Техническая информация
- Adware.Gexin.2.origin
- UDP(DNS) 8####.8.4.4:53
- TCP(HTTP/1.1) k####.gu####.cn.####.com:80
- TCP(TLS/1.0) l####.tbs.qq.com:443
- TCP(TLS/1.0) fp.fraudme####.cn:443
- TCP(TLS/1.0) and####.b####.qq.com:443
- TCP(TLS/1.0) tbsreco####.i####.qq.com:443
- TCP(TLS/1.0) aip.baid####.com:443
- TCP(TLS/1.0) www.google####.com:443
- TCP(TLS/1.0) im-moni####.gu####.com.####.com:443
- TCP(TLS/1.0) cfg.i####.qq.com:443
- TCP(TLS/1.2) www.google####.com:443
- TCP(TLS/1.2) 1####.194.69.101:443
- TCP(TLS/1.2) 1####.250.145.94:443
- TCP(TLS/1.2) inte####.faceu####.com:6443
- TCP api-gat####.gu####.com:443
- UDP www.google####.com:443
- TCP f-k-d####.gu####.cn:11111
- aip.baid####.com
- and####.b####.qq.com
- api-gat####.gu####.com
- cfg.i####.qq.com
- f-k-d####.gu####.cn
- fp.fraudme####.cn
- im-moni####.gu####.com
- im.gu####.cn
- inte####.faceu####.com
- k####.gu####.cn
- l####.tbs.qq.com
- tbsreco####.i####.qq.com
- trac####.gu####.cn
- www.google####.com
- im-moni####.gu####.com.####.com:443/blank.gif?pdata=u####&data=####&sour...
- k####.gu####.cn.####.com/10z526929017
- aip.baid####.com:443/public/2.0/license/face-api/app/querydevicelicense
- and####.b####.qq.com:443/rqd/async?aid=####
- cfg.i####.qq.com:443/tbs?v=####&mk=####
- fp.fraudme####.cn:443/android3_5/profile.json?partner=####&version=####&...
- l####.tbs.qq.com:443/ajax?c=####&k=####
- /data/data/####/.hptc.cache_ong;pushservice
- /data/data/####/.hptc.cache_yihuantong;push
- /data/data/####/.hptc_kache_line.yihuantong
- /data/data/####/.td-3
- /data/data/####/1004
- /data/data/####/Heartbeat.ini
- /data/data/####/INSTALLATION
- /data/data/####/Jupiter.xml
- /data/data/####/RiskConfig
- /data/data/####/WYUtils_SP.xml
- /data/data/####/app_idl-license-debug.face-android
- /data/data/####/ast
- /data/data/####/bugly_db_-journal
- /data/data/####/core_info
- /data/data/####/crashrecord.xml
- /data/data/####/download_upload
- /data/data/####/dso_deps
- /data/data/####/dso_lock
- /data/data/####/dso_manifest
- /data/data/####/dso_state
- /data/data/####/fm_shared.xml
- /data/data/####/general.db-journal
- /data/data/####/gtrace-monitor-doctor-db3-journal
- /data/data/####/i851ed8cee17cbb0e
- /data/data/####/jupiter_connect_time_file.xml
- /data/data/####/libexec.so
- /data/data/####/libexecmain.so
- /data/data/####/libtdbugdumper.so
- /data/data/####/local_crash_lock
- /data/data/####/local_crash_lock (deleted)
- /data/data/####/logan.mmap2
- /data/data/####/native_record_lock (deleted)
- /data/data/####/net_client_md5.xml
- /data/data/####/prefs.lock
- /data/data/####/proc_auxv
- /data/data/####/rsa_public_key.pem
- /data/data/####/shared_preference_yihuatong.xml
- /data/data/####/tbs_download_config.xml
- /data/data/####/tbs_download_config.xml.bak
- /data/data/####/tbs_download_stat.xml
- /data/data/####/tbs_emergence.xml
- /data/data/####/tbs_pv_config
- /data/data/####/tbscoreinstall.txt
- /data/data/####/tbslock.txt
- /data/data/####/tsui.xml
- /data/data/####/video-trace-db-journal
- /data/data/####/wedoctor.mmap2
- /data/data/####/wedoctor_20211112.xlog
- df
- getenforce
- getprop
- getprop ro.product.cpu.abi
- grep /sbin/.magisk
- grep com.android.commands.monkey
- grep magisk
- id
- ls /sbin
- mount
- ps
- sh -c df | grep /sbin/.magisk
- sh -c mount | grep /sbin/.magisk
- sh -c cat /proc/3492/wchan
- sh -c cat /proc/3587/wchan
- sh -c cat /proc/3635/wchan
- sh -c cat /proc/3667/wchan
- sh -c ls /sbin | grep magisk
- sh -c ps|grep com.android.commands.monkey
- AES-ECB-PKCS5Padding
- DESede-ECB-PKCS5Padding
- RSA-ECB-NoPadding
- RSA-ECB-PKCS1Padding
- DESede-ECB-PKCS5Padding
- RSA-ECB-PKCS1Padding