Technical information
- Adware.Panda.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) a####.tingti####.com:80
- TCP(HTTP/1.1) api.tui####.b####.com:80
- TCP(HTTP/1.1) www.pan####.net:8080
- TCP(TLS/1.0) statson####.pu####.b####.com:443
- TCP(TLS/1.0) api.tui####.b####.com:443
- TCP(TLS/1.0) 1####.217.168.238:443
- TCP sa.tui####.b####.com:5287
- a####.tingti####.com
- a####.u####.co
- a####.u####.com
- api.tui####.b####.com
- api.u####.tingti####.com
- sa.tui####.b####.com
- statson####.pu####.b####.com
- www.b####.com
- www.pan####.net
- a####.tingti####.com/push/unbind_user_channelid_for_special
- a####.tingti####.com/radiov2/get_radio_index_setting
- a####.tingti####.com/record/connect
- a####.tingti####.com/record/install
- a####.tingti####.com/record/tosurvive
- a####.u####.com/app_logs
- api.tui####.b####.com/rest/2.0/channel/4172804666111544894
- api.tui####.b####.com/rest/2.0/channel/channel
- www.pan####.net:8080/Mini/req.action?
- www.pan####.net:8080/banner/req.action?
- www.pan####.net:8080/fview/req.action?
- www.pan####.net:8080/lscr/reqmore?
- www.pan####.net:8080/nlock/request?
- /data/data/####/WORLD_SHARED.xml
- /data/data/####/bindcache.xml
- /data/data/####/com.audio.tingtingkda.push_sync.xml
- /data/data/####/com.audio.tingtingkda;GSID.xml
- /data/data/####/exchangeIdentity.json
- /data/data/####/libcuid.so
- /data/data/####/mobclick_agent_cached_com.audio.tingtingkda137
- /data/data/####/pst.xml
- /data/data/####/pushclient.xml
- /data/data/####/pushstat_5.0.0.db
- /data/data/####/pushstat_5.0.0.db-journal
- /data/data/####/tingting_database
- /data/data/####/tingting_database-journal
- /data/data/####/tingting_setting.xml
- /data/data/####/tt_prefer.xml
- /data/data/####/um_cache_1558228822788.env
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/media/####/.cuid
- /data/media/####/.cuid2
- /data/media/####/.nomedia
- /data/media/####/04e60795062afc8b176b8538cb4fea9b.zip
- /data/media/####/journal
- /data/media/####/journal.tmp
- avmtcore
- bdpush_V2_6
- entry
- vrcore
- vrvessel
- RSA-ECB-PKCS1Padding
- AES-CBC-PKCS5Padding
- DES
- RSA-ECB-PKCS1Padding