Technical information
- Adware.Panda.5.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) img.wd####.com:80
- TCP(HTTP/1.1) www.md####.cn:80
- TCP(HTTP/1.1) huic####.sm.cn:80
- TCP(HTTP/1.1) nc-up####.wd####.com.####.com:80
- TCP(HTTP/1.1) oc.u####.com:80
- TCP(HTTP/1.1) a####.vip.wando####.com:80
- TCP(HTTP/1.1) pu####.vip.wando####.com:80
- TCP(HTTP/1.1) wdj-uc1####.wd####.com:80
- TCP(HTTP/1.1) up####.cdn.wando####.com:80
- TCP(HTTP/1.1) cdn.zs####.cn.####.com:8080
- TCP(TLS/1.0) pu####.vip.wando####.com:443
- a####.u####.com
- a####.wando####.com
- c####.wando####.com
- cdn.zs####.cn
- huic####.sm.cn
- img.wd####.com
- l.wando####.com
- nc-up####.wd####.com
- oc.u####.com
- up####.cdn.wando####.com
- upg####.wando####.com
- wdj-uc1####.wd####.com
- www.md####.cn
- xiba####.wando####.com
- a####.vip.wando####.com/api/v1/ads?path=####&pos=####&adsPadding=####&f=...
- a####.vip.wando####.com/redirect?signature=####&url=####&token=####&udid...
- a####.vip.wando####.com/static/uploads/i/com.zhimahu/25031/630685.gif?bi...
- cdn.zs####.cn.####.com:8080/resource/gis/45
- huic####.sm.cn/wdj/show?ast=####
- img.wd####.com/mms/icon/v1/0/a5/eb22058611ae84d3530a251c51d92a50_256_256...
- img.wd####.com/mms/icon/v1/0/ee/3274931261b34b304ffa227d9deedee0_256_256...
- img.wd####.com/mms/icon/v1/4/4e/8ed26176958d73a8e3b466f250e334e4_256_256...
- img.wd####.com/mms/icon/v1/8/3c/d977a336fe7ada08803a30d2f05d83c8_256_256...
- img.wd####.com/mms/icon/v1/d/d1/9cce3ca98575ddbd499d031c18358d1d_256_256...
- img.wd####.com/mms/icon/v1/e/00/f6769c7b8ffa3dd62dc7147cd5fc<SMS Address...
- nc-up####.wd####.com.####.com/tools/fastclean/FastCleanSectionConfig0901...
- pu####.vip.wando####.com/api/v1/meta/list/?f=####&v=####&u=####&vc=####&...
- up####.cdn.wando####.com/tools/fastclean/FastCleanSectionConfig0901.txt
- wdj-uc1####.wd####.com/2/93/f45751ef37f5ce4b0f9daade890c6932.apk
- a####.u####.com/app_logs
- a####.vip.wando####.com/muce/data/proxy?profile=####&vc=####&vn=####&gzi...
- oc.u####.com/check_config_update
- oc.u####.com/v2/get_update_time
- pu####.vip.wando####.com/api/v1/storage/list/?f=####&v=####&u=####&vc=##...
- pu####.vip.wando####.com/muce/data/proxy?profile=####&vc=####&vn=####&gz...
- www.md####.cn/pservers/loadip
- /data/data/####/.imprint
- /data/data/####/Alvin2.xml
- /data/data/####/AppStore.xml
- /data/data/####/ContextData.xml
- /data/data/####/Gbg.zip
- /data/data/####/LogMonitor_com.udia.kk.xml
- /data/data/####/UmengLocalNotificationStore.db-journal
- /data/data/####/battery_config.xml
- /data/data/####/cache-policy.xml
- /data/data/####/cache_file2044866a7372393e9eca2d2425e7cb73
- /data/data/####/cache_file4979e1ec72288fd79265764f5d940481
- /data/data/####/cache_file799638e4fd20fb82734e153800945b69
- /data/data/####/cache_file7d9f7b91a4c390cf0ff08369bdfd9399
- /data/data/####/cache_filebac7f13f51703bf956652dd962d9ab13
- /data/data/####/cache_filed8e138a82a31d2aa42700d85677b75b9
- /data/data/####/cache_filedf84352a83f86b69c2161033eb9d92de
- /data/data/####/com.udia.kk_preferences.xml
- /data/data/####/com.zhimahu.xml
- /data/data/####/com.zhimahu_preferences.xml
- /data/data/####/com_zhimahu_satellite_.log
- /data/data/####/exchangeIdentity.json
- /data/data/####/fastclean-log.db-journal
- /data/data/####/fastclean.db-journal
- /data/data/####/feedback_push.xml
- /data/data/####/log_module.xml
- /data/data/####/log_modulev3.xml
- /data/data/####/message.zip
- /data/data/####/mobclick_agent_header_com.zhimahu.xml
- /data/data/####/mobclick_agent_online_setting_com.zhimahu.xml
- /data/data/####/mobclick_agent_state_com.zhimahu.xml
- /data/data/####/muce.xml
- /data/data/####/ni.xml
- /data/data/####/onlineconfig_agent_online_setting_com.udia.kk.xml
- /data/data/####/satellit_app_config.xml
- /data/data/####/share_date.xml
- /data/data/####/umeng_feedback_user_info.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_message_state.xml
- /data/media/####/.udid
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /system/bin/cat /proc/cpuinfo
- chmod 777 /data/local/tmp
- cipher
- fastclean
- wdj_udid
- AES
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-CFB-NoPadding