Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8011
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8012
- TCP(HTTP/1.1) fanews-####.oss-cn-####.aliy####.com:80
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) v####.c####.com.cn:80
- TCP(HTTP/1.1) dot.wts.xi####.cn:80
- TCP(HTTP/1.1) a####.exc.mob.com:80
- TCP(TLS/1.0) redi####.network####.com:443
- TCP(TLS/1.0) 2####.58.208.110:443
- TCP(TLS/1.0) s####.ml####.cc:443
- TCP(TLS/1.0) dot.wts.xi####.cn:443
- a####.b####.qq.com
- a####.exc.mob.com
- aexcep####.b####.qq.com
- and####.b####.qq.com
- dc1.network####.com
- dot.wts.xi####.cn
- fanews-####.oss-cn-####.aliy####.com
- redi####.network####.com
- s####.ml####.cc
- v####.c####.com.cn
- fanews-####.oss-cn-####.aliy####.com/null_56015.gif?action=####&app_vers...
- v####.c####.com.cn/app/api/v2/loadingImgs/getLastLoadingImgs?platform=##...
- a####.exc.mob.com/errconf
- aexcep####.b####.qq.com:8011/rqd/async
- aexcep####.b####.qq.com:8012/rqd/async
- and####.b####.qq.com/rqd/async
- dot.wts.xi####.cn/logserver/submit?type=####&uid=####&pkg=####
- /data/anr/traces.txt
- /data/data/####/.duid
- /data/data/####/.vpl_lock
- /data/data/####/Alvin2.xml
- /data/data/####/ContextData.xml
- /data/data/####/INSTALLATION-744d9fc3-5dbd-3edd-a589-56d77bdb0e5d
- /data/data/####/MultiDex.lock
- /data/data/####/NBSCrashStore.xml
- /data/data/####/SP_AROUTER_CACHE.xml
- /data/data/####/_tmp_PRIORITIZED_2309_1558633681725
- /data/data/####/_tmp_PRIORITIZED_2309_1558633682626
- /data/data/####/_tmp_PRIORITIZED_2309_1558633682875
- /data/data/####/_tmp_PRIORITIZED_2460_1558633687196
- /data/data/####/_tmp_PRIORITIZED_2460_1558633687282
- /data/data/####/_tmp_PRIORITIZED_2603_1558633690893
- /data/data/####/_tmp_PRIORITIZED_2603_1558633690959
- /data/data/####/_tmp_PRIORITIZED_2716_1558633695432
- /data/data/####/_tmp_PRIORITIZED_2716_1558633698001
- /data/data/####/_tmp_PRIORITIZED_2716_1558633699625
- /data/data/####/_tmp_PRIORITIZED_3859_1558633734885
- /data/data/####/_tmp_PRIORITIZED_3970_1558633737386
- /data/data/####/bugly_db_legu-journal
- /data/data/####/bullet_PRIORITIZED_3859_1558633734885
- /data/data/####/bullet_PRIORITIZED_3970_1558633737383
- /data/data/####/com.networkbench.agent.impl.v2_com.chengdudaily...ty.xml
- /data/data/####/config_noclear.xml
- /data/data/####/domain_1
- /data/data/####/dso_deps
- /data/data/####/dso_lock
- /data/data/####/dso_manifest
- /data/data/####/dso_state
- /data/data/####/libnfix.so
- /data/data/####/libshella-3.0.0.0.so
- /data/data/####/libufix.so
- /data/data/####/local_crash_lock
- /data/data/####/mix.dex
- /data/data/####/mob_commons_1
- /data/data/####/multidex.version.xml
- /data/data/####/mwsdk_analytics.db-journal
- /data/data/####/native_record_lock
- /data/data/####/persistent_data.xml
- /data/data/####/persistent_data.xml.bak (deleted)
- /data/data/####/security_info
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/webview.db-journal
- /data/data/####/zy_unique_id.bin
- /data/data/####/zyanalytics.xml
- /data/media/####/.artc_lock
- /data/media/####/.di
- /data/media/####/.dic_lock
- /data/media/####/.du_lock
- /data/media/####/.duid
- /data/media/####/.globalLock
- /data/media/####/.gm_lock
- /data/media/####/.im_lock
- /data/media/####/.lesd_lock
- /data/media/####/.mn_-1464060969
- /data/media/####/.nomedia
- /data/media/####/.pkg_lock
- /data/media/####/.pkgs_lock
- /data/media/####/.rc_lock
- /data/media/####/.slw
- /data/media/####/.ss_lock
- /data/media/####/.wkl
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/filegov_logo.png
- /data/media/####/fileic_launcher2.png
- /system/bin/sh -c getprop ro.aa.romver
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/sh -c getprop ro.build.fingerprint
- /system/bin/sh -c getprop ro.build.nubia.rom.name
- /system/bin/sh -c getprop ro.build.rom.id
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
- /system/bin/sh -c getprop ro.build.version.emui
- /system/bin/sh -c getprop ro.build.version.opporom
- /system/bin/sh -c getprop ro.gn.gnromvernumber
- /system/bin/sh -c getprop ro.lenovo.series
- /system/bin/sh -c getprop ro.lewa.version
- /system/bin/sh -c getprop ro.meizu.product.model
- /system/bin/sh -c getprop ro.miui.ui.version.name
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
- /system/bin/sh -c type su
- cat /sys/class/net/wlan0/address
- chmod 700 <Package Folder>/tx_shell/libnfix.so
- chmod 700 <Package Folder>/tx_shell/libshella-3.0.0.0.so
- chmod 700 <Package Folder>/tx_shell/libufix.so
- getprop ro.aa.romver
- getprop ro.board.platform
- getprop ro.build.fingerprint
- getprop ro.build.nubia.rom.name
- getprop ro.build.rom.id
- getprop ro.build.tyd.kbstyle_version
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.gn.gnromvernumber
- getprop ro.lenovo.series
- getprop ro.lewa.version
- getprop ro.meizu.product.model
- getprop ro.miui.ui.version.name
- getprop ro.vivo.os.build.display.id
- getprop ro.yunos.version
- logcat -d -v threadtime
- Bugly
- ijkffmpeg
- ijkplayer
- ijksdl
- libnfix
- libshella-3.0.0.0
- libufix
- nfix
- ufix
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- AES-ECB-PKCS7Padding
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding
- AES-ECB-NoPadding
- AES-GCM-NoPadding