VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load



File information
File Name :minizhuangtailan_183.apk (File not down)
File Size :1773481 byte
File Type :application/zip
MD5:1976558c9c10b66b1aed5829765a25ab
SHA1:8e48e66ccdc376a9a3b4c9e1901942ebea34e36f
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2018-02-04 13:33:38 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 2.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 2
    avast 170303-1 4.7.4 2017-03-03 Found nothing 60
    avg 2109/14865 10.0.1405 2018-02-02 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 6
    baidusd 1.0 1.0 2017-03-22 Found nothing 1
    bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
    clamav 24279 0.97.5 2018-02-03 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2018-02-02 Found nothing 60
    fortinet 1.000, 54.899, 54.836, 54.859 5.4.247 2018-02-04 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
    fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
    gdata 25.15907 25.15907 2018-02-04 Found nothing 15
    ikarus 4.00.05 V1.32.31.0 2018-02-03 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2017-12-22 Found nothing 2
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2018-02-03 Found nothing 4
    mcafee 8620 5400.1158 2017-08-12 Found nothing 60
    nod32 6840 3.0.21 2018-02-02 Found nothing 60
    panda 9.05.01 9.05.01 2018-02-03 Found nothing 4
    pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 4
    qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
    quickheal 14.00 14.00 2017-11-18 Found nothing 3
    rising 3177 3177 2017-12-26 Found nothing 4
    sophos 5.32 3.65.2 2016-10-10 Found nothing 60
    symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 5
    thehacker 6.8.0.5 6.8.0.5 2018-02-02 Found nothing 3
    tws 17.47.17308 1.0.2.2108 2018-02-03 Found nothing 15
    vba 3.12.29.5 beta 3.12.29.5 beta 2018-02-02 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.BIND_ACCESSIBILITY_SERVICE绑定辅助服务
    android.permission.PACKAGE_USAGE_STATS
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
  • 文件信息
    安全评分 :
    基本信息
    MD5:1976558c9c10b66b1aed5829765a25ab
    包名:info.kfsoft.android.statusinfo
    最低运行环境:Android 4.0, 4.0.1, 4.0.2
    版权:KF Software House
    关键行为
    行为描述:直接获取CPU时钟
    详情信息:EAX = 0x6d15cc6c, EDX = 0x000000c5
    EAX = 0x6d15ccb8, EDX = 0x000000c5
    EAX = 0x72509b71, EDX = 0x000000c5
    EAX = 0x72509bbd, EDX = 0x000000c5
    EAX = 0x72509c09, EDX = 0x000000c5
    EAX = 0x72509c55, EDX = 0x000000c5
    EAX = 0x778b6b0e, EDX = 0x000000c5
    EAX = 0x778b6b5a, EDX = 0x000000c5
    EAX = 0xc20e3ad5, EDX = 0x000000c6
    EAX = 0xc20e3b21, EDX = 0x000000c6
    行为描述:修改注册表_系统防火墙可信进程列表
    详情信息:\REGISTRY\MACHINE\SYSTEM\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd\KMSpico\KMSpico Portable\KMSELDI.exe
    行为描述:获取TickCount值
    详情信息:TickCount = 297687, SleepMilliseconds = 60000.
    TickCount = 297750, SleepMilliseconds = 60000.
    TickCount = 297765, SleepMilliseconds = 60000.
    TickCount = 298562, SleepMilliseconds = 60000.
    TickCount = 298578, SleepMilliseconds = 60000.
    TickCount = 298625, SleepMilliseconds = 60000.
    TickCount = 298796, SleepMilliseconds = 60000.
    TickCount = 298812, SleepMilliseconds = 60000.
    TickCount = 298828, SleepMilliseconds = 60000.
    TickCount = 298843, SleepMilliseconds = 60000.
    TickCount = 298875, SleepMilliseconds = 60000.
    TickCount = 298937, SleepMilliseconds = 60000.
    TickCount = 298953, SleepMilliseconds = 60000.
    TickCount = 298968, SleepMilliseconds = 60000.
    TickCount = 298984, SleepMilliseconds = 60000.
    进程行为
    行为描述:创建本地线程
    详情信息:TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 4032, StartAddress = 792A741C, Parameter = 00000000
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 4028, StartAddress = 791F59C0, Parameter = 001B0E90
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 4044, StartAddress = 77E56C7D, Parameter = 001E4858
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 4056, StartAddress = 769AE43B, Parameter = 001DC560
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 4052, StartAddress = 4AEA7456, Parameter = 00000000
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 4084, StartAddress = 77DC845A, Parameter = 00000000
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 1924, StartAddress = 791F59C0, Parameter = 00227670
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 4092, StartAddress = 791F59C0, Parameter = 00233800
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 112, StartAddress = 791F59C0, Parameter = 002338B8
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 1940, StartAddress = 791F59C0, Parameter = 0021A000
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 1944, StartAddress = 791F59C0, Parameter = 00235B70
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 1984, StartAddress = 791F59C0, Parameter = 00235B70
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 1748, StartAddress = 791F59C0, Parameter = 0023BE58
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 144, StartAddress = 74E53861, Parameter = 0597ED50
    TargetProcess: KMSELDI.exe, InheritedFromPID = 2000, ProcessID = 4012, ThreadID = 448, StartAddress = 77E56C7D, Parameter = 00202AA8
    文件行为
    行为描述:覆盖已有文件
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    行为描述:查找文件
    详情信息:FileName = C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
    FileName = C:\WINDOWS\Microsoft.NET\Framework\\*
    FileName = C:\WINDOWS\Microsoft.Net\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.INI
    FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd\KMSpico
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd\KMSpico\KMSpico Portable\KMSELDI.exe
    FileName = C:\Documents and Settings
    FileName = C:\Documents and Settings\Administrator
    FileName = C:\Documents and Settings\Administrator\Local Settings
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd\KMSpico\KMSpico Portable
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd\KMSpico\KMSpico Portable\KMSELDI.INI
    FileName = C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.INI
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\MACHINE\SOFTWARE\Microsoft\ESENT\Process\KMSELDI\DEBUG\Trace Level
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\Version
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{31345649-0000-0010-8000-00AA00389B71}\FriendlyName
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{31345649-0000-0010-8000-00AA00389B71}\CLSID
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{31345649-0000-0010-8000-00AA00389B71}\FilterData
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{31345649-0000-0010-8000-00AA00389B71}\ClassManagerFlags
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{A2551F60-705F-11CF-A424-00AA003735BE}\FriendlyName
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{A2551F60-705F-11CF-A424-00AA003735BE}\CLSID
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{A2551F60-705F-11CF-A424-00AA003735BE}\FilterData
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{083863F1-70DE-11D0-BD40-00A0C911CE86}\{A2551F60-705F-11CF-A424-00AA003735BE}\ClassManagerFlags
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device\FriendlyName
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device\CLSID
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device\FilterData
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{4EFE2452-168A-11D1-BC76-00C04FB9453B}\Default MidiOut Device\MidiOutId
    \REGISTRY\USER\S-*\Software\Microsoft\ActiveMovie\devenum\{E0F158E1-CB04-11D0-BD4E-00A0C911CE86}\Default DirectSound Device\FriendlyName
    行为描述:删除注册表键值
    详情信息:\REGISTRY\MACHINE\SOFTWARE\Microsoft\ESENT\Process\KMSELDI\DEBUG\Trace Level
    \REGISTRY\USER\S-*\Software\Microsoft\Multimedia\ActiveMovie\Filter Cache\1
    \REGISTRY\MACHINE\SYSTEM\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\1688:TCP
    \REGISTRY\MACHINE\SYSTEM\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd\KMSpico\KMSpico Portable\KMSELDI.exe
    行为描述:修改注册表_系统防火墙可信进程列表
    详情信息:\REGISTRY\MACHINE\SYSTEM\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\KMSpicoqd\KMSpico\KMSpico Portable\KMSELDI.exe
    其他行为
    行为描述:检测自身是否被调试
    详情信息:IsDebuggerPresent
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    RasPbFile
    AMResourceMutex2
    VideoRenderer
    eed3bd3a-a1ad-4e99-987b-d7cb3fcfa7f0 - S-*
    MSCTF.Shared.MUTEX.IOH
    MSCTF.Shared.MUTEX.ILP
    行为描述:创建事件对象
    详情信息:EventName = Global\CPFATE_4012_v4.0.30319
    EventName = Global\crypt32LogoffEvent
    EventName = DINPUTWINMM
    EventName = MSCTF.SendReceive.Event.ILP.IC
    EventName = MSCTF.SendReceiveConection.Event.ILP.IC
    行为描述:打开互斥体
    详情信息:ShimCacheMutex
    RasPbFile
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    行为描述:打开事件
    详情信息:Global\CLR_PerfMon_StartEnumEvent
    \KernelObjects\LowMemoryCondition
    HookSwitchHookEnabledEvent
    MSFT.VSA.COM.DISABLE.4012
    MSFT.VSA.IEC.STATUS.6c736db0
    Global\crypt32LogoffEvent
    Global\SvcctrlStartEvent_A3752DX
    CTF.ThreadMIConnectionEvent.000007E8.00000000.0000000F
    CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.0000000F
    MSCTF.SendReceiveConection.Event.IOH.IC
    MSCTF.SendReceive.Event.IOH.IC
    CTF.ThreadMIConnectionEvent.000007E8.00000000.00000010
    CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.00000010
    行为描述:获取TickCount值
    详情信息:TickCount = 297687, SleepMilliseconds = 60000.
    TickCount = 297750, SleepMilliseconds = 60000.
    TickCount = 297765, SleepMilliseconds = 60000.
    TickCount = 298562, SleepMilliseconds = 60000.
    TickCount = 298578, SleepMilliseconds = 60000.
    TickCount = 298625, SleepMilliseconds = 60000.
    TickCount = 298796, SleepMilliseconds = 60000.
    TickCount = 298812, SleepMilliseconds = 60000.
    TickCount = 298828, SleepMilliseconds = 60000.
    TickCount = 298843, SleepMilliseconds = 60000.
    TickCount = 298875, SleepMilliseconds = 60000.
    TickCount = 298937, SleepMilliseconds = 60000.
    TickCount = 298953, SleepMilliseconds = 60000.
    TickCount = 298968, SleepMilliseconds = 60000.
    TickCount = 298984, SleepMilliseconds = 60000.
    行为描述:调整进程token权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    行为描述:窗口信息
    详情信息:Pid = 4012, Hwnd=0x203e0, Text = OK, ClassName = WindowsForms10.BUTTON.app.0.2bf8098_r19_ad1.
    Pid = 4012, Hwnd=0x3037a, Text = There is nothing to do here, ClassName = WindowsForms10.STATIC.app.0.2bf8098_r19_ad1.
    Pid = 4012, Hwnd=0x203d6, Text = I am leaving, ClassName = WindowsForms10.Window.8.app.0.2bf8098_r19_ad1.
    行为描述:调用Sleep函数
    详情信息:[1]: MilliSeconds = 60000.
    [2]: MilliSeconds = 60000.
    [3]: MilliSeconds = 50.
    [4]: MilliSeconds = 50.
    [5]: MilliSeconds = 60000.
    [6]: MilliSeconds = 60000.
    [7]: MilliSeconds = -1.
    [8]: MilliSeconds = -1.
    [9]: MilliSeconds = 0.
    [10]: MilliSeconds = 0.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [KMS GUI ELDI,WindowsForms10.Window.8.app.0.2bf8098_r19_ad1]
    行为描述:获取光标位置
    详情信息:CursorPos = (80,18468), SleepMilliseconds = 60000.
    CursorPos = (6373,26501), SleepMilliseconds = 60000.
    CursorPos = (19208,15725), SleepMilliseconds = 60000.
    CursorPos = (11517,29359), SleepMilliseconds = 60000.
    CursorPos = (27001,24465), SleepMilliseconds = 60000.
    CursorPos = (5744,28146), SleepMilliseconds = 60000.
    CursorPos = (23320,16828), SleepMilliseconds = 60000.
    CursorPos = (10000,492), SleepMilliseconds = 60000.
    CursorPos = (3034,11943), SleepMilliseconds = 60000.
    CursorPos = (4866,5437), SleepMilliseconds = 60000.
    CursorPos = (32430,14605), SleepMilliseconds = 60000.
    CursorPos = (3941,154), SleepMilliseconds = 60000.
    CursorPos = (331,12383), SleepMilliseconds = 60000.
    CursorPos = (17460,18717), SleepMilliseconds = -1.
    CursorPos = (19757,19896), SleepMilliseconds = -1.
    行为描述:直接获取CPU时钟
    详情信息:EAX = 0x6d15cc6c, EDX = 0x000000c5
    EAX = 0x6d15ccb8, EDX = 0x000000c5
    EAX = 0x72509b71, EDX = 0x000000c5
    EAX = 0x72509bbd, EDX = 0x000000c5
    EAX = 0x72509c09, EDX = 0x000000c5
    EAX = 0x72509c55, EDX = 0x000000c5
    EAX = 0x778b6b0e, EDX = 0x000000c5
    EAX = 0x778b6b5a, EDX = 0x000000c5
    EAX = 0xc20e3ad5, EDX = 0x000000c6
    EAX = 0xc20e3b21, EDX = 0x000000c6
    行为描述:导入密钥
    详情信息:[CryptImportKey] Algorithm: CALG_RSA_SIGN (0x00002400), Data: 0x03942586, DataLen: 148, Flags: 0x00000000
    [CryptImportKey] Algorithm: CALG_RSA_SIGN (0x00002400), Data: 0x001BE4C4, DataLen: 148, Flags: 0x00000000
    [CryptImportKey] Algorithm: CALG_RSA_SIGN (0x00002400), Data: 0x002171FC, DataLen: 148, Flags: 0x00000000
    [CryptImportKey] Algorithm: CALG_RSA_SIGN (0x00002400), Data: 0x002172CC, DataLen: 148, Flags: 0x00000000
    Activities
    活动名类型
    info.kfsoft.android.statusinfo.StartActivityandroid.intent.action.MAIN
    info.kfsoft.android.statusinfo.StartActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    android/app/NotificationManager;->notify信息通知栏
    ContentResolver;->query读取联系人、短信等数据库
    java/net/URL;->openConnection连接URL
    getRuntime获取命令行环境
    HttpClient;->execute请求远程服务器
    启动方式
    名称信息
    info.kfsoft.android.statusinfo.BootReceiver开机启动服务
    info.kfsoft.android.statusinfo.ScreenReceiver
    info.kfsoft.android.statusinfo.ScreenReceiver
    info.kfsoft.android.statusinfo.networkStateChangeReceiver网络连接改变时启动服务
    info.kfsoft.android.statusinfo.RestartReceiver44屏幕解锁启动服务
    权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.BIND_ACCESSIBILITY_SERVICE绑定辅助服务
    android.permission.PACKAGE_USAGE_STATS
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    服务列表
    名称
    info.kfsoft.android.statusinfo.TrafficMonitorService
    info.kfsoft.android.statusinfo.PermissionService6
    info.kfsoft.android.statusinfo.NLService
    文件列表
    文件名 校验码
    AndroidManifest.xml 0x6c167906
    META-INF/CERT.RSA 0x8cac73fb
    META-INF/CERT.SF 0x670bf1a6
    META-INF/MANIFEST.MF 0x142f2d6
    META-INF/services/com.google.protobuf.GeneratedExtensionRegistryLoader 0x8b7580d7
    build-data.properties 0x562d3fff
    classes.dex 0xa73c5bc3
    jsr305_annotations/Jsr305_annotations.gwt.xml 0xda2c535b
    res/anim/rotate.xml 0xa716a142
    res/color/common_google_signin_btn_text_dark.xml 0xa13d5c1c
    res/color/common_google_signin_btn_text_light.xml 0x650b70df
    res/color/common_google_signin_btn_tint.xml 0xc34887b9
    res/drawable-hdpi-v11/ic_stat_permission_warning.png 0xe8e9a386
    res/drawable-hdpi-v11/icon_48_notify.png 0x1491254
    res/drawable-hdpi-v4/btn_toggle_off.9.png 0x7214fc89
    res/drawable-hdpi-v4/btn_toggle_off_disabled_focused_holo_dark.9.png 0x990ca933
    res/drawable-hdpi-v4/btn_toggle_off_disabled_focused_holo_light.9.png 0x990ca933
    res/drawable-hdpi-v4/btn_toggle_off_disabled_holo_dark.9.png 0xabfc5e11
    res/drawable-hdpi-v4/btn_toggle_off_disabled_holo_light.9.png 0xabfc5e11
    res/drawable-hdpi-v4/btn_toggle_off_focused_holo_dark.9.png 0x13160552
    res/drawable-hdpi-v4/btn_toggle_off_focused_holo_light.9.png 0x13160552
    res/drawable-hdpi-v4/btn_toggle_off_normal_holo_dark.9.png 0x762b92cb
    res/drawable-hdpi-v4/btn_toggle_off_normal_holo_light.9.png 0x762b92cb
    res/drawable-hdpi-v4/btn_toggle_off_pressed_holo_dark.9.png 0x69e6867c
    res/drawable-hdpi-v4/btn_toggle_off_pressed_holo_light.9.png 0x4805ed0d
    res/drawable-hdpi-v4/btn_toggle_on.9.png 0x5da83f0b
    res/drawable-hdpi-v4/btn_toggle_on_disabled_focused_holo_dark.9.png 0xeb51da0c
    res/drawable-hdpi-v4/btn_toggle_on_disabled_focused_holo_light.9.png 0xeb51da0c
    res/drawable-hdpi-v4/btn_toggle_on_disabled_holo_dark.9.png 0x29d0eae7
    res/drawable-hdpi-v4/btn_toggle_on_disabled_holo_light.9.png 0x29d0eae7
    res/drawable-hdpi-v4/btn_toggle_on_focused_holo_dark.9.png 0x6c876a99
    res/drawable-hdpi-v4/btn_toggle_on_focused_holo_light.9.png 0x6c876a99
    res/drawable-hdpi-v4/btn_toggle_on_normal_holo_dark.9.png 0xed70093b
    res/drawable-hdpi-v4/btn_toggle_on_normal_holo_light.9.png 0xed70093b
    res/drawable-hdpi-v4/btn_toggle_on_pressed_holo_dark.9.png 0x3ff4e6ab
    res/drawable-hdpi-v4/btn_toggle_on_pressed_holo_light.9.png 0x2772fa89
    res/drawable-hdpi-v4/common_full_open_on_phone.png 0x3ae6b82e
    res/drawable-hdpi-v4/common_google_signin_btn_icon_dark_normal_background.9.png 0x85696478
    res/drawable-hdpi-v4/common_google_signin_btn_icon_light_normal_background.9.png 0xd67a9fb9
    res/drawable-hdpi-v4/common_google_signin_btn_text_dark_normal_background.9.png 0xd939ee0d
    res/drawable-hdpi-v4/common_google_signin_btn_text_light_normal_background.9.png 0x2461346b
    res/drawable-hdpi-v4/googleg_disabled_color_18.png 0xcb58331
    res/drawable-hdpi-v4/googleg_standard_color_18.png 0x7d62f5a4
    res/drawable-hdpi-v4/ic_action_down.png 0x82601386
    res/drawable-hdpi-v4/ic_drawer.png 0x61aadb70
    res/drawable-hdpi-v4/ic_launcher.png 0x3a2222ac
    res/drawable-hdpi-v4/ic_menu_export.png 0x82093f3e
    res/drawable-hdpi-v4/ic_menu_import.png 0x6a129c89
    res/drawable-hdpi-v4/ic_menu_lang.png 0x197e8c6b
    res/drawable-hdpi-v4/ic_menu_other.png 0x6bca8d11
    res/drawable-hdpi-v4/ic_menu_share.png 0xa6afcd95
    res/drawable-hdpi-v4/ic_menu_youtube.png 0x1ebf99ca
    res/drawable-hdpi-v4/ic_translate.png 0x4452dcaf
    res/drawable-hdpi-v4/icon_48.png 0x182d608f
    res/drawable-hdpi-v4/rating_good.png 0x4a4ecbed
    res/drawable-ldpi-v4/ic_launcher.png 0x8ef78580
    res/drawable-ldpi-v4/icon_48.png 0x3de1b7dd
    res/drawable-ldpi-v4/icon_48_notify.png 0xa49921be
    res/drawable-ldpi-v4/rating_good.png 0xc989bed9
    res/drawable-mdpi-v11/ic_stat_permission_warning.png 0x6abbed5e
    res/drawable-mdpi-v11/icon_48_notify.png 0xeb72988f
    res/drawable-mdpi-v4/btn_toggle_off.9.png 0x4bfd5151
    res/drawable-mdpi-v4/btn_toggle_off_disabled_focused_holo_dark.9.png 0x4119f4e4
    res/drawable-mdpi-v4/btn_toggle_off_disabled_focused_holo_light.9.png 0x4119f4e4
    res/drawable-mdpi-v4/btn_toggle_off_disabled_holo_dark.9.png 0x540c61c9
    res/drawable-mdpi-v4/btn_toggle_off_disabled_holo_light.9.png 0x540c61c9
    res/drawable-mdpi-v4/btn_toggle_off_focused_holo_dark.9.png 0x9413369
    res/drawable-mdpi-v4/btn_toggle_off_focused_holo_light.9.png 0x9413369
    res/drawable-mdpi-v4/btn_toggle_off_normal_holo_dark.9.png 0x7cf50769
    res/drawable-mdpi-v4/btn_toggle_off_normal_holo_light.9.png 0x7cf50769
    res/drawable-mdpi-v4/btn_toggle_off_pressed_holo_dark.9.png 0x39e52842
    res/drawable-mdpi-v4/btn_toggle_off_pressed_holo_light.9.png 0xb876f56
    res/drawable-mdpi-v4/btn_toggle_on.9.png 0x17d2eb06
    res/drawable-mdpi-v4/btn_toggle_on_disabled_focused_holo_dark.9.png 0x437c2326
    res/drawable-mdpi-v4/btn_toggle_on_disabled_focused_holo_light.9.png 0x437c2326
    res/drawable-mdpi-v4/btn_toggle_on_disabled_holo_dark.9.png 0x7e9dfc9f
    res/drawable-mdpi-v4/btn_toggle_on_disabled_holo_light.9.png 0x7e9dfc9f
    res/drawable-mdpi-v4/btn_toggle_on_focused_holo_dark.9.png 0x3c6f9454
    res/drawable-mdpi-v4/btn_toggle_on_focused_holo_light.9.png 0x3c6f9454
    res/drawable-mdpi-v4/btn_toggle_on_normal_holo_dark.9.png 0x61a14d91
    res/drawable-mdpi-v4/btn_toggle_on_normal_holo_light.9.png 0x61a14d91
    res/drawable-mdpi-v4/btn_toggle_on_pressed_holo_dark.9.png 0x48a7d36a
    res/drawable-mdpi-v4/btn_toggle_on_pressed_holo_light.9.png 0xdc62327e
    res/drawable-mdpi-v4/common_google_signin_btn_icon_dark_normal_background.9.png 0x88698600
    res/drawable-mdpi-v4/common_google_signin_btn_icon_light_normal_background.9.png 0x53af027d
    res/drawable-mdpi-v4/common_google_signin_btn_text_dark_normal_background.9.png 0x4199e4d9
    res/drawable-mdpi-v4/common_google_signin_btn_text_light_normal_background.9.png 0xcc58eaf7
    res/drawable-mdpi-v4/googleg_disabled_color_18.png 0xfa60669e
    res/drawable-mdpi-v4/googleg_standard_color_18.png 0x76065920
    res/drawable-mdpi-v4/ic_action_down.png 0x2eef7208
    res/drawable-mdpi-v4/ic_drawer.png 0x4eabf9c7
    res/drawable-mdpi-v4/ic_launcher.png 0xb62a2367
    res/drawable-mdpi-v4/ic_menu_export.png 0xc1e56020
    res/drawable-mdpi-v4/ic_menu_import.png 0x71c04d9e
    res/drawable-mdpi-v4/ic_menu_lang.png 0xceba4d0f
    res/drawable-mdpi-v4/ic_menu_other.png 0x338e78e5
    res/drawable-mdpi-v4/ic_menu_share.png 0xeb1e73e7
    res/drawable-mdpi-v4/ic_menu_youtube.png 0x81bdd98b
    res/drawable-mdpi-v4/ic_translate.png 0xb58e0ede
    res/drawable-mdpi-v4/icon_48.png 0x3de1b7dd
    res/drawable-mdpi-v4/rating_good.png 0xc989bed9
    res/drawable-xhdpi-v11/ic_stat_permission_warning.png 0x90aad475
    res/drawable-xhdpi-v11/icon_48_notify.png 0x15501308
    res/drawable-xhdpi-v4/btn_toggle_off.9.png 0x71b78a99
    res/drawable-xhdpi-v4/btn_toggle_off_disabled_focused_holo_dark.9.png 0x80fa7121
    res/drawable-xhdpi-v4/btn_toggle_off_disabled_focused_holo_light.9.png 0x80fa7121
    res/drawable-xhdpi-v4/btn_toggle_off_disabled_holo_dark.9.png 0x40eafffe
    res/drawable-xhdpi-v4/btn_toggle_off_disabled_holo_light.9.png 0x40eafffe
    res/drawable-xhdpi-v4/btn_toggle_off_focused_holo_dark.9.png 0xb5d9e500
    res/drawable-xhdpi-v4/btn_toggle_off_focused_holo_light.9.png 0xb5d9e500
    res/drawable-xhdpi-v4/btn_toggle_off_normal_holo_dark.9.png 0x417d1658
    res/drawable-xhdpi-v4/btn_toggle_off_normal_holo_light.9.png 0x417d1658
    res/drawable-xhdpi-v4/btn_toggle_off_pressed_holo_dark.9.png 0x332bbeb4
    res/drawable-xhdpi-v4/btn_toggle_off_pressed_holo_light.9.png 0x790b65ad
    res/drawable-xhdpi-v4/btn_toggle_on.9.png 0xfafdbb28
    res/drawable-xhdpi-v4/btn_toggle_on_disabled_focused_holo_dark.9.png 0xdefbeee9
    res/drawable-xhdpi-v4/btn_toggle_on_disabled_focused_holo_light.9.png 0xdefbeee9
    res/drawable-xhdpi-v4/btn_toggle_on_disabled_holo_dark.9.png 0x50fbbcc8
    res/drawable-xhdpi-v4/btn_toggle_on_disabled_holo_light.9.png 0x50fbbcc8
    res/drawable-xhdpi-v4/btn_toggle_on_focused_holo_dark.9.png 0x8b7113f1
    res/drawable-xhdpi-v4/btn_toggle_on_focused_holo_light.9.png 0x8b7113f1
    res/drawable-xhdpi-v4/btn_toggle_on_normal_holo_dark.9.png 0x9c7456fc
    res/drawable-xhdpi-v4/btn_toggle_on_normal_holo_light.9.png 0x9c7456fc
    res/drawable-xhdpi-v4/btn_toggle_on_pressed_holo_dark.9.png 0xd6d1bd6f
    res/drawable-xhdpi-v4/btn_toggle_on_pressed_holo_light.9.png 0xf1acb195
    res/drawable-xhdpi-v4/common_full_open_on_phone.png 0xcc7eabe9
    res/drawable-xhdpi-v4/common_google_signin_btn_icon_dark_normal_background.9.png 0xf4f0cee1
    res/drawable-xhdpi-v4/common_google_signin_btn_icon_light_normal_background.9.png 0xed0b02f9
    res/drawable-xhdpi-v4/common_google_signin_btn_text_dark_normal_background.9.png 0xfecc21a4
    res/drawable-xhdpi-v4/common_google_signin_btn_text_light_normal_background.9.png 0x61da4416
    res/drawable-xhdpi-v4/googleg_disabled_color_18.png 0xedf1a67b
    res/drawable-xhdpi-v4/googleg_standard_color_18.png 0xbc0a585a
    res/drawable-xhdpi-v4/ic_action_down.png 0xb7afb228
    res/drawable-xhdpi-v4/ic_drawer.png 0xdc0973c1
    res/drawable-xhdpi-v4/ic_launcher.png 0x475dc2dc
    res/drawable-xhdpi-v4/ic_menu_export.png 0x29e9165c
    res/drawable-xhdpi-v4/ic_menu_import.png 0xb3c15c29
    res/drawable-xhdpi-v4/ic_menu_lang.png 0xad9693a6
    res/drawable-xhdpi-v4/ic_menu_other.png 0x883d774b
    res/drawable-xhdpi-v4/ic_menu_share.png 0x257aa0a3
    res/drawable-xhdpi-v4/ic_menu_youtube.png 0x7c3e2b88
    res/drawable-xhdpi-v4/ic_translate.png 0x6d766b0b
    res/drawable-xhdpi-v4/icon_48.png 0xf3849209
    res/drawable-xxhdpi-v11/ic_stat_permission_warning.png 0x7041b7a
    res/drawable-xxhdpi-v4/common_google_signin_btn_icon_dark_normal_background.9.png 0x30b789c3
    res/drawable-xxhdpi-v4/common_google_signin_btn_icon_light_normal_background.9.png 0xc465906a
    res/drawable-xxhdpi-v4/common_google_signin_btn_text_dark_normal_background.9.png 0x89e3a379
    res/drawable-xxhdpi-v4/common_google_signin_btn_text_light_normal_background.9.png 0x77381bff
    res/drawable-xxhdpi-v4/googleg_disabled_color_18.png 0x2c75d16b
    res/drawable-xxhdpi-v4/googleg_standard_color_18.png 0x1c8ecffd
    res/drawable-xxhdpi-v4/ic_drawer.png 0x1a79d815
    res/drawable-xxhdpi-v4/ic_launcher.png 0x23782672
    res/drawable-xxhdpi-v4/ic_menu_export.png 0xcfa914b1
    res/drawable-xxhdpi-v4/ic_menu_import.png 0xa6a42634
    res/drawable-xxhdpi-v4/icon_48.png 0x3dd21798
    res/drawable/aboutus.png 0x1adafe02
    res/drawable/access_cn.png 0x15d9225a
    res/drawable/access_dialog.xml 0x90be5dd2
    res/drawable/access_en.png 0xd815cf28
    res/drawable/access_ru.png 0xd51e5748
    res/drawable/access_tw.png 0xa89072ed
    res/drawable/boxshape.xml 0x775f8995
    res/drawable/boxshape_bottom.xml 0xc79475af
    res/drawable/btn_toggle_holo_light.xml 0x6d483ba5
    res/drawable/common_google_signin_btn_icon_dark.xml 0xe0006c7a
    res/drawable/common_google_signin_btn_icon_dark_focused.xml 0x73b42c91
    res/drawable/common_google_signin_btn_icon_dark_normal.xml 0x5c9569f0
    res/drawable/common_google_signin_btn_icon_disabled.xml 0x6558e97b
    res/drawable/common_google_signin_btn_icon_light.xml 0x684a78a3
    res/drawable/common_google_signin_btn_icon_light_focused.xml 0x9a8874a8
    res/drawable/common_google_signin_btn_icon_light_normal.xml 0x5a883577
    res/drawable/common_google_signin_btn_text_dark.xml 0x38e1a01d
    res/drawable/common_google_signin_btn_text_dark_focused.xml 0x54c501d9
    res/drawable/common_google_signin_btn_text_dark_normal.xml 0x2876f661
    res/drawable/common_google_signin_btn_text_disabled.xml 0x4594a686
    res/drawable/common_google_signin_btn_text_light.xml 0x2dd0184
    res/drawable/common_google_signin_btn_text_light_focused.xml 0xeb1513d
    res/drawable/common_google_signin_btn_text_light_normal.xml 0xfa68f962
    res/drawable/group_shape.xml 0x6bd018d5
    res/drawable/hide_notifying.png 0x16e4623c
    res/drawable/icon_48.png 0x3de1b7dd
    res/drawable/imageborder.xml 0xd610b8e3
    res/drawable/loading_circle.png 0x44b8f1bc
    res/drawable/rating_good.png 0xc989bed9
    res/drawable/rounded.xml 0xbc71cfcf
    res/drawable/shape.xml 0xeed2a5fc
    res/drawable/status.xml 0x78d6b9d1
    res/drawable/titlebar_shape.xml 0xcc47a76c
    res/drawable/titlebar_shape_mono.xml 0xcea1f458
    res/layout/about.xml 0xe368da62
    res/layout/access_dialog.xml 0xdeed1f44
    res/layout/adjust_color_picker.xml 0xb2009f11
    res/layout/adjust_width_dialog.xml 0x2983df5e
    res/layout/color_picker.xml 0x623b6347
    res/layout/drawer_row.xml 0xee09cf9b
    res/layout/hide_notify_help.xml 0xa7b04eb8
    res/layout/inc_android8_warning.xml 0xf7f2f33a
    res/layout/inc_promo_layout.xml 0x9ab1ab4f
    res/layout/list_item.xml 0x55513340
    res/layout/location_picker.xml 0xd16bfcc
    res/layout/main.xml 0x6c2e6d6
    res/layout/notify_setting.xml 0x521fa13b
    res/layout/number_selector.xml 0x4aecda63
    res/layout/row.xml 0x6c1e9829
    res/layout/select_app.xml 0x625a0068
    res/layout/spinner_row.xml 0x73e982af
    res/layout/spinner_slim_row.xml 0xcc6b5372
    res/menu/optionmenu.xml 0xc248ae23
    res/mipmap-hdpi-v4/ic_app_datamon.png 0xc85b2ffc
    res/mipmap-hdpi-v4/ic_app_rulebot.png 0x1469451f
    res/mipmap-hdpi-v4/ic_app_usage_analyzer.png 0x12d57d43
    res/mipmap-mdpi-v4/ic_app_datamon.png 0xb96075c5
    res/mipmap-mdpi-v4/ic_app_rulebot.png 0xf4e0fe9e
    res/mipmap-mdpi-v4/ic_app_usage_analyzer.png 0x2a6e30eb
    res/mipmap-xhdpi-v4/ic_app_datamon.png 0xf710b8c0
    res/mipmap-xhdpi-v4/ic_app_rulebot.png 0x1e83a721
    res/mipmap-xhdpi-v4/ic_app_usage_analyzer.png 0x645f9291
    res/mipmap-xxhdpi-v4/ic_app_datamon.png 0x1d35b3c0
    res/mipmap-xxhdpi-v4/ic_app_rulebot.png 0xbc356459
    res/mipmap-xxhdpi-v4/ic_app_usage_analyzer.png 0x1e7f0f18
    res/mipmap-xxxhdpi-v4/ic_app_datamon.png 0xcd399170
    res/mipmap-xxxhdpi-v4/ic_app_rulebot.png 0x4df3df74
    res/mipmap-xxxhdpi-v4/ic_app_usage_analyzer.png 0x3ab6b3fe
    res/xml/accessibility_service_config.xml 0x31746964
    resources.arsc 0x8889f83d
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号