Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) www.xin####.com:80
- TCP(HTTP/1.1) a####.exc.mob.com:80
- TCP(HTTP/1.1) www.si####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) f####.x####.com:80
- TCP(TLS/1.0) ssl.gst####.com:443
- TCP(TLS/1.0) www.googlea####.com:443
- TCP(TLS/1.0) et2-na6####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) www.googlet####.com:443
- TCP(TLS/1.0) googl####.g.doublec####.net:443
- TCP(TLS/1.0) www.go####.com:443
- TCP(TLS/1.0) www.gst####.com:443
- TCP(TLS/1.0) s####.g.doublec####.net:443
- TCP(TLS/1.0) 250####.fls.doublec####.net:443
- TCP(TLS/1.0) f####.google####.com:443
- TCP(TLS/1.0) www.google-####.com:443
- TCP(TLS/1.0) a####.google####.com:443
- TCP(TLS/1.0) su####.g.doublec####.net:443
- TCP(TLS/1.0) www.go####.nl:443
- TCP(TLS/1.0) adser####.go####.com:443
- 250####.fls.doublec####.net
- a####.exc.mob.com
- a####.google####.com
- a####.u####.com
- adser####.go####.com
- adser####.go####.nl
- f####.google####.com
- f####.gst####.com
- f####.x####.com
- googl####.g.doublec####.net
- plb####.u####.com
- s####.g.doublec####.net
- sdk.o####.p####.####.com
- ssl.gst####.com
- su####.g.doublec####.net
- u####.u####.com
- www.go####.com
- www.go####.nl
- www.google-####.com
- www.googlea####.com
- www.googlet####.com
- www.gst####.com
- www.si####.com
- www.xin####.com
- f####.x####.com/2694e8b95b95151d11fe9861b2a4f83e.jpg
- f####.x####.com/391dcee173a0370cc07fbfb8363cc19b.jpg
- f####.x####.com/41b1be92c35994117a582e24657d62ee.jpg
- f####.x####.com/7456dc4c5c43ef32eac16e8a70d28173.jpg
- f####.x####.com/a96bcc8c0681f8308a7fb05db2356c76.jpg
- a####.exc.mob.com/errconf
- a####.u####.com/app_logs
- sdk.o####.p####.####.com/api.php?format=####&t=####
- www.si####.com/app-api/app/checkAppVersion
- www.si####.com/app-api/ios/switch
- www.si####.com/app-api/task/getTaskTemp
- www.xin####.com/search/channel/wap?s=####&n=####&channelid=####
- /data/data/####/.duid
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/.lock
- /data/data/####/.vpl_lock
- /data/data/####/881a35b99bd23d3598dc99340e7cbe3c9ed16a47baf8cf3....0.tmp
- /data/data/####/CumulativeLength.xml
- /data/data/####/ThrowalbeLog.db-journal
- /data/data/####/UserLogin.xml
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/domain_1
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/getui_sp.xml
- /data/data/####/i==1.2.0&&2.1.2_1539301997564_envelope.log
- /data/data/####/info.xml
- /data/data/####/init_c1.pid
- /data/data/####/init_er.pid
- /data/data/####/journal.tmp
- /data/data/####/libjiagu-177200553.so
- /data/data/####/mob_commons_1
- /data/data/####/mob_sdk_exception_1
- /data/data/####/qihoo_jiagu_crash_report.xml
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.artc_lock
- /data/media/####/.cca.dat
- /data/media/####/.di
- /data/media/####/.dic_lock
- /data/media/####/.duid
- /data/media/####/.globalLock
- /data/media/####/.im_lock
- /data/media/####/.lesd_lock
- /data/media/####/.mn_-1464060969
- /data/media/####/.nomedia
- /data/media/####/.pkg_lock
- /data/media/####/.pkgs_lock
- /data/media/####/.rc_lock
- /data/media/####/.slw
- /data/media/####/.ss_lock
- /data/media/####/.umm.dat
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- cat /sys/class/net/wlan0/address
- chmod 755 <Package Folder>/.jiagu/libjiagu-177200553.so
- ls /sys/class/thermal
- getuiext2
- libjiagu-177200553
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS7Padding
- AES-CBC-PKCS7Padding
- AES-ECB-NoPadding