Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) api.yuf####.com:80
- TCP(HTTP/1.1) pic.yuf####.com:80
- TCP(HTTP/1.1) s####.su####.com:80
- TCP(HTTP/1.1) 1####.199.113.167:80
- TCP(TLS/1.0) ssl.gst####.com:443
- TCP(TLS/1.0) www.go####.nl:443
- TCP(TLS/1.0) www.go####.com:443
- TCP(TLS/1.0) www.gst####.com:443
- TCP(TLS/1.0) adser####.go####.com:443
- adser####.go####.com
- api.yuf####.com
- i####.360bu####.com
- im####.su####.cn
- im####.su####.cn
- imgserv####.su####.cn
- imgserv####.su####.cn
- pic.yuf####.com
- ssl.gst####.com
- www.go####.com
- www.go####.nl
- www.gst####.com
- pic.yuf####.com/mall/uploads/section/2017-11-06/59ffcf5d3f321.jpg
- s####.su####.com/n1/jfs/t1/56709/3/14592/278033/5dba55eaE88e71d93/ee0c74...
- s####.su####.com/n1/jfs/t1/65911/22/16310/91025/5ddfa9d1E88d83f04/5a41fd...
- s####.su####.com/n1/jfs/t1/84490/37/13498/517683/5dab16c9E05fc602e/0ed33...
- s####.su####.com/n1/jfs/t2092/41/1130832219/107654/d271349b/5641d827N0d0...
- s####.su####.com/n1/jfs/t22807/116/1615339128/391229/8d0aed64/5b63cac9N7...
- s####.su####.com/n1/jfs/t23752/299/48066910/154011/aa68d90b/5b239c76N65e...
- s####.su####.com/n1/jfs/t2845/82/579797462/213121/44476ed4/571b1138Nf321...
- s####.su####.com/n1/jfs/t2923/331/1613357501/228508/d895fe30/57885103N80...
- s####.su####.com/n1/jfs/t3028/59/1881453670/108906/f0f2ad5b/57cd2516N088...
- s####.su####.com/uimg/b2c/newcatentries/0000000000-000000000172202415_3....
- s####.su####.com/uimg/b2c/newcatentries/0000000000-000000000616960119_1_...
- s####.su####.com/uimg1/b2c/image/EUKL-xqVTpLORBmhcCYfIQ.jpg_400w_400h_4e
- s####.su####.com/uimg1/b2c/image/GiAijSUa-7m_ikGCUETL9g.jpg_400w_400h_4e
- s####.su####.com/uimg1/b2c/image/WLbT-p1vojVV3QvC1PX9Ow.jpg_400w_400h_4e
- api.yuf####.com/mall/ad/getList
- api.yuf####.com/mall/article/notice_list
- api.yuf####.com/mall/goods/by_type
- api.yuf####.com/mall/section/index_show
- api.yuf####.com/mall/version/getVersion
- /data/data/####/-1480503363-1842559360
- /data/data/####/-1480503363-473088763
- /data/data/####/-1480503363844264640
- /data/data/####/-415474899
- /data/data/####/-786965667
- /data/data/####/-797963734-1184356729
- /data/data/####/.jg.ic
- /data/data/####/.log.lock
- /data/data/####/.log.ls
- /data/data/####/0cc4e00a3dd78f10880ac5085c1419f5a17188bcbfa843a....0.tmp
- /data/data/####/1032928068-1270733060
- /data/data/####/1a4f3e098e57b8858218bb99386421cbf7582a7186fba10....0.tmp
- /data/data/####/3c9221044cb2c472c2024c83404b54f9dae451daf402749....0.tmp
- /data/data/####/426853508
- /data/data/####/4fc7cc0d25fb7f1a5a4780bed608f9ab6b648324bf8b486....0.tmp
- /data/data/####/519036793
- /data/data/####/60acd4a391514c5fe054cbd1419ec927ebdc2af585a202a....0.tmp
- /data/data/####/6f8e4b2a96ed6ae4316ca4fc37d9668267988d2f3131390....0.tmp
- /data/data/####/7db3621a32caa36d789d8b1164ec6748ddc2565fb20c0fa....0.tmp
- /data/data/####/83755de686ca42d86dfc03a09d3e4e318d99f42309b6744....0.tmp
- /data/data/####/8c762d9d84571a2e9a40f6aab796508b72f58c37efef928....0.tmp
- /data/data/####/99ac4a843a374bc9f5bf71dec7e1efc63d079b82277a568....0.tmp
- /data/data/####/cb17501afecc2c993c81ee4b70bf2ab4a35cf38defe2370....0.tmp
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/e06473e024652804bf38a006c90d49a53fe8d6586acfe05....0.tmp
- /data/data/####/e4f9229ec2e37e35271e5be633a1be13955c07fe7d5aff6....0.tmp
- /data/data/####/e7f2f0aed3d3b1d8021d8096ab0dad586b6747a5a8b6a30....0.tmp
- /data/data/####/f5aec0b171b3fcf7fb57d65b8566e96e435336956ceaa91....0.tmp
- /data/data/####/jg_app_update_settings_random.xml
- /data/data/####/journal.tmp
- /data/data/####/libjiagu.so
- /data/data/####/umeng_general_config.xml
- /data/data/####/webview.db-journal
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- libjiagu
- RSA-ECB-PKCS1Padding