Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) mokedao####.oss-cn-####.aliy####.com:80
- TCP(HTTP/1.1) s####.cn.ron####.com:80
- TCP(HTTP/1.1) sdk.c####.g####.####.cn:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(HTTP/1.1) cdn-sdk####.g####.com.####.cn:80
- TCP(HTTP/1.1) informa####.mok####.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(TLS/1.0) 1####.177.14.94:443
- TCP(TLS/1.0) s####.cn.ron####.com:443
- TCP(TLS/1.0) api.mok####.com:443
- TCP(TLS/1.0) api.w####.com:443
- TCP(TLS/1.0) p####.google####.com:443
- TCP(TLS/1.0) gmscomp####.google####.com:443
- TCP(TLS/1.2) gmscomp####.google####.com:443
- TCP(TLS/1.2) 64.2####.164.113:443
- TCP(TLS/1.2) 1####.177.14.94:443
- TCP cm-1####.g####.com:5227
- UDP 1####.177.14.139:443
- TCP sdk.o####.t####.####.com:5224
- a####.u####.com
- and####.google####.com
- api.mok####.com
- api.w####.com
- c-h####.g####.com
- cdn-sdk####.g####.com
- cm-1####.g####.com
- gmscomp####.google####.com
- informa####.mok####.com
- mokedao####.oss-cn-####.aliy####.com
- mokedao####.oss-cn-####.aliy####.com
- mokedao####.oss-cn-####.aliy####.com
- nav.cn.ron####.com
- p####.google####.com
- s####.cn.ron####.com
- s####.ml####.cc
- sdk-ope####.g####.com
- sdk.c####.g####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- api.w####.com:443/oauth2/getaid.json?appkey=####&mfp=01M####&packagename...
- cdn-sdk####.g####.com.####.cn/tdata_CoH340
- cdn-sdk####.g####.com.####.cn/tdata_EDB102
- cdn-sdk####.g####.com.####.cn/tdata_GKM601
- cdn-sdk####.g####.com.####.cn/tdata_jFf739
- cdn-sdk####.g####.com.####.cn/tdata_pKX830
- informa####.mok####.com/lszl/artists/libenshen/index.html
- informa####.mok####.com/lszl/artists/libenshen/lbs001.jpg
- informa####.mok####.com/lszl/artists/libenshen/lbs002.jpg
- informa####.mok####.com/lszl/artists/libenshen/lbs003.jpg
- informa####.mok####.com/lszl/artists/libenshen/lbs004.jpg
- informa####.mok####.com/lszl/css/public.css
- informa####.mok####.com/lszl/js/public.js
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/activityz_toppic...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_001....
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_002....
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_beit...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_hual...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_qnsf...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_shul...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_xuzh...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/home_banner_ziku...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/news_toppic_libe...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/news_toppic_liub...
- mokedao####.oss-cn-####.aliy####.com/banner_img_product/news_toppic_yuan...
- mokedao####.oss-cn-####.aliy####.com/images_product/1720569159c15cacd2df...
- mokedao####.oss-cn-####.aliy####.com/images_product/172057799291e071c252...
- mokedao####.oss-cn-####.aliy####.com/images_product/172058049139a5b9c23c...
- mokedao####.oss-cn-####.aliy####.com/information_web/15241928000378e02f1...
- mokedao####.oss-cn-####.aliy####.com/information_web/152428004303d7ae83e...
- mokedao####.oss-cn-####.aliy####.com/information_web/15242828308085fbf97...
- mokedao####.oss-cn-####.aliy####.com/information_web/1720495487P_13.jpg
- mokedao####.oss-cn-####.aliy####.com/portrait_product/15249198678a4577db...
- mokedao####.oss-cn-####.aliy####.com/xiongxiaomo/banner.png
- sdk.c####.g####.####.cn/config/hzv9.conf
- sdk.o####.p####.####.com/api/addr.htm
- a####.u####.com/app_logs
- api.mok####.com:443/Index/index
- api.mok####.com:443/Information/BannerNewsList
- api.mok####.com:443/Information/info010300
- api.mok####.com:443/Public/category1
- api.mok####.com:443/Public/version
- c-h####.g####.com/api.php?format=####&t=####
- s####.cn.ron####.com/navipush.json
- s####.cn.ron####.com:443/active.json
- sdk.o####.p####.####.com/api.php?format=####&t=####
- sdk.o####.p####.####.com/api.php?format=####&t=####&d=####&k=####
- /data/data/####/-1939958582493412073
- /data/data/####/-2261340002094377911
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/1728561522-916718368
- /data/data/####/1738536005-170946177
- /data/data/####/18208014801871706955
- /data/data/####/189f6b069f32b051_0
- /data/data/####/189f6b069f32b051_0 (deleted)
- /data/data/####/776bf15127d7cc38_0
- /data/data/####/78f9d3b1f723
- /data/data/####/7d950a6b
- /data/data/####/Alvin2.xml
- /data/data/####/COUNTLY_STORE.xml
- /data/data/####/ContextData.xml
- /data/data/####/Cookies-journal
- /data/data/####/RongPush.xml
- /data/data/####/RongPush.xml.bak
- /data/data/####/Statistics.xml
- /data/data/####/Statistics.xml.bak
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/bea598cb
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/classes.dex
- /data/data/####/classes.oat
- /data/data/####/classes2.dex
- /data/data/####/classes3.dex
- /data/data/####/com.mokedao.student.xml
- /data/data/####/com.mokedao.student_preferences.xml
- /data/data/####/d06c309e
- /data/data/####/db6a949635f68ad1_0
- /data/data/####/db6a949635f68ad1_1
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/getui_sp.xml
- /data/data/####/gkt-journal
- /data/data/####/gx_sp.xml
- /data/data/####/index
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/journal
- /data/data/####/libjiagu.so
- /data/data/####/metrics_guid
- /data/data/####/mwsdk_analytics.db-journal
- /data/data/####/persistent_data.xml
- /data/data/####/persistent_data.xml (deleted)
- /data/data/####/persistent_data.xml.bak
- /data/data/####/proc_auxv
- /data/data/####/push.pid
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushk.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/tdata_CoH340
- /data/data/####/tdata_CoH340.dex
- /data/data/####/tdata_CoH340.dex.flock (deleted)
- /data/data/####/tdata_CoH340.jar
- /data/data/####/tdata_GKM601
- /data/data/####/tdata_GKM601.dex
- /data/data/####/tdata_GKM601.dex.flock (deleted)
- /data/data/####/tdata_GKM601.jar
- /data/data/####/tdata_jFf739
- /data/data/####/tdata_jFf739.dex
- /data/data/####/tdata_jFf739.dex.flock (deleted)
- /data/data/####/tdata_jFf739.jar
- /data/data/####/tdata_pKX830
- /data/data/####/tdata_pKX830.dex
- /data/data/####/tdata_pKX830.dex.flock (deleted)
- /data/data/####/tdata_pKX830.jar
- /data/data/####/the-real-index
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/user_db_encrypted-journal
- /data/data/####/weibo_sdk_aid1
- /data/media/####/1cAYljtGe7ohdvOKBgF1TYOi8GI.cnt
- /data/media/####/9-3BeICzK8ZG34BK-hGvLK5iY2A.1629503732.tmp
- /data/media/####/Alvin2.xml
- /data/media/####/BTT_LRf0PcOpjcKsCJZv0qd0hi8.91105125.tmp
- /data/media/####/CXX4ES00Oj3gZykhx5cj-OM3_rc.57101097.tmp
- /data/media/####/CXX4ES00Oj3gZykhx5cj-OM3_rc.cnt
- /data/media/####/ContextData.xml
- /data/media/####/GYRbPyEEJ8MMQdTpIyVLh8hMz4E.394715656.tmp
- /data/media/####/Jz1BJG1Ss26HbkM7CzMViU-x92s.15331784.tmp
- /data/media/####/Jz1BJG1Ss26HbkM7CzMViU-x92s.cnt
- /data/media/####/Lpu9BnFbqxbbGqqjcr5WUl5K8Vw.cnt
- /data/media/####/MwE8F7GDqKtquSTzRroUt5z5Up8.667155198.tmp
- /data/media/####/MwE8F7GDqKtquSTzRroUt5z5Up8.cnt
- /data/media/####/RR2Icw8Bm9LZQg56hvOVIzvzcSw.cnt
- /data/media/####/RZ_VUgBEz5R5zeZIV0NAk0kXNyI.1726785631.tmp
- /data/media/####/U9Bi880im5arilJMn8vCJvcxtCo.1253576069.tmp
- /data/media/####/U9Bi880im5arilJMn8vCJvcxtCo.cnt
- /data/media/####/UF4ENWW3wrUPUGL0OYfXDM3VCug.442107572.tmp
- /data/media/####/ZRT3UsJAVIsDGdAPFzxWScQ6t64.207929126.tmp
- /data/media/####/app.db
- /data/media/####/bkSy5TfhmKCE2-zzYVtY5wzrw2k.1594184574.tmp
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/com.mokedao.student.bin
- /data/media/####/com.mokedao.student.db
- /data/media/####/com.tencent.mobileqq_connectSdk.24.07.10.08.log
- /data/media/####/dIdF7ZHPnv2NbHaHHqxiTnqiv24.1537034723.tmp
- /data/media/####/dIdF7ZHPnv2NbHaHHqxiTnqiv24.cnt
- /data/media/####/gkt
- /data/media/####/gkt-journal
- /data/media/####/gktper
- /data/media/####/gktper (deleted)
- /data/media/####/i0WQqVO6aBZWSryeF4ozM0vkxGY.682456161.tmp
- /data/media/####/muDjk8TPzO3W6okd1l47ySqnoo0.1645851124.tmp
- /data/media/####/saXjiLAmKLWrcyFpy-8G-YCU40I.1679885131.tmp
- /data/media/####/saXjiLAmKLWrcyFpy-8G-YCU40I.cnt
- /data/media/####/tdata_CoH340
- /data/media/####/tdata_GKM601
- /data/media/####/tdata_jFf739
- /data/media/####/tdata_pKX830
- /data/media/####/test.log (deleted)
- /data/media/####/vjXstyu9_A6Xq-e3vzZIdaSz098.665343139.tmp
- /data/media/####/w3BniWpkAitb_22X0CSuf5CiAgc.1640513484.tmp
- /data/media/####/w3BniWpkAitb_22X0CSuf5CiAgc.cnt
- /data/media/####/wOATr2vWL3ZQgx3lgkA2ZUe9xYg.cnt
- /data/media/####/ygXtKUIh154svreSAp_lkObIklU.372111628.tmp
- /data/misc/####/primary.prof
- /system/bin/cat /proc/cpuinfo
- cat /proc/self/cgroup
- cat /proc/uid_stat/10065/tcp_rcv
- cat /proc/uid_stat/10065/tcp_snd
- chmod 755 /data/user/0/<Package>/.jiagu/libjiagu.so
- mount
- sh
- libRongIMLib
- libgetuiext2
- libimagepipeline
- libjiagu
- libweibosdkcore
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-CFB-NoPadding
- AES-ECB-PKCS5Padding
- RSA-ECB-PKCS1Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding