Technical information
- Adware.HiddenAds.4.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) acco####.shuqire####.com:80
- TCP(HTTP/1.1) book####.api.shuqire####.com:80
- TCP(HTTP/1.1) a####.shuqire####.com:80
- TCP(HTTP/1.1) ut2.shuqi####.com:80
- TCP(HTTP/1.1) oc.u####.com:80
- TCP(HTTP/1.1) mo####.b####.com:80
- TCP(HTTP/1.1) api.m.ta####.com:80
- TCP(HTTP/1.1) 1####.24.152.239:80
- TCP(TLS/1.0) mobads-####.b####.com:443
- TCP(TLS/1.0) wap.cm####.com:443
- TCP(TLS/1.0) acco####.shuqire####.com:443
- TCP 1####.205.203.88:80
- a####.m.ta####.com
- a####.shuqire####.com
- a####.u####.com
- acco####.shuqire####.com
- ag####.m.ta####.com
- and####.shuqire####.com
- api.m.ta####.com
- book####.api.shuqire####.com
- mo####.b####.com
- mobads-####.b####.com
- oc.u####.com
- ut2.shuqi####.com
- wap.cm####.com
- api.m.ta####.com/rest/api3.do?t=####&deviceId=####&imei=####&appKey=####...
- api.m.ta####.com/rest/api3.do?t=####&deviceId=####&sid=####&imei=####&ap...
- api.m.ta####.com/rest/api3.do?ttid=####&t=####&deviceId=####&imei=####&a...
- api.m.ta####.com/rest/api3.do?ttid=####&t=####&imei=####&appKey=####&v=#...
- api.m.ta####.com/spdyip/?appkey=####&ttid=####&deviceId=####&imei=####&n...
- mo####.b####.com/ads/ads.appcache
- mo####.b####.com/ads/css/min/main.css
- mo####.b####.com/ads/index.htm
- mo####.b####.com/ads/js/ads.trunk.js
- mo####.b####.com/ads/js/c.js
- mo####.b####.com/ads/pa/__pasys.apk
- mo####.b####.com/ads/pa/__pasys.php
- mo####.b####.com/ads/pa/__pasys_remote_banner.jar
- mo####.b####.com/ads/pa/__pasys_remote_banner.php?v=####&tp=####&os=####...
- mo####.b####.com/cpro/ui/mads.php?code2=####&b1529021170749=####
- mo####.b####.com/cpro/ui/mads.php?code2=####&b1529021172022=####
- mo####.b####.com/cpro/ui/mads.php?code2=####&b1529021173486=####
- mo####.b####.com/cpro/ui/mads.php?code2=####&b1529021174959=####
- mo####.b####.com/cpro/ui/mads.php?code2=####&b1529021176492=####
- a####.shuqire####.com/app/bc_app_book_preset.php?soft_id=####&ver=####&a...
- a####.u####.com/app_logs
- acco####.shuqire####.com/api/appinfo?&aft=####&aut=####
- book####.api.shuqire####.com/api/shuqiandroid/act/
- oc.u####.com/check_config_update
- ut2.shuqi####.com/1.gif
- /data/data/####/-1253709872-1188106471
- /data/data/####/-1403936375-485734756
- /data/data/####/-488425634-432050168
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/AD_WA_STAT.xml
- /data/data/####/AGOO_HOST.xml
- /data/data/####/Agoo_AppStore.xml
- /data/data/####/Alvin2.xml
- /data/data/####/AppStore.xml
- /data/data/####/ApplicationCache.db-journal
- /data/data/####/ConfigVersion.xml
- /data/data/####/ContextData.xml
- /data/data/####/DaemonServer
- /data/data/####/__pasys.apk.beforesign.tm
- /data/data/####/__pasys_remote_banner.jar.beforesign.tm
- /data/data/####/__pasys_remote_banner.tmp.jar
- /data/data/####/account.db-journal
- /data/data/####/agoo.pid
- /data/data/####/book_source_rid_data.xml
- /data/data/####/com.shuqi.controller_preferences.xml
- /data/data/####/config.xml
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/http_mobads.baidu.com_0.localstorage-journal
- /data/data/####/icudt46l.dat
- /data/data/####/index
- /data/data/####/inlaybook.xml
- /data/data/####/ishuqi.db-journal
- /data/data/####/libjiagu.so
- /data/data/####/migu_account_sesstion_990522257.xml.xml
- /data/data/####/mobclick_agent_cached_com.shuqi.controller9118
- /data/data/####/mobclick_agent_online_setting_com.shuqi.controller.xml
- /data/data/####/soft_update.xml
- /data/data/####/sync_bookmark.xml
- /data/data/####/tempcatalog.xml
- /data/data/####/tips.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/webviewCookiesChromiumPrivate.db-journal
- /data/data/####/writer.xml
- /data/media/####/.a8a3_1944_91d5_aa08_18b0
- /data/media/####/1529021158478.txt
- /data/media/####/1529021158488.txt
- /data/media/####/288200.sqc
- /data/media/####/291073.sqc
- /data/media/####/317675.sqc
- /data/media/####/322695.sqc
- /data/media/####/334663.sqc
- /data/media/####/343192.sqc
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/sn
- /data/media/####/wa_upload.txt
- <Package Folder>/files/DaemonServer -s <Package Folder>/lib/ -n runServer -p startservice -a <Package>.intent.action.COCKROACH --es cockroach cockroach-PPreotect --es pack <Package> --user 0 -f <Package Folder> -t 600 -c agoo.pid -P <Package Folder> -K 1009527 -U tb_android_daemon_1.1.2 -L http://agoodm.m.taobao.com/agoo/report -D {"package":"<Package>","appKey":"23011413","utdid":"WyMC5UktQ3IDAGdzx1FgTj0p","sdkVersion":"20150515"} -I agoodm.m.taobao.com -O 80 -T -Z
- chmod 500 <Package Folder>/files/DaemonServer
- sh
- database_sqlcipher
- db
- libjiagu
- sqlcipher_android
- stlport_shared
- tnet-2.0.17
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS5Padding
- RSA-ECB-PKCS1Padding