Technical information
- Adware.Waps.5.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) ads.w####.cn:80
- TCP(HTTP/1.1) i12.tie####.cn:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) hm.b####.com:80
- TCP(HTTP/1.1) pgy-app####.qin####.com:80
- TCP(HTTP/1.1) kln.g####.sina####.com:80
- TCP(HTTP/1.1) oc.u####.com:80
- TCP(HTTP/1.1) d.sin####.cn.####.net:80
- TCP(HTTP/1.1) f####.te####.cn:80
- TCP(HTTP/1.1) rs.si####.cn:80
- TCP(HTTP/1.1) app.w####.cn:80
- TCP(HTTP/1.1) wi####.w####.com:80
- TCP(HTTP/1.1) i2.tie####.cn:80
- TCP(HTTP/1.1) api.appj####.com:80
- TCP(HTTP/1.1) cool####.sin####.com:80
- TCP(TLS/1.0) q####.c####.l####.####.com:443
- TCP(TLS/1.0) 1####.217.17.46:443
- a####.u####.com
- ads.w####.cn
- api.appj####.com
- app.w####.cn
- au.u####.co
- au.u####.com
- cool####.appl####.com
- cool####.sin####.com
- f####.te####.cn
- f####.te####.cn
- f####.te####.cn
- fb.u####.com
- hm.b####.com
- i12.tie####.cn
- i2.tie####.cn
- img.t.si####.cn
- js.t.si####.cn
- o1wh0####.q####.com
- oc.u####.com
- pgy-app####.qin####.com
- rs.si####.cn
- t####.sjs.si####.cn
- tjs.sjs.si####.cn
- wi####.w####.com
- ads.w####.cn/action/pop_ad/ad?app_id=####&udid=####&imsi=####&net=####&b...
- app.w####.cn/action/connect/active?app_id=####&udid=####&imsi=####&net=#...
- cool####.sin####.com/app/Public/css/apps.css
- cool####.sin####.com/app/Public/images/ic_fragment.png
- cool####.sin####.com/app/Public/images/ic_screenshot.jpg
- cool####.sin####.com/app/Public/images/rabbit.png
- cool####.sin####.com/app/Public/js/jquery-1.11.2.min.js
- cool####.sin####.com/app/Public/js/news.js
- cool####.sin####.com/app/Public/js/scrollload/scrollload.js
- cool####.sin####.com/app/appdown/qqface_guide.html
- cool####.sin####.com/app/appdown/qqface_wx_guide.html
- cool####.sin####.com/app/index.php/news/showNews?type=####&source=####
- cool####.sin####.com/app/redirect.php?qqface####
- cool####.sin####.com/app/redirect.php?qqface_####
- d.sin####.cn.####.net/open/api/js/api/bundle.js?version=####
- d.sin####.cn.####.net/open/api/js/api/client.js?version=####
- d.sin####.cn.####.net/open/api/js/widget/iframeWidget/iframeWidget.js?ve...
- d.sin####.cn.####.net/t4/appstyle/widget/css/followButton/followButton.c...
- d.sin####.cn.####.net/t4/appstyle/widget/images/followButton/bg_flbtn.pn...
- d.sin####.cn.####.net/t5/register/js/common/login/sso/login.js?version=#...
- f####.te####.cn/ctf/EnFFFI5RRkZGSS90ZXN0aW5Qb3J0YWwvMjAxNi8wOC8wMy8xNi80...
- f####.te####.cn/ctf/JPFFFIs6RkZGSS90ZXN0aW5Qb3J0YWwvMjAxNi8wOC8wMS8xOC80...
- f####.te####.cn/ctf/NZFFFIjFRkZGSS90ZXN0aW5Qb3J0YWwvMjAxNi8wOC8wMS8xMy80...
- f####.te####.cn/ctf/eNFFFGqBRkZGRy90ZXN0aW5Qb3J0YWwvMjAxNi8wOC8wNS8yMC80...
- f####.te####.cn/ctf/icFFFIRbRkZGSS90ZXN0aW5Qb3J0YWwvMjAxNi8wNy8yOC8xNi80...
- f####.te####.cn/ctf/w4FFFI8WRkZGSS90ZXN0aW5Qb3J0YWwvMjAxNi8wOC8xMi8xNi80...
- f####.te####.cn/ctf/wIFFFAtSRkZGQS90ZXN0aW5Qb3J0YWwvMjAxNi8wNy8yOS8xNC80...
- hm.b####.com/h.js?701483a####
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&ep=####&et=#...
- hm.b####.com/hm.gif?cc=####&ck=####&cl=####&ds=####&vl=####&et=####&ja=#...
- i12.tie####.cn/084e861e17080fa5.png
- i12.tie####.cn/28741ffa7236506f.jpg
- i12.tie####.cn/49885eea97a1611f.jpg
- i12.tie####.cn/cea023a4562d80c8.jpg
- i12.tie####.cn/e0e0c025b5ed2dda.jpg
- i2.tie####.cn/084e861e17080fa5.png
- i2.tie####.cn/28741ffa7236506f.jpg
- i2.tie####.cn/49885eea97a1611f.jpg
- i2.tie####.cn/cea023a4562d80c8.jpg
- i2.tie####.cn/e0e0c025b5ed2dda.jpg
- kln.g####.sina####.com/open/analytics/js/suda.js
- kln.g####.sina####.com/open/api/js/wb.js
- kln.g####.sina####.com/open/widget/js/widget/followButton.js?version=####
- kln.g####.sina####.com/t4/appstyle/widget/images/library/base/loading1.gif
- pgy-app####.qin####.com/image/view/app_icons/29b0f015739961c0c4cdc1486e4...
- pgy-app####.qin####.com/image/view/app_icons/c6e3f0da884bccdfd480c494209...
- rs.si####.cn/b.gif?uid=####&refer=####&url=####&followed=####&login=####...
- wi####.w####.com/public/aj_relationship.php?fuid=####&callback=####
- wi####.w####.com/relationship/followbutton.php?btn=####&style=####&uid=#...
- a####.u####.com/app_logs
- api.appj####.com/appjiagu
- app.w####.cn/action/user_info
- oc.u####.com/check_config_update
- /data/data/####/.imprint
- /data/data/####/AppSettings.xml
- /data/data/####/CacheTime.dat
- /data/data/####/ShowAdFlag.xml
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/index
- /data/data/####/jiagu.lock
- /data/data/####/libjiagu.so
- /data/data/####/mobclick_agent_online_setting_com.coolsnow.qqface.xml
- /data/data/####/observedFile
- /data/data/####/pref_qqface_app.xml
- /data/data/####/umeng_feedback_conversations.xml
- /data/data/####/umeng_feedback_user_info.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/AppPackage.dat
- /data/media/####/CacheTime.dat
- /data/media/####/UnPackage.dat
- /data/media/####/android
- bspatch
- libjiagu
- uninstall
- DES-CBC-PKCS5Padding