Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) c####.z####.com:80
- TCP(HTTP/1.1) r####.t####.qq.com:80
- TCP(HTTP/1.1) hm.b####.com:80
- TCP(HTTP/1.1) s.3####.cn:80
- TCP(HTTP/1.1) js.pass####.qih####.com:80
- TCP(HTTP/1.1) www.sj####.com:80
- TCP(HTTP/1.1) a.appj####.com:80
- TCP(HTTP/1.1) i####.sh####.com.####.com:80
- TCP(HTTP/1.1) www.go####.com:80
- TCP(HTTP/1.1) a####.ro####.com:80
- TCP(HTTP/1.1) www.sh####.com:80
- a####.ro####.com
- a####.ro####.com
- a####.u####.com
- a.appj####.com
- c####.z####.com
- dl.sh####.com
- hm.b####.com
- i####.sh####.com
- img.safetys####.mobi
- js.pass####.qih####.com
- m.sh####.com
- mk.fm####.com
- mk1.fm####.com
- mk2.fm####.com
- s.3####.cn
- s5.q####.com
- www.go####.com
- www.sh####.com
- www.sj####.com
- c####.z####.com/1607/res_g.bin
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&ep=####&et=#...
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&et=####&ja=#...
- hm.b####.com/hm.js?3851961####
- hm.b####.com/hm.js?d05d978####
- i####.sh####.com.####.com/ma_icon/0/icon_10910_20486774_1426170603/48.png
- i####.sh####.com.####.com/ma_icon/0/icon_1176832_1453359852/48.png
- i####.sh####.com.####.com/ma_icon/0/icon_2608_1456924141/48.png
- i####.sh####.com.####.com/ma_icon/0/icon_6259_18717294_1407134887/48.png
- i####.sh####.com.####.com/ma_icon/0/icon_6633_1454569551/48.png
- i####.sh####.com.####.com/ma_icon/0/icon_93301_1456489228/48.png
- i####.sh####.com.####.com/ma_icon/0/icon_9959_1441773100/72.png
- i####.sh####.com.####.com/ma_pic2/0/shot_9959_1_1441773098/550
- i####.sh####.com.####.com/ma_pic2/0/shot_9959_2_1441773098/550
- i####.sh####.com.####.com/ma_pic2/0/shot_9959_3_1441773098/550
- i####.sh####.com.####.com/ma_pic2/0/shot_9959_4_1441773098/550
- i####.sh####.com.####.com/ma_pic2/0/shot_9959_5_1441773098/550
- js.pass####.qih####.com/11.0.1.js?5aa9322####
- js.pass####.qih####.com/static/ab77b6ea7f3fbf79.js
- r####.t####.qq.com/files/RootGeniusMobile/2.2.87/RootGenius-2.2.87_gener...
- s.3####.cn/so/zz.gif?url=####&sid=####&token=####
- www.go####.com/complete/search?hl=####&client=####&q=####
- www.sh####.com/app
- www.sh####.com/app/
- www.sh####.com/app/com.qzone
- www.sh####.com/app/images/favicon.ico
- www.sh####.com/app/wap/css/main.css?v=####
- www.sh####.com/app/wap/dist/applinks_mobile/0.0.3/js/index.js
- www.sh####.com/app/wap/images/banner-bg.png
- www.sh####.com/app/wap/images/icon-app-tag-1.png
- www.sh####.com/app/wap/images/icon-app-tag-2.png
- www.sh####.com/app/wap/images/icon-app-tag-3.png
- www.sh####.com/app/wap/images/icon-app-tag-4.png
- www.sh####.com/app/wap/images/icon-arrow-3.png
- www.sh####.com/app/wap/images/icon-head-menu.png
- www.sh####.com/app/wap/images/icon-logo.png
- www.sh####.com/app/wap/images/icon-recommended.png
- www.sh####.com/app/wap/images/icon-search.png
- www.sh####.com/app/wap/images/icon-star-1.png
- www.sh####.com/app/wap/images/icon-star-2.png
- www.sh####.com/app/wap/images/icon-star-3.png
- www.sh####.com/app/wap/images/icon-star-4.png
- www.sh####.com/app/wap/images/icon-star-5.png
- www.sh####.com/app/wap/images/icon-star-gray20.png
- www.sh####.com/app/wap/images/icon-t1.png
- www.sh####.com/app/wap/images/img/b1.jpg
- www.sh####.com/app/wap/images/img/b2.jpg
- www.sh####.com/app/wap/images/img/b3.jpg
- www.sh####.com/app/wap/images/img/b5.jpg
- www.sh####.com/app/wap/images/img/b6.png
- www.sh####.com/app/wap/images/top.png
- www.sh####.com/app/wap/js/lib/sea.js
- www.sh####.com/assets/66f90e59/css/site.root.css
- www.sh####.com/assets/66f90e59/images/baike/search/icn_toleft.png
- www.sh####.com/assets/66f90e59/images/header/icn_search.png
- www.sh####.com/assets/66f90e59/images/header/logo.png
- www.sh####.com/assets/66f90e59/images/index/icn_pc.png
- www.sh####.com/assets/66f90e59/images/root/bg_banner.png
- www.sh####.com/assets/66f90e59/images/root/bg_left_line.png
- www.sh####.com/assets/66f90e59/images/root/bg_right_line.png
- www.sh####.com/assets/66f90e59/images/root/icn_close.png
- www.sh####.com/assets/66f90e59/images/root/icn_root_logo1.png
- www.sh####.com/assets/66f90e59/images/root/root_adro.png
- www.sh####.com/assets/66f90e59/images/root/root_delete.png
- www.sh####.com/assets/66f90e59/images/root/root_power.png
- www.sh####.com/assets/66f90e59/images/root/root_shuame.png
- www.sh####.com/assets/66f90e59/images/root/root_speed.png
- www.sh####.com/assets/66f90e59/images/root/root_unlock.png
- www.sh####.com/assets/66f90e59/js/sea.js
- www.sh####.com/assets/66f90e59/js/wap/1.0.0/searchWidget-debug.js
- www.sh####.com/assets/66f90e59/js/zepto.js
- www.sh####.com/root
- www.sh####.com/root/
- www.sh####.com/root/android/latest/?versionName=####
- www.sj####.com/
- a####.ro####.com/v2/m/root/update?versionName=####&versionCode=####
- a####.ro####.com/v2/stat/m/root/report?versionName=####&versionCode=####
- a####.u####.com/app_logs
- a.appj####.com/ad-service/ad/mark
- <Package Folder>/.jiagu/libjiagu.so
- <Package Folder>/app_jgls/.log.lock
- <Package Folder>/app_jgls/.log.ls
- <Package Folder>/app_vgnyyclasses.jar
- <Package Folder>/cache/.engine.apk
- <Package Folder>/cache/.key.apk
- <Package Folder>/cache/libloader.so
- <Package Folder>/cache/temp.jar
- <Package Folder>/databases/cc.db
- <Package Folder>/databases/cc.db-journal
- <Package Folder>/databases/dblwlt-journal
- <Package Folder>/databases/tencent_analysis.db-journal
- <Package Folder>/databases/ua.db
- <Package Folder>/databases/ua.db-journal
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/files/####/.jg.ic
- <Package Folder>/files/####/2020
- <Package Folder>/files/####/2025
- <Package Folder>/files/####/Kinguser.apk
- <Package Folder>/files/####/busybox
- <Package Folder>/files/####/exchangeIdentity.json
- <Package Folder>/files/####/gx
- <Package Folder>/files/####/install-recovery.sh
- <Package Folder>/files/####/ksud
- <Package Folder>/files/####/rgs
- <Package Folder>/files/####/su
- <Package Folder>/files/.imprint
- <Package Folder>/files/.rid
- <Package Folder>/files/exid.dat
- <Package Folder>/files/eyl
- <Package Folder>/files/umeng_it.cache
- <Package Folder>/plib/libcrypt.so
- <Package Folder>/shared_prefs/<Package>_preferences.xml
- <Package Folder>/shared_prefs/Alvin2.xml
- <Package Folder>/shared_prefs/ContextData.xml
- <Package Folder>/shared_prefs/android_pre.xml
- <Package Folder>/shared_prefs/jg_app_update_settings_random.xml
- <Package Folder>/shared_prefs/rgpref.xml
- <Package Folder>/shared_prefs/shell_pre.xml
- <Package Folder>/shared_prefs/umeng_general_config.xml
- <SD-Card>/.DataStorage/ContextData.xml
- <SD-Card>/.UTSystemConfig/####/Alvin2.xml
- <SD-Card>/Download/RootGenius-2.2.87_general_mobile.apk
- <SD-Card>/sys_nicholas.txt
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- /system/bin/sh
- cat /data/local/.rid
- cat /data/local/tmp/.rid
- cat /proc/version
- cat /sys/class/net/wlan0/address
- cat <Package Folder>/files/.rid
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- chmod 777 <Package Folder>/files/gxTmp
- chmod 777 <Package Folder>/files/gxTmp/gx
- getprop
- id
- su -c /system/bin/sh
- MtaNativeCrash
- crypt
- knwci
- libjiagu
- libloader
- rgsdk