Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) s.u####.360.cn:80
- TCP(HTTP/1.1) hm.b####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(HTTP/1.1) huasu####.diandin####.com:80
- TCP(HTTP/1.1) c####.me####.com:80
- TCP(HTTP/1.1) e.s####.com:80
- TCP(HTTP/1.1) 360f####.me####.com:80
- TCP(HTTP/1.1) www.p####.com:80
- TCP(HTTP/1.1) www.h####.net:80
- TCP(TLS/1.0) cm.fas####.net:443
- TCP(TLS/1.0) 3m.me####.com:443
- TCP(TLS/1.0) cm.pos.b####.com:443
- TCP(TLS/1.0) cc.xtg####.com:443
- TCP(TLS/1.0) c####.me####.com:443
- TCP(TLS/1.0) j####.jd.com:443
- TCP(TLS/1.0) aserver####.m.ta####.com:443
- TCP(TLS/1.0) m####.dmp.360.cn:443
- TCP(TLS/1.0) a####.wagbr####.t####.####.com:443
- TCP(TLS/1.0) cm.g.doublec####.net:443
- TCP(TLS/1.0) api.map.b####.com:443
- TCP(TLS/1.0) tag.b####.com:443
- TCP(TLS/1.0) cdn.boo####.com.####.com:443
- TCP(TLS/1.0) 1####.217.20.110:443
- TCP(TLS/1.0) o####.ys7.com:443
- TCP c####.g####.ig####.com:5224
- TCP sdk.o####.t####.####.com:5224
- 360f####.me####.com
- 3m.me####.com
- 7j####.c####.z0.####.com
- api.map.b####.com
- c####.g####.ig####.com
- c####.me####.com
- c-h####.g####.com
- cc.xtg####.com
- cdn.boo####.com
- cm.fas####.net
- cm.g.doublec####.net
- cm.miao####.atm.####.com
- cm.pos.b####.com
- cm.qt####.com
- cm.vam####.com
- cms.t####.com
- e.s####.com
- hm.b####.com
- huasu####.diandin####.com
- j####.jd.com
- m####.dmp.360.cn
- o####.ys7.com
- pub-####.qin####.com
- s.u####.360.cn
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- tag.b####.com
- www.h####.net
- www.p####.com
- 360f####.me####.com/mv.html
- 360f####.me####.com/s.gif?lts=####&et=####&eid=####&ep=####&vid=####&ctn...
- c####.me####.com/b?type=####
- e.s####.com/search/c.js?u=####&_=####
- hm.b####.com/h.js?9bb92d0####
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&ep=####&et=#...
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&et=####&ja=#...
- huasu####.diandin####.com/api/v3600/service-provision?type=####
- s.u####.360.cn/85025.js
- s.u####.360.cn/s.gif?lts=####&et=####&ck=####&adb=####&cl=####&ds=####&l...
- s.u####.360.cn/s.gif?lts=####&et=####&si=####&ldt=####&vis=####&prv=####...
- t####.c####.q####.####.com/config/hz-hzv3.conf
- t####.c####.q####.####.com/tdata_EDT356
- t####.c####.q####.####.com/tdata_Soq141
- t####.c####.q####.####.com/tdata_vxj811
- www.h####.net/
- www.h####.net/Jscript/qq.js
- www.h####.net/bg.gif
- www.h####.net/css/default.css
- www.h####.net/images/ab1.gif
- www.h####.net/images/ab2.gif
- www.h####.net/images/b1.gif
- www.h####.net/images/b2.gif
- www.h####.net/images/b3.gif
- www.h####.net/images/bg1.jpg
- www.h####.net/images/bg2.jpg
- www.h####.net/images/bg4.jpg
- www.h####.net/images/bottom_split.gif
- www.h####.net/images/bs.gif
- www.h####.net/images/bt1.jpg
- www.h####.net/images/bt2.jpg
- www.h####.net/images/bt21.jpg
- www.h####.net/images/bt3.jpg
- www.h####.net/images/bt5.jpg
- www.h####.net/images/case1.gif
- www.h####.net/images/case2.gif
- www.h####.net/images/cp1.gif
- www.h####.net/images/cp2.gif
- www.h####.net/images/ct1.gif
- www.h####.net/images/ct2.gif
- www.h####.net/images/down1.gif
- www.h####.net/images/down2.gif
- www.h####.net/images/foot1.gif
- www.h####.net/images/foot2.gif
- www.h####.net/images/gg.jpg
- www.h####.net/images/home2.gif
- www.h####.net/images/logo.gif
- www.h####.net/images/menu3.gif
- www.h####.net/images/more1.gif
- www.h####.net/images/news1.gif
- www.h####.net/images/news2.gif
- www.h####.net/images/online_arrow.jpg
- www.h####.net/images/online_botbg.jpg
- www.h####.net/images/public.css
- www.h####.net/images/qq.png
- www.h####.net/images/shipin.jpg
- www.h####.net/images/tel.gif
- www.h####.net/images/web/bg.jpg
- www.h####.net/images/yx1.gif
- www.h####.net/images/yx2.gif
- www.h####.net/s.png
- www.h####.net/scripts/AC_RunActiveContent.js
- www.h####.net/scroll.asp
- www.h####.net/uppics/201181010361857845.jpg
- www.h####.net/uppics/201181010373245578.jpg
- www.h####.net/uppics/2011810103778224.jpg
- www.h####.net/uppics/201181010384773890.jpg
- www.h####.net/uppics/20118101043762702.jpg
- www.h####.net/uppics/201181010534469946.jpg
- www.h####.net/uppics/201181010594131259.jpg
- www.h####.net/uppics/20118101094465394.jpg
- www.h####.net/uppics/20118109385086126.jpg
- www.h####.net/uppics/20118109432949878.jpg
- www.h####.net/uppics/20118109451718920.jpg
- www.h####.net/uppics/2011810947756252.jpg
- www.h####.net/uppics/20118109505567250.jpg
- www.h####.net/uppics/20118151613739635.bmp
- www.h####.net/uppics/2011815161910565.bmp
- www.h####.net/uppics/2011815162518277.bmp
- www.h####.net/uppics/20118914483989462.jpg
- c-h####.g####.com/api.php?format=####&t=####
- sdk.o####.p####.####.com/api.php?format=####&t=####
- www.p####.com/apiv1/sdkstat/install
- www.p####.com/apiv1/sdkstat/launch
- /data/data/####/.jg.ic
- /data/data/####/9014166b5b97
- /data/data/####/MultiDex.lock
- /data/data/####/authStatus_com.huasu.firefightingplatform.xml
- /data/data/####/authStatus_com.huasu.firefightingplatform;pushservice.xml
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/dingding_entreprise.xml
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/f_000005
- /data/data/####/f_000006
- /data/data/####/f_000007
- /data/data/####/f_000008
- /data/data/####/f_000009
- /data/data/####/f_00000a
- /data/data/####/f_00000b
- /data/data/####/f_00000c
- /data/data/####/f_00000d
- /data/data/####/f_00000e
- /data/data/####/f_00000f
- /data/data/####/f_000010
- /data/data/####/f_000011
- /data/data/####/f_000012
- /data/data/####/f_000013
- /data/data/####/f_000014
- /data/data/####/f_000015
- /data/data/####/f_000016
- /data/data/####/f_000017
- /data/data/####/gdaemon_20161017
- /data/data/####/getui_sp.xml
- /data/data/####/gx_sp.xml
- /data/data/####/index
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/libjiagu63887906.so
- /data/data/####/multidex.version.xml
- /data/data/####/pgyersdk.xml
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/tdata_Soq141
- /data/data/####/tdata_Soq141.jar
- /data/data/####/tdata_vxj811
- /data/data/####/tdata_vxj811.jar
- /data/data/####/videoGo.xml
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/.cuid
- /data/media/####/.nomedia
- /data/media/####/app.db
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.huasu.firefightingplatform.bin
- /data/media/####/com.huasu.firefightingplatform.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/ezopensdk_Android.mmap2
- /data/media/####/ezopensdk_Android_20180926.xlog
- /data/media/####/journal.tmp
- /data/media/####/tdata_Soq141
- /data/media/####/tdata_vxj811
- /data/media/####/test.log
- <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.net.service.DemoPushService 26100 300 0
- cat /proc/cpuinfo
- cat /sys/class/net/wlan0/address
- chmod 700 <Package Folder>/files/gdaemon_20161017
- chmod 755 <Package Folder>/.jiagu/libjiagu63887906.so
- mount
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/<Package>.net.service.DemoPushService 26100 300 0
- AnalyzeData
- AudioEngine
- BaiduMapSDK_base_v3_7_0
- HCAlarm
- HCCore
- HCCoreDevCfg
- HCDisplay
- HCGeneralCfgMgr
- HCIndustry
- HCPlayBack
- HCPreview
- HCVoiceTalk
- PlayCtrl
- PlayCtrl_L
- StunClientSDK
- SystemTransform
- encryptprotect
- ezstreamclient
- getuiext2
- gnustl_shared
- hcnetsdk
- hpr
- jnidispatch
- libjiagu63887906
- marsxlog
- opensslwrap
- stlport_shared
- AES-CBC-PKCS5Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding