Technical information
- Android.DownLoader.3887
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) p.rqco####.com:8806
- TCP(HTTP/1.1) dl.api.kyli####.com:80
- TCP(HTTP/1.1) 1####.50.63.227:8881
- TCP(HTTP/1.1) i####.com:80
- TCP(HTTP/1.1) ip.zhito####.com:88
- TCP(HTTP/1.1) 1####.75.29.14:8891
- TCP(HTTP/1.1) apk.91h####.com:80
- TCP(HTTP/1.1) gl####.w.kunl####.####.com:80
- TCP(HTTP/1.1) tt.kyli####.com:80
- TCP(HTTP/1.1) na61-####.wagbr####.ali####.####.com:80
- TCP(HTTP/1.1) ada####.m.ta####.com:80
- TCP(HTTP/1.1) 58.2####.66.202:999
- TCP(HTTP/1.1) ip.ta####.com:80
- TCP(HTTP/1.1) l####.tbs.qq.com:80
- TCP(HTTP/1.1) 58.2####.198.131:888
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) www.pc####.com.####.cn:80
- TCP(HTTP/1.1) s####.e.qq.com:80
- TCP(HTTP/1.1) cdn.1####.wang:80
- TCP(HTTP/1.1) api.kxcon####.com:666
- TCP(HTTP/1.1) 4####.97.20.12:80
- TCP(HTTP/1.1) idu####.qini####.com:80
- TCP(HTTP/1.1) c####.zhito####.com:808
- TCP(HTTP/1.1) 2####.187.226.25:80
- TCP(HTTP/1.1) ad####.m.ta####.com:80
- TCP(HTTP/1.1) ope####.m.ta####.com:80
- TCP(HTTP/1.1) mt.kap####.com:80
- TCP(HTTP/1.1) k####.kyli####.com.####.com:80
- TCP(HTTP/1.1) pos.b####.com:80
- TCP(HTTP/1.1) z.c####.com:80
- TCP(HTTP/1.1) c.xz####.com:3350
- TCP(HTTP/1.1) 1####.75.29.14:8711
- TCP(HTTP/1.1) c.c####.com:80
- TCP(HTTP/1.1) na61-####.wagbr####.non####.####.com:80
- TCP(HTTP/1.1) ip.zhito####.com:807
- TCP(HTTP/1.1) 1####.75.3.32:8881
- TCP(HTTP/1.1) s####.funs####.net:80
- TCP(HTTP/1.1) 362b3d8####.oss-cn-####.aliy####.com:80
- TCP(HTTP/1.1) ec####.b####.com:80
- TCP(HTTP/1.1) 1####.75.3.32:8731
- TCP(HTTP/1.1) sh.wagbr####.aliyun####.com:80
- TCP(HTTP/1.1) zf####.v.qin####.com:80
- TCP(HTTP/1.1) d####.wos####.com:80
- TCP(HTTP/1.1) v####.funs####.com:80
- TCP(HTTP/1.1) hjq.91h####.com:80
- TCP(HTTP/1.1) mi.g####.qq.com:80
- TCP(HTTP/1.1) kl.kyli####.com:80
- TCP(HTTP/1.1) dup.baidust####.com:80
- TCP(HTTP/1.1) a####.a####.m.####.com:80
- TCP(TLS/1.0) ivy.pcon####.com.cn:443
- TCP(TLS/1.0) et2-na6####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) mg####.pcon####.com.cn:443
- TCP(TLS/1.0) z.c####.com:443
- TCP(TLS/1.0) loc.map.b####.com:443
- TCP(TLS/1.0) js.3con####.com:443
- TCP(TLS/1.0) 362b3d8####.oss-cn-####.aliy####.com:443
- TCP(TLS/1.0) www.pc####.com.####.cn:443
- TCP(TLS/1.0) c####.pc####.com.cn:443
- TCP(TLS/1.0) gm.mm####.com:443
- TCP(TLS/1.0) p####.pc####.com.cn:443
- TCP(TLS/1.0) a####.d####.com:443
- TCP(TLS/1.0) nbsdk-b####.al####.com:443
- TCP(TLS/1.0) 2####.107.1.97:443
- TCP(TLS/1.0) i####.d####.com:443
- TCP(TLS/1.0) c.c####.com:443
- TCP(TLS/1.0) api.t####.co:443
- TCP(TLS/1.0) r.s####.cn:443
- TCP(TLS/1.0) hm.b####.com:443
- TCP(TLS/1.0) api.map.b####.com:443
- TCP(TLS/1.0) sw3.d####.com:443
- TCP acc####.m.ta####.com:80
- 362b3d8####.oss-cn-####.aliy####.com
- a####.d####.com
- a####.m.ta####.com
- a####.man.aliy####.com
- acc####.m.ta####.com
- acs4bai####.m.ta####.com
- ad####.m.ta####.com
- ada####.m.ta####.com
- adm.t####.com
- ag####.m.ta####.com
- api.kxcon####.com
- api.map.b####.com
- api.t####.co
- apk.91h####.com
- bn.cigo####.com
- c####.mm####.com
- c####.pc####.com.cn
- c####.zhito####.com
- c.c####.com
- c.xz####.com
- cdn.1####.wang
- d####.wos####.com
- dl.api.kyli####.com
- dup.baidust####.com
- ec####.b####.com
- h####.c####.com
- hjq.91h####.com
- hm.b####.com
- i####.com
- i####.d####.com
- i####.x####.com.cn
- i####.xca####.com
- ip.ta####.com
- ip.zhito####.com
- ivy.pcon####.com.cn
- js.3con####.com
- js.x####.com.cn
- k####.kyli####.com
- kl.kyli####.com
- l####.tbs.qq.com
- loc.map.b####.com
- log.u####.com
- mg####.pcon####.com.cn
- mi.g####.qq.com
- mt.kap####.com
- nbsdk-b####.al####.com
- p####.pc####.com.cn
- p####.x####.com.cn
- p.rqco####.com
- plb####.u####.com
- pos.b####.com
- r.s####.cn
- s####.d####.com
- s####.e.qq.com
- s####.funs####.net
- s11.c####.com
- s13.c####.com
- s19.c####.com
- s22.c####.com
- s4.c####.com
- s5.c####.com
- s95.c####.com
- sw3.d####.com
- tt.kyli####.com
- u####.u####.com
- v####.fun.tv
- v####.fun.tv
- v1.c####.com
- w####.pc####.com.cn
- wb.110.ta####.com
- www.pc####.com.cn
- www.pcon####.com.cn
- www.zhoug####.com
- y####.al####.com
- z11.c####.com
- z13.c####.com
- z7.c####.com
- z8.c####.com
- z9.c####.com
- 362b3d8####.oss-cn-####.aliy####.com/hh.html?id=id=1####&web_id=####
- ad####.m.ta####.com/rest/gc2?ak=####&av=####&c=####&d=####&sv=####&t=###...
- apk.91h####.com/apk/p_le_39.png
- apk.91h####.com/apk/urlparse_66371_a.zip
- c####.zhito####.com:808/waptj.html?1####
- c.c####.com/core.php?web_id=####&t=####
- c.c####.com/stat.php?id=####
- c.c####.com/stat.php?id=####&web_id=####
- c.c####.com/z_stat.php?id=####&web_id=####
- cdn.1####.wang/sc_156
- dup.baidust####.com/js/os.js
- ec####.b####.com/rs.jpg?type=####&stamp=####
- gl####.w.kunl####.####.com/cnzz.html
- gl####.w.kunl####.####.com/index.html
- hjq.91h####.com/hjq/servers/Korean_Info.ashx?method=####&os=####&version...
- i####.com/irt?_iwt_UA=####&jsonp=####
- idu####.qini####.com/cms/iwt/iwt-min.js
- idu####.qini####.com/group/20160125155916566.jpg
- idu####.qini####.com/group/20171204135016287.jpg
- idu####.qini####.com/group/20171210171001894.jpg
- idu####.qini####.com/group/20171219161638837.jpg
- idu####.qini####.com/group/20180212145023179.jpg
- idu####.qini####.com/group/20180403161240590.jpg
- idu####.qini####.com/group/20180717143455396.jpg
- idu####.qini####.com/group/20180801124733703.jpg
- idu####.qini####.com/group/20181018140550321.jpg
- idu####.qini####.com/group/20181125141405494.jpeg
- idu####.qini####.com/group/js/changspeed.js
- idu####.qini####.com/group/js/picload.js
- idu####.qini####.com/group/js/silder.js
- idu####.qini####.com/group/view_ab.php?pid=####
- idu####.qini####.com/tools/jq/1.5.1.min.js
- ip.ta####.com/service/getIpInfo.php?ip=####
- ip.zhito####.com:807/1102.html
- ip.zhito####.com:807/ip1102.html
- ip.zhito####.com:807/js1102/jquery.js
- ip.zhito####.com:88/zong/1102.html
- k####.kyli####.com.####.com/1541576969414_utils.ttf
- mi.g####.qq.com/gdt_mview.fcg?datatype=####&posid=####&count=####&r=####...
- ope####.m.ta####.com/gw-open/mtop.taobao.tbk.sdk.config/1.0/?data=####
- p.rqco####.com:8806/c/1545539928322
- pos.b####.com/bfp/snippetcacher.php?dpv=####&di=####
- pos.b####.com/jcxm?psi=701675d31f905e8f71da750d44c3b4f5&di=5969457&dri=0...
- pos.b####.com/jcxm?psi=701675d31f905e8f71da750d44c3b4f5&di=5990989&dri=0...
- pos.b####.com/jcxm?psi=701675d31f905e8f71da750d44c3b4f5&di=5991114&dri=0...
- pos.b####.com/jcxm?psi=701675d31f905e8f71da750d44c3b4f5&di=5991118&dri=0...
- pos.b####.com/jcxm?psi=701675d31f905e8f71da750d44c3b4f5&di=5991119&dri=0...
- pos.b####.com/jcxm?psi=701675d31f905e8f71da750d44c3b4f5&di=6002787&dri=0...
- pos.b####.com/scam?psi=####&di=####&dri=####&dis=####&dai=####&ps=####&e...
- pos.b####.com/tcem?psi=####&di=####&dri=####&dis=####&dai=####&ps=####&e...
- pos.b####.com/ycpm?psi=####&di=####&dri=####&dis=####&dai=####&ps=####&e...
- pos.b####.com/zcam?conwid=234&conhei=60&rtbid=3033352&rdid=13147349&dc=2...
- pos.b####.com/zcam?psi=2430303c8649d8e27e326311a662e97d&di=5897808&dri=0...
- s####.funs####.net/ecom-ad/ifar_all/?oc=####
- s####.funs####.net/ecom-ad/ifar_duration/?rprotocol=####&fck=####&mick=#...
- s####.funs####.net/ecom-ad/ifar_load/?rprotocol=1&fck=1545539943b44e1&mi...
- t####.c####.q####.####.com/album/14421/20160125160608530438943216145.jpg...
- v####.funs####.com/vasd/pa/index?zzt=####&sid=####&ref=####&mick=####&cv...
- www.pc####.com.####.cn/autox/x2.html
- z.c####.com/stat.htm?id=####&r=####&lg=####&ntime=####&cnzz_eid=####&sho...
- zf####.v.qin####.com/market/ext/udc/c00100085.html?zzt=####
- zf####.v.qin####.com/unet/static/udc.js?zzt=####
- a####.a####.m.####.com/amdc/mobileDispatch?appkey=####&deviceId=####&pla...
- ada####.m.ta####.com/rest/sur?ak=####&av=####&c=####&v=####&s=####&d=###...
- api.kxcon####.com:666/v1/config
- c.xz####.com:3350/s/
- d####.wos####.com/upload/event.jsp
- d####.wos####.com/upload/event2.jsp
- d####.wos####.com/upload/event3.jsp
- d####.wos####.com/upload/longheartbeat.jsp
- d####.wos####.com/upload/sdklongheartbeat.jsp
- dl.api.kyli####.com/v2/load/mobile
- hjq.91h####.com/hjq/ip/getmyip?sign=####&ime=####&nwtime=####&os=####&m=...
- kl.kyli####.com/klv2/sdkkl/mobile
- l####.tbs.qq.com/ajax?c=####&k=####
- mt.kap####.com/v1/st
- na61-####.wagbr####.ali####.####.com/api/update.do
- na61-####.wagbr####.non####.####.com/saveWb.json
- p.rqco####.com:8806/p/1545539929648
- s####.e.qq.com/activate
- s####.e.qq.com/launch
- sh.wagbr####.aliyun####.com/man/api?ak=####&s=####
- tt.kyli####.com/v2/task/mobile
- /data/anr/traces.txt
- /data/data/####/-1147628818
- /data/data/####/.imprint
- /data/data/####/0635968b83043d109bef9811beca91bb.0.tmp
- /data/data/####/0635968b83043d109bef9811beca91bb.1.tmp
- /data/data/####/0a231bd8575dcf72.txt
- /data/data/####/14bf71c347ab25677ca3db9db5e5c809.0.tmp
- /data/data/####/14bf71c347ab25677ca3db9db5e5c809.1.tmp
- /data/data/####/254309faaee6ba4e68661499e9911220.0.tmp
- /data/data/####/254309faaee6ba4e68661499e9911220.1.tmp
- /data/data/####/471397940.dex
- /data/data/####/471397940.jar
- /data/data/####/5ee4e4480282508f1894e7cc2dd2fbf8.0.tmp
- /data/data/####/5ee4e4480282508f1894e7cc2dd2fbf8.1.tmp
- /data/data/####/6c5a817b40f57351478fec5c2271388b.0.tmp
- /data/data/####/6c5a817b40f57351478fec5c2271388b.1.tmp
- /data/data/####/6f46fedeb40ef89194d6c26572da4786
- /data/data/####/76a2e27bce354473f7058eaffb518223.0
- /data/data/####/76a2e27bce354473f7058eaffb518223.1
- /data/data/####/84723a3d6eab9e6f6fc7ec7508dbaf6b.0.tmp
- /data/data/####/84723a3d6eab9e6f6fc7ec7508dbaf6b.1.tmp
- /data/data/####/8ef9c457b3bbb403.lock
- /data/data/####/9081f36a8b89d2f316b89b17609ba5ef.0
- /data/data/####/9081f36a8b89d2f316b89b17609ba5ef.1
- /data/data/####/ACCS_SDK.xml
- /data/data/####/Agoo_AppStore.xml
- /data/data/####/AlibcLinkPartner.xml
- /data/data/####/Alvin2.xml
- /data/data/####/ContextData.xml
- /data/data/####/GDTSDK.db
- /data/data/####/GDTSDK.db-journal
- /data/data/####/MessageStore.db
- /data/data/####/MessageStore.db-journal
- /data/data/####/MsgLogStore.db
- /data/data/####/MsgLogStore.db-journal
- /data/data/####/MultiDex.lock
- /data/data/####/SGMANAGER_DATA2.tmp
- /data/data/####/UTCommon.xml
- /data/data/####/abec33dabda4cddb0737246f723c43de.0.tmp
- /data/data/####/abec33dabda4cddb0737246f723c43de.1.tmp
- /data/data/####/accs.db
- /data/data/####/accs.db-journal
- /data/data/####/aliTradeConfigSP.xml
- /data/data/####/android-util.zip
- /data/data/####/authStatus_com.leku.hmsq;remote.xml
- /data/data/####/auth_sdk_device.xml
- /data/data/####/c5c107b9af73c58bb605f3d421030c88.0.tmp
- /data/data/####/c5c107b9af73c58bb605f3d421030c88.1.tmp
- /data/data/####/com.leku.hmsq-1.apk.classes2.dex
- /data/data/####/com.leku.hmsq-1.apk.classes3.dex
- /data/data/####/com.leku.hmsq_preferences.xml
- /data/data/####/core_info
- /data/data/####/d1b338ab8927f7d1e3124012d99f7ed9.0.tmp
- /data/data/####/d1b338ab8927f7d1e3124012d99f7ed9.1.tmp
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODM5OTYy;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODMwMjEx;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODMzMDA0;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODQ1NTg4;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODQ5NTQ3;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODY4MzY5;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODc2OTI1;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODg3MzY1;
- /data/data/####/dW1weF9pbnRlcm5hbF8xNTQ1NTM5ODkzODc3;
- /data/data/####/dW1weF9zaGFyZV8xNTQ1NTM5ODk1NjMz;
- /data/data/####/dW1weF9zaGFyZV8xNTQ1NTM5ODk1NzM2;
- /data/data/####/devCloudSetting.cfg
- /data/data/####/devCloudSetting.sig
- /data/data/####/e65e520b473b2e570a4dea10e400c0c3.0.tmp
- /data/data/####/e65e520b473b2e570a4dea10e400c0c3.1.tmp
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f0c61b5e74a80fc96be041a3e7eb02b2.0.tmp
- /data/data/####/f0c61b5e74a80fc96be041a3e7eb02b2.1.tmp
- /data/data/####/f1e4985d9a9b0697c73b7c84551f7004.0.tmp
- /data/data/####/f1e4985d9a9b0697c73b7c84551f7004.1.tmp
- /data/data/####/firll.dat
- /data/data/####/gdt_plugin.dex
- /data/data/####/gdt_plugin.jar
- /data/data/####/gdt_plugin.jar.sig
- /data/data/####/gdt_suid
- /data/data/####/hjtv.xml
- /data/data/####/hmsq.xml
- /data/data/####/hst.db
- /data/data/####/hst.db-journal
- /data/data/####/httpdns_config_cache.xml
- /data/data/####/i==1.2.0&&2.4.3_1545539833756_envelope.log
- /data/data/####/info.xml
- /data/data/####/journal
- /data/data/####/journal.tmp
- /data/data/####/libcuid.so
- /data/data/####/libsgmainso-5.1.81.so.tmp
- /data/data/####/libsgsecuritybodyso-5.1.25.so.tmp
- /data/data/####/load_MTAwMF8xMjAxXzExMDAwMjAw;.xml
- /data/data/####/lock.lock
- /data/data/####/multidex.version.xml
- /data/data/####/p.l
- /data/data/####/plugin_v3_471397940.jar.lock
- /data/data/####/plugins.xml
- /data/data/####/sdkCloudSetting.cfg
- /data/data/####/sdkCloudSetting.sig
- /data/data/####/share.db-journal
- /data/data/####/sp.lock
- /data/data/####/sp_config.xml
- /data/data/####/tbs_download_config.xml
- /data/data/####/tbs_download_stat.xml
- /data/data/####/tbscoreinstall.txt
- /data/data/####/tbslock.txt
- /data/data/####/timestamp
- /data/data/####/tmobi.evernote_jobs.db
- /data/data/####/tmobi.evernote_jobs.db-journal
- /data/data/####/tmobi.xml
- /data/data/####/tmp-com.leku.hmsq-1.apk.classes859333431.zip
- /data/data/####/tmp-com.leku.hmsq-1.apk.classes861091158.zip
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_common_config.xml.bak
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_message_state.xml
- /data/data/####/umeng_socialize.xml
- /data/data/####/update_lc
- /data/data/####/use_MTAwMF8xMjAxXzExMDAwMjAw;.xml
- /data/data/####/ut.db
- /data/data/####/ut.db-journal
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/webviewCookiesChromiumPrivate.db-journal
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.cca.dat
- /data/media/####/.cuid
- /data/media/####/.cuid2
- /data/media/####/.jsDex.apk
- /data/media/####/.nomedia
- /data/media/####/.umm.dat
- /data/media/####/.urlparse.zip
- /data/media/####/6c709c11d2d46a7b
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/dd7893586a493dc3
- /data/media/####/urlparse.js
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- getprop ro.product.cpu.abi
- grep 3772
- grep 4638
- grep 4854
- ls -l /system/bin/su
- ls /sys/class/thermal
- mount
- ps
- sh
- locSDK7b
- optimize
- sgmainso-5.1
- sgsecuritybodyso-5.1
- ut_c_api
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS7Padding
- RSA-ECB-NoPadding
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS7Padding
- DES-CBC-PKCS5Padding
- RSA-ECB-PKCS1Padding