Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) sdkco####.ad.xi####.com:80
- TCP(HTTP/1.1) api.ad.xi####.com:80
- TCP(HTTP/1.1) www.pubme####.com:80
- TCP(HTTP/1.1) ssl.a####.com.####.net:80
- TCP(TLS/1.0) l####.chartb####.com:443
- airdown####.a####.com
- api.ad.xi####.com
- e.anzhua####.com
- e2.anzhua####.com
- l####.chartb####.com
- sdkco####.ad.xi####.com
- www.pubme####.com
- sdkco####.ad.xi####.com/api/checkupdate/lastusefulversion?currentApiVers...
- sdkco####.ad.xi####.com/api/detail/54db829f09424caad69f7fb9350fa48d?ts=#...
- sdkco####.ad.xi####.com/api/detail/62b123b23de3d5c150670c9056faf043?ts=#...
- sdkco####.ad.xi####.com/api/detail/a194a0a7214f6cbda0672045c51505d1?ts=#...
- ssl.a####.com.####.net/air?version=####&appid=####&runtimeType=####&os=#...
- www.pubme####.com/images/uploads/02af4eaa411f655b21cb93abf4134f5a.png
- www.pubme####.com/images/uploads/117e5b38b76af9ebd16fc2cbb6240fd5png
- www.pubme####.com/images/uploads/13e6fc8069c5d965e0c366dcca5919f1.png
- www.pubme####.com/images/uploads/4004269dd4109f128040031a6fa7dfa8png
- www.pubme####.com/images/uploads/47a87ca603cfae4d4673b048cd457971png
- www.pubme####.com/images/uploads/59f317feccb07a32139918c759137aadpng
- www.pubme####.com/images/uploads/5cfda9add612d6888f6df1ecf16f1094png
- www.pubme####.com/images/uploads/6a4278a5073b2efaf562c20dd642acf1png
- www.pubme####.com/images/uploads/768123406378aed61521bd1eff38f649.png
- www.pubme####.com/images/uploads/8445497639e8081852933f02326636b6png
- www.pubme####.com/images/uploads/870d91458801c8ceae916d43cbbf697epng
- www.pubme####.com/images/uploads/8bf369b2310638423d9ea0e267b11c64png
- www.pubme####.com/images/uploads/9714f92de6f1c027b5b146d26e9d6f0d.png
- www.pubme####.com/images/uploads/975b954599464e7d75c8e68a41c39132png
- www.pubme####.com/images/uploads/ae250d476752b97339dfc1ed918bb640png
- www.pubme####.com/images/uploads/banner_h_1440148121.png
- www.pubme####.com/images/uploads/c70e142ca2e4af67d976d76b8548c857.png
- www.pubme####.com/images/uploads/c9e09e2a9ba3a7d1603f69f355e13591png
- www.pubme####.com/images/uploads/f22bce7ff3fe37f4b6d79392e096a290png
- www.pubme####.com/images/uploads/fa89f3b6747d0ad2d6d5a7bd245e0a06png
- www.pubme####.com/index.php?r=####&key=####
- api.ad.xi####.com/fetchAds
- www.pubme####.com/index.php?r=####
- /data/data/####/67017335161
- /data/data/####/AdServer_asset.apk
- /data/data/####/PubMetric_data.sxx
- /data/data/####/analytics.db-journal
- /data/data/####/analytics_asset.apk
- /data/data/####/apkloader.xml
- /data/data/####/apkloader.xml.bak (deleted)
- /data/data/####/application.xml
- /data/data/####/cbPrefs.xml
- /data/data/####/cb_previous_session_info
- /data/data/####/classes.jar
- /data/data/####/com.gztest.andrmi.AIRSharedPref.xml
- /data/data/####/cookies
- /data/data/####/curl-ca-bundle.crt
- /data/data/####/dblnag-journal
- /data/data/####/extension.xml
- /data/data/####/heartbeat.xml
- /data/data/####/javaTrustStore.tmp
- /data/data/####/libanalytics.so
- /data/data/####/library.swf
- /data/data/####/paris-hair-salon-2-android.swf
- /data/data/####/rbmmgex1.0.xml
- /data/data/####/requests.db-journal
- /data/data/####/updater.xml
- /system/bin/cat /proc/cpuinfo
- /system/bin/cat /proc/meminfo
- /system/bin/cat /sys/devices/system/cpu/present
- libCore
- libstlport_shared
- DES-ECB-PKCS5Padding