Technical information
- Adware.Waps.5.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) g####.dftou####.com:80
- TCP(HTTP/1.1) ip.ta####.com:80
- TCP(HTTP/1.1) ad.h####.com:8883
- TCP(HTTP/1.1) s####.googlea####.mobi:8883
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) bmob-cd####.b0.upa####.com:80
- TCP(HTTP/1.1) o####.b####.cn:80
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8012
- TCP(HTTP/1.1) ip.ch####.com:80
- TCP(HTTP/1.1) websit####.b####.cn:80
- TCP(HTTP/1.1) em.b####.com:80
- TCP(HTTP/1.1) app.w####.cn:80
- TCP(TLS/1.0) ppe####.gi####.io:443
- TCP(TLS/1.0) wapif####.dftou####.com:443
- TCP(TLS/1.0) ci####.s####.com:443
- TCP(TLS/1.0) repor####.dftou####.com:443
- TCP(TLS/1.0) m.tt.vip-dns####.com:443
- TCP(TLS/1.0) em.b####.com:443
- TCP(TLS/1.0) z####.com.edg####.net:443
- TCP(TLS/1.0) ds####.dftou####.com.####.com:443
- TCP(TLS/1.0) i####.sogo####.com.####.com:443
- TCP(TLS/1.0) wn.pos.b####.com:443
- TCP(TLS/1.0) 0####.s####.com:443
- TCP(TLS/1.0) tou####.eas####.com:443
- TCP(TLS/1.0) softwor####.dftou####.com:443
- TCP(TLS/1.0) m####.eas####.com:443
- TCP(TLS/1.0) g####.dftou####.com:443
- TCP(TLS/1.0) ec####.b####.com:443
- TCP(TLS/1.0) softw####.dftou####.com:443
- TCP(TLS/1.0) pos.b####.com:443
- TCP(TLS/1.0) pcunion####.s####.com:443
- TCP(TLS/1.0) c####.baidust####.com:443
- TCP(TLS/1.0) wapac####.dftou####.com:443
- TCP(TLS/1.0) c####.b####.com:443
- TCP(TLS/1.0) s####.wagbr####.1####.com:443
- TCP(TLS/1.0) hm.b####.com:443
- TCP(TLS/1.0) s####.dftou####.com:443
- TCP(TLS/1.0) si####.jom####.com:443
- TCP(TLS/1.0) t####.sogo####.com.####.com:443
- TCP(TLS/1.0) posi####.dftou####.com:443
- TCP(TLS/1.0) ser####.e####.s####.com:443
- 0####.s####.com
- ad.googlea####.mobi
- ad.h####.com
- aexcep####.b####.qq.com
- and####.b####.qq.com
- app.w####.cn
- bmob-cd####.b0.upa####.com
- c####.b####.com
- c####.baidust####.com
- ci####.s####.com
- cm.pos.b####.com
- ds####.dftou####.com
- ec####.b####.com
- em.b####.com
- g####.dftou####.com
- hm.b####.com
- i####.sogo####.com
- ip.ch####.com
- ip.ta####.com
- m####.eas####.com
- m####.p4p.1####.com
- m.t####.cn
- o####.b####.cn
- pcunion####.s####.com
- pos.b####.com
- posi####.dftou####.com
- ppe####.gi####.io
- repor####.dftou####.com
- s####.dftou####.com
- s####.googlea####.mobi
- ser####.e####.s####.com
- softw####.dftou####.com
- softwor####.dftou####.com
- t####.sogo####.com
- t10.b####.com
- t11.b####.com
- tou####.eas####.com
- wapac####.dftou####.com
- wapif####.dftou####.com
- websit####.b####.cn
- wn.pos.b####.com
- wu####.e####.s####.com
- www.z####.com
- app.w####.cn/action/connect/active?app_id=####&udid=####&imsi=####&net=#...
- bmob-cd####.b0.upa####.com/2017/10/30/589fab3e40e8d9cb8031ab3e6539fb75.jpg
- bmob-cd####.b0.upa####.com/2017/10/30/5ce005be408a8bec80e3ea9535fce2e0.jpg
- em.b####.com/pixel?dspid=####
- em.b####.com/pixel?media_sign=####&media_site=####
- g####.dftou####.com/lkwusv/ig?c=####
- g####.dftou####.com/lkwusv/m?c=####
- g####.dftou####.com/m.html?mediaid=####&cookie_version=####×tamp=##...
- ip.ch####.com/getip.aspx
- ad.h####.com:8883/v1/statistics
- aexcep####.b####.qq.com:8012/rqd/async
- and####.b####.qq.com/rqd/async
- app.w####.cn/action/user_info
- ip.ta####.com/service/getIpInfo2.php
- o####.b####.cn/8/init
- o####.b####.cn/8/phone_ci
- o####.b####.cn/8/secret
- s####.googlea####.mobi:8883/2/statistics/proxy
- websit####.b####.cn/v1/android
- /data/data/####/-112999467.dex
- /data/data/####/-112999467.zf
- /data/data/####/0db3209e1adc6d67be435a81baf9a66e
- /data/data/####/3eb5cde075b82b85a1aa2b72c1bd24e3
- /data/data/####/77dbb5ea41d53ada8be06a4a730b0efe
- /data/data/####/816765344.dex
- /data/data/####/816765344.zf
- /data/data/####/905c5e679a512902ea9dd8aecca12f6c
- /data/data/####/AppSettings.xml
- /data/data/####/CacheTime.dat
- /data/data/####/ShowAdFlag.xml
- /data/data/####/bf8929de581396327722f52e8a60bc33
- /data/data/####/bmob_sp.xml
- /data/data/####/bugly_db_legu-journal
- /data/data/####/c0e9a0215429b43625e2a35b90a5c18f
- /data/data/####/cache
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/f10b0f2d8691e53ec0812de375a45841
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/f_000005
- /data/data/####/f_000006
- /data/data/####/f_000007
- /data/data/####/f_000008
- /data/data/####/f_000009
- /data/data/####/f_00000a
- /data/data/####/f_00000b
- /data/data/####/f_00000c
- /data/data/####/f_00000d
- /data/data/####/f_00000e
- /data/data/####/f_00000f
- /data/data/####/f_000010
- /data/data/####/f_000011
- /data/data/####/f_000012
- /data/data/####/f_000013
- /data/data/####/f_000014
- /data/data/####/f_000015
- /data/data/####/fb4012b748d4b2b32e9855d726f36d21
- /data/data/####/ij.dex
- /data/data/####/index
- /data/data/####/libnfix.so
- /data/data/####/libshella-2.10.7.1.so
- /data/data/####/libufix.so
- /data/data/####/local_crash_lock
- /data/data/####/main.db
- /data/data/####/mix.dex
- /data/data/####/native_record_lock
- /data/data/####/security_info
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/webviewCookiesChromiumPrivate.db-journal
- /data/media/####/AppPackage.dat
- /data/media/####/CacheTime.dat
- /data/media/####/UnPackage.dat
- /data/media/####/android
- /system/bin/sh -c getprop ro.aa.romver
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/sh -c getprop ro.build.fingerprint
- /system/bin/sh -c getprop ro.build.nubia.rom.name
- /system/bin/sh -c getprop ro.build.rom.id
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
- /system/bin/sh -c getprop ro.build.version.emui
- /system/bin/sh -c getprop ro.build.version.opporom
- /system/bin/sh -c getprop ro.gn.gnromvernumber
- /system/bin/sh -c getprop ro.lenovo.series
- /system/bin/sh -c getprop ro.lewa.version
- /system/bin/sh -c getprop ro.meizu.product.model
- /system/bin/sh -c getprop ro.miui.ui.version.name
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
- /system/bin/sh -c type su
- chmod 700 <Package Folder>/tx_shell/libnfix.so
- chmod 700 <Package Folder>/tx_shell/libshella-2.10.7.1.so
- chmod 700 <Package Folder>/tx_shell/libufix.so
- getprop ro.aa.romver
- getprop ro.board.platform
- getprop ro.build.fingerprint
- getprop ro.build.nubia.rom.name
- getprop ro.build.rom.id
- getprop ro.build.tyd.kbstyle_version
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.gn.gnromvernumber
- getprop ro.lenovo.series
- getprop ro.lewa.version
- getprop ro.meizu.product.model
- getprop ro.miui.ui.version.name
- getprop ro.vivo.os.build.display.id
- getprop ro.yunos.version
- logcat -d -v threadtime
- BmobStat
- Bugly
- bmob
- core
- libnfix
- libshella-2.10.7.1
- libufix
- nfix
- ufix
- AES-CBC-PKCS5Padding
- AES-GCM-NoPadding
- DES-CBC-PKCS5Padding
- RSA-ECB-PKCS1Padding
- AES-CBC-PKCS5Padding
- AES-GCM-NoPadding
- DES-CBC-PKCS5Padding