Technical information
- Adware.Dowgin.14.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) ip.ta####.com:80
- TCP(HTTP/1.1) www.m####.com:80
- TCP(HTTP/1.1) www.google-####.com:80
- TCP(HTTP/1.1) con####.face####.net:80
- TCP(HTTP/1.1) nd.td.ntnew####.####.net:80
- TCP(HTTP/1.1) si.hi.shpan####.cn:80
- TCP(TLS/1.0) www.google-####.com:443
- TCP(TLS/1.0) stat####.face####.com:443
- TCP(TLS/1.0) con####.face####.net:443
- TCP(TLS/1.0) 1####.217.168.238:443
- con####.face####.net
- ip.ta####.com
- nd.td.ntnew####.cn
- si.hi.shpan####.cn
- stat####.face####.com
- www.google-####.com
- www.m####.com
- con####.face####.net/en_US/all.js
- ip.ta####.com/service/getIpInfo.php?ip=####
- nd.td.ntnew####.####.net/offer/20171206/201712061752304.png
- nd.td.ntnew####.####.net/offer/20171206/201712061752829.png
- nd.td.ntnew####.####.net/offer/20181109/201811091511627.apk
- nd.td.ntnew####.####.net/offer/20181204/201812041054759.png
- www.google-####.com/ga.js
- www.google-####.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=641254113&utmhn=...
- www.m####.com/?utm_source=####&utm_medium=####&utm_content=####&utm_camp...
- www.m####.com/ads/interstitial_lovelandprincessspa.png
- www.m####.com/ads/interstitial_princesspinkroyalspasalon.png
- www.m####.com/favicon.ico
- www.m####.com/logo.png
- www.m####.com/promo/car-wash-and-spa-740x350.jpg
- www.m####.com/promo/promomommyandme.jpg
- www.m####.com/promo/promonorthpole.jpg
- www.m####.com/promo/promopetspasafari.jpg
- www.m####.com/promo/promopreschool.jpg
- www.m####.com/promo/promoprincessfairyspasalon.jpg
- si.hi.shpan####.cn/3b32/g4c
- si.hi.shpan####.cn/3b32/hb3
- si.hi.shpan####.cn/3b32/j3b
- si.hi.shpan####.cn/3b32/k3b
- si.hi.shpan####.cn/3b32/lc3
- si.hi.shpan####.cn/3b32/n32
- si.hi.shpan####.cn/3b32/x21
- si.hi.shpan####.cn/3b32/z21
- /data/data/####/07a2a.xml
- /data/data/####/4992380z.jar
- /data/data/####/4ea60b67d.xml
- /data/data/####/8a78e69.xml
- /data/data/####/97067.xml
- /data/data/####/application.xml
- /data/data/####/com.zbbbgzww.zhaungbanbabigzwawa.AIRSharedPref.xml
- /data/data/####/curl-ca-bundle.crt
- /data/data/####/extension.xml
- /data/data/####/javaTrustStore.tmp
- /data/data/####/library.swf
- /data/data/####/princess-in-her-garden-dress-up.swf
- /data/data/####/webview.db-journal
- /data/media/####/.nomedia
- /data/media/####/3be4c1031
- /data/media/####/78416b25d
- /data/media/####/aa8d616b6
- /data/media/####/b0efa663f65d4c9d3167df9c7092ac77.tmp
- /data/media/####/mfz.d
- /system/bin/cat /proc/cpuinfo
- /system/bin/cat /proc/meminfo
- /system/bin/cat /sys/devices/system/cpu/present
- chmod 777 /storage/emulated/0/download/b42ea4a//b0efa663f65d4c9d3167df9c7092ac77.tmp
- libCore
- DES
- DES