Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) q####.c####.l####.####.com:80
- TCP(HTTP/1.1) m.d####.mob.com:80
- TCP(HTTP/1.1) d####.d####.mob.com:80
- TCP(HTTP/1.1) a####.exc.mob.com:80
- TCP(HTTP/1.1) c.d####.mob.com:80
- TCP(HTTP/1.1) a.appj####.com:80
- TCP(HTTP/1.1) app.aij####.cn:80
- TCP(HTTP/1.1) api.s####.mob.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(TLS/1.0) api####.zhu####.com:443
- TCP sdk.o####.t####.####.com:5224
- TCP cm-1####.ig####.com:5224
- a####.exc.mob.com
- a.appj####.com
- api####.zhu####.com
- api.s####.mob.com
- app.aij####.cn
- c.d####.mob.com
- c.sz.gt.####.com
- cm-1####.ig####.com
- d####.d####.mob.com
- m.d####.mob.com
- sdk.c####.ig####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- app.aij####.cn/aijiehu/storage/web/source/1/-IKhN7rWLfkeKAp7HMXAglnUVFkQ...
- app.aij####.cn/aijiehu/storage/web/source/1/6TwzoHey0_y6cVPBvNOiu80RiYWo...
- app.aij####.cn/aijiehu/storage/web/source/1/BiJfIBGOXzQc2N68FyNiKMjLjL8e...
- app.aij####.cn/aijiehu/storage/web/source/1/HzaO9wTHkCiX0LGbqJZu53GRPZBr...
- app.aij####.cn/aijiehu/storage/web/source/1/L7D5H2GKVfoff55b2izkdRbA1XVl...
- app.aij####.cn/aijiehu/storage/web/source/1/MlBCeyjBVbSxx1ea7ICeHgKfAllt...
- app.aij####.cn/aijiehu/storage/web/source/1/VKYPFDxOm5eAeCZiuFX3q0BqTRKI...
- app.aij####.cn/aijiehu/storage/web/source/1/ap8venaaEo8IFHn4QGDreM3jncU8...
- app.aij####.cn/aijiehu/storage/web/source/1/d8BUp8gKJ4_nKoj9E1AEX-75-CM7...
- app.aij####.cn/aijiehu/storage/web/source/1/fGsIurxgbIOwk0AVX3k--Tm4xfZD...
- app.aij####.cn/aijiehu/storage/web/source/1/iuVdARdU9gSBTrobNWi-2ys8_hkF...
- app.aij####.cn/aijiehu/storage/web/source/1/o_EJjC4G-gBaNcBhx5LqVCri5-rP...
- app.aij####.cn/aijiehu/storage/web/source/1/ouR-IvJI00y9pcgo81RamCLZn0Oj...
- m.d####.mob.com/cconf?appkey=####&plat=####&apppkg=####&appver=####&netw...
- q####.c####.l####.####.com/config/hz-hzv6.conf
- a####.exc.mob.com/errconf
- a.appj####.com/ad-service/ad/mark
- api.s####.mob.com/conf5
- api.s####.mob.com/conn
- api.s####.mob.com/data2
- api.s####.mob.com/log4
- app.aij####.cn/aijiehu/api/web/v1/home/ads-list
- app.aij####.cn/aijiehu/api/web/v1/home/get-service
- app.aij####.cn/aijiehu/api/web/v1/home/service-list
- c.d####.mob.com/cdata
- d####.d####.mob.com/dinfo
- d####.d####.mob.com/dsign
- sdk.o####.p####.####.com/api.php?format=####&t=####
- /data/data/####/.jg.ic
- /data/data/####/.lock
- /data/data/####/.log.lock
- /data/data/####/.log.ls
- /data/data/####/.mrecord
- /data/data/####/.mrlock
- /data/data/####/.statistics
- /data/data/####/000c05b75973cc79a027ac60a5730011a1800827a71090a....0.tmp
- /data/data/####/4c8d7dab2166c8eb183ea75eddbe194f3962733910e07d0....0.tmp
- /data/data/####/4d5da22978550bb28c0458a181037490ae96c6d6b7129c9....0.tmp
- /data/data/####/5024296eb31cbd088ea1c210188b507282f2c54597339fd....0.tmp
- /data/data/####/55802a05b104dfe3768b38deee97a8fafe5e83e40d1a297....0.tmp
- /data/data/####/643292cfec1be30f3ad4527caac9f81bc62874f4dd202c8....0.tmp
- /data/data/####/6bb868ee1d6e3464a71987b96cc9a806c75263f520ef14a....0.tmp
- /data/data/####/8b55374af530be86562b4fa6f06a906e18a6df3fb8fe0fd....0.tmp
- /data/data/####/917d947446863af13786f54e13467b2d6a0cc02722f46bb....0.tmp
- /data/data/####/91bb7384b18f5026d803db371ed373581a781c707716356....0.tmp
- /data/data/####/ThrowalbeLog.db-journal
- /data/data/####/a8d54398c4022d944869fb170f507f573a19cb6a1e26299....0.tmp
- /data/data/####/c7732724b458fa410e96dd3e5dad34cd1ea456a2d5d6e04....0.tmp
- /data/data/####/com.tongyu.luck.lovecare23b137a746fd4119ae0d949...b3.xml
- /data/data/####/dd8d29d20223308ab450d4eaa6e71d6e812757a954f2f08....0.tmp
- /data/data/####/ddb6e0da6d81162eaadd81e66664cd540fd9716dc042fdd....0.tmp
- /data/data/####/e75eed673cb9f76ddaae6141f95989ca82eb0985f8d386a....0.tmp
- /data/data/####/f5e0edae72376ed95c924b6d9bece8038fd1a8a14aff3db....0.tmp
- /data/data/####/init.pid
- /data/data/####/init_c.pid
- /data/data/####/jg_app_update_settings_random.xml
- /data/data/####/journal.tmp
- /data/data/####/libjiagu.so
- /data/data/####/mob_commons_1.xml
- /data/data/####/mob_sdk_exception_1.xml
- /data/data/####/okhttputils_cache.db
- /data/data/####/okhttputils_cache.db-journal
- /data/data/####/push.pid
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/share_sdk_1.xml
- /data/data/####/sharesdk.db-journal
- /data/data/####/zhuge
- /data/data/####/zhuge-journal
- /data/media/####/.al
- /data/media/####/.ccLock
- /data/media/####/.ccc
- /data/media/####/.dh-journal
- /data/media/####/.dhlock
- /data/media/####/.dic_lock
- /data/media/####/.dk
- /data/media/####/.duid
- /data/media/####/.globalLock
- /data/media/####/.nulal
- /data/media/####/.nulplt
- /data/media/####/.pkg_lock
- /data/media/####/.plst
- /data/media/####/.rc_lock
- /data/media/####/.usLock
- /data/media/####/app.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.tongyu.luck.lovecare.db
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- grep -E -v root|shell|system
- sh
- top -d 0 -n 1
- getuiext2
- libjiagu
- neh
- AES-ECB-PKCS7Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding