Technical information
- Adware.SalmonAds.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) www.salmo####.com:80
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8012
- TCP(HTTP/1.1) net.salmo####.com:80
- TCP(HTTP/1.1) ge####.mdc.akama####.net:80
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(TLS/1.0) d####.fl####.com:443
- TCP(TLS/1.0) api.face####.com:443
- TCP(TLS/1.0) sett####.crashly####.com:443
- TCP(TLS/1.0) 1####.217.17.110:443
- TCP(TLS/1.0) and####.cli####.go####.com:443
- aexcep####.b####.qq.com
- and####.b####.qq.com
- and####.cli####.go####.com
- d####.fl####.com
- g####.face####.com
- ge####.mdc.akama####.net
- ge####.mdc.akama####.net
- mt####.go####.com
- net.salmo####.com
- sett####.crashly####.com
- www.salmo####.com
- ge####.mdc.akama####.net/
- net.salmo####.com/request?p=eyJzb####
- net.salmo####.com/setting?app_id=####&sign=####
- www.salmo####.com/api/strategy.php?p=####
- aexcep####.b####.qq.com:8012/rqd/async
- and####.b####.qq.com/rqd/async
- /data/data/####/.YFlurrySenderIndex.info.AnalyticsData_P8G4BFV9...MP_225
- /data/data/####/.YFlurrySenderIndex.info.AnalyticsMain
- /data/data/####/.yflurrydatasenderblock.81d780a7-26b6-42d8-96d4...85939a
- /data/data/####/.yflurryreport.-3e29c80c5a8d26d5
- /data/data/####/5AE08A3100F0-0001-0830-E1887F34E732BeginSession.cls_temp
- /data/data/####/5AE08A3100F0-0001-0830-E1887F34E732SessionApp.cls_temp
- /data/data/####/5AE08A3100F0-0001-0830-E1887F34E732SessionDevice.cls_temp
- /data/data/####/5AE08A3100F0-0001-0830-E1887F34E732SessionOS.cls_temp
- /data/data/####/5AE08A3203A3-0001-086E-E1887F34E732BeginSession.cls_temp
- /data/data/####/5AE08A3203A3-0001-086E-E1887F34E732SessionApp.cls_temp
- /data/data/####/5AE08A3203A3-0001-086E-E1887F34E732SessionDevice.cls_temp
- /data/data/####/5AE08A3203A3-0001-086E-E1887F34E732SessionOS.cls_temp
- /data/data/####/AppEventsLogger.persistedevents
- /data/data/####/FLURRY_SHARED_PREFERENCES.xml
- /data/data/####/TwitterAdvertisingInfoPreferences.xml
- /data/data/####/agent_log
- /data/data/####/bugly_db_legu-journal
- /data/data/####/chords.db
- /data/data/####/chords.db-journal
- /data/data/####/com.crashlytics.prefs.xml
- /data/data/####/com.crashlytics.sdk.android;answers;settings.xml
- /data/data/####/com.crashlytics.settings.json
- /data/data/####/com.facebook.internal.preferences.APP_SETTINGS.xml
- /data/data/####/com.facebook.sdk.appEventPreferences.xml
- /data/data/####/com.facebook.sdk.attributionTracking.xml
- /data/data/####/com.salmon.xml
- /data/data/####/com.salmon.xml.bak
- /data/data/####/dayupdate.xml
- /data/data/####/disk_entries_list_image_cache_-1467181745.xml
- /data/data/####/guitar_share_data.xml
- /data/data/####/initialization_marker
- /data/data/####/io.fabric.sdk.android;fabric;io.fabric.sdk.android.r.xml
- /data/data/####/libnfix.so
- /data/data/####/libshella-2.10.6.0.so
- /data/data/####/libufix.so
- /data/data/####/local_crash_lock
- /data/data/####/mix.dex
- /data/data/####/native_record_lock
- /data/data/####/nativedroid.asa.sdk.db-journal
- /data/data/####/sa_dbb4a1b6-6651-4f34-a2ef-5eaadb54b28e_1524664881299.tap
- /data/data/####/sdk_scl_pid_config.xml
- /data/data/####/security_info
- /data/data/####/session_analytics.tap
- /data/data/####/session_analytics.tap.tmp
- /data/data/####/shouji.mu.jita_preferences.xml
- /data/data/####/webview.db-journal
- /data/media/####/.xamdecoq0962
- /system/bin/sh -c getprop ro.aa.romver
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/sh -c getprop ro.build.fingerprint
- /system/bin/sh -c getprop ro.build.nubia.rom.name
- /system/bin/sh -c getprop ro.build.rom.id
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
- /system/bin/sh -c getprop ro.build.version.emui
- /system/bin/sh -c getprop ro.build.version.opporom
- /system/bin/sh -c getprop ro.gn.gnromvernumber
- /system/bin/sh -c getprop ro.lenovo.series
- /system/bin/sh -c getprop ro.lewa.version
- /system/bin/sh -c getprop ro.meizu.product.model
- /system/bin/sh -c getprop ro.miui.ui.version.name
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
- /system/bin/sh -c type su
- chmod 700 <Package Folder>/tx_shell/libnfix.so
- chmod 700 <Package Folder>/tx_shell/libshella-2.10.6.0.so
- chmod 700 <Package Folder>/tx_shell/libufix.so
- getprop ro.aa.romver
- getprop ro.board.platform
- getprop ro.build.fingerprint
- getprop ro.build.nubia.rom.name
- getprop ro.build.rom.id
- getprop ro.build.tyd.kbstyle_version
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.gn.gnromvernumber
- getprop ro.lenovo.series
- getprop ro.lewa.version
- getprop ro.meizu.product.model
- getprop ro.miui.ui.version.name
- getprop ro.vivo.os.build.display.id
- getprop ro.yunos.version
- logcat -d -v threadtime
- Bugly
- libnfix
- libshella-2.10.6.0
- libufix
- nfix
- optimize
- ufix
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding
- AES-GCM-NoPadding