Technical information
- Android.Click.345.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) filt####.a####.top:80
- TCP(HTTP/1.1) u####.a####.top:80
- TCP(HTTP/1.1) s8.q####.com:80
- TCP(HTTP/1.1) cd.x####.com:80
- TCP(HTTP/1.1) tmp.hnsh####.com:80
- TCP(HTTP/1.1) js.pass####.qih####.####.com:80
- TCP(HTTP/1.1) rq####.sp####.mig.####.net:80
- TCP(HTTP/1.1) www.x####.cn:80
- TCP(HTTP/1.1) res####.a####.top:80
- TCP(HTTP/1.1) j####.g####.vip:80
- TCP(HTTP/1.1) api.g####.vip:80
- TCP(HTTP/1.1) api.lubang####.com:80
- TCP(HTTP/1.1) kou####.a####.top:80
- TCP(HTTP/1.1) www.f####.com:80
- TCP(HTTP/1.1) st####.xiaoshu####.cn:80
- TCP(HTTP/1.1) down####.baiyuns####.com:80
- TCP(HTTP/1.1) s####.jom####.com:80
- TCP(HTTP/1.1) res2####.xqk####.com:80
- TCP(HTTP/1.1) m.xiaoshu####.cn:80
- TCP(HTTP/1.1) api.mid####.com:80
- TCP(HTTP/1.1) amdc####.m.ta####.com:80
- TCP(HTTP/1.1) t####.a####.top:80
- TCP(HTTP/1.1) 47.1####.211.73:80
- TCP(HTTP/1.1) app.a####.top:80
- TCP(HTTP/1.1) m.8####.com:80
- TCP(HTTP/1.1) wap.n.sh####.com:80
- TCP(HTTP/1.1) js6.e####.com:80
- TCP(HTTP/1.1) jsw.x####.com:80
- TCP(HTTP/1.1) api.yunco####.com:80
- TCP(SSL/3.0) p1.ssl.q####.com:443
- TCP(SSL/3.0) tmp.hnsh####.com:443
- TCP(TLS/1.0) ae.bdst####.com.####.com:443
- TCP(TLS/1.0) tmp.hnsh####.com:443
- TCP(TLS/1.0) k.tuti####.com:443
- TCP(TLS/1.0) p1.ssl.q####.com:443
- TCP(TLS/1.0) lhyysdk####.oss-cn-####.aliy####.com:443
- TCP(TLS/1.0) dualsta####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) 2####.107.1.97:443
- TCP(TLS/1.0) eo.z####.xyz:443
- TCP(TLS/1.0) www.f####.cn:443
- TCP(TLS/1.0) hm.b####.com:443
- TCP(TLS/1.0) m.g####.top:443
- TCP(TLS/1.0) api.g####.vip:443
- TCP(TLS/1.0) sdk.zhuanra####.cn.####.net:443
- TCP(TLS/1.0) wap.n.sh####.com:443
- TCP(TLS/1.0) gd.a.s####.com:443
- TCP(TLS/1.0) s####.shidux####.com:443
- TCP zb-cent####.m.ta####.com:80
- TCP zb-cent####.m.ta####.com:443
- 608.a####.top
- a####.man.aliy####.com
- ae.bdst####.com
- ag####.m.ta####.com
- amdc####.m.ta####.com
- and####.b####.qq.com
- api.g####.vip
- api.lubang####.com
- api.mid####.com
- api.s####.b####.com
- api.yunco####.com
- app.a####.top
- cd.x####.com
- down####.baiyuns####.com
- eo.z####.xyz
- filt####.a####.top
- hm.b####.com
- j####.g####.vip
- js.pass####.qih####.com
- js6.e####.com
- jsw.x####.com
- k.tuti####.com
- kou####.a####.top
- lhyysdk####.oss-cn-####.aliy####.com
- m####.b####.com
- m.8####.com
- m.g####.top
- m.xiaoshu####.cn
- mt####.go####.com
- p####.zhanz####.b####.com
- p1.ssl.q####.com
- plb####.u####.com
- pv.s####.com
- res####.a####.top
- res2####.xqk####.com
- s####.shidux####.com
- s4.c####.com
- s5.c####.com
- s8.q####.com
- s9.c####.com
- sdk.zhuanra####.cn
- st####.xiaoshu####.cn
- t####.a####.top
- tmp.hnsh####.com
- u####.a####.top
- u####.u####.com
- umen####.m.ta####.com
- umengj####.m.ta####.com
- v1.c####.com
- www.f####.cn
- www.f####.com
- www.x####.cn
- xiongz####.b####.com
- api.g####.vip/cy.js
- api.lubang####.com/Public/jar/0519-remote-2.3.31589880906.jar
- app.a####.top/anshuaControl.json
- app.a####.top/api.json
- app.a####.top/pingpaiAD.json
- cd.x####.com/js/tmp/tj/tj2691.html
- cd.x####.com/js/tmp/tj/tj2691.js
- cd.x####.com/ms/a.js?b=####&u=####&c=1!0!x####&f=####
- down####.baiyuns####.com/80syc/80sycphone.css
- down####.baiyuns####.com/80syc/arrow.png
- down####.baiyuns####.com/80syc/btn.png
- down####.baiyuns####.com/80syc/jquery.min.js
- down####.baiyuns####.com/80syc/js/common.js
- down####.baiyuns####.com/80syc/js/css.css
- down####.baiyuns####.com/80syc/js/function.js
- down####.baiyuns####.com/80syc/js/play.js
- down####.baiyuns####.com/80syc/js/player.js
- down####.baiyuns####.com/80syc/logo.gif
- down####.baiyuns####.com/80syc/pic/play.png
- down####.baiyuns####.com/80syc/pic/vloading.gif
- down####.baiyuns####.com/80syc/search.png
- down####.baiyuns####.com/80syc/top.png
- down####.baiyuns####.com/cy.js
- down####.baiyuns####.com/jquery.lazyload.min.js
- down####.baiyuns####.com/jquery.min.js
- down####.baiyuns####.com/static/default.css
- down####.baiyuns####.com/static/index.js
- down####.baiyuns####.com/static/logo.png
- filt####.a####.top/filter_control_608.json
- j####.g####.vip/fd.js
- j####.g####.vip/ggx3.js
- j####.g####.vip/syc3.js
- js.pass####.qih####.####.com/11.0.1.js?90057d8####
- js6.e####.com/wei691.js
- jsw.x####.com/js/mob/sw_691wxkl.js
- kou####.a####.top/kouling.json
- m.8####.com/cron/index.asp?t=####
- m.8####.com/js/ads/qzty.js
- m.8####.com/js/ads/syd950.js
- m.8####.com/js/loading.html
- m.8####.com/js/player.html
- m.8####.com/js/playload.html
- m.8####.com/play/11577-0-0.html
- m.8####.com/playdata/57/11577.js?6433####
- m.xiaoshu####.cn/mbook_images/header-back.gif
- m.xiaoshu####.cn/mbook_images/header-backhome.gif
- m.xiaoshu####.cn/mbook_js/common.js
- m.xiaoshu####.cn/mbook_js/index.js
- m.xiaoshu####.cn/mbook_js/stat.js
- m.xiaoshu####.cn/mbxs240/17651/
- res####.a####.top/LHYY.png
- res####.a####.top/sdk13_2.png
- res####.a####.top/sdk17.png
- res####.a####.top/sdk18.png
- res####.a####.top/sdk6.png
- res2####.xqk####.com//52/2/席卷天下/cover.jpg
- s####.jom####.com/push.js
- s####.jom####.com/s.gif?r=####&l=####
- s8.q####.com/static/ab77b6ea7f3fbf79.js
- st####.xiaoshu####.cn/soxs240.js
- st####.xiaoshu####.cn/xs240.js
- t####.a####.top/anshua.json
- tmp.hnsh####.com/js/tmp/pkl/tkl_sww.js
- u####.a####.top/608.html
- wap.n.sh####.com/sdk/c.js?appid=####
- www.f####.com/
- www.x####.cn/sycdd.js
- amdc####.m.ta####.com/amdc/mobileDispatch?appkey=####&deviceId=####&plat...
- api.lubang####.com/ext_up.php
- api.lubang####.com/ext_up.php?ac=####
- api.mid####.com/configure/query
- api.yunco####.com/service/rest
- rq####.sp####.mig.####.net/rqd/async?aid=####
- /data/data/####/.__mob_rmt.dat
- /data/data/####/.__mob_rmt.dat (deleted)
- /data/data/####/.imprint
- /data/data/####/.updateIV.dat
- /data/data/####/0OO00l111l1l
- /data/data/####/0OO00l111l1l.lock
- /data/data/####/1004
- /data/data/####/13_2.jar
- /data/data/####/17.jar
- /data/data/####/18.jar
- /data/data/####/6.jar
- /data/data/####/7295ece1696c2c3e0ee9a8b27f4b49a3.db
- /data/data/####/8227c0440a3e62a6866e8d8a794aaa73.db
- /data/data/####/93a34fe8d0bdbc1425e88dd745161a17.db
- /data/data/####/ACCS_BINDumeng;595b07bb45297d77f7000411.xml
- /data/data/####/ACCS_SDK.xml
- /data/data/####/ACCS_SDK_CHANNEL.xml
- /data/data/####/AGOO_BIND.xml
- /data/data/####/Agoo_AppStore.xml
- /data/data/####/Alvin2.xml
- /data/data/####/ApplicationCache.db-journal
- /data/data/####/ContextData.xml
- /data/data/####/DaemonServer
- /data/data/####/MessageStore.db-journal
- /data/data/####/MsgLogStore.db-journal
- /data/data/####/UTCommon.xml
- /data/data/####/XkdjsIx132mM356507059351895comm.xml
- /data/data/####/XkdjsIx132mMskey1.xml
- /data/data/####/___xad__remote.jar
- /data/data/####/accs.db-journal
- /data/data/####/agoo.pid
- /data/data/####/bugly_db_yaq-journal
- /data/data/####/com.midainc.dcjwys.xml
- /data/data/####/com.midainc.dcjwys_preferences.xml
- /data/data/####/crashrecord.xml
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTkxNTIyMzMxNTAz;
- /data/data/####/dW1weF9wdXNoX2xhdW5jaF8xNTkxNTIyMzQ1OTIy;
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/download.db-journal
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f92df6c52567f0c8733a4dd61a415c0e.db
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/f_000005
- /data/data/####/f_000006
- /data/data/####/httpdns_config_cache.xml
- /data/data/####/i==1.2.0&&2.3.2_1591522331732_envelope.log
- /data/data/####/index
- /data/data/####/info.xml
- /data/data/####/libshellx-super.2019.so
- /data/data/####/local_crash_lock
- /data/data/####/message_accs_db
- /data/data/####/message_accs_db-journal
- /data/data/####/native_record_lock
- /data/data/####/o0oooOO0ooOo.dat
- /data/data/####/security_info
- /data/data/####/shared_preferences_name_online.xml
- /data/data/####/tosversion
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umengDown.jar
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_location.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_message_state.xml
- /data/data/####/ut.db
- /data/data/####/ut.db-journal
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/webviewCookiesChromiumPrivate.db-journal
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.cca.dat
- /data/media/####/.nomedia
- /data/media/####/.umm.dat
- /data/media/####/153c65ef8af847138d5c33412737c142
- /data/media/####/155bfff4a95746ba8a66c2ad091b1ff3
- /data/media/####/556ddc2f1ab74222866dea9825e93b0f
- /data/media/####/9240a659b30e41d0a2fc1afbd02e54b1
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/deviceToken
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- /system/bin/sh -c getprop
- <Package Folder>/files/DaemonServer -s <Package Folder>/lib/ -n runServer -p startservice -n <Package>/com.taobao.accs.ChannelService --user 0 -f <Package Folder> -t 600 -c agoo.pid -P <Package Folder> -K 1009527 -U tb_accs_eudemon_1.1.3 -L http://agoodm.m.taobao.com/agoo/report -D {"package":"<Package>","appKey":"umeng:595b07bb45297d77f7000411","utdid":"Xty0FUfoFakDAGdzx1H2cMkh","sdkVersion":"221"} -I agoodm.m.taobao.com -O 80 -T -Z
- chmod 500 <Package Folder>/files/DaemonServer
- getprop
- getprop ro.product.cpu.abi
- grep 2415
- ls /
- ls /sys/class/thermal
- ps
- sh
- Bugly-yaq
- libshellx-super.2019
- tnet-3.1
- ut_c_api
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-GCM-NoPadding
- DESede-CBC-PKCS5Padding
- RSA-ECB-PKCS1Padding
- AES-CBC-NoPadding
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- AES-GCM-NoPadding
- DES
- DESede-CBC-PKCS5Padding