http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/third_qq.png
http://s.ludashi.com/wan?type=weiduan&action=7z_download_success&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=ed8d04e217c85ce38b28b2b7a14c2092&from=tp_smy&forcetick=25749500
http://s.ludashi.com/wan?type=weiduan&action=install_extra&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=60abb736226b67e38da632b1d4c24c15&from=tp_smy&forcetick=25770687
http://s.ludashi.com/wan?type=accurate&action=t2&channel=tp&from=tp_repush_wd_smy_0602&mid=fa7bb520099706f4d9615c3663eacc55&appver=3.2.124.1372&uid=0&game=smy×tamp=1623694563795&ex_ary[guid]=
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/input_log_code.png?t=20191021
http://s.ludashi.com/wan?type=accurate&action=t0&channel=tp&from=tp_repush_wd_smy_0602&mid=fa7bb520099706f4d9615c3663eacc55&appver=3.2.124.1372&uid=0&game=smy×tamp=1623694533779&ex_ary[guid]=
http://wan.ludashi.com/api/CheckGameStatus?callback=jQuery18307006377802007682_1623694532937
http://s.ludashi.com/wan?type=weiduan&action=res_down_success&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=f4e8e9b31b11e234dee59fe472d088e0&from=tp_smy&forcetick=25762609
http://s.ludashi.com/wan?type=weiduan&action=run&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=47b47bcfa6c5029ab2bfb51f720936ce&from=tp_smy&forcetick=25776156
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/log_btn_h.png
http://cdn-file-ssl-wan.ludashi.com/pc/game/flash/pepflashplayer.7z?t=202106150315
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/log_btn.png
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/input_reg_act.png?t=20191021
http://s.ludashi.com/wan?type=weiduan&action=install&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=77906996013bbaf7e3ca19e1d558c68a&from=tp_smy&forcetick=25748937
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/bg.jpg
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/news-bg.png
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/main.css
http://cdn-file.ludashi.com/assets/sea/sea.js
http://cdn-wan.ludashi.com/assets/superjs/config.js?v=20210527
http://s.ludashi.com/wan?type=weiduan&action=main_show&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=66df569a3aeeb7869204d79fe11f7491&from=tp_smy&forcetick=25776796
http://cdn-file-ssl-pc.ludashi.com/pc/cef/CefRes.dll?t=202106150315
http://s.ludashi.com/wan?type=weiduan&action=add_desk_icon&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=7954c23acccb4bfa62d72866afa965e4&from=tp_smy&forcetick=25766421
http://wan.ludashi.com/micro/smy/index_lds.html?channel=tp&from=tp_repush_wd_smy_0602
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/input_log_pwd.png?t=20191021
http://s.ludashi.com/wan?type=weiduan&action=pepflash_down_success&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=25baa6e62faa843942d92cc14594ad51&from=tp_smy&forcetick=25766125
http://wan.ludashi.com/announce/list?callback=jQuery18307006377802007682_1623694532938&type=2&gid=smy&skip=0&num=5&_=1623694533775
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/nav.png
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/third_weixin.png
http://s.ludashi.com/wan?type=accurate&action=t3&channel=tp&from=tp_repush_wd_smy_0602&mid=fa7bb520099706f4d9615c3663eacc55&appver=3.2.124.1372&uid=0&game=smy×tamp=1623694593796&ex_ary[guid]=
http://s.ludashi.com/wan?type=weiduan&action=wd_show_success&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=e28b7572437fa62aa43f1ef6109e08e4&from=tp_smy&forcetick=25776796
http://s.ludashi.com/wan?type=weiduan&action=7z_noexist&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=7aea1cc77f8bb52d38e31c063c851959&from=tp_smy&forcetick=25748984
http://cdn-file.ludashi.com/assets/jquery/jquery183.js
http://s.ludashi.com/wan?type=weiduan&action=add_uninst_item&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=50d7eac9189f1ce415c0dfbd6f16b68f&from=tp_smy&forcetick=25766390
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/input_reg_code.png?t=20191021
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/login_tit.png
http://s.ludashi.com/wan?type=weiduan&action=inst_succ&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=a2612552cf2b04d28e8af4a04dbdc642&from=tp_smy&forcetick=25774468
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/checkbox.png
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/input_log_act.png?t=20191021
http://cdn-file-ssl-wan.ludashi.com/wan/wan/7z.dll
http://i.ludashi.com/ajax/gettoken?user_from=youxi&callback=jQuery18307006377802007682_1623694532937&_=1623694534167
http://s.ludashi.com/wan?type=accurate&action=t1&channel=tp&from=tp_repush_wd_smy_0602&mid=fa7bb520099706f4d9615c3663eacc55&appver=3.2.124.1372&uid=0&game=smy×tamp=1623694543796&ex_ary[guid]=
http://s.ludashi.com/wan?type=weiduan&action=wd_install_success&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=8dd7e35d4c24b3fcbec96ed7da88fd43&from=tp_smy&forcetick=25774468
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/input_reg_pwd.png?t=20191021
http://s.ludashi.com/wan?type=weiduan&action=inst_open&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=5fb78c378592f03400b5fc72d4fc9f72&from=tp_smy&forcetick=25770687
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/reg.jpg?t=20200105
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/upload.jpg
http://s.ludashi.com/wan?type=weiduan&action=7z_download_start&channel=tp&mid=fa7bb520099706f4d9615c3663eacc55&mid2=c2a9b458c8eb84d52f3369329facb48b9ff9f7ac2b54&uid=d&appver=&modver=3.2.124.1372&sign=27958460376b89b465c6ca27aea5fc22&from=tp_smy&forcetick=25748984
http://cdn-file.ludashi.com/wan/micro/smy/assets_lds/cir.png
https://cdn-ssl-wan.ludashi.com/assets/superjs/pageMicro.js?v=20210527
https://cdn-ssl-wan.ludashi.com/assets/superjs/modules/commonTool.js?v=20210527
https://cdn-ssl-wan.ludashi.com/assets/superjs/modules/commonLoginApi.js?v=20200810

cdn-file-ssl-wan.ludashi.com(115.231.152.238)
i.ludashi.com(120.27.82.56)
cdn-wan.ludashi.com(122.228.1.209)
wan.ludashi.com(139.129.105.182)
s.ludashi.com(106.15.48.27)
cdn-ssl-wan.ludashi.com(115.231.152.241)
cdn-file.ludashi.com(115.223.31.226)
cdn-file-ssl-pc.ludashi.com(115.231.155.197)
139.129.105.182
115.231.152.244
106.15.139.192
183.136.197.99
115.238.192.244 - malware
115.223.31.231
122.225.67.189
114.115.214.33
120.27.82.56

ET POLICY PE EXE or DLL Windows file download HTTP
ET INFO EXE IsDebuggerPresent (Used in Malware Anti-Debugging)
SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee)