Technical information
- Adware.Dowgin.14.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) videoc####.api.hun####.com:80
- TCP(HTTP/1.1) ap####.v0.m####.com:80
- TCP(HTTP/1.1) mo####.api.hun####.com:80
- TCP(HTTP/1.1) g####.hun####.com:80
- TCP(HTTP/1.1) use####.api.max.####.com:80
- TCP(HTTP/1.1) pl####.log.hun####.com:80
- TCP(HTTP/1.1) www.qchann####.cn:80
- TCP(HTTP/1.1) 1####.h####.i####.tv:80
- TCP(HTTP/1.1) v2.log.hun####.com:80
- TCP(HTTP/1.1) 4####.h####.i####.tv:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) m.i####.com:80
- TCP(HTTP/1.1) av####.h####.com:80
- TCP(HTTP/1.1) com####.hun####.com:80
- TCP(HTTP/1.1) mo####.log.hun####.com:80
- TCP(HTTP/1.1) sni.c####.q####.####.net:80
- TCP(HTTP/1.1) m####.api.m####.com:80
- TCP(HTTP/1.1) x.da.hun####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) sdk-ope####.g####.com:80
- TCP(HTTP/1.1) 3####.h####.i####.tv:80
- TCP(HTTP/1.1) apilo####.a####.com:80
- TCP(HTTP/1.1) log.da.hun####.com:80
- TCP(HTTP/1.1) rc.mpp.hun####.com:80
- TCP sdk.o####.t####.####.com:5224
- TCP 42.62.1####.31:5224
- TCP t####.nz.ig####.com:5224
- 0####.h####.com
- 1####.h####.com
- 2####.h####.com
- 3####.h####.com
- 4####.h####.com
- 7j####.c####.z0.####.com
- a####.u####.com
- ap####.v0.m####.com
- api####.a####.com
- au.u####.co
- au.u####.com
- av####.h####.com
- c-h####.g####.com
- com####.hun####.com
- e####.h####.com
- err.da.hun####.com
- g####.hun####.com
- i5.hun####.com
- log.da.hun####.com
- log.v2.hun####.com
- m####.api.m####.com
- m.i####.com
- mo####.api.hun####.com
- mo####.log.hun####.com
- pl####.log.hun####.com
- rc.mpp.hun####.com
- sdk-ope####.g####.com
- sdk.c####.ig####.com
- sdk.o####.i####.####.com
- sdk.o####.t####.####.com
- t####.nz.ig####.com
- use####.api.max.####.com
- v2.log.hun####.com
- videoc####.api.hun####.com
- www.qchann####.cn
- x.da.hun####.com
- 1####.h####.i####.tv/preview/cms_icon/2018/06/20180620154155942.jpg
- 1####.h####.i####.tv/preview/cms_icon/2018/07/20180708232010219.jpg
- 1####.h####.i####.tv/preview/cms_icon/2018/07/20180709112933627.jpg
- 1####.h####.i####.tv/preview/cms_icon/2018/07/20180709113226351.jpg
- 1####.h####.i####.tv/preview/cms_icon/2018/07/20180709113851609.jpg
- 1####.h####.i####.tv/preview/cms_icon/2018/07/20180709114041340.jpg
- 1####.h####.i####.tv/preview/cms_icon/2018/07/20180709174257638.jpg
- 1####.h####.i####.tv/preview/sp_images/2018/zongyi/324849/4456417/201807...
- 1####.h####.i####.tv/s1/2016/yuanxiao/icon/teji.png
- 1####.h####.i####.tv/s1/2016/yuanxiao/icon/vipmian.png
- 3####.h####.i####.tv/preview/cms_icon/2018/07/20180702093748703.png
- 3####.h####.i####.tv/preview/cms_icon/2018/07/20180703174404236.gif
- 3####.h####.i####.tv/preview/cms_icon/2018/07/20180707205159417.jpg
- 3####.h####.i####.tv/preview/cms_icon/2018/07/20180707231210593.jpg
- 3####.h####.i####.tv/preview/cms_icon/2018/07/20180709113337237.jpg
- 3####.h####.i####.tv/preview/cms_icon/2018/07/20180709113749427.jpg
- 3####.h####.i####.tv/preview/cms_icon/2018/07/20180709193908183.jpg
- 4####.h####.i####.tv/preview/cms_icon/2018/06/20180604110101862.jpg
- 4####.h####.i####.tv/preview/cms_icon/2018/06/20180604110125168.jpg
- 4####.h####.i####.tv/preview/cms_icon/2018/07/20180706232446255.jpg
- 4####.h####.i####.tv/preview/cms_icon/2018/07/20180709100322312.jpg
- 4####.h####.i####.tv/preview/cms_icon/2018/07/20180709113133436.jpg
- 4####.h####.i####.tv/preview/cms_icon/2018/07/20180709113624688.jpg
- 4####.h####.i####.tv/preview/cms_icon/2018/07/20180709114155627.jpg
- ap####.v0.m####.com/pv.php?cpn=####&nt=####&sid=####&did=####&fpn=####&c...
- av####.h####.com/0/8c5a31e7/b6tpo1n6jlt7t174jptg?x-oss-process=####
- av####.h####.com/2/mava2_TZ7xpYrl7Tx0OJycoH9N6EC6UzsIth37.jpg
- av####.h####.com/5/c4f8e5e9/WOUKCZzZyWKeubNV?x-oss-process=####
- av####.h####.com/6/76535065/b9nahe5mugg6e6prtjvg?x-oss-process=####
- com####.hun####.com/comment/read?uid=####&pageCount=####&osVersion=####&...
- com####.hun####.com/mobile_comment/top?uid=####&osVersion=####&ticket=##...
- g####.hun####.com/mobile/distribute.do?deviceid=####
- m.i####.com/cfg/appkey-75071557860d6b8a
- mo####.api.hun####.com/channel/getDetail?uid=####&osVersion=####&ticket=...
- mo####.api.hun####.com/channel/getList?uid=####&osVersion=####&ticket=##...
- mo####.api.hun####.com/mobile/getCategorys?uid=####&osVersion=####&ticke...
- mo####.api.hun####.com/mobile/getRsaKey?userId=####&osVersion=####&seqId...
- mo####.api.hun####.com/mobile/iconLink?uid=####&osVersion=####&ticket=##...
- mo####.api.hun####.com/mobile/loadimage?uid=####&osVersion=####&ticket=#...
- mo####.api.hun####.com/mobile/update
- mo####.api.hun####.com/user/payConfig?uid=####&osVersion=####&ticket=###...
- mo####.api.hun####.com/v1/config/play?chip=####&mp_version=####&os=####&...
- mo####.api.hun####.com/v2/video/getMultiplyList?uid=####&pageCount=####&...
- mo####.api.hun####.com/v2/video/getShortList?uid=####&osVersion=####&tic...
- mo####.api.hun####.com/v5/video/getVideoInfo?uid=####&osVersion=####&tic...
- mo####.api.hun####.com/v6/video/getSource?uid=####&osVersion=####&ticket...
- mo####.api.hun####.com/video/getSupport?uid=####&osVersion=####&ticket=#...
- pl####.log.hun####.com/playerQuality.gif?chip=####&first_frame_time=####...
- rc.mpp.hun####.com/mobile/v1/cms/alike?uid=####&osVersion=####&ticket=##...
- rc.mpp.hun####.com/mobile/v1/cms?uid=####&osVersion=####&ticket=####&app...
- sni.c####.q####.####.net/config/bj-bjv4.conf
- sni.c####.q####.####.net/config/hz-bjv4.conf
- sni.c####.q####.####.net/tdata_gCF347
- sni.c####.q####.####.net/tdata_wkF366
- use####.api.max.####.com/AOC14717925283446354ed32f6c90e3a3c3315410970e53...
- v2.log.hun####.com/info.php?f=0&ex=&e=105000&b=1&c=1&mod=<System Propert...
- videoc####.api.hun####.com/addPlayCount.php?uid=####&osVersion=####&tick...
- a####.u####.com/app_logs
- apilo####.a####.com/v3/log/init
- c-h####.g####.com/api.php?format=####&t=####
- log.da.hun####.com/v1/r
- log.da.hun####.com/v1/t
- m####.api.m####.com/mpns/parseLog
- m.i####.com/rec/se?_iwt_t=####&sv=####
- mo####.log.hun####.com/data.cgi
- mo####.log.hun####.com/dispatcher.do
- sdk-ope####.g####.com/api.php?format=####&t=####
- www.qchann####.cn/center/adj
- www.qchann####.cn/center/adj?appkey=####
- x.da.hun####.com/json/app/boot
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/ImgoPad-journal
- /data/data/####/MATSharedPreferences.xml
- /data/data/####/MGTVCommon.xml
- /data/data/####/MV3Plugin.ini
- /data/data/####/MV3Plugin_Default.ini
- /data/data/####/QT.xml
- /data/data/####/_ire-journal
- /data/data/####/arch.xml
- /data/data/####/cn.com.mma.mobile.tracking.other.xml
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/exchangeIdentity.json
- /data/data/####/gdaemon_20161017
- /data/data/####/gx_sp.xml
- /data/data/####/increment.db-journal
- /data/data/####/index
- /data/data/####/init.pid
- /data/data/####/last_know_location.xml
- /data/data/####/libjiagu-265085762.so
- /data/data/####/mgsdk.xml
- /data/data/####/multidex.version.xml
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/qtsession.xml
- /data/data/####/run.pid
- /data/data/####/tdata_gCF347.jar
- /data/data/####/tdata_gCF347.tmp
- /data/data/####/tdata_wkF366.jar
- /data/data/####/tdata_wkF366.tmp
- /data/data/####/ujz.jar
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/webview.db-journal
- /data/data/####/z5866aa31.xml
- /data/media/####/.nomedia
- /data/media/####/11apg3l1wnoa48s31xlx33yhg.tmp
- /data/media/####/14ftw5yzf1gmihmski336hwsq.tmp
- /data/media/####/16cjtw3hwdzrmlty37xyx7hue.tmp
- /data/media/####/1_log.txt
- /data/media/####/1b9x86h1vxjno5cgsarfjvvj9.tmp
- /data/media/####/252ka8jl4xarqq5e36t96x3mb.tmp
- /data/media/####/2tfl0lcqzeqi9sb8gs4vksucj.tmp
- /data/media/####/39k28ac30k8qzj563qeuzeudf.tmp
- /data/media/####/3kgkzlv6iov0p60ngym3wlh6f.tmp
- /data/media/####/3p1y6lr8rdr5xk9r92v4o9n0t.tmp
- /data/media/####/3t6x98a1y844yfzazxtu3e69q.tmp
- /data/media/####/441aaad5d0555cdd0df903618380566c
- /data/media/####/4ok1h0arr8gaqtmuw7zfgqyqo.tmp
- /data/media/####/4udtuhhv264fwdyecvtzm4wa7.tmp
- /data/media/####/501eaz9r38wykrltit39f18ae.tmp
- /data/media/####/52tve34x41knie4pgvymd08pa.tmp
- /data/media/####/54e2c31aab23ff366a80f38f60199a44
- /data/media/####/5610172660b80659e7c277125c649361
- /data/media/####/562rout35hdniwidd3i9w7hef.tmp
- /data/media/####/5alwpjitwk10pll5jjjkx5dot.tmp
- /data/media/####/5anp9crcdq1byx66k04hoozzc.tmp
- /data/media/####/5ba68gwvj4khk0eprle3u21w6.tmp
- /data/media/####/5c0a119327fb9b2efdc1d2ccbf1ad6c6
- /data/media/####/5h8ks0es06gdev0f7qry8ib3u.tmp
- /data/media/####/5nylk02cxg1p0ixt46mn29r2t.tmp
- /data/media/####/5t6x8e5e7girhohpnwwcllq2t.tmp
- /data/media/####/5v9v7tr014zuiqu59q5jlwnmt.tmp
- /data/media/####/5ytrlekz27k4c16tkkr9b5fr0.tmp
- /data/media/####/6215roechei49f9tyx1vdk8e8.tmp
- /data/media/####/63f76565c0749a0b7f2f22701268f150
- /data/media/####/6k8yl6bgi6lzilfxyr1vshaqr.tmp
- /data/media/####/6w2a4twzf30t9mrww0vnwjbi5.tmp
- /data/media/####/AN.csv-20180709164333
- /data/media/####/APITimeMark.txt
- /data/media/####/TruthInfo.csv-1531154613768
- /data/media/####/UA.csv-20180709164333
- /data/media/####/UnicomTrafficFree.log
- /data/media/####/acomshgplayyingyin.txt
- /data/media/####/apge.csv-20180709164336
- /data/media/####/apge.csv-20180709164416
- /data/media/####/app.db
- /data/media/####/be30cbf534b3288b50090ef00add07f8
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.shg.play.yingyin.db
- /data/media/####/journal
- /data/media/####/journal.tmp
- /data/media/####/njfjoulip8zrdvt86sdtnmgk.tmp
- /data/media/####/qt.csv.1531154612638.txt
- /data/media/####/re6lp3k16kbcnlr76txy461u.tmp
- /data/media/####/s1of8bpra1tm20cg1s1vah67.tmp
- /data/media/####/tdata_gCF347
- /data/media/####/tdata_wkF366
- /data/media/####/test.log
- /data/media/####/uuid
- <Package Folder>/files/gdaemon_20161017 0 <Package>/com.igexin.sdk.PushService 24992 300 0
- cat /proc/cpuinfo
- chmod 700 <Package Folder>/files/gdaemon_20161017
- chmod 755 <Package Folder>/.jiagu/libjiagu-265085762.so
- sh <Package Folder>/files/gdaemon_20161017 0 <Package>/com.igexin.sdk.PushService 24992 300 0
- bspatch
- libjiagu-265085762
- mresearch
- mv3_common
- mv3_jni
- mv3_jni_4
- mv3_mpplat
- mv3_platform
- mv3_playerbase
- AES-CFB-NoPadding
- AES-ECB-PKCS5Padding
- DES
- DES-CBC-PKCS5Padding
- RSA-ECB-PKCS1Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-CFB-NoPadding
- DES-CBC-PKCS5Padding