Technical information
- Adware.Waps.5.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) g####.dftou####.com:80
- TCP(HTTP/1.1) ip.ta####.com:80
- TCP(HTTP/1.1) ad.h####.com:8883
- TCP(HTTP/1.1) s####.googlea####.mobi:8883
- TCP(HTTP/1.1) l####.tbs.qq.com:80
- TCP(HTTP/1.1) bmob-cd####.b0.upa####.com:80
- TCP(HTTP/1.1) o####.b####.cn:80
- TCP(HTTP/1.1) si####.jom####.com:80
- TCP(HTTP/1.1) websit####.b####.cn:80
- TCP(HTTP/1.1) ip.ch####.com:80
- TCP(HTTP/1.1) em.b####.com:80
- TCP(HTTP/1.1) app.w####.cn:80
- TCP(HTTP/1.1) c####.jd.com:80
- TCP(TLS/1.0) iphu####.co####.me:443
- TCP(TLS/1.0) ci####.s####.com:443
- TCP(TLS/1.0) m.tt.vip-dns####.com:443
- TCP(TLS/1.0) em.b####.com:443
- TCP(TLS/1.0) z####.com.edg####.net:443
- TCP(TLS/1.0) wn.pos.b####.com:443
- TCP(TLS/1.0) dup.baidust####.com:443
- TCP(TLS/1.0) tou####.eas####.com:443
- TCP(TLS/1.0) m####.eas####.com:443
- TCP(TLS/1.0) g####.dftou####.com:443
- TCP(TLS/1.0) ec####.b####.com:443
- TCP(TLS/1.0) ub####.baidust####.com:443
- TCP(TLS/1.0) softw####.dftou####.com:443
- TCP(TLS/1.0) pcunion####.s####.com:443
- TCP(TLS/1.0) c####.baidust####.com:443
- TCP(TLS/1.0) si####.jom####.com:443
- TCP(TLS/1.0) wapac####.dftou####.com:443
- TCP(TLS/1.0) hm.b####.com:443
- TCP(TLS/1.0) s####.dftou####.com:443
- TCP(TLS/1.0) posi####.dftou####.com:443
- ad.googlea####.mobi
- ad.h####.com
- app.w####.cn
- bmob-cd####.b0.upa####.com
- c####.baidust####.com
- c####.jd.com
- ci####.s####.com
- cm.pos.b####.com
- dup.baidust####.com
- ec####.b####.com
- em.b####.com
- g####.dftou####.com
- hm.b####.com
- ip.ch####.com
- ip.ta####.com
- iphu####.co####.me
- l####.tbs.qq.com
- m####.eas####.com
- m.t####.cn
- o####.b####.cn
- pcunion####.s####.com
- pos.b####.com
- posi####.dftou####.com
- s####.dftou####.com
- s####.googlea####.mobi
- softw####.dftou####.com
- t10.b####.com
- t11.b####.com
- t12.b####.com
- tou####.eas####.com
- ub####.baidust####.com
- wapac####.dftou####.com
- websit####.b####.cn
- wn.pos.b####.com
- www.z####.com
- app.w####.cn/action/connect/active?app_id=####&udid=####&imsi=####&net=#...
- bmob-cd####.b0.upa####.com/2017/10/30/589fab3e40e8d9cb8031ab3e6539fb75.jpg
- bmob-cd####.b0.upa####.com/2017/10/30/5ce005be408a8bec80e3ea9535fce2e0.jpg
- c####.jd.com/du?&baidu_error=####×tamp=####
- em.b####.com/pixel?dspid=####
- em.b####.com/pixel?media_sign=####&media_site=####
- g####.dftou####.com/lkwusv/s?c=####
- g####.dftou####.com/lkwusv/uq?c=####
- g####.dftou####.com/m.html?baidu_error=####×tamp=####
- ip.ch####.com/getip.aspx
- si####.jom####.com/it/u=1423920933,2534905589&fm=76
- si####.jom####.com/it/u=1513727984,2446407683&fm=76
- si####.jom####.com/it/u=1896362452,3069832700&fm=76
- si####.jom####.com/it/u=1978409389,3519502285&fm=76
- si####.jom####.com/it/u=2407788527,709370982&fm=76
- si####.jom####.com/it/u=2728250489,2636051420&fm=76
- si####.jom####.com/it/u=3474726496,3686849710&fm=76
- si####.jom####.com/it/u=3677229935,3861017593&fm=76
- si####.jom####.com/it/u=393879912,4189259922&fm=76
- si####.jom####.com/it/u=607399941,3400353091&fm=76
- si####.jom####.com/it/u=611086263,2555246698&fm=76
- ad.h####.com:8883/v1/statistics
- app.w####.cn/action/user_info
- ip.ta####.com/service/getIpInfo2.php
- l####.tbs.qq.com/ajax?c=####&k=####
- o####.b####.cn/8/init
- o####.b####.cn/8/phone_ci
- o####.b####.cn/8/secret
- s####.googlea####.mobi:8883/2/statistics/proxy
- websit####.b####.cn/v1/android
- /data/data/####/-112999467.dex
- /data/data/####/-112999467.zf
- /data/data/####/.edata
- /data/data/####/0db3209e1adc6d67be435a81baf9a66e
- /data/data/####/3eb5cde075b82b85a1aa2b72c1bd24e3
- /data/data/####/666d728faf5d1ec9011ac3fc0e67176d
- /data/data/####/77dbb5ea41d53ada8be06a4a730b0efe
- /data/data/####/816765344.dex
- /data/data/####/816765344.zf
- /data/data/####/905c5e679a512902ea9dd8aecca12f6c
- /data/data/####/AppSettings.xml
- /data/data/####/CacheTime.dat
- /data/data/####/SharedPrefsStrList.xml
- /data/data/####/ShowAdFlag.xml
- /data/data/####/bbb09d7774555b898128a821c3fee055
- /data/data/####/bmob_sp.xml
- /data/data/####/c0e9a0215429b43625e2a35b90a5c18f
- /data/data/####/cache
- /data/data/####/classes.dex
- /data/data/####/classes.dve
- /data/data/####/classes.jar
- /data/data/####/com.SecShell.tmp2277
- /data/data/####/core_info
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/f_000005
- /data/data/####/f_000006
- /data/data/####/f_000007
- /data/data/####/f_000008
- /data/data/####/f_000009
- /data/data/####/f_00000a
- /data/data/####/f_00000b
- /data/data/####/f_00000c
- /data/data/####/f_00000d
- /data/data/####/fb4012b748d4b2b32e9855d726f36d21
- /data/data/####/ij.dex
- /data/data/####/index
- /data/data/####/main.db
- /data/data/####/tbs_download_config.xml
- /data/data/####/tbs_download_stat.xml
- /data/data/####/tbscoreinstall.txt
- /data/data/####/tbslock.txt
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/webviewCookiesChromiumPrivate.db-journal
- /data/media/####/.nomedia
- /data/media/####/AppPackage.dat
- /data/media/####/CacheTime.dat
- /data/media/####/UnPackage.dat
- /data/media/####/android
- getprop ro.product.cpu.abi
- BmobStat
- SecShell
- bmob
- core
- AES-CBC-PKCS5Padding
- DES-CBC-PKCS5Padding
- RSA-ECB-NoPadding
- AES-CBC-PKCS5Padding
- DES-CBC-PKCS5Padding