Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) doo####.blog####.com:80
- TCP(HTTP/1.1) twi####.com:80
- TCP(HTTP/1.1) a.appj####.com:80
- TCP(HTTP/1.1) pag####.googles####.com:80
- TCP(HTTP/1.1) www.go####.com:80
- TCP(TLS/1.0) cs2-wa####.8####.e####.net:443
- TCP(TLS/1.0) adser####.go####.nl:443
- TCP(TLS/1.0) syndica####.twi####.com:443
- TCP(TLS/1.0) www.go####.com:443
- TCP(TLS/1.0) www.blo####.com:443
- TCP(TLS/1.0) doo####.blog####.com:443
- TCP(TLS/1.0) twi####.com:443
- TCP(TLS/1.0) mo####.twi####.com:443
- TCP(TLS/1.0) adser####.go####.com:443
- TCP(TLS/1.0) a####.go####.com:443
- TCP(TLS/1.0) googl####.g.doublec####.net:443
- TCP(TLS/1.0) pag####.googles####.com:443
- TCP(TLS/1.0) ma.t####.com:443
- 1.bp.blog####.com
- 3.bp.blog####.com
- a####.go####.com
- a.appj####.com
- adser####.go####.com
- adser####.go####.nl
- ch.bo####.com
- ch1bo####.com
- ch2.bo####.com
- doo####.blog####.com
- doo####.blog####.nl
- googl####.g.doublec####.net
- i####.blog####.com
- ma.t####.com
- mo####.twi####.com
- pag####.googles####.com
- pbs.t####.com
- resou####.blog####.com
- syndica####.twi####.com
- twi####.com
- www.blo####.com
- www.go####.com
- doo####.blog####.com/
- doo####.blog####.com/-3ofpHaYo0Vs/VXGM_FsiB-I/AAAAAAAAtKo/HwyDXGY5SGU/s7...
- doo####.blog####.com/-6KeL6TOEMZs/UnOAKoy37eI/AAAAAAAAkjw/oY_wqP6_LKo/s7...
- doo####.blog####.com/-L_19E1Fq4RM/Vk2-OlW7mgI/AAAAAAABaXs/b4EAyBt4N94/s7...
- doo####.blog####.com/-Lx2oxn5p28M/TNKxktYN80I/AAAAAAAAAJc/UZvPfm96mek/s7...
- doo####.blog####.com/-W4pFFrfRG0U/ThR3IAQyf2I/AAAAAAAAArY/0ZTicU_u8vQ/s7...
- doo####.blog####.com/-cs7RK89EDWA/U84poJE_5bI/AAAAAAAAnc8/W_kPhH7wNcw/s7...
- doo####.blog####.com/?m=####
- doo####.blog####.com/favicon.ico
- doo####.blog####.com/favicon.ico?m=####
- doo####.blog####.com/js/cookiechoices.js
- pag####.googles####.com/pagead/js/google_top_exp.js
- pag####.googles####.com/pagead/js/r20180122/r20170110/show_ads_impl.js
- pag####.googles####.com/pagead/show_ads.js
- twi####.com/dooblou
- www.go####.com/complete/search?hl=####&client=####&q=####
- a.appj####.com/ad-service/ad/mark
- <Package Folder>/.jiagu/libjiagu.so
- <Package Folder>/app_jgls/.log.lock
- <Package Folder>/app_jgls/.log.ls
- <Package Folder>/app_qekclasses.jar
- <Package Folder>/databases/dbptwf-journal
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/files/####/.jg.ic
- <Package Folder>/files/iahky
- <Package Folder>/shared_prefs/<Package>_preferences.xml
- <Package Folder>/shared_prefs/SECuRETCamBETASettings.xml
- <Package Folder>/shared_prefs/_has_set_default_values.xml
- <Package Folder>/shared_prefs/jg_app_update_settings_random.xml
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- ggg
- libjiagu
- DES-ECB-PKCS5Padding