774258c99a18a1bae010f07c...
- z11.tua####.com.####.cn/imagev2/wxyy/256x100.d695041a5772456c951e04929d5...
- z11.tua####.com.####.cn/imagev2/wxyy/36x36.0d8ae7020585b08e328bbc825a0e3...
- z11.tua####.com.####.cn/imagev2/wxyy/375x188.2ea5c22185b6301ada781eba993...
- z11.tua####.com.####.cn/imagev2/wxyy/375x376.2d65972c84bd70a6c059bf3fb20...
- z11.tua####.com.####.cn/imagev2/wxyy/48x48.707c6bd97b2195259103277912dc1...
- z11.tua####.com.####.cn/imagev2/wxyy/48x48.f238fdf8c0f634f1b12cd8200c31b...
- z11.tua####.com.####.cn/imagev2/wxyy/50x50.1c04611016ca3e301bc6900c67ec5...
- z11.tua####.com.####.cn/imagev2/wxyy/50x50.5614f8d3e6129edd8ca723cfae1f5...
- z11.tua####.com.####.cn/imagev2/wxyy/50x50.69d98c0d4e2d0d4fb9af3361dbe91...
- z11.tua####.com.####.cn/imagev2/wxyy/50x50.ba128a8b54c77998187ea9ec2a9a3...
- z11.tua####.com.####.cn/imagev2/wxyy/50x50.d6fe72234e66b205789eef55ff0ac...
- z11.tua####.com.####.cn/imagev2/wxyy/50x50.df784ed38b2abda57a53df0f56f37...
- z11.tua####.com.####.cn/imagev2/wxyy/50x50.fbe63bfe8783ba6f6da3c9d11861a...
- z11.tua####.com.####.cn/imagev2/wxyy/50x51.47a396dea2c5d4a8ec4cc78644b99...
- z11.tua####.com.####.cn/imagev2/wxyy/750x220.a053a58cdf00e0073ddf178b79d...
- z12.tua####.com.####.com/imagev2/cpc/800x800.1a0f6572e19f6b45d0fb5ea2fa4...
- z12.tua####.com.####.com/imagev2/trade/600x600.bb1e5856ffa5312c37b3fe0df...
- z12.tua####.com.####.com/imagev2/trade/800x800.1c89ccd69e9be767ef6db6c7c...
- z12.tua####.com.####.com/imagev2/trade/800x800.53e53b2f0538d0db9bf2b87c4...
- z12.tua####.com.####.com/imagev2/trade/800x800.63479a418ce4e4d1aae7637fb...
- z12.tua####.com.####.com/imagev2/trade/800x800.7fb819a2e114e4b8ab89c6730...
- z12.tua####.com.####.com/imagev2/trade/800x800.cde92203445bc9b3ac6fc5dd1...
- z12.tua####.com.####.com/imagev2/zhaoshang/600x600.34429f8d1826eb7c2f7e8...
- z12.tua####.com.####.com/imagev2/zhaoshang/600x600.d23abcc4052f8ecb6e12e...
- z12.tua####.com.####.com/imagev2/zhaoshang/800x800.c8e61dfc40b201742ee8e...
- zb-cent####.m.ta####.com/gw-open/mtop.taobao.tbk.sdk.config/1.0/?data=####
- ada####.m.ta####.com/rest/sur?ak=####&av=####&c=####&v=####&s=####&d=###...
- anal####.tua####.com/list/recommend/cart/v2?image_type=####&user_type=##...
- hk.wagbr####.non####.####.com/saveWb.json
- m####.wa####.com/sce/log/req
- na61-####.wagbr####.ali####.####.com/api/update.do
- pi####.qq.com/mstat/report/?index=####
- res####.a####.com/v3/log/init
- sh.wagbr####.aliyun####.com/man/api?ak=####&s=####
- t####.qq.com/203.205.211.75:80/
- t####.qq.com:443/203.205.146.122:443/
- /data/data/####/-1120630569-225863295
- /data/data/####/-5605657971044170427
- /data/data/####/-zMKnxVqWEh1bhqxfU_n9c-uwsU.584781387.tmp
- /data/data/####/.com.tuan800.tao800;pushservice.xg.stat..xml
- /data/data/####/.jg.ic
- /data/data/####/.tpns.service.xml.xml
- /data/data/####/.tpns.settings.xml.xml
- /data/data/####/.tpush_mta.xml
- /data/data/####/0a231bd8575dcf72.txt
- /data/data/####/1634632487-1683221978
- /data/data/####/176823035-572786807
- /data/data/####/1d77ea041509fe06.lock
- /data/data/####/21c22f492aba3de8.lock
- /data/data/####/4601248761631842734
- /data/data/####/5iFhtAk4_3ud6HYtRUmQgdUOhb8.-779206147.tmp
- /data/data/####/8524030111125605478
- /data/data/####/85dDu1ZpU5qSa8x9rFHo5HglaVg.1782070976.tmp
- /data/data/####/8ef9c457b3bbb403.lock
- /data/data/####/930a31b34bd52c08.lock
- /data/data/####/9IKNJ6bXnmc5wj8VnKroZ9McOIo.1007882528.tmp
- /data/data/####/AiACF0xy8Bb-cl2WrUhjie5hUGQ.1838218769.tmp
- /data/data/####/AlibcLinkPartner.xml
- /data/data/####/Alvin2.xml
- /data/data/####/AzCG31BmN73FIQD4XMQEA5wvAQA.1516079136.tmp
- /data/data/####/ContextData.xml
- /data/data/####/GAolL4eUXyfnDzTJp8u9C4lKsO8.77313049.tmp
- /data/data/####/K-7S1cqL-tRGAIyta3m321_-lO0.-1333173996.tmp
- /data/data/####/KGCazaMP6aK_GbWFWkMrPNuB-hc.517673672.tmp
- /data/data/####/Kdl64QjnXK_v5mf6Q0C-vvn4SmI.1553856804.tmp
- /data/data/####/MultiDex.lock
- /data/data/####/N9y9MLtKu02GHNuWRyVD02jGZ_w.1537307577.tmp
- /data/data/####/QVc1AMP3BQVmJ-Z8UQ-F9WK1zkY.2102624274.tmp
- /data/data/####/QppROp3H0QBmi9Ct-8nLtCIPRNg.-433856938.tmp
- /data/data/####/S8_99Cvpl-nT7VrxlBP_vshmjqU.614902546.tmp
- /data/data/####/SGMANAGER_DATA2
- /data/data/####/SGMANAGER_DATA2.tmp
- /data/data/####/UTCommon.xml
- /data/data/####/XMPushServiceConfig.xml
- /data/data/####/XXekzCCLNTE2zoTFVNRzGs49vYM.129276890.tmp
- /data/data/####/YlUF_xQ_oALzrn6MCp7wtPcJnCE.-1342780632.tmp
- /data/data/####/YzdlvzSx5Nle0wwxymKJ6k11VBY.-1128873220.tmp
- /data/data/####/aliTradeConfigSP.xml
- /data/data/####/ap.Lock
- /data/data/####/auth_sdk_device.xml
- /data/data/####/bQ0ARa749YBpzCYppvAJvgrcrN4.2011116681.tmp
- /data/data/####/cTEhUu8x9KOWcoPCeXZ3RmIF8Io.320841771.tmp
- /data/data/####/com.tuan800.tao800.userCenter.xml
- /data/data/####/com.tuan800.tao800;pushservice
- /data/data/####/com.tuan800.tao800SWITCH_SP.xml
- /data/data/####/com.tuan800.tao800_cart.xml
- /data/data/####/com.tuan800.tao800_h5urlsp.xml
- /data/data/####/com.tuan800.tao800_homeheader.xml
- /data/data/####/com.tuan800.tao800_jump_to_h5_url.xml
- /data/data/####/com.tuan800.tao800_npi.xml
- /data/data/####/com.tuan800.tao800_order.xml
- /data/data/####/com.tuan800.tao800_pintuan.xml
- /data/data/####/com.tuan800.tao800_preferences.xml
- /data/data/####/com.tuan800.tao800_sign.xml
- /data/data/####/com.tuan800.tao800_user_center.xml
- /data/data/####/com.tuan800.tao800collected_brand.xml
- /data/data/####/com.tuan800.tao800static_file_click_model.xml
- /data/data/####/com.tuan800.tao800static_file_exp.xml
- /data/data/####/com.tuan800.tao800static_file_exp.xml.bak
- /data/data/####/com.tuan800.tao800static_file_mobilelog.xml
- /data/data/####/com.tuan800.tao800static_file_model.xml
- /data/data/####/com.tuan800.tao800static_file_outclick.xml
- /data/data/####/com.tuan800.tao800static_file_page.xml
- /data/data/####/com.tuan800.tao800static_file_page.xml.bak (deleted)
- /data/data/####/com.tuan800.tao800static_file_pageclick.xml
- /data/data/####/com.tuan800.tao800static_file_setkey_value.xml
- /data/data/####/com.tuan800.tao800static_file_share.xml
- /data/data/####/com.tuan800.tao800static_file_static.xml
- /data/data/####/dD2m_6yx3VdB2oYM4HraZvAivCE.-1196419685.tmp
- /data/data/####/dd58EPE-IwGK3nIVQ259UGJHQzk.1733206601.tmp
- /data/data/####/device_id.xml
- /data/data/####/dynamicamapfile.db
- /data/data/####/dynamicamapfile.db-journal
- /data/data/####/event_com.tuan800.tao800.log
- /data/data/####/fezPWifSyW-Ev0ixh-iM51K4URQ.2005438902.tmp
- /data/data/####/fqQaij6mQv0XPZVyinsqnWtr3Lc.1415408121.tmp
- /data/data/####/fwulKvZm9oQkpfL0k_cOsBxyxaQ.-949615417.tmp
- /data/data/####/geofencing.db
- /data/data/####/geofencing.db-journal
- /data/data/####/gpzOf6Lw1kKq55nIfGFRi3DhMMw.-273969209.tmp
- /data/data/####/hmdb
- /data/data/####/hmdb-journal
- /data/data/####/jg_so_upgrade_setting.xml
- /data/data/####/kEhQFSmIaryOJMBmo4bxxj7bljU.-1680742412.tmp
- /data/data/####/libjiagu.so
- /data/data/####/libsgmainso-5.1.81.so.tmp
- /data/data/####/libsgsecuritybodyso-5.1.25.so.tmp
- /data/data/####/lock.lock
- /data/data/####/lock.tmp
- /data/data/####/loctemp.so
- /data/data/####/matosdk_preference.xml
- /data/data/####/mipush.xml
- /data/data/####/mipush_account.xml
- /data/data/####/mipush_extra.xml
- /data/data/####/mipush_region
- /data/data/####/mipush_region.lock
- /data/data/####/multidex.version.xml
- /data/data/####/pICmH47YefkQ0THvFRdbctTiFqU.714681359.tmp
- /data/data/####/pZ6Vr365Wrprpy4C4YsdqGrRhC0.1102523866.tmp
- /data/data/####/pref.xml
- /data/data/####/q79PYNBPJjQb8lxgLihsnA4Jmq8.-1560369375.tmp
- /data/data/####/qihoo_jiagu_crash_report.xml
- /data/data/####/rxrtG9ZSkfI-awFK0_JxE9v_ndA.590589308.tmp
- /data/data/####/sp.lock
- /data/data/####/sp_sophix.xml
- /data/data/####/tao800.db-journal
- /data/data/####/tao800.db-journal (deleted)
- /data/data/####/timestamp
- /data/data/####/tiny_data.data
- /data/data/####/tiny_data.lock
- /data/data/####/tpush.shareprefs.xml
- /data/data/####/ut.db
- /data/data/####/ut.db-journal
- /data/data/####/uzojjomrabCdqsKS0Hg1SY8klSQ.897865154.tmp
- /data/data/####/vv1LVERvcfNhVbyKnGYFfqdWfqo.2067018910.tmp
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/webviewCookiesChromiumPrivate.db-journal
- /data/data/####/wspx
- /data/data/####/x2g0Gas02B98F3gL4qxE0ON6auE.228210487.tmp
- /data/data/####/zxAFnln2jSGXI1vnJzKjFOdNDow.454179391.tmp
- /data/media/####/.nomedia
- /data/media/####/1jr65m4qb6xv4redv1bmluj2c
- /data/media/####/1x4v67b3y2gs4501m0yawk0ul
- /data/media/####/1xpkdo9tzugkvmqyvrugeun9w
- /data/media/####/3u8ha68w1v3suvyz3lo7kgtfk
- /data/media/####/42b3goe37jr22dz5cnjxlphhg
- /data/media/####/44sue9aleeoulk4i4uwm3rg3z
- /data/media/####/5gzmjcoqdnedwc3o1pyax1dky
- /data/media/####/636nz9dcje0zuytvdq16puq2n
- /data/media/####/6c709c11d2d46a7b
- /data/media/####/6rdvkzlpmeyl0zxyn39n8je0o
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/android_043300_tao800.json
- /data/media/####/d6bzkjyt771vpmlpeoh94xk6
- /data/media/####/dd7893586a493dc3
- /data/media/####/hid.dat
- <Package Folder>/lib/libxguardian.so <Package>,2100252513; 55836 203.205.128.130 [{"idx":0,"ts":%d,"et":2000,"si":0,"ui":"<IMEI>","ky":"Axg%lu","mid":"0","ev":{"ov":"18","sr":"600*752","md":"<System Property>","lg":"en","sv":"3.12","mf":"unknown","apn":"%s"}}] 0 18
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- sh <Package Folder>/lib/libxguardian.so <Package>,2100252513; 55836 203.205.128.130 [{ idx :0, ts :%d, et :2000, si :0, ui : <IMEI> , ky : Axg%lu , mid : 0 , ev :{ ov : 18 , sr : 600*752 , md : <System Property> , lg : en , sv : 3.12 , mf : unknown , apn : %s }}] 0 18
- com.maa
- fb_jpegturbo
- gifimage
- imagepipeline
- libjiagu
- pl_droidsonroids_gif
- sgmainso-5.1
- sgsecuritybodyso-5.1
- sqlcipher
- tpnsSecurity
- ut_c_api
- AES-CBC-PKCS5Padding
- RSA-ECB-PKCS1Padding
- DES-ECB-PKCS5Padding