Technical information
- Adware.Dowgin.14.origin
- Adware.Dowgin.173
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) www.shibei####.com:80
- TCP(HTTP/1.1) hm.b####.com:80
- TCP(HTTP/1.1) i####.51.la:80
- TCP(HTTP/1.1) js.u####.51.la:80
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) newres####.huy####.80####.####.com:80
- TCP(HTTP/1.1) s####.cd:80
- TCP(HTTP/1.1) 404.saf####.cn:80
- 404.saf####.cn
- and####.b####.qq.com
- hm.b####.com
- i####.51.la
- js.u####.51.la
- mt####.go####.com
- s####.cd
- syh.shibei####.com
- www.shibei####.com
- 404.saf####.cn/images/safedogsite/broswer_logo.jpg
- 404.saf####.cn/sitedog_stat.html
- hm.b####.com/h.js?0122254####
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&ep=####&et=#...
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&et=####&ja=#...
- i####.51.la/go1?id=####&rt=####&rl=####&lang=####&ct=####&pf=####&ins=##...
- js.u####.51.la/15737511.js
- newres####.huy####.80####.####.com/
- newres####.huy####.80####.####.com/dataimages/201511231365092214.jpg
- newres####.huy####.80####.####.com/dataimages/201512216173498016.jpg
- newres####.huy####.80####.####.com/dataimages/20151251456023124.jpg
- newres####.huy####.80####.####.com/dataimages/201522711232669247.jpg
- newres####.huy####.80####.####.com/dataimages/2015271535435106.jpg
- newres####.huy####.80####.####.com/dataimages/2015271581799992.jpg
- newres####.huy####.80####.####.com/dataimages/201532311282137767.jpg
- newres####.huy####.80####.####.com/dataimages/201532311401996427.jpg
- newres####.huy####.80####.####.com/dataimages/20154119215510297.jpg
- newres####.huy####.80####.####.com/dataimages/20154714334899899.jpg
- newres####.huy####.80####.####.com/dataimages/2015479575624571.jpg
- newres####.huy####.80####.####.com/dataimages/20155291732180082.jpg
- newres####.huy####.80####.####.com/dataimages/20155317541027031.jpg
- newres####.huy####.80####.####.com/dataimages/201562915225047972.jpg
- newres####.huy####.80####.####.com/dataimages/201572118522935308.jpg
- newres####.huy####.80####.####.com/dataimages/201572416142014122.jpg
- newres####.huy####.80####.####.com/dataimages/201572511202943648.jpg
- newres####.huy####.80####.####.com/dataimages/201582117373724145.jpg
- newres####.huy####.80####.####.com/dataimages/2016102015172092421.jpg
- newres####.huy####.80####.####.com/dataimages/201610216542757332.jpg
- newres####.huy####.80####.####.com/dataimages/201610714542028736.jpg
- newres####.huy####.80####.####.com/dataimages/20161122154653321.jpg
- newres####.huy####.80####.####.com/dataimages/201611261259568709.jpg
- newres####.huy####.80####.####.com/dataimages/201611815393342402.jpg
- newres####.huy####.80####.####.com/dataimages/2016121117333769228.jpg
- newres####.huy####.80####.####.com/dataimages/2016122413521168063.jpg
- newres####.huy####.80####.####.com/dataimages/2016122815532374141.jpg
- newres####.huy####.80####.####.com/dataimages/2016391312629485.jpg
- newres####.huy####.80####.####.com/dataimages/20165115111731152.jpg
- newres####.huy####.80####.####.com/dataimages/201651411263331593.jpg
- newres####.huy####.80####.####.com/dataimages/201652116212450981.jpg
- newres####.huy####.80####.####.com/dataimages/201652313232282300.jpg
- newres####.huy####.80####.####.com/dataimages/20166917124045665.jpg
- newres####.huy####.80####.####.com/dataimages/2017102314352332845.jpg
- newres####.huy####.80####.####.com/dataimages/2017121714543885677.jpg
- newres####.huy####.80####.####.com/dataimages/201712311101562640.jpg
- newres####.huy####.80####.####.com/dataimages/201722710192775383.jpg
- newres####.huy####.80####.####.com/dataimages/2017228108712081.jpg
- newres####.huy####.80####.####.com/dataimages/201741114221241710.jpg
- newres####.huy####.80####.####.com/dataimages/201741316433399692.jpg
- newres####.huy####.80####.####.com/dataimages/2017451373556636.jpg
- newres####.huy####.80####.####.com/dataimages/201762714351986229.jpg
- newres####.huy####.80####.####.com/dataimages/20176301063915157.jpg
- newres####.huy####.80####.####.com/dataimages/20177181192762393.jpg
- newres####.huy####.80####.####.com/dataimages/201781117103864019.jpg
- newres####.huy####.80####.####.com/dataimages/20178289311856521.jpg
- newres####.huy####.80####.####.com/dataimages/2017841761544792.jpg
- newres####.huy####.80####.####.com/dataimages/201811610244255890.jpg
- newres####.huy####.80####.####.com/images/sj_bg.jpg
- newres####.huy####.80####.####.com/images/t_bj2.gif
- newres####.huy####.80####.####.com/images/t_bj3.gif
- newres####.huy####.80####.####.com/images/t_bj4.gif
- newres####.huy####.80####.####.com/images/toupiao.jpg
- newres####.huy####.80####.####.com/images/xian.jpg
- newres####.huy####.80####.####.com/sj.css
- newres####.huy####.80####.####.com/style/basic.css
- s####.cd/smartUploadDemo/ver.txt
- www.shibei####.com/bibei/css/bb.css
- www.shibei####.com/bibei/mb.html
- www.shibei####.com/bibei/mb/0.jpg
- www.shibei####.com/bibei/mb/001.jpg
- www.shibei####.com/bibei/mb/01.jpg
- www.shibei####.com/bibei/mb/012.jpg
- www.shibei####.com/bibei/mb/013.jpg
- www.shibei####.com/bibei/mb/014.jpg
- www.shibei####.com/bibei/mb/02.jpg
- www.shibei####.com/bibei/mb/04.jpg
- www.shibei####.com/bibei/mb/05.jpg
- www.shibei####.com/bibei/mb/06.jpg
- www.shibei####.com/bibei/mb/07.jpg
- www.shibei####.com/bibei/mb/08.jpg
- www.shibei####.com/bibei/mb/09.jpg
- www.shibei####.com/bibei/mb/sg.jpg
- www.shibei####.com/bibei/mb/yz.jpg
- www.shibei####.com/favicon.ico
- and####.b####.qq.com/rqd/async
- /data/data/####/books-journal
- /data/data/####/bugly_db_legu-journal
- /data/data/####/com.qhj.loi.az.jar
- /data/data/####/core_info
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/dbVersion.xml
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/index
- /data/data/####/libnfix.so
- /data/data/####/libshella-2.10.7.1.so
- /data/data/####/libufix.so
- /data/data/####/local_crash_lock
- /data/data/####/mix.dex
- /data/data/####/native_record_lock
- /data/data/####/plugin-deploy.jar
- /data/data/####/plugin-deploy.key
- /data/data/####/pst.xml
- /data/data/####/security_info
- /data/data/####/shufa.cn.push_sync.xml
- /data/data/####/shufa.cn.xml
- /data/data/####/tbs_download_config.xml
- /data/data/####/tbscoreinstall.txt
- /data/data/####/tbslock.txt
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/z804368c8.xml
- /data/media/####/.nomedia
- /data/media/####/lightapp_V4.db
- /data/media/####/lightapp_V4.db-journal
- /system/bin/sh -c getprop ro.aa.romver
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/sh -c getprop ro.build.fingerprint
- /system/bin/sh -c getprop ro.build.nubia.rom.name
- /system/bin/sh -c getprop ro.build.rom.id
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
- /system/bin/sh -c getprop ro.build.version.emui
- /system/bin/sh -c getprop ro.build.version.opporom
- /system/bin/sh -c getprop ro.gn.gnromvernumber
- /system/bin/sh -c getprop ro.lenovo.series
- /system/bin/sh -c getprop ro.lewa.version
- /system/bin/sh -c getprop ro.meizu.product.model
- /system/bin/sh -c getprop ro.miui.ui.version.name
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
- /system/bin/sh -c type su
- chmod 700 <Package Folder>/tx_shell/libnfix.so
- chmod 700 <Package Folder>/tx_shell/libshella-2.10.7.1.so
- chmod 700 <Package Folder>/tx_shell/libufix.so
- getprop ro.aa.romver
- getprop ro.board.platform
- getprop ro.build.fingerprint
- getprop ro.build.nubia.rom.name
- getprop ro.build.rom.id
- getprop ro.build.tyd.kbstyle_version
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.gn.gnromvernumber
- getprop ro.lenovo.series
- getprop ro.lewa.version
- getprop ro.meizu.product.model
- getprop ro.miui.ui.version.name
- getprop ro.product.cpu.abi
- getprop ro.vivo.os.build.display.id
- getprop ro.yunos.version
- logcat -d -v threadtime
- Bugly
- libnfix
- libshella-2.10.7.1
- libufix
- nfix
- ufix
- AES-GCM-NoPadding
- DES
- RSA-ECB-PKCS1Padding
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding