FÜR NUTZER

Schließen

Meine Bibliothek
Meine Bibliothek

+ Zur Bibliothek hinzufügen

Suche
Suche

Support
Support 24/7 | Regeln zur Anfragenübermittlung

Schreiben Sie uns

Online-Formular

Telefon

+49 (0) 170 488 40 28

Forum

Ihre Anfragen

Neue Anfrage

Rufen Sie uns an

+7 (495) 789-45-86

Profil

DE

RU CN DE EN ES FR IT JP KZ UZ PL BY
Schließen
Services
Scanner
Dr.Web vxCube
Testversion
Analyse von virenabhängigen Vorfällen
Virenbibliothek
Wissensdatenbank

Technologies

Begriffe

Schulung und Training

Mythen

News

Android.Click.1596

Added to the Dr.Web virus database: 2022-03-16

Virus description added:

Technical information

Malicious functions:
Executes code of the following detected threats:
  • Android.Click.345.origin
Network activity:
Connects to:
  • UDP(DNS) 8####.8.4.4:53
  • TCP(HTTP/1.1) gd.a.s####.com:80
  • TCP(HTTP/1.1) co####.ssp.adoc####.com:80
  • TCP(HTTP/1.1) res####.a####.top:80
  • TCP(HTTP/1.1) f####.l####.com:80
  • TCP(HTTP/1.1) be####.new####.com:80
  • TCP(HTTP/1.1) my-botc####.b0.a####.com:80
  • TCP(HTTP/1.1) newap####.math####.cn:80
  • TCP(HTTP/1.1) m.l####.com:80
  • TCP(HTTP/1.1) c####.jumen####.com:80
  • TCP(HTTP/1.1) j####.qq.com:80
  • TCP(HTTP/1.1) t####.sogo####.com.####.com:80
  • TCP(HTTP/1.1) apple####.le.com:80
  • TCP(HTTP/1.1) u####.a####.top:80
  • TCP(HTTP/1.1) ap####.math####.cn:80
  • TCP(HTTP/1.1) z.c####.com:80
  • TCP(HTTP/1.1) mh####.b0.a####.com:80
  • TCP(HTTP/1.1) ba####.le.com.####.com:80
  • TCP(HTTP/1.1) x####.ur####.s####.com:80
  • TCP(HTTP/1.1) b####.bugse####.com:80
  • TCP(HTTP/1.1) i####.sogo####.com.####.com:80
  • TCP(HTTP/1.1) p####.pc####.com.cn:80
  • TCP(HTTP/1.1) 1####.200.90.194:80
  • TCP(HTTP/1.1) app.a####.top:80
  • TCP(HTTP/1.1) 10####.admast####.com:99
  • TCP(HTTP/1.1) js.wt####.com:80
  • TCP(HTTP/1.1) filt####.a####.top:80
  • TCP(HTTP/1.1) www.ddz####.cn:80
  • TCP(HTTP/1.1) t####.fa####.info:80
  • TCP(HTTP/1.1) u####.b0.upa####.com:80
  • TCP(HTTP/1.1) art.t####.sogo####.####.com:80
  • TCP(HTTP/1.1) p####.api.adoc####.com:80
  • TCP(HTTP/1.1) gm.mm####.com:80
  • TCP(HTTP/1.1) d####.i####.com:80
  • TCP(HTTP/1.1) 47.1####.211.73:80
  • TCP(HTTP/1.1) i####.wt####.com:80
  • TCP(HTTP/1.1) b####.bugse####.com:3001
  • TCP(HTTP/1.1) ad.l####.com:3000
  • TCP(HTTP/1.1) 1####.zhit####.com:99
  • TCP(HTTP/1.1) eff.lu.s####.com:80
  • TCP(HTTP/1.1) cwgj####.oss-cn-####.aliy####.com:80
  • TCP(HTTP/1.1) imgsnew####.b0.a####.com:80
  • TCP(HTTP/1.1) u####.dspliul####.com:99
  • TCP(HTTP/1.1) b####.bugse####.com:3000
  • TCP(HTTP/1.1) api.a####.ads####.cn:80
  • TCP(HTTP/1.1) c.c####.com:80
  • TCP(HTTP/1.1) ad.l####.com:80
  • TCP(HTTP/1.1) 1####.zhit####.com:808
  • TCP(TLS/1.0) js.3con####.com.####.cn:443
  • TCP(TLS/1.0) ip.ws.1####.net:443
  • TCP(TLS/1.0) lhyysdk####.oss-cn-####.aliy####.com:443
  • TCP(TLS/1.0) c.c####.com:443
  • TCP(TLS/1.0) co####.uca.c####.####.com:443
  • TCP(TLS/1.0) www.pc####.com.####.cn:443
  • TCP(TLS/1.0) img.pcon####.com.cn:443
  • TCP(TLS/1.0) gm.mm####.com:443
  • TCP(TLS/1.0) c####.oss-cn-####.aliy####.com:443
  • TCP(TLS/1.0) ba####.le.com.####.com:443
  • TCP(TLS/1.0) co####.pcon####.com.cn:443
  • TCP(TLS/1.0) prd-le####.cdp.inte####.####.com:443
  • TCP(TLS/1.0) c####.x####.com.####.com:443
  • TCP(TLS/1.0) ivy.pcon####.com.cn:443
  • TCP(TLS/1.0) l####.chartb####.com:443
  • TCP(TLS/1.0) 1142864####.cn-hang####.fc.####.com:443
  • TCP(TLS/1.0) d####.i####.com:443
  • TCP(TLS/1.0) c####.pc####.com.cn:443
  • TCP(TLS/1.0) t####.sogo####.com.####.com:443
  • TCP(TLS/1.0) i####.x####.com.####.com:443
  • TCP(TLS/1.0) z.c####.com:443
  • TCP(TLS/1.0) p####.pc####.com.cn:443
  • TCP(TLS/1.0) j####.qq.com:443
  • TCP(TLS/1.0) naqu####.com:443
  • TCP(TLS/1.0) s####.x####.com.cn:443
  • TCP(TLS/1.0) t2.chartb####.com:443
  • TCP(TLS/1.0) api.bamenzh####.com:443
  • TCP(TLS/1.0) we####.m.qq.####.com:443
  • TCP(TLS/1.0) hm.b####.com:443
  • TCP(TLS/1.0) p####.google####.com:443
  • TCP(TLS/1.0) g.cn.miao####.com:443
  • TCP(TLS/1.0) cdn-inn####.edg####.net:443
  • TCP(TLS/1.2) 1####.217.169.14:443
  • TCP(TLS/1.2) 1####.250.187.195:443
  • TCP(TLS/1.2) p####.google####.com:443
DNS requests:
  • 1####.zhit####.com
  • 10####.admast####.com
  • 603.a####.top
  • 603.a####.top.####.8
  • a####.new####.com
  • a2.chartb####.com
  • ad.l####.com
  • ads.he####.com
  • al####.new####.com
  • al####.new####.com
  • al####.new####.com
  • al####.new####.com
  • ap####.math####.cn
  • api.a####.ads####.cn
  • api.bamenzh####.com
  • api.new####.com
  • app.a####.top
  • apple####.le.com
  • art.t####.sogo####.com
  • ass####.xca####.com
  • b####.bugse####.com
  • b####.bugse####.com
  • b####.t####.s####.com
  • ba####.le.com
  • be####.new####.com
  • c####.be####.s####.com
  • c####.be####.s####.com
  • c####.inner-a####.mobi
  • c####.jumen####.com
  • c####.mm####.com
  • c####.new####.com
  • c####.oss-cn-####.aliy####.com
  • c####.pc####.com.cn
  • c####.x####.com.cn
  • c.c####.com
  • cdp.c####.uni####.com
  • co####.pcon####.com.cn
  • co####.ssp.adoc####.com
  • co####.uca.c####.####.com
  • css.let####.com
  • cwgj####.oss-cn-####.aliy####.com
  • eff.lu.s####.com
  • ei.c####.com
  • f####.l####.com
  • f####.ur####.s####.com
  • fa####.sg.shu####.com
  • fc.b####.com
  • filt####.a####.top
  • g.cn.miao####.com
  • gif.lu.sogo####.com
  • gxe.h####.s####.com
  • h5.yuguo####.com
  • hm.b####.com
  • i####.new####.com
  • i####.sogo####.com
  • i####.sogo####.com
  • i####.sogo####.com
  • i####.sogo####.com
  • i####.t####.s####.com
  • i####.t####.sogo####.com
  • i####.wt####.com
  • i####.wt####.com
  • i####.x####.com.cn
  • i.iqt####.com
  • i.iqt####.com.####.8
  • i0.let####.com
  • i1.let####.com
  • i2.let####.com
  • i3.let####.com
  • img.lu.sogo####.com
  • img.new####.com
  • img.pcon####.com.cn
  • ip.ws.1####.net
  • ius.mer####.s####.com
  • j####.qq.com
  • jpg.i####.sogo####.com
  • js.3con####.com
  • js.let####.com
  • js.wt####.com
  • js.x####.com.cn
  • jst####.let####.com
  • jti.h####.s####.com
  • jwz.3con####.com
  • k####.ur####.s####.com
  • l####.chartb####.com
  • lhyysdk####.oss-cn-####.aliy####.com
  • m####.le.com
  • m####.t####.sogo####.com
  • m.l####.com
  • me7.jl####.com
  • med.he####.com
  • mg####.pcon####.com.cn
  • n####.be####.s####.com
  • naqu####.com
  • newap####.math####.cn
  • o####.t####.s####.com
  • omg.i####.sogo####.com
  • on####.c####.com
  • osc.ur####.s####.com
  • p####.3con####.com
  • p####.api.adoc####.com
  • p####.bugse####.com
  • p####.gol####.s####.com
  • p####.google####.com
  • p####.m.y####.com
  • p####.pc####.com.cn
  • pco####.c####.com
  • pv.s####.com
  • r####.mer####.s####.com
  • r####.t####.s####.com
  • res####.a####.top
  • s####.x####.com.cn
  • s23.c####.com
  • s4.c####.com
  • s9.c####.com
  • s95.c####.com
  • s96.c####.com
  • ser####.e####.s####.com
  • src.i####.sogo####.com
  • st####.let####.com
  • t####.a####.top
  • t####.fa####.info
  • t####.sogo####.com
  • t2.chartb####.com
  • tpy.dspliul####.com
  • u####.a####.top
  • u####.b0.upa####.com
  • u####.dspliul####.com
  • u####.gol####.s####.com
  • ue.3con####.com
  • v####.gou.s####.com
  • v1.c####.com
  • vol.b####.com
  • w####.le.com
  • w####.pc####.com.cn
  • w####.pcon####.com.cn
  • w.i####.com
  • we####.m.qq.com
  • www.ddz####.cn
  • www.new####.com
  • www.pc####.com.cn
  • www.pcon####.com.cn
  • x####.h####.s####.com
  • x####.ur####.s####.com
  • y####.mer####.s####.com
  • y####.p####.s####.com
  • z12.c####.com
  • z2.c####.com
  • z3.c####.com
  • z4.c####.com
  • z5.c####.com
  • z6.c####.com
HTTP GET requests:
  • 1####.zhit####.com:808/1020p/index.html
  • 1####.zhit####.com:99/wap/index.html
  • 10####.admast####.com:99/1020yy/index.html
  • 10####.admast####.com:99/favicon.ico
  • 10####.admast####.com:99/newcar/index.html
  • 10####.admast####.com:99/wap/index.html
  • 10####.admast####.com:99/wts/index.html
  • 1142864####.cn-hang####.fc.####.com:443/qs/?pa=####
  • 1142864####.cn-hang####.fc.####.com:443/xqs/?pa=####
  • ad.l####.com/sdk_ad
  • ad.l####.com:3000/api?rdtime=####&secure=####&channel=####&osv=####&adid...
  • ap####.math####.cn/ssp/mgm/task?taskId=####&ip=####&send_ts=####
  • api.bamenzh####.com:443/api/platform/v1/cloud-injection/info?terminal=##...
  • app.a####.top/anshuaControl.json
  • app.a####.top/api.json
  • app.a####.top/pingpaiAD.json
  • apple####.le.com/env/?mac=-&nt=none&uid=-&br=Netscape&p1=0&p2=04&app_nam...
  • apple####.le.com/op/?acode=41&ap=ch=www&pg=upgc_tgdk&bk=video&ar=0&cid=3...
  • apple####.le.com/op/?acode=41&ap=x=msite_common_jump_search_all_all_CN&a...
  • apple####.le.com/op/?acode=41&ap=x=msite_common_jump_sso_all_all_CN&ar=0...
  • apple####.le.com/op/?acode=41&ap=x=msite_common_top_banner_exposure&ar=0...
  • apple####.le.com/pgv/?cid=30&pid=-&vid=-&uid=-&lc=84c881c021311f0ae0da65...
  • art.t####.sogo####.####.com/wap/js/aw.js
  • art.t####.sogo####.####.com/wap/js/wp.js
  • b####.bugse####.com/sdk_ad
  • b####.bugse####.com:3000/api?rdtime=####&secure=####&channel=####&osv=##...
  • b####.bugse####.com:3001/api?rdtime=####&secure=####&channel=####&osv=##...
  • ba####.le.com.####.com/favicon.ico
  • ba####.le.com.####.com/lc01_lemf/202008/19/22/24/31172024838386_400_225....
  • ba####.le.com.####.com/lc02_lemf/202007/03/05/10/21756_400_225.jpg
  • ba####.le.com.####.com/lc02_lemf/202007/20/17/16/31172019448522_400_225....
  • ba####.le.com.####.com/lc02_p/201709/05/11/18/hv2.png
  • ba####.le.com.####.com/lc03_css/202201/13/17/12/mcss/m_new_index.css
  • ba####.le.com.####.com/lc03_js/202112/23/15/40/lem/homeChannel-hot_tgdk_...
  • ba####.le.com.####.com/lc03_lemf/202007/17/05/19/31172019444224_400_225....
  • ba####.le.com.####.com/lc04_img/201803/06/10/38/logo.png
  • ba####.le.com.####.com/lc04_js/202007/21/15/42/clipboard.min.js
  • ba####.le.com.####.com/lc04_lemf/202007/10/19/32/99533_400_225.jpg
  • ba####.le.com.####.com/lc05_lemf/202007/03/04/35/13937_400_225.jpg
  • ba####.le.com.####.com/lc05_lemf/202007/18/01/31/31172028951781_400_225....
  • ba####.le.com.####.com/lc06_img/201602/29/16/21/ghs.png
  • ba####.le.com.####.com/lc06_img/201803/01/15/21/220_122.png
  • ba####.le.com.####.com/lc06_lemf/202007/03/03/43/33622_400_225.jpg
  • ba####.le.com.####.com/lc06_lemf/202007/17/23/51/31172028950245_400_225....
  • ba####.le.com.####.com/lc06_lemf/202012/26/14/49/31172031520056_400_225....
  • ba####.le.com.####.com/lc07_isvrs/201704/24/21/57/bb9dac7d-f80f-402c-8be...
  • ba####.le.com.####.com/lc07_phone/201708/09/16/14/1600/icomoon.ttf
  • ba####.le.com.####.com/lc11_yunzhuanma/202006/24/00/57/ad242fb47ee460460...
  • ba####.le.com.####.com/lc11_yunzhuanma/202006/24/01/20/81e6615a8f027de5d...
  • ba####.le.com.####.com/lc11_yunzhuanma/202007/01/12/01/c2c8f25f84935216a...
  • ba####.le.com.####.com/lc11_yunzhuanma/202007/01/14/14/a16c82450d0d4973a...
  • ba####.le.com.####.com/lc11_yunzhuanma/202007/09/16/34/591d5ba2776740bd5...
  • ba####.le.com.####.com/lc11_yunzhuanma/202007/09/20/59/a5f7e8b79ec6b298b...
  • ba####.le.com.####.com/lc12_yunzhuanma/202006/23/21/04/884bbdcf57f76d5eb...
  • ba####.le.com.####.com/lc12_yunzhuanma/202006/24/01/05/c51c85cbf91743977...
  • ba####.le.com.####.com/lc12_yunzhuanma/202007/01/10/46/1d180907f33d6ba52...
  • ba####.le.com.####.com/lc13_yunzhuanma/202006/23/19/48/3e6885d4d55008c9d...
  • ba####.le.com.####.com/lc13_yunzhuanma/202006/23/20/31/1591f45e07d88eafd...
  • ba####.le.com.####.com/lc13_yunzhuanma/202006/23/20/37/c19b786da13c908df...
  • ba####.le.com.####.com/lc13_yunzhuanma/202006/23/21/31/4bada70282e8b7e28...
  • ba####.le.com.####.com/lc13_yunzhuanma/202007/01/14/00/a8c7a9c2efbbe2711...
  • ba####.le.com.####.com/lc13_yunzhuanma/202007/09/15/36/a8deaf0c5f2330cc9...
  • ba####.le.com.####.com/lc13_yunzhuanma/202007/16/17/48/0c19c1880d2b44752...
  • ba####.le.com.####.com/sdk/passport.js
  • be####.new####.com/exposure.php?id=####&pos_id=####&ad_id=####&ord_id=##...
  • be####.new####.com/images/analysis.gif?dm=####&url=####&ref=####&swh=###...
  • be####.new####.com/product/publish_grab_bitauto_dealers.php?action=####&...
  • c####.jumen####.com/flow_control.php
  • c####.jumen####.com/go_pc_index.php
  • c####.jumen####.com/init.php
  • c####.oss-cn-####.aliy####.com:443/init.jx
  • c.c####.com/core.php?web_id=####&t=####
  • c.c####.com/stat.php?id=####
  • c.c####.com/z_stat.php?id=####
  • cdn-inn####.edg####.net:443/ia-sdk-config/apps/103752/103752.json
  • co####.ssp.adoc####.com/api/v2/SDKActiveConfig?version=####&channelCode=...
  • co####.ssp.adoc####.com/api/v2/SDKCommonConfig?channelCode=####&version=...
  • co####.ssp.adoc####.com/api/v3/mgmConfig?channelCode=####&version=####&a...
  • cwgj####.oss-cn-####.aliy####.com/boss/20220316/05e1a9533f374d438a7639f7...
  • d####.i####.com/iwt/a.gif?url=####&ua=####&uuid=####&sign=####&ts=####
  • eff.lu.s####.com/answer?asid=####&r=####
  • f####.l####.com/?site=####
  • f####.l####.com/ds?pv=####&code=####&_=####
  • filt####.a####.top/anshua.json
  • filt####.a####.top/filter_control_603.json
  • filt####.a####.top/req.json
  • gd.a.s####.com/cityjson?ie=####
  • gm.mm####.com/9.gif?abc=####&rnd=####
  • i####.sogo####.com.####.com/app/a/200630/003ea0b00f0b15e04aedf0f06ecfbf09
  • i####.sogo####.com.####.com/app/a/200630/0065f0249846973d9cd856779ede8021
  • i####.sogo####.com.####.com/app/a/200630/014fc191aff39a162de52db21d813207
  • i####.sogo####.com.####.com/app/a/200630/0395f5344c8967fcb607e9f02f1ac140
  • i####.sogo####.com.####.com/app/a/200630/042db8b1f15adafd9f28a7bfc3ff6baf
  • i####.sogo####.com.####.com/app/a/200630/07a3f61436b5ff9a1ef13ebdc730d8c6
  • i####.sogo####.com.####.com/app/a/200630/1985c22eada568542cef3aebae851dbb
  • i####.sogo####.com.####.com/app/a/200630/2a75504802bb9cce7169ea8b785fb730
  • i####.sogo####.com.####.com/app/a/200630/42083b58b145a1a0fe0dca7265e1a5d1
  • i####.sogo####.com.####.com/app/a/200630/4392e502a48d73d3626a4eb50e9e67c8
  • i####.sogo####.com.####.com/app/a/200630/4a6b3e1dd394feb00b6e620bb687e8b5
  • i####.sogo####.com.####.com/app/a/200630/4dc482972bf4d0db6a10eb4ebd45aba9
  • i####.sogo####.com.####.com/app/a/200630/5ceafac60971f6a92f8ebee34fdc70fd
  • i####.sogo####.com.####.com/app/a/200630/635bc05d89865873848d692e72432816
  • i####.sogo####.com.####.com/app/a/200630/64fc7ae9101aaa49c9436a1611ad7bd2
  • i####.sogo####.com.####.com/app/a/200630/6e0cae69f28819270d3ad6dc5145d6f1
  • i####.sogo####.com.####.com/app/a/200630/6eb573c298fe132356a0b02c9c512646
  • i####.sogo####.com.####.com/app/a/200630/6ed8fd17995490012abac1321f72c1ca
  • i####.sogo####.com.####.com/app/a/200630/752aa1847eddd46c442f33ac2fa30bd8
  • i####.sogo####.com.####.com/app/a/200630/82d1e985a7a1a0e1d41d96efbd71f5b1
  • i####.sogo####.com.####.com/app/a/200630/873c9d322b2b3df1d6a91fb78abf65f7
  • i####.sogo####.com.####.com/app/a/200630/87aefb733e1be98fa01d90bc1ac81d23
  • i####.sogo####.com.####.com/app/a/200630/87d669ff717df14be87807c6fb425ce8
  • i####.sogo####.com.####.com/app/a/200630/885cb4e7745609fc0448bf0ba65b1e42
  • i####.sogo####.com.####.com/app/a/200630/8acfc15fcdafb0f716049439a856951c
  • i####.sogo####.com.####.com/app/a/200630/97ee1cfb2673e1ae01c7b1ca45c686bc
  • i####.sogo####.com.####.com/app/a/200630/9b0ea3255024e7ad3052946248f132b0
  • i####.sogo####.com.####.com/app/a/200630/a93da1fe8b162e9e1d4d2d0b8209485f
  • i####.sogo####.com.####.com/app/a/200630/b2a2ae8a42a806c0e8a40a8aab228a23
  • i####.sogo####.com.####.com/app/a/200630/b630dc2739187b66b171ab102b35b6cd
  • i####.sogo####.com.####.com/app/a/200630/ba303bd063b9017bea09115cde273941
  • i####.sogo####.com.####.com/app/a/200630/c2a2a9c96880260847811ca1678b5d9a
  • i####.sogo####.com.####.com/app/a/200630/c84f3c50f86762421635cd1e2fb71d58
  • i####.sogo####.com.####.com/app/a/200630/c864d4ec453173e0d29a20a6de4b301c
  • i####.sogo####.com.####.com/app/a/200630/cb8049b1173807da11691d96ce82142b
  • i####.sogo####.com.####.com/app/a/200630/cb865bc125c1d87b579af01d437dd2d3
  • i####.sogo####.com.####.com/app/a/200630/cfedff6a820a9fed08b86b60dd1932ef
  • i####.sogo####.com.####.com/app/a/200630/d81713d0ca01d569902bf1c2a61e93eb
  • i####.sogo####.com.####.com/app/a/200630/f4cbfa37eae520f45fae2baa57d52d57
  • i####.wt####.com/admin_seller/js/theme/default/laydate.css?v=####
  • i####.wt####.com/auto/201711/image/loading.png
  • i####.wt####.com/auto/202002/css20200810/index_red_noflow.css
  • i####.wt####.com/auto/202101/css/index_red.css?v=####
  • i####.wt####.com/auto/202101/image/<System Property>.png?2021####
  • i####.wt####.com/auto/202101/image/cpbj.png
  • i####.wt####.com/auto/202101/image/discount.png
  • i####.wt####.com/auto/202101/image/evaluation.png
  • i####.wt####.com/auto/202101/image/font.png
  • i####.wt####.com/auto/202101/image/interview.png
  • i####.wt####.com/auto/202101/image/jsj.png
  • i####.wt####.com/auto/202101/image/left.png
  • i####.wt####.com/auto/202101/image/newcar.png
  • i####.wt####.com/auto/202101/image/pika.png
  • i####.wt####.com/auto/202101/image/tt.png
  • i####.wt####.com/site/other/tmping/img_1616466998749.png
  • i####.wt####.com/top/201812/image/logo.png
  • i####.wt####.com/top/202002/css/index_red_noflow.css
  • i####.wt####.com/top/202101/css/index_red.css?v=####
  • i####.wt####.com/top/202101/image/icon.png
  • i####.wt####.com/top/202101/image/nav_live.png
  • imgsnew####.b0.a####.com/
  • imgsnew####.b0.a####.com/auto/text/css/index.css
  • imgsnew####.b0.a####.com/ina_product/logo/359/
  • imgsnew####.b0.a####.com/index1.html
  • imgsnew####.b0.a####.com/js/iwt/iwt1.0.1.js
  • imgsnew####.b0.a####.com/js/jquery-1.7.2.min.js
  • j####.qq.com/get?api=####
  • js.wt####.com/admin_seller/js/laydate.v1.js
  • js.wt####.com/auto/201812/js/brand.js
  • js.wt####.com/auto/202101/js/public.js
  • js.wt####.com/js/CommonUtil.mini.js?v=####
  • js.wt####.com/js/analysis.js
  • js.wt####.com/js/city_substation_data.js
  • js.wt####.com/js/ina_ad_init.js
  • js.wt####.com/js/index_bseries_data_cache.js
  • js.wt####.com/js/index_sign_data_cache.js
  • js.wt####.com/js/iwt/iwt1.0.1.js
  • js.wt####.com/js/jquery-1.7.2.min.js
  • js.wt####.com/js/widgets/adapter-mini.js?20####
  • js.wt####.com/top/202101/js/public.js?v=####
  • lhyysdk####.oss-cn-####.aliy####.com:443/controlup603.json
  • lhyysdk####.oss-cn-####.aliy####.com:443/new_channl_603.json
  • m.l####.com/favicon.ico
  • mh####.b0.a####.com/favicon.ico
  • mh####.b0.a####.com/sdk/cj025_cj025.html
  • my-botc####.b0.a####.com/
  • my-botc####.b0.a####.com/css/base_v6.css
  • my-botc####.b0.a####.com/css/reset.css
  • my-botc####.b0.a####.com/ee3sd.js?key=####
  • my-botc####.b0.a####.com/favicon.ico
  • my-botc####.b0.a####.com/my.js?key=####
  • my-botc####.b0.a####.com/p10mx.js?key=####
  • naqu####.com:443/System/CivTapper/checkUnlocks.php?tag=####&DeviceID=####
  • naqu####.com:443/System/CivTapper/firstScript.php?c0b1da5####
  • p####.api.adoc####.com/ip
  • res####.a####.top/LHYY.png
  • res####.a####.top/auto/201711/image/loading_614_307.png
  • res####.a####.top/auto/201711/image/loading_70_70.png
  • res####.a####.top/sdk13_2.png
  • res####.a####.top/sdk2.png
  • res####.a####.top/sdk24.png
  • res####.a####.top/sdk25.png
  • res####.a####.top/sdk5.png
  • t####.fa####.info/
  • t####.fa####.info/favicon.ico
  • t####.fa####.info/static/image/travel.jpg
  • t####.fa####.info/static/js/tx-click.js
  • t####.sogo####.com.####.com/wap/css/common.css
  • t####.sogo####.com.####.com/wap/images/wap_logo_1.png
  • t####.sogo####.com.####.com/wap/js/anticheat.min.js
  • t2.chartb####.com:443/apps/icons/56cf146d04b0165b7dc88418.114.png
  • t2.chartb####.com:443/base_templates/html/playable-core-v2-CBCloseButton...
  • t2.chartb####.com:443/base_templates/html/static-etna-e4bf514d28.html
  • t2.chartb####.com:443/base_templates/html/video-v3_01-ad549ad595.html
  • u####.a####.top/603.html
  • u####.a####.top/favicon.ico
  • u####.b0.upa####.com/auto/201711/image/loading.png
  • u####.b0.upa####.com/auto/201711/image/logo.png
  • u####.b0.upa####.com/auto/202002/image/jxcp.png
  • u####.b0.upa####.com/auto/202002/image/sgzch.png
  • u####.b0.upa####.com/image/ad_ina/adm_ina_16126809714359245547.jpg!2600
  • u####.b0.upa####.com/image/ad_ina/adm_ina_16126809964886081764.jpg!2600
  • u####.b0.upa####.com/image/ad_ina/adm_ina_16466417267192292682.jpg!2600
  • u####.b0.upa####.com/image/auto/160630/lazyload340.jpg
  • u####.b0.upa####.com/image/auto/160630/lazyload50.jpg
  • u####.b0.upa####.com/images/ad/ad.png
  • u####.b0.upa####.com/libs/jquery/jquery-2.0.3.min.js
  • u####.dspliul####.com:99/ip/index.html
  • u####.dspliul####.com:99/tpy/index.htm
  • www.ddz####.cn/favicon.ico
  • www.ddz####.cn/js/tools.js
  • www.ddz####.cn/sogou.html?qudao=####
  • x####.ur####.s####.com/ask?id=####&cb=####&ssi0=####&wsg=####&_v=####
  • x####.ur####.s####.com/ask?id=####&ssi0=####&cb=####&af=####&sohuurl=###...
  • x####.ur####.s####.com/ask?id=1176965&ssi0=1794&cb=SOGOU_STAR_SETJSONADS...
  • x####.ur####.s####.com/ask?id=1178176&ssi0=1794&cb=SOGOU_STAR_SETJSONADS...
  • x####.ur####.s####.com/ask?id=1178291&ssi0=1794&cb=SOGOU_STAR_SETJSONADS...
  • x####.ur####.s####.com/wap_ask_service?callback=####&url=####
  • x####.ur####.s####.com/wap_ask_service?callback=SOGOU_STAR_URL_CALLBACK&...
  • x####.ur####.s####.com/wapxml?_v=####&id=####&w=####&h=####&fv=####&mi=#...
  • x####.ur####.s####.com/wapxml?_v=67cf5a64&id=1176965&w=1&h=1&fv=0&mi=0&i...
  • x####.ur####.s####.com/wapxml?_v=67cf5a64&id=1178176&w=1&h=1&fv=0&mi=0&i...
  • x####.ur####.s####.com/wapxml?_v=67cf5a64&id=1178291&w=1&h=1&fv=0&mi=0&i...
  • x####.ur####.s####.com/wapxml?id=####&h=####&w=####&fv=####&if=####&mi=#...
  • z.c####.com/stat.htm?id=####&r=####&lg=####&ntime=####&cnzz_eid=####&sho...
HTTP POST requests:
  • api.a####.ads####.cn/thirdparty/sapi/chn
  • co####.uca.c####.####.com:443/
  • l####.chartb####.com:443/api/config
  • l####.chartb####.com:443/api/install
  • l####.chartb####.com:443/webview/v2/interstitial/get
  • l####.chartb####.com:443/webview/v2/prefetch
  • newap####.math####.cn/titan/monitor/device_info
  • p####.pc####.com.cn/ip.jsp
  • prd-le####.cdp.inte####.####.com:443/v1/events
File system changes:
Creates the following files:
  • /data/data/####/.appInfo
  • /data/data/####/.hptc.cache_atic.civclicker
  • /data/data/####/.hptc_kache_atic.civclicker
  • /data/data/####/00fad72122093bf2_0
  • /data/data/####/0273b66c056e3800_0
  • /data/data/####/030dfee1856373a6_0
  • /data/data/####/03dc728139f049b2_0
  • /data/data/####/04c7beb5214958f7_0
  • /data/data/####/04ed4d17b013acb0_0
  • /data/data/####/04f337210215b73d_0
  • /data/data/####/04f337210215b73d_1
  • /data/data/####/0538cbafab7db87d_0
  • /data/data/####/0538cbafab7db87d_1
  • /data/data/####/0560b6919770531f_0
  • /data/data/####/05acd9c8f8d09125_0
  • /data/data/####/05acd9c8f8d09125_1
  • /data/data/####/06ce3441b81c3ec8_0
  • /data/data/####/0870bbdc2d78ce42_0
  • /data/data/####/0955b9839adb3297_0
  • /data/data/####/0955b9839adb3297_1
  • /data/data/####/0a8266b510c9b073_0
  • /data/data/####/0b7b705d809ee77c_0
  • /data/data/####/0d667f7b58962bcd_0
  • /data/data/####/0d8f251c673e3914_0
  • /data/data/####/0dcf9374e8d0aa20e66245049c41b0d5.db
  • /data/data/####/0f0978170fdaf3b0_0
  • /data/data/####/0f8bcc584c2ac45d_0
  • /data/data/####/101c5bf7aa5f7fec_0
  • /data/data/####/113a66c535fb9a36_0
  • /data/data/####/11852bd5878aa86e_0
  • /data/data/####/11852bd5878aa86e_1
  • /data/data/####/118dead3e139c249_0
  • /data/data/####/118dead3e139c249_1
  • /data/data/####/1285e0be3812c1f0_0
  • /data/data/####/12c940e35cc75706_0
  • /data/data/####/13015c2c6cb25d43_0
  • /data/data/####/13_2.dex
  • /data/data/####/13_2.dex.flock (deleted)
  • /data/data/####/13_2.jar
  • /data/data/####/14df560ebea6dab7_0
  • /data/data/####/155f26518cd3dafa_0
  • /data/data/####/15aa7bead5550197_0
  • /data/data/####/168e77b661db0712_0
  • /data/data/####/1704f3191660d10d_0
  • /data/data/####/1714af51f380b9f7_0
  • /data/data/####/175364725eae16e2_0
  • /data/data/####/17d15248e5e3fd91_0
  • /data/data/####/18f4aaf5ccc9713e_0
  • /data/data/####/1910134316
  • /data/data/####/191778c69deb792f_0
  • /data/data/####/199eaf3c4706a884_0 (deleted)
  • /data/data/####/19e05fed4c405ab8_0
  • /data/data/####/1a2d523390dee49a_0
  • /data/data/####/1a6f310b18cdca61_0
  • /data/data/####/1bc3061a7b3b707c_0
  • /data/data/####/1fa43ee1ece3feae_0
  • /data/data/####/2.dex
  • /data/data/####/2.dex.flock (deleted)
  • /data/data/####/2.jar
  • /data/data/####/204ca53123b48f1f_0
  • /data/data/####/20bcae8ad560382e_0
  • /data/data/####/20c59d247f95160f_0
  • /data/data/####/20c59d247f95160f_0 (deleted)
  • /data/data/####/225c654d3acbf48d_0 (deleted)
  • /data/data/####/228fa3cbaae9bf3c_0
  • /data/data/####/2320e67f7a249553_0
  • /data/data/####/233376b5908f3cfc_0
  • /data/data/####/23dab9da7609f1c8_0
  • /data/data/####/24.dex
  • /data/data/####/24.dex.flock (deleted)
  • /data/data/####/24.jar
  • /data/data/####/244705de4126aae6_0
  • /data/data/####/24d4207b2016c9b2_0
  • /data/data/####/25.dex
  • /data/data/####/25.dex.flock (deleted)
  • /data/data/####/25.jar
  • /data/data/####/250d36232675f079_0
  • /data/data/####/257fddfe63e73dd1_0
  • /data/data/####/257fddfe63e73dd1_1
  • /data/data/####/25e50a1a6bc283a6_0
  • /data/data/####/25e50a1a6bc283a6_1
  • /data/data/####/265a7b4bf9d14e97_0
  • /data/data/####/26ae73f742d0addc_0
  • /data/data/####/287d6300f1f7b90a_0
  • /data/data/####/2a574d2bf26fa2d7_0
  • /data/data/####/2b4ff8d5552fa07d_0
  • /data/data/####/2d1a08bba839bf27_0
  • /data/data/####/2d1a08bba839bf27_1
  • /data/data/####/2d355b4b5e14f969_0
  • /data/data/####/2d7dbb7560ef5d52_0
  • /data/data/####/2ec644172ece20ac_0
  • /data/data/####/2ec644172ece20ac_1
  • /data/data/####/2ee90f8fa0abfd33_0
  • /data/data/####/2f7c376e3d16f4ab_0
  • /data/data/####/2fc33fe21cdd6ca5_0
  • /data/data/####/2fc9ea0d657e0797_0 (deleted)
  • /data/data/####/2fd605906e281d72_0
  • /data/data/####/31ab73b58233cfb9_0
  • /data/data/####/3327275
  • /data/data/####/33dda126ba3b1ec1_0
  • /data/data/####/33e4018af87192a8_0
  • /data/data/####/33e4018af87192a8_1
  • /data/data/####/3435d9ac9d055801_0
  • /data/data/####/3456b53a6be34109_0
  • /data/data/####/34591b66b32f567e_0
  • /data/data/####/34b4f1d4bcb11273_0 (deleted)
  • /data/data/####/3601bbdb109e0b84_0
  • /data/data/####/3625e5fc53753a7b_0
  • /data/data/####/365af9b69549e9ba_0
  • /data/data/####/3687e31cbcc5c665_0
  • /data/data/####/36c6fb5444647635_0
  • /data/data/####/37d1036f894e646c_0
  • /data/data/####/38000461f3014315_0
  • /data/data/####/38927b0d17dd58c8_0
  • /data/data/####/38927b0d17dd58c8_1
  • /data/data/####/3908b833dbe3d0d6_0
  • /data/data/####/3a0c1ab35e4ec1f2_0
  • /data/data/####/3a27c154799332e6_0
  • /data/data/####/3a9e97dbbeaba949_0
  • /data/data/####/3c82f1f663bf65aa_0
  • /data/data/####/3caec600f6e7aef1_0
  • /data/data/####/3e41a0d1d9e169b8_0
  • /data/data/####/3fb0d52f7384f4aa_0
  • /data/data/####/40827a0464dfc05d_0
  • /data/data/####/408960da4e350c30_0
  • /data/data/####/41cac8561899e950_0
  • /data/data/####/41cac8561899e950_1
  • /data/data/####/42421ad8928da693_0
  • /data/data/####/424961eba0ff4faf_0
  • /data/data/####/4287233b2d2ce62c_0
  • /data/data/####/42d791918a2a14ab_0
  • /data/data/####/43133ecb0cc85a48_0
  • /data/data/####/4390a589efa17942_0
  • /data/data/####/43c135500a0372f5_0
  • /data/data/####/43f1859dee5e069c_0
  • /data/data/####/43f1859dee5e069c_1
  • /data/data/####/4518a4188aeace38_0
  • /data/data/####/461baf85a7e58e27_0
  • /data/data/####/464185b12374c86a_0
  • /data/data/####/46b29a78c509b430_0
  • /data/data/####/46b29a78c509b430_0 (deleted)
  • /data/data/####/46de324eadee86d1_0
  • /data/data/####/483aaee9605e1508_0
  • /data/data/####/48736c9c6117fb70_0
  • /data/data/####/4957615b59b0db56_0
  • /data/data/####/4975c7983237f0d8_0
  • /data/data/####/4a50d2fa66a12cf9_0
  • /data/data/####/4aa200d86c7e98d2_0
  • /data/data/####/4ad9ed0c4f9c63f0_0
  • /data/data/####/4c786fae65c992b9_0
  • /data/data/####/4cbcd68565cd04f7_0
  • /data/data/####/4cfc23a9dd84cde8_0
  • /data/data/####/4d9e31893cd14211_0
  • /data/data/####/4d9e31893cd14211_1
  • /data/data/####/4f49bd66d6c8a50c_0
  • /data/data/####/4fe7bd89a01cf83a_0
  • /data/data/####/5.dex
  • /data/data/####/5.dex.flock (deleted)
  • /data/data/####/5.jar
  • /data/data/####/50cc822a7aa24b4c_0
  • /data/data/####/511a03840b756171_0
  • /data/data/####/519bda5fb1ed6dff_0
  • /data/data/####/51e40dbfa53ba83f_0
  • /data/data/####/5202b4ebc3c4992d_0
  • /data/data/####/5228bac5657be912_0
  • /data/data/####/5228bac5657be912_1
  • /data/data/####/52fbb2d32a0d2b37_0
  • /data/data/####/53227d2aee8ebd5f_0
  • /data/data/####/53227d2aee8ebd5f_1
  • /data/data/####/53a4fba595cb5824_0
  • /data/data/####/53da9b3e14d4e228_0
  • /data/data/####/53da9b3e14d4e228_1
  • /data/data/####/54f950b955456830_0
  • /data/data/####/558abac751ea717e_0
  • /data/data/####/55943cafea69080d_0
  • /data/data/####/55df755d9113a4fa_0
  • /data/data/####/55df755d9113a4fa_1
  • /data/data/####/56367696b4854f4b_0
  • /data/data/####/56e676f4583e7d9f_0
  • /data/data/####/5763339e511382e4_0
  • /data/data/####/5871822145b63f58_0
  • /data/data/####/59834eb47aa38864_0
  • /data/data/####/59d9f955abbaad64_0
  • /data/data/####/5a653289e2c0705f_0
  • /data/data/####/5b23b2734fa5ea3d_0
  • /data/data/####/5bd39f99912dc6d9_0 (deleted)
  • /data/data/####/5bdc79785c518683_0
  • /data/data/####/5c31e8d2d7e89128_0
  • /data/data/####/5c7d896d9df8014c_0
  • /data/data/####/5e2924653cf56419_0
  • /data/data/####/5ec62338e1cd647f_0
  • /data/data/####/5ed91487912d5622_0
  • /data/data/####/5ee31e68169cda3d_0
  • /data/data/####/5f5d027802a7e008_0
  • /data/data/####/5f82245e0f6e60e0_0
  • /data/data/####/5f9db81fd72e564d_0
  • /data/data/####/5f9db81fd72e564d_1
  • /data/data/####/5fee187415bd132b_0 (deleted)
  • /data/data/####/60aa4400df5a29c6_0
  • /data/data/####/64d7bf689269b792_0
  • /data/data/####/64d7bf689269b792_1
  • /data/data/####/64d8590d1c46d981_0 (deleted)
  • /data/data/####/662952d0be7e63d7_0
  • /data/data/####/662952d0be7e63d7_1
  • /data/data/####/66609707662d178e_0
  • /data/data/####/67d72a1294ee8c9c_0
  • /data/data/####/6872bc0bac36a6ab_0
  • /data/data/####/68a96783772fe06e_0
  • /data/data/####/68f198950df124f7_0
  • /data/data/####/69b01ddc3cb0ac5c_0
  • /data/data/####/69b1ab20df8ff097_0
  • /data/data/####/6aca59b90f48c428_0
  • /data/data/####/6aca59b90f48c428_1
  • /data/data/####/6ada9843cca693042c76cd0f856f8457.db
  • /data/data/####/6b178f70f5d5b1aa_0
  • /data/data/####/6b1b7859e20c2ee1_0
  • /data/data/####/6bbc5af5ad542fbf_0
  • /data/data/####/6beca79329aa89d1_0
  • /data/data/####/6c835c0fd93538b9_0
  • /data/data/####/6c835c0fd93538b9_1
  • /data/data/####/6d0ebcc2ae290998_0
  • /data/data/####/6d0ebcc2ae290998_1
  • /data/data/####/700ea9c4fe557c29_0
  • /data/data/####/701cc8744bf4d4d3_0 (deleted)
  • /data/data/####/701f76628bb91193_0
  • /data/data/####/701f76628bb91193_1
  • /data/data/####/70f3c4e4c2dea35e_0
  • /data/data/####/715a027a650b1369_0
  • /data/data/####/720c3eb47879d7d7_0
  • /data/data/####/720c3eb47879d7d7_1
  • /data/data/####/72d28332a4c75041_0
  • /data/data/####/7378ff83e5beb450_0
  • /data/data/####/740c4f6c624dd130_0
  • /data/data/####/740c4f6c624dd130_1
  • /data/data/####/74a20616b579f6c0_0
  • /data/data/####/74a20616b579f6c0_1
  • /data/data/####/74a2e7bbcf90778c_0
  • /data/data/####/74cc40abe940518b_0
  • /data/data/####/7577dc3d71e51e06_0
  • /data/data/####/758995a33be289037d39e226f6a077b8.db
  • /data/data/####/760359c9f2451874_0
  • /data/data/####/76ca32cbd151ffea_0 (deleted)
  • /data/data/####/775114fd2ec802a8_0
  • /data/data/####/7768ff14647278d0_0
  • /data/data/####/7768ff14647278d0_1
  • /data/data/####/77eefffc30316aaa_0
  • /data/data/####/77fe5a3dfd5cfced_0
  • /data/data/####/788e40949ee50c01_0
  • /data/data/####/792cac1ad663e7f2_0
  • /data/data/####/79b3655ce90bfeef_0
  • /data/data/####/7a24ef030393ef11_0
  • /data/data/####/7bb2621d07814446_0
  • /data/data/####/7bd1b1e57d86d671_0
  • /data/data/####/7ccc095159d7f92d_0
  • /data/data/####/7cf726773deb49c6_0
  • /data/data/####/7cf726773deb49c6_1
  • /data/data/####/7e4d2a4937a371e9_0
  • /data/data/####/7ea7695e04543169_0
  • /data/data/####/8131fbadb0a31e87_0
  • /data/data/####/820e8f4409a95f79_0
  • /data/data/####/829e558f18de59da_0
  • /data/data/####/82b26f351c7d34a9_0
  • /data/data/####/83945d5fd0707a4c_0
  • /data/data/####/841e9ef8b25eddcf_0
  • /data/data/####/851b8ca8c4cdb47e_0
  • /data/data/####/8590e4548812b4cf_0
  • /data/data/####/85d67f99e81b7178_0
  • /data/data/####/87bc0588d44bb506_0
  • /data/data/####/87f859368cd280b0_0
  • /data/data/####/87f859368cd280b0_1
  • /data/data/####/88f2a943af827160_0
  • /data/data/####/89029013987ffef9_0
  • /data/data/####/8963ca7bd5ffb679_0
  • /data/data/####/8a1f4f24a5a48eb0_0
  • /data/data/####/8ae6441edfc6797e_0
  • /data/data/####/8b062ba89301468f_0
  • /data/data/####/8b1949d31b969f53_0
  • /data/data/####/8b309af0b331cf2d_0
  • /data/data/####/8b61e75ef2142789_0
  • /data/data/####/8b61e75ef2142789_1
  • /data/data/####/8be546bf03ddce82_0
  • /data/data/####/8c3592031444215d_0
  • /data/data/####/8c4fe6da6f79a729_0
  • /data/data/####/8d3c4540d8d89e68_0
  • /data/data/####/8d5bc8697cf7b387_0
  • /data/data/####/8de774a6e23edd36_0
  • /data/data/####/8e24387cec515e14_0
  • /data/data/####/8e24387cec515e14_1
  • /data/data/####/8e3859f724d2ac8b_0
  • /data/data/####/8e4e308e8c03d3b8_0
  • /data/data/####/8ed66c590690ccb4_0
  • /data/data/####/8fdf5d9824f6e461_0
  • /data/data/####/903716528f3d3672_0
  • /data/data/####/903716528f3d3672_1
  • /data/data/####/905f7d1578ed0a6c_0
  • /data/data/####/907a8cc21ba4d0fc_0
  • /data/data/####/912a040435825170_0
  • /data/data/####/912a040435825170_0 (deleted)
  • /data/data/####/91773fa968155fcf_0
  • /data/data/####/91c0612f7cba5c37_0
  • /data/data/####/92c14b0e417a2e35_0
  • /data/data/####/931e771ac3ac9a29_0
  • /data/data/####/94121d50840a69eb_0
  • /data/data/####/948fe51c8f03fa73_0
  • /data/data/####/94c0ea19a292eaee_0
  • /data/data/####/9539dab8e380b49e_0
  • /data/data/####/95d5e10821a26893_0
  • /data/data/####/96d50439ee10db38_0
  • /data/data/####/9736632b46030b57_0
  • /data/data/####/9736632b46030b57_1
  • /data/data/####/976b197a75a6610d_0
  • /data/data/####/97bcf9e2ba42352b_0
  • /data/data/####/980d7433720c75f6_0
  • /data/data/####/982bac042989bea0_0
  • /data/data/####/982bac042989bea0_1
  • /data/data/####/985958d976619751_0
  • /data/data/####/985958d976619751_1
  • /data/data/####/98a09fd48c674820_0
  • /data/data/####/99858e53f53ffcf0_0
  • /data/data/####/9a3123e12133a558_0
  • /data/data/####/9a51ae6b891c1205_0
  • /data/data/####/9a51ae6b891c1205_1
  • /data/data/####/9b155d1f4bfe3403_0
  • /data/data/####/9bc4dd13c22bee00_0 (deleted)
  • /data/data/####/9c23f22ae13b5b53_0
  • /data/data/####/9e6d4e6748f7e678_0
  • /data/data/####/9eebb6b5cb488a4a_0
  • /data/data/####/9ef98f07e8de0ef4_0
  • /data/data/####/9ef98f07e8de0ef4_1
  • /data/data/####/9fc5eaac3813d9502e2c301f2645e6da_nearby.dex
  • /data/data/####/9fc5eaac3813d9502e2c301f2645e6da_nearby.dex.flo...leted)
  • /data/data/####/9fc5eaac3813d9502e2c301f2645e6da_nearby.jar
  • /data/data/####/9fe0ffd251b780bf_0
  • /data/data/####/BmCloudPlugin.apk
  • /data/data/####/BmCloudPlugin.dex
  • /data/data/####/BmCloudPlugin.dex.flock (deleted)
  • /data/data/####/Cookies-journal
  • /data/data/####/IAAndroidConfig.data
  • /data/data/####/IAConfigurationPreferences.xml
  • /data/data/####/WebViewChromiumPrefs.xml
  • /data/data/####/XkdjsIx132mMcomm.xml
  • /data/data/####/XkdjsIx132mMskey1.xml
  • /data/data/####/a0febd229d2faf83_0
  • /data/data/####/a0febd229d2faf83_1
  • /data/data/####/a1c99c4413a5be70_0
  • /data/data/####/a1c99c4413a5be70_1
  • /data/data/####/a1d01e85527f04a9_0
  • /data/data/####/a32ce5ffc7fc0e10_0
  • /data/data/####/a32ce5ffc7fc0e10_1
  • /data/data/####/a3388401fd41ff4b_0
  • /data/data/####/a3388401fd41ff4b_1
  • /data/data/####/a3a340c12a524873_0
  • /data/data/####/a4b757042bb26d5d_0
  • /data/data/####/a4cf3597f0f75dad_0
  • /data/data/####/a4eed51770e3fc5e_0
  • /data/data/####/a5a75ff94e45e803_0
  • /data/data/####/a63fffdc213035a8_0
  • /data/data/####/a67d5dc2a1b2b8b1fab5e8f920120ade_games.dex
  • /data/data/####/a67d5dc2a1b2b8b1fab5e8f920120ade_games.dex.flock (deleted)
  • /data/data/####/a67d5dc2a1b2b8b1fab5e8f920120ade_games.jar
  • /data/data/####/a73059f60dc2a73e_0
  • /data/data/####/a82536294e8b9612_0
  • /data/data/####/a82b5939cdd9ec0d_0
  • /data/data/####/a872c53ea2af321f_0
  • /data/data/####/ab3055b27f7bd763_0
  • /data/data/####/ab3055b27f7bd763_1
  • /data/data/####/abde17fde1c24d7d_0
  • /data/data/####/abec7ca92c1d5d55_0
  • /data/data/####/abfb6d563e1fa289_0
  • /data/data/####/acc4afdde1567999_0
  • /data/data/####/acdebef45027e692_0
  • /data/data/####/acfb52d2ffc9488d_0
  • /data/data/####/ad326239e7d1af7a_0
  • /data/data/####/ad6ffd6294e6d642_0
  • /data/data/####/ad9c4b36fe61c96d_0
  • /data/data/####/ae2a3b52fec8bcd0_0
  • /data/data/####/aeb7a9eccceb08bf_0
  • /data/data/####/af0abd0dbf616f84_0
  • /data/data/####/af5fc73c7ab0251c_0
  • /data/data/####/af5fc73c7ab0251c_1
  • /data/data/####/afc432ee41dd7f5a_0
  • /data/data/####/afc432ee41dd7f5a_1
  • /data/data/####/afefdc828fc4d6d2_0
  • /data/data/####/b093196de2d71b07_0
  • /data/data/####/b1348502583059cb_0 (deleted)
  • /data/data/####/b1f4281842ed2f5e_0
  • /data/data/####/b1f4281842ed2f5e_0 (deleted)
  • /data/data/####/b1f9c9659ca6a2ac_0
  • /data/data/####/b3ec4dd349f64b66_0
  • /data/data/####/b43f253ed78164b0_0
  • /data/data/####/b45aec53896b7adb_0
  • /data/data/####/b4b087dcbcac375c_0
  • /data/data/####/b4b087dcbcac375c_1
  • /data/data/####/b64a8a2b673caa71_0
  • /data/data/####/b695d4c4b036a2a4_0
  • /data/data/####/b6a3ea6801319257_0
  • /data/data/####/b75058728ee5d442_0
  • /data/data/####/b75058728ee5d442_1
  • /data/data/####/b8218da606411042_0
  • /data/data/####/b8e33bffc0db8b37_0
  • /data/data/####/b8e33bffc0db8b37_1
  • /data/data/####/ba6fcac68058b03b_0
  • /data/data/####/ba6fcac68058b03b_1
  • /data/data/####/bacbef12356c407d_0
  • /data/data/####/bc1e60581d0f0a2c_0
  • /data/data/####/bc773c4780317c92_0
  • /data/data/####/bcb65494d022aa9e_0
  • /data/data/####/bcfbbce365b84de1_0
  • /data/data/####/bdae240b04211fb8_0
  • /data/data/####/bdda4f8293e06f0a_0
  • /data/data/####/be1a12176dfdd11d_0
  • /data/data/####/be25da6a06f982c7_0
  • /data/data/####/be923db90dd5a33d_0
  • /data/data/####/bebcf8301e3a1b86_0
  • /data/data/####/bf1e9deaa4152dd9_0
  • /data/data/####/bfc84e272c671856_0
  • /data/data/####/bm_sp_file.xml
  • /data/data/####/c0c49cc7ca8722fd_0
  • /data/data/####/c1827525582d6811688ee13bd2d45c90.db
  • /data/data/####/c438af969fafb228_0
  • /data/data/####/c4c7046355a18024_0
  • /data/data/####/c4c7046355a18024_1
  • /data/data/####/c55ebba82da9607b_0
  • /data/data/####/c7c9ab843d95c44e_0
  • /data/data/####/c7ce1868366f1643_0
  • /data/data/####/c7e617e81709b325_0
  • /data/data/####/c824371754a9f191_0
  • /data/data/####/c840e3ecd86d7c5a_0
  • /data/data/####/c85100dc42345b8d_0
  • /data/data/####/c85100dc42345b8d_1
  • /data/data/####/caacc22c627f0984_0
  • /data/data/####/cb90ff96d7073e63_0
  • /data/data/####/cbPrefs.xml
  • /data/data/####/cbac9c6bda54af49_0
  • /data/data/####/cc0c8423bbd2c482_0
  • /data/data/####/cc34bd00e13b9c34_0
  • /data/data/####/cc34bd00e13b9c34_1
  • /data/data/####/cd3b56bba4bc4a96_0
  • /data/data/####/cd7fca0f17ad99bd_0
  • /data/data/####/cd91d5e186abd2c6_0
  • /data/data/####/cdb3fa8ef8c8d2ad_0
  • /data/data/####/com.heyzap.sdk.ads.xml
  • /data/data/####/com.naquatic.civclicker.v2.playerprefs.xml
  • /data/data/####/com.naquatic.civclicker_preferences.xml
  • /data/data/####/countIp.xml
  • /data/data/####/d07444cce2869831_0 (deleted)
  • /data/data/####/d0ec9692d49f3968_0
  • /data/data/####/d0ee42df051a59f0_0
  • /data/data/####/d119490a6becf284_0
  • /data/data/####/d119490a6becf284_1
  • /data/data/####/d1c4424d5ae58a8d_0
  • /data/data/####/d1f30cdff69c58fa_0
  • /data/data/####/d2acf1ff2b3a5c10_0
  • /data/data/####/d2deefa5c0a4a41c_0
  • /data/data/####/d2f8852f5a43cef1_0 (deleted)
  • /data/data/####/d359028385ebc4cc_0
  • /data/data/####/d359028385ebc4cc_1
  • /data/data/####/d3aaa887a9a6fe1e_0
  • /data/data/####/d3aaa887a9a6fe1e_1
  • /data/data/####/d3fee1e2b8e90707_0
  • /data/data/####/d40e4d1f39b1678b_0
  • /data/data/####/d4219fff9a178666_0
  • /data/data/####/d49882ba0ca954e6_0
  • /data/data/####/d5dba67533884fbb_0
  • /data/data/####/d7b8c8fa84e83d80_0
  • /data/data/####/d7f2b1827e7f11d7_0
  • /data/data/####/d7fb10c4355fbd0c_0
  • /data/data/####/d8a7c87d7a12c7d0_0
  • /data/data/####/d8a7c87d7a12c7d0_1
  • /data/data/####/d8afa18d53ac4f52_0
  • /data/data/####/d952ff91f27e44a2_0
  • /data/data/####/d98f0ae898a7e8c4_0
  • /data/data/####/da4e359d4e7cbaa9_0
  • /data/data/####/daaaceb9d42eb5b5_0
  • /data/data/####/db1079d0268380b1_0
  • /data/data/####/dbe1a5abb591e78e_0 (deleted)
  • /data/data/####/dbee63132cdc8f0e_0
  • /data/data/####/dbf59e42573b233e_0
  • /data/data/####/dbf59e42573b233e_1
  • /data/data/####/dc810336c010d000_0
  • /data/data/####/dc810336c010d000_1
  • /data/data/####/dddac6a28d3e17e5_0
  • /data/data/####/de1038af3d850c48_0
  • /data/data/####/de10b98badbd398faa6687e41582b7a8.db
  • /data/data/####/deaf8d9198156493_0
  • /data/data/####/dec9e0e01b9ab693_0 (deleted)
  • /data/data/####/df443ac5746202f1_0
  • /data/data/####/e183da2c2de93681_0
  • /data/data/####/e1feb1d3278941cf_0
  • /data/data/####/e22df3acf0a194ed_0
  • /data/data/####/e2951493b9c6cc70_0
  • /data/data/####/e4e0756d395e239c_0 (deleted)
  • /data/data/####/e61a624bfe311a74_0
  • /data/data/####/e7459fe580428a79_0
  • /data/data/####/e7459fe580428a79_1
  • /data/data/####/e7aeec34673c3ecb_0
  • /data/data/####/e90d67bcf9c6609b_0
  • /data/data/####/e90d67bcf9c6609b_1
  • /data/data/####/e9562502077f5c32_0
  • /data/data/####/e98be7f358bac182_0
  • /data/data/####/ea89c103e80bb104_0
  • /data/data/####/eaf52de3da9f5659_0
  • /data/data/####/eaf52de3da9f5659_1
  • /data/data/####/ebf8b5ec745fc7e5_0
  • /data/data/####/ebf8b5ec745fc7e5_1
  • /data/data/####/ed680b3b07517676_0
  • /data/data/####/ed82d89f91c4079e_0
  • /data/data/####/ee1bd322e31c8d99_0
  • /data/data/####/ee497c9f4f3d9af8_0
  • /data/data/####/ee497c9f4f3d9af8_1
  • /data/data/####/entries.json
  • /data/data/####/f06f4f5737ac6550_0
  • /data/data/####/f06f4f5737ac6550_1
  • /data/data/####/f1c0ba6162356186_0
  • /data/data/####/f26005bf558319ec_0
  • /data/data/####/f280aa81003c3558_0
  • /data/data/####/f280aa81003c3558_1
  • /data/data/####/f2cc4a6f626f5595_0
  • /data/data/####/f30e58e6ec03c032_0
  • /data/data/####/f40542fd3cda601e_0
  • /data/data/####/f44b99b679486d77_0
  • /data/data/####/f49bec3acb6a1cdc_0
  • /data/data/####/f4aa2cff748274c6_0
  • /data/data/####/f61ed84c2f524408_0
  • /data/data/####/f61ed84c2f524408_1
  • /data/data/####/f6345ef3ec59e06c_0 (deleted)
  • /data/data/####/f8025f56886d94aa_0
  • /data/data/####/f8025f56886d94aa_1
  • /data/data/####/f8338d133a0c2bff_0
  • /data/data/####/f8338d133a0c2bff_1
  • /data/data/####/f86427f1730b39f3_0
  • /data/data/####/f925abe785d46426_0
  • /data/data/####/f96d424e27337fb7_0
  • /data/data/####/f9a69c0ef7a0152b_0
  • /data/data/####/f9a69c0ef7a0152b_1
  • /data/data/####/fa811279e6b75aeb_0
  • /data/data/####/faults.def
  • /data/data/####/fbb48788de07a489_0
  • /data/data/####/fbbd2614d35086bf_0
  • /data/data/####/fc58298eb03dabce_0
  • /data/data/####/fca46f5227782715_0
  • /data/data/####/fcbc08f1a7fc2bd3_0
  • /data/data/####/fef081aa8ef34425_0
  • /data/data/####/ff336dc841f613d5_0
  • /data/data/####/ff97c0062cbf59a4_0
  • /data/data/####/ff97c0062cbf59a4_1
  • /data/data/####/http_1020p.zhitouip.com_808.localstorage-journal
  • /data/data/####/http_1020yy.admasterto.com_99.localstorage-journal
  • /data/data/####/http_www.news18a.com_0.localstorage-journal
  • /data/data/####/https_cheku.xcar.com.cn_0.localstorage-journal
  • /data/data/####/https_price.pcauto.com.cn_0.localstorage-journal
  • /data/data/####/index
  • /data/data/####/inneractive.config
  • /data/data/####/jokeFile.xml
  • /data/data/####/metrics_guid
  • /data/data/####/proc_auxv
  • /data/data/####/tempAssets.apk
  • /data/data/####/the-real-index
  • /data/data/####/umengDB.db
  • /data/data/####/umengDB.dex
  • /data/data/####/umengDB.dex.flock (deleted)
  • /data/data/####/umengDB.jar
  • /data/media/####/.jokeID
  • /data/media/####/24300107c28a148a3984920ac658e1ec
  • /data/media/####/56cf146d04b0165b7dc88418.114.png
  • /data/media/####/config
  • /data/media/####/e
  • /data/media/####/g
  • /data/media/####/journal
  • /data/media/####/journal (deleted)
  • /data/media/####/journal.tmp
  • /data/media/####/playable-core-v2-CBCloseButton--1136896784
  • /data/media/####/s
  • /data/media/####/static-etna-366428459.tmp
  • /data/media/####/values
  • /data/media/####/video-v3_01-2068878963.tmp
  • /data/misc/####/primary.prof
Miscellaneous:
Loads the following dynamic libraries:
  • libgpg
  • libmain
Uses the following algorithms to encrypt data:
  • AES-CBC-PKCS5Padding
Uses the following algorithms to decrypt data:
  • AES-ECB-PKCS5Padding
  • DES
Accesses the ITelephony private interface.
Gets information about location.
Gets information about network.
Gets information about phone status (number, IMEI, etc.).
Gets information about installed apps.
Displays its own windows over windows of other apps.

Curing recommendations

Android

  1. If the mobile device is operating normally, download and install Dr.Web for Android Light. Run a full system scan and follow recommendations to neutralize the detected threats.
  2. If the mobile device has been locked by Android.Locker ransomware (the message on the screen tells you that you have broken some law or demands a set ransom amount; or you will see some other announcement that prevents you from using the handheld normally), do the following:
    • Load your smartphone or tablet in the safe mode (depending on the operating system version and specifications of the particular mobile device involved, this procedure can be performed in various ways; seek clarification from the user guide that was shipped with the device, or contact its manufacturer);
    • Once you have activated safe mode, install the Dr.Web для Android Light onto the infected handheld and run a full scan of the system; follow the steps recommended for neutralizing the threats that have been detected;
    • Switch off your device and turn it on as normal.

Find out more about Dr.Web for Android

Free trial

14 days

Download now
Get it on Google Play