Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.0) th.pen####.com:80
- TCP(HTTP/1.1) c####.jq####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) f-12521####.f####.myqc####.com:80
- TCP(HTTP/1.1) f.adu####.com:80
- TCP(HTTP/1.1) adf####.b0.a####.com:80
- TCP(TLS/1.0) api.face####.com:443
- TCP(TLS/1.0) ssl.google-####.com:443
- TCP(TLS/1.0) us####.leanc####.cn:443
- TCP(TLS/1.0) app-ro####.leanc####.cn:443
- TCP(TLS/1.0) googl####.g.doublec####.net:443
- 7d####.c####.z0.####.com
- a####.u####.com
- app-ro####.leanc####.cn
- c####.jq####.com
- f-12521####.f####.myqc####.com
- f.adu####.com
- g####.face####.com
- googl####.g.doublec####.net
- s.pen####.com
- ssl.google-####.com
- th.pen####.com
- us####.leanc####.cn
- adf####.b0.a####.com/1468570379510.png
- adf####.b0.a####.com/1492487703964.png
- adf####.b0.a####.com/1496386062675.jpg
- adf####.b0.a####.com/1501667756496.png
- adf####.b0.a####.com/1501668177364.png
- adf####.b0.a####.com/1501668178810.jpg
- adf####.b0.a####.com/1517995636965.png
- adf####.b0.a####.com/1517995638108.jpg
- adf####.b0.a####.com/1521795484983.png
- adf####.b0.a####.com/1526032856632.png
- adf####.b0.a####.com/1526035135246.jpg
- adf####.b0.a####.com/1528274187604.apk
- adf####.b0.a####.com/1529999465336.apk
- adf####.b0.a####.com/1530778983807.apk
- adf####.b0.a####.com/1531119146125.png
- c####.jq####.com/jquery-1.9.1.min.js
- c####.jq####.com/mobile/1.3.0/images/ajax-loader.gif
- c####.jq####.com/mobile/1.3.0/jquery.mobile-1.3.0.min.css
- c####.jq####.com/mobile/1.3.0/jquery.mobile-1.3.0.min.js
- f-12521####.f####.myqc####.com/1525935942398.png
- f-12521####.f####.myqc####.com/1525935942929.apk
- f-12521####.f####.myqc####.com/1530072524137.apk
- f-12521####.f####.myqc####.com/1530072616708.png
- f.adu####.com/css/main.css
- f.adu####.com/f.php?pname=####&lang=####&aid=####&mac=####&sim=####&api=...
- f.adu####.com/fetch_feature.php?pname=####&lang=####&aid=####&mac=####&s...
- f.adu####.com/js/main.js
- t####.c####.q####.####.com/images/002510805224652ea7bb7d1bdbb39660_1024x...
- a####.u####.com/app_logs
- th.pen####.com/a
- th.pen####.com/b
- /data/data/####/.imprint
- /data/data/####/AV_CLOUD_API_VERSION_KEY_ZONE.xml
- /data/data/####/ApplicationCache.db-journal
- /data/data/####/ApplicationCache.db-journal (deleted)
- /data/data/####/FBAdPrefs.xml
- /data/data/####/SDKIDFA.xml
- /data/data/####/ace8dff67f051838567c2235b790865e.0.tmp
- /data/data/####/ace8dff67f051838567c2235b790865e.1.tmp
- /data/data/####/ads1324400026.jar
- /data/data/####/ads_config.prefs.xml
- /data/data/####/app_fnwclasses.jar
- /data/data/####/apps
- /data/data/####/apps-journal
- /data/data/####/com.avos.avoscloud.RequestStatisticsUtil.data.xml
- /data/data/####/com.avos.avoscloud.approuter.SCH4nOBLCgCj6ydJTw...MI.xml
- /data/data/####/com.facebook.ads.FEATURE_CONFIG.xml
- /data/data/####/com.youxi.jiasui.jinsaigpweiqwqtkek_preferences.xml
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/dbhsku-journal
- /data/data/####/exchangeIdentity.json
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/gaClientId
- /data/data/####/google_analytics_v2.db-journal
- /data/data/####/index
- /data/data/####/journal.tmp
- /data/data/####/lopmt
- /data/data/####/matrix_cache.prefs.xml
- /data/data/####/mobclick_agent_cached_com.youxi.jiasui.jinsaigp...tkek30
- /data/data/####/native_ui.prefs.xml
- /data/data/####/spName.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/1468570379510.png.dat
- /data/media/####/1492487703964.png.dat
- /data/media/####/1496386062675.jpg.dat
- /data/media/####/1501667756496.png.dat
- /data/media/####/1501668177364.png.dat
- /data/media/####/1501668178810.jpg.dat
- /data/media/####/1517995636965.png.dat
- /data/media/####/1517995638108.jpg.dat
- /data/media/####/1521795484983.png.dat
- /data/media/####/1525935942398.png.dat
- /data/media/####/1525935942929.apk.dat
- /data/media/####/1526032856632.png.dat
- /data/media/####/1526035135246.jpg.dat
- /data/media/####/1528274187604.apk.dat
- /data/media/####/1529999465336.apk.dat
- /data/media/####/1530072524137.apk.dat
- /data/media/####/1530072616708.png.dat
- /data/media/####/1530778983807.apk.dat
- /data/media/####/1531119146125.png.dat
- chmod 777 /storage/emulated/0/download/apk/1528274187604.apk.dat
- chmod 777 /storage/emulated/0/download/apk/1529999465336.apk.dat
- chmod 777 /storage/emulated/0/download/apk/1530778983807.apk.dat
- rdl
- DES-ECB-PKCS5Padding
- AES-CBC-PKCS5Padding