Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) z.c####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) c####.baidust####.com.####.com:80
- TCP(HTTP/1.1) cm.pos.b####.com:80
- TCP(HTTP/1.1) c.c####.com:80
- TCP(HTTP/1.1) c####.b####.com:80
- TCP(HTTP/1.1) gm.mm####.com:80
- TCP(HTTP/1.1) www.aoao####.com:80
- TCP(HTTP/1.1) pco####.ta####.com:80
- TCP(HTTP/1.1) wn.pos.b####.com:80
- TCP(HTTP/1.1) c####.jd.com:80
- TCP(HTTP/1.1) ssl.a####.com.####.net:80
- TCP(HTTP/1.1) pos.b####.com:80
- TCP(TLS/1.0) c####.baidust####.com.####.com:443
- TCP(TLS/1.0) pos.b####.com:443
- TCP(TLS/1.0) img.al####.com:443
- TCP(TLS/1.0) dup.baidust####.com:443
- a####.u####.com
- airdown####.a####.com
- bz.o####.com
- bz1.o####.com
- bz2.o####.com
- c####.b####.com
- c####.baidust####.com
- c####.jd.com
- c####.mm####.com
- c.c####.com
- cm.pos.b####.com
- dup.baidust####.com
- img.al####.com
- pco####.c####.com
- pos.b####.com
- s5.c####.com
- wn.pos.b####.com
- www.aoao####.com
- z9.c####.com
- c####.b####.com/cpro/ui/noexpire/img/2.0.1/custmLogo1.png
- c####.baidust####.com.####.com/cpro/expire/time2.js
- c####.baidust####.com.####.com/cpro/ui/cm.js
- c####.baidust####.com.####.com/sync.htm?cproid=####
- c####.jd.com/du?&baidu_user_id=####&cookie_version=####×tamp=####&e...
- c.c####.com/core.php?web_id=####&t=####
- c.c####.com/stat.php?id=####&web_id=####
- cm.pos.b####.com/pixel?dspid=####
- gm.mm####.com/9.gif?abc=####&rnd=####
- pco####.ta####.com/app.gif?&cna=####
- pos.b####.com/auto_dup?psi=097684714bfe8fbbac2b5dc96051f118&di=0&dri=0&d...
- pos.b####.com/occm?conwid=741&conhei=60&rdid=3489725&dc=3&exps=110011&ps...
- pos.b####.com/occm?psi=097684714bfe8fbbac2b5dc96051f118&di=u3489725&dri=...
- pos.b####.com/sync_pos.htm?cproid=####
- ssl.a####.com.####.net/air?version=####&appid=####&runtimeType=####&os=#...
- wn.pos.b####.com/adx.php?c=####
- www.aoao####.com/?fromid=####
- www.aoao####.com/appico.png
- www.aoao####.com/css/style.css?t=####
- www.aoao####.com/favicon.ico
- www.aoao####.com/js/object.index.js?t=####
- www.aoao####.com/lib/device/device.min.js
- www.aoao####.com/lib/facebox/facebox.js
- www.aoao####.com/lib/font-awesome-4.2.0/css/font-awesome.min.css
- www.aoao####.com/lib/font-awesome-4.2.0/fonts/fontawesome-webfont.ttf?v=...
- www.aoao####.com/lib/jquery/jquery-1.9.1.min.js
- www.aoao####.com/lib/jqueryui/jquery-ui-1.10.3.custom.min.js
- www.aoao####.com/lib/lazyload/jquery.lazyload.min.js
- www.aoao####.com/lib/masonry/masonry.pkgd.min.js
- www.aoao####.com/s/get-aoad.php?i=####&o=####&l=####&v=####
- www.aoao####.com/s/get-app-ad.php?i=####&o=####&l=####&v=####
- z.c####.com/stat.htm?id=5846560&r=&lg=en-us&ntime=none&cnzz_eid=14350973...
- a####.u####.com/app_logs
- www.aoao####.com/s/analysis.php
- /data/data/####/aoaoGame292.sxx
- /data/data/####/application.xml
- /data/data/####/classes.jar
- /data/data/####/com.gongzhumeilixnmlxh.cn.AIRSharedPref.xml
- /data/data/####/config.txt
- /data/data/####/curl-ca-bundle.crt
- /data/data/####/dbhzcyp-journal
- /data/data/####/extension.xml
- /data/data/####/game.swf
- /data/data/####/javaTrustStore.tmp
- /data/data/####/library.swf
- /data/data/####/main.swf
- /data/data/####/mobclick_agent_header_com.gongzhumeilixnmlxh.cn.xml
- /data/data/####/mobclick_agent_state_com.gongzhumeilixnmlxh.cn.xml
- /system/bin/cat /proc/cpuinfo
- /system/bin/cat /proc/meminfo
- /system/bin/cat /sys/devices/system/cpu/present
- libCore
- libstlport_shared
- DES-ECB-PKCS5Padding