VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load



File information
File Name : Flyme系统权限%281%29.apk (File not down)
File Size :1482023 byte
File Type :application/zip
MD5:d9bcc946c99e6ddc5d5b39ed3228e47a
SHA1:784e0c4cbdf0450cf0272f0b7d98b93ee551d287
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!        Behavior
    Time: 2015-10-23 14:27:59 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
    avast 150725-1 4.7.4 2015-07-25 Found nothing 0
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
    baidusd 1.0 1.0 2014-04-02 Found nothing 1
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
    clamav 19861 0.97.5 2014-12-31 Found nothing 0
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
    gdata 25.4014 25.4014 2015-10-23 Found nothing 10
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
    jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 42
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
    kingsoft 2.1 2.1 2013-09-22 Found nothing 6
    mcafee 7638 5400.1158 2014-11-30 Found nothing 0
    nod32 0920 3.0.21 2014-12-23 Found nothing 0
    panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 7
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
    quickheal 14.00 14.00 2015-07-25 Found nothing 2
    rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 3
    sophos 5.08 3.55.0 2014-12-01 Found nothing 0
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 6
    thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 2
    tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 13
    vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    android.permission.ACCESS_SUPERUSER
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
  • 文件信息
    安全评分 :
    基本信息
    MD5:d9bcc946c99e6ddc5d5b39ed3228e47a
    包名:com.koushikdutta.superuser
    最低运行环境:Android 2.2.x
    版权:
    关键行为
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-*
    \WINDOWS\system32\zh-cn\ieframe.dll.mui
    Local\UrlZonesSM_Administrator
    Local\!PrivacIE!SharedMem!Counter
    MSCTF.MarshalInterface.FileMap.IGD..OEKHH
    \WINDOWS\system32\zh-cn\mshtml.dll.mui
    MSCTF.MarshalInterface.FileMap.IGD.B.MIHGI
    MSCTF.MarshalInterface.FileMap.IGD.C.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.D.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.E.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.F.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.G.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.H.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.I.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.J.MJHGI
    行为描述:在桌面创建快捷方式
    详情信息:C:\Documents and Settings\Administrator\桌面\.lnk
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,ComboLBox]
    [Window,Class] = [,Afx:10000000:8:10011:1900015:0]
    [Window,Class] = [,tooltips_class32]
    [Window,Class] = [,Shell Embedding]
    [Window,Class] = [,Internet Explorer_Server]
    行为描述:按名称获取主机地址
    详情信息:www.baidu.com
    进程行为
    行为描述:枚举进程
    详情信息:N/A
    文件行为
    行为描述:创建可执行文件
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\WZItemShopServer\krnln.fnr
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\WZItemShopServer\HtmlView.fne
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\WZItemShopServer\iext.fnr
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\WZItemShopServer\shell.fne
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\WZItemShopServer\iext2.fne
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\WZItemShopServer\eLIBpp.fne
    行为描述:查找文件
    详情信息:FileName = C:\Documents and Settings
    FileName = C:\Documents and Settings\Administrator
    FileName = C:\Documents and Settings\Administrator\Local Settings
    FileName = C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Connections\Pbk\*.pbk
    FileName = C:\WINDOWS\system32\Ras\*.pbk
    FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Network\Connections\Pbk\*.pbk
    FileName = C:\DOCUME~1
    FileName = C:\Documents and Settings\ADMINI~1
    FileName = C:\Documents and Settings\Administrator\LOCALS~1
    FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\1445539660.759809.exe
    FileName = C:\Documents and Settings\Administrator\My Documents
    FileName = C:\Documents and Settings\All Users
    FileName = C:\Documents and Settings\All Users\Documents
    行为描述:在桌面创建快捷方式
    详情信息:C:\Documents and Settings\Administrator\桌面\.lnk
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-*
    \WINDOWS\system32\zh-cn\ieframe.dll.mui
    Local\UrlZonesSM_Administrator
    Local\!PrivacIE!SharedMem!Counter
    MSCTF.MarshalInterface.FileMap.IGD..OEKHH
    \WINDOWS\system32\zh-cn\mshtml.dll.mui
    MSCTF.MarshalInterface.FileMap.IGD.B.MIHGI
    MSCTF.MarshalInterface.FileMap.IGD.C.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.D.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.E.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.F.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.G.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.H.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.I.MJHGI
    MSCTF.MarshalInterface.FileMap.IGD.J.MJHGI
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    行为描述:修改文件内容
    详情信息:C:\Documents and Settings\Administrator\桌面\.lnk---> Offset = 0
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\WMouse.Ani---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\dnserrordiagoff_webOC[2]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\ErrorPageTemplate[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\errorPageStrings[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\httpErrorPagesScripts[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\background_gradient[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\info_48[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\bullet[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\down[1]---> Offset = 0
    网络行为
    行为描述:连接指定站点
    详情信息:InternetConnectA: ServerName = www.baidu.com, PORT = 80
    行为描述:建立到一个指定的套接字连接
    详情信息:127.0.0.1:1031
    219.133.40.1:80
    行为描述:打开HTTP请求
    详情信息:HttpOpenRequestA: www.baidu.com:80/, hConnect = 0x00000488
    行为描述:按名称获取主机地址
    详情信息:www.baidu.com
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
    行为描述:删除注册表键值_IE连接设置
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
    其他行为
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    Local\ZonesCounterMutex
    Local\ZoneAttributeCacheCounterMutex
    Local\ZonesCacheCounterMutex
    Local\ZonesLockedCacheCounterMutex
    RasPbFile
    Local\!PrivacIE!SharedMemory!Mutex
    MSCTF.Shared.MUTEX.ELH
    MSCTF.Shared.MUTEX.IGD
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,ComboLBox]
    [Window,Class] = [,Afx:10000000:8:10011:1900015:0]
    [Window,Class] = [,tooltips_class32]
    [Window,Class] = [,Shell Embedding]
    [Window,Class] = [,Internet Explorer_Server]
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [MS_AutodialMonitor,]
    NtUserFindWindowEx: [Class,Window] = [MS_WebCheckMonitor,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    行为描述:获取系统权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    行为描述:获取TickCount值
    详情信息:TickCount = 550312, SleepMilliseconds = 60000.
    TickCount = 550328, SleepMilliseconds = 60000.
    TickCount = 550343, SleepMilliseconds = 60000.
    TickCount = 550359, SleepMilliseconds = 60000.
    TickCount = 550375, SleepMilliseconds = 60000.
    TickCount = 550390, SleepMilliseconds = 60000.
    TickCount = 550406, SleepMilliseconds = 60000.
    TickCount = 550421, SleepMilliseconds = 60000.
    TickCount = 550437, SleepMilliseconds = 60000.
    TickCount = 550453, SleepMilliseconds = 60000.
    TickCount = 550468, SleepMilliseconds = 60000.
    TickCount = 550484, SleepMilliseconds = 60000.
    TickCount = 550500, SleepMilliseconds = 60000.
    TickCount = 550515, SleepMilliseconds = 60000.
    TickCount = 550531, SleepMilliseconds = 60000.
    行为描述:获取光标位置
    详情信息:CursorPos = (106,18467), SleepMilliseconds = 60000.
    CursorPos = (6399,26500), SleepMilliseconds = 60000.
    CursorPos = (19234,15724), SleepMilliseconds = 60000.
    CursorPos = (11543,29358), SleepMilliseconds = 60000.
    CursorPos = (27027,24464), SleepMilliseconds = 60000.
    CursorPos = (5770,28145), SleepMilliseconds = 60000.
    CursorPos = (23346,16827), SleepMilliseconds = 60000.
    CursorPos = (10026,491), SleepMilliseconds = 60000.
    CursorPos = (3060,11942), SleepMilliseconds = 60000.
    CursorPos = (4892,5436), SleepMilliseconds = 60000.
    CursorPos = (32456,14604), SleepMilliseconds = 60000.
    CursorPos = (3967,153), SleepMilliseconds = 60000.
    CursorPos = (357,12382), SleepMilliseconds = 60000.
    行为描述:窗口信息
    详情信息:Pid = 788, Hwnd=0x102e0, Text = Ctrl+R 左键连击 Ctrl+Y 右键长按 取消功能再次按快捷键即可, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x102de, Text = Copyright by 暗黑 licenes to , ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x502ce, Text = 服务器正常开放中..点击开始游戏进入游戏!, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x202ac, Text = 退出, ClassName = Button.
    Pid = 788, Hwnd=0x202aa, Text = 访问主页, ClassName = Button.
    Pid = 788, Hwnd=0x202ae, Text = 开始游戏, ClassName = Button.
    Pid = 788, Hwnd=0x302da, Text = 640×480, ClassName = ComboBox.
    Pid = 788, Hwnd=0x202c6, Text = ———————————————————————————————————, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x202ca, Text = —游戏设置——————————————————————————, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x202c8, Text = 高级文字, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x202c4, Text = 游戏音效, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x202c2, Text = 游戏音乐, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x202d8, Text = 开启窗口化, ClassName = Afx:2b90000:b:10011:1900015:0.
    Pid = 788, Hwnd=0x202d6, Text = 选择框, ClassName = Button(CheckBox).
    Pid = 788, Hwnd=0x302dc, Text = 选择框, ClassName = Button(CheckBox).
    行为描述:调用Sleep函数
    详情信息:[1]: MilliSeconds = 60000.
    危险行为
    行为描述:执行系统命令
    详情信息:[u'su -v']
    [u'su']
    [u'su -v']
    动态列表行为
    行为描述:读取文件
    详情信息:path:unknown length:5
    path:/data/app/com.koushikdutta.superuser-1.apk length:9
    path:/data/app/com.koushikdutta.superuser-1.apk length:23
    path:/data/app/com.koushikdutta.superuser-1.apk length:69
    path:/data/app/com.koushikdutta.superuser-1.apk length:69
    path:/data/app/com.koushikdutta.superuser-1.apk length:68
    path:/data/app/com.koushikdutta.superuser-1.apk length:69
    path:/data/app/com.koushikdutta.superuser-1.apk length:7
    行为描述:发出状态栏通知
    详情信息:[u'10000', u'Notification(pri=0 contentView=com.koushikdutta.superuser/0x1090071 vibrate=null sound=null defaults=0x0 flags=0x10 kind=[null])']
    行为描述:读取系统设置
    详情信息:[u'android.app.ContextImpl$ApplicationContentResolver@414fef50', u'sound_effects_enabled']
    行为描述:执行系统命令
    详情信息:[u'su -v']
    [u'su']
    [u'su -v']
    行为描述:获取root权限
    详情信息:su
    行为描述:窗口信息
    详情信息:{"text": "常规安装", "class": "android.widget.TextView"}
    {"text": "Flyme系统权限二进制可执行文件 (su) 需要更新。
    请选择安装方式。
    建议对 非MEIZU 设备选择 Recovery 模式安装。(MEIZU用户可选择常规安装)", "class": "android.widget.TextView"}
    {"text": "Cancel", "class": "android.widget.Button"}
    {"text": "Recovery 安装", "class": "android.widget.Button"}
    {"text": "常规安装", "class": "android.widget.Button"}
    {"text": "正在安装", "class": "android.widget.TextView"}
    {"text": "正在安装Flyme系统权限…", "class": "android.widget.TextView"}
    行为描述:添加View
    详情信息:[u'com.android.internal.policy.impl.PhoneWindow$DecorView@414cbf30', u'WM.LayoutParams{(0,0)(wrapxwrap) gr=#11 sim=#120 ty=2 fl=#1820002 pfl=0x8 fmt=-2 wanim=0x1030290}', u'android.view.CompatibilityInfoHolder@414afa90']
    [u'com.android.internal.policy.impl.PhoneWindow$DecorView@41528dd0', u'WM.LayoutParams{(0,0)(fillxfill) sim=#100 ty=1 fl=#1810100 pfl=0x8 wanim=0x103028f}', u'android.view.CompatibilityInfoHolder@414afa90']
    [u'com.android.internal.policy.impl.PhoneWindow$DecorView@41572d30', u'WM.LayoutParams{(0,0)(wrapxwrap) gr=#11 sim=#120 ty=2 fl=#1820002 pfl=0x8 fmt=-2 wanim=0x1030290}', u'android.view.CompatibilityInfoHolder@414afa90']
    [u'com.android.internal.policy.impl.PhoneWindow$DecorView@41590898', u'WM.LayoutParams{(0,0)(wrapxwrap) gr=#11 sim=#120 ty=2 fl=#1820002 pfl=0x8 fmt=-2 wanim=0x1030290}', u'android.view.CompatibilityInfoHolder@414afa90']
    [u'com.android.internal.policy.impl.PhoneWindow$DecorView@414f29a8', u'WM.LayoutParams{(0,0)(wrapxwrap) gr=#11 sim=#120 ty=2 fl=#1820002 pfl=0x8 fmt=-2 wanim=0x1030290}', u'android.view.CompatibilityInfoHolder@414afa90']
    行为描述:写入文件
    详情信息:path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:46
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:64
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:6
    path:/data/data/com.koushikdutta.superuser/files/superuser.zip length:69
    path:/data/data/com.koushikdutta.superuser/files/reboot length:69
    path:/data/data/com.koushikdutta.superuser/files/su length:68
    path:/data/data/com.koushikdutta.superuser/files/su length:66
    path:/data/data/com.koushikdutta.superuser/files/su length:69
    path:/data/data/com.koushikdutta.superuser/files/su length:68
    行为描述:调用Intent的setAction
    详情信息:[u'internal.superuser.ACTION_CHECK_DELETED']
    行为描述:数据库查询
    详情信息:[u'settings', u'[value]', u"key='theme'", u'null', u'null', u'null', u'null']
    [u'settings', u'[value]', u"key='first_run'", u'null', u'null', u'null', u'null']
    [u'uid_policy', u'null', u'null', u'null', u'null', u'null', u'null']
    [u'uid_policy', u'null', u'null', u'null', u'null', u'null', u'null']
    [u'settings', u'[value]', u"key='check_su_quiet'", u'null', u'null', u'null', u'null']
    行为描述:初始化Intent
    详情信息:[u'android.os.Parcel@414ad150']
    [u'android.app.ReceiverRestrictedContext@415306b8', u'class com.koushikdutta.superuser.MainActivity']
    [u'android.app.ReceiverRestrictedContext@415306b8', u'class com.koushikdutta.superuser.SuCheckerReceiver']
    Activities
    活动名类型
    .MainActivityandroid.intent.action.MAIN
    .MainActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    ContentResolver;->query读取联系人、短信等数据库
    getRuntime获取命令行环境
    java/lang/Runtime;->exec执行字符串命令
    android/app/NotificationManager;->notify信息通知栏
    HttpClient;->execute请求远程服务器
    启动方式
    名称信息
    com.koushikdutta.superuser.SuCheckerReceiver开机启动服务
    com.koushikdutta.superuser.PackageChangeReceiver应用安装时启动服务
    com.koushikdutta.superuser.PackageChangeReceiver开机启动服务
    com.koushikdutta.superuser.PackageChangeReceiver应用卸载时启动服务
    权限列表
    许可名称信息
    android.permission.ACCESS_SUPERUSER
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    文件列表
    文件名 校验码
    AndroidManifest.xml 0xc2ae3fea
    classes.dex 0x7997cbe9
    resources.arsc 0x4028ebb0
    assets/reboot 0x38e29af0
    assets/update-binary 0xf4e34b0d
    assets/armeabi/su 0x786b9ca1
    assets/x86/su 0xec41dd63
    res/drawable/carbon.png 0xfc225ae9
    res/drawable/clockwork512.png 0xefa1e3f6
    res/drawable/desksms.png 0x687b29cf
    res/drawable/github.png 0x859135dc
    res/drawable/koush.png 0xa0ab16fe
    res/drawable/list_content_left.xml 0xff81967e
    res/drawable/list_content_left_dark.xml 0x8b876ceb
    res/drawable/list_content_right.xml 0xc395c69a
    res/drawable/list_content_right_dark.xml 0xb7933c0f
    res/drawable/tether.png 0x39d4299b
    res/drawable-hdpi/ic_action_about.png 0xad8b2266
    res/drawable-hdpi/ic_action_logs.png 0xabb005d2
    res/drawable-hdpi/ic_action_permission.png 0x16f850d2
    res/drawable-hdpi/ic_action_settings.png 0x3a0e1110
    res/drawable-hdpi/ic_action_trash.png 0x25e597a6
    res/drawable-hdpi/ic_alert.png 0xaadf72f5
    res/drawable-hdpi/ic_alert_dark.png 0x2989da56
    res/drawable-hdpi/ic_allow.png 0x8a05bd0a
    res/drawable-hdpi/ic_declare.png 0x65a822ac
    res/drawable-hdpi/ic_declare_dark.png 0xcd28422c
    res/drawable-hdpi/ic_delete.png 0x78a245a2
    res/drawable-hdpi/ic_deny.png 0x2dcf8355
    res/drawable-hdpi/ic_launcher.png 0xfb9f5c17
    res/drawable-hdpi/ic_logging.png 0x2c0bc5ed
    res/drawable-hdpi/ic_logging_dark.png 0xb4dfefcd
    res/drawable-hdpi/ic_menu_about.png 0x35ec97cd
    res/drawable-hdpi/ic_menu_logs.png 0xf631930e
    res/drawable-hdpi/ic_menu_settings.png 0x3938f8
    res/drawable-hdpi/ic_menu_trash.png 0x2cf0dd50
    res/drawable-hdpi/ic_notifications.png 0xa35d3c2c
    res/drawable-hdpi/ic_notifications_dark.png 0xb4801f60
    res/drawable-hdpi/ic_protected.png 0x5551136e
    res/drawable-hdpi/ic_protected_dark.png 0xa6072a9c
    res/drawable-hdpi/ic_stat_notification.png 0x8564d447
    res/drawable-hdpi/ic_theme.png 0xb5e09b2
    res/drawable-hdpi/ic_theme_dark.png 0x6c12b321
    res/drawable-hdpi/ic_timeout.png 0xb874c3f4
    res/drawable-hdpi/ic_timeout_dark.png 0x30dd0cbd
    res/drawable-hdpi/ic_toggle.png 0xf72a870d
    res/drawable-hdpi/ic_toggle_dark.png 0xd2af9aba
    res/drawable-hdpi/ic_users.png 0xcac1f0
    res/drawable-hdpi/ic_users_dark.png 0xcd25620f
    res/drawable-hdpi/panel_bg_holo_dark.9.png 0xe3a9579c
    res/drawable-hdpi/panel_bg_holo_light.9.png 0xe0936a86
    res/drawable-hdpi-v11/ic_stat_notification.png 0x2cd5978c
    res/drawable-hdpi-v9/ic_stat_notification.png 0x1fea0675
    res/drawable-ldpi-v11/ic_stat_notification.png 0x9c6e41a0
    res/drawable-ldpi-v9/ic_stat_notification.png 0xce363780
    res/drawable-mdpi/ic_action_about.png 0xd51f2a3
    res/drawable-mdpi/ic_action_logs.png 0x6180b641
    res/drawable-mdpi/ic_action_permission.png 0xc5fecd94
    res/drawable-mdpi/ic_action_settings.png 0xf66764e6
    res/drawable-mdpi/ic_action_trash.png 0x1bd30a9a
    res/drawable-mdpi/ic_alert.png 0x2d88aef3
    res/drawable-mdpi/ic_alert_dark.png 0x5a324ed3
    res/drawable-mdpi/ic_allow.png 0xcabde42
    res/drawable-mdpi/ic_declare.png 0x2d550c21
    res/drawable-mdpi/ic_declare_dark.png 0x99db8614
    res/drawable-mdpi/ic_delete.png 0xa2e9bf85
    res/drawable-mdpi/ic_deny.png 0xdc6535cb
    res/drawable-mdpi/ic_launcher.png 0xfb9f5c17
    res/drawable-mdpi/ic_logging.png 0xd2fa800e
    res/drawable-mdpi/ic_logging_dark.png 0xa2bbe638
    res/drawable-mdpi/ic_menu_about.png 0xfd24ccb1
    res/drawable-mdpi/ic_menu_logs.png 0x342b5b6f
    res/drawable-mdpi/ic_menu_settings.png 0xa188d65d
    res/drawable-mdpi/ic_menu_trash.png 0x6c025d63
    res/drawable-mdpi/ic_notifications.png 0xe6441b8a
    res/drawable-mdpi/ic_notifications_dark.png 0x777e30cd
    res/drawable-mdpi/ic_protected.png 0xd84744f7
    res/drawable-mdpi/ic_protected_dark.png 0xeb6df1f8
    res/drawable-mdpi/ic_stat_notification.png 0xdff696c4
    res/drawable-mdpi/ic_theme.png 0x2368ba7d
    res/drawable-mdpi/ic_theme_dark.png 0xd85df450
    res/drawable-mdpi/ic_timeout.png 0x79850464
    res/drawable-mdpi/ic_timeout_dark.png 0x77b63943
    res/drawable-mdpi/ic_toggle.png 0x530d18f5
    res/drawable-mdpi/ic_toggle_dark.png 0x6975507c
    res/drawable-mdpi/ic_users.png 0x718814e2
    res/drawable-mdpi/ic_users_dark.png 0xceeee25a
    res/drawable-mdpi/panel_bg_holo_dark.9.png 0x13345f40
    res/drawable-mdpi/panel_bg_holo_light.9.png 0x1ec43648
    res/drawable-mdpi-v11/ic_stat_notification.png 0xcdda938e
    res/drawable-mdpi-v9/ic_stat_notification.png 0x938bb813
    res/drawable-xhdpi/ic_action_about.png 0xe9376ae5
    res/drawable-xhdpi/ic_action_logs.png 0xfa9bb6a4
    res/drawable-xhdpi/ic_action_permission.png 0xce931e8d
    res/drawable-xhdpi/ic_action_settings.png 0x2d4015d6
    res/drawable-xhdpi/ic_action_trash.png 0x7c7439e9
    res/drawable-xhdpi/ic_alert.png 0x761b5fb6
    res/drawable-xhdpi/ic_alert_dark.png 0x3c6f85fa
    res/drawable-xhdpi/ic_allow.png 0xd11e4aa4
    res/drawable-xhdpi/ic_declare.png 0x6855bbcf
    res/drawable-xhdpi/ic_declare_dark.png 0xb3bab37d
    res/drawable-xhdpi/ic_delete.png 0xe7afcd3a
    res/drawable-xhdpi/ic_deny.png 0x657b739c
    res/drawable-xhdpi/ic_launcher.png 0xfb9f5c17
    res/drawable-xhdpi/ic_logging.png 0x44413052
    res/drawable-xhdpi/ic_logging_dark.png 0x4676072
    res/drawable-xhdpi/ic_menu_about.png 0xa96cb0b6
    res/drawable-xhdpi/ic_menu_logs.png 0xfd94d28f
    res/drawable-xhdpi/ic_menu_settings.png 0xdaac1c83
    res/drawable-xhdpi/ic_menu_trash.png 0xb84ac522
    res/drawable-xhdpi/ic_notifications.png 0x7f88450a
    res/drawable-xhdpi/ic_notifications_dark.png 0x6dc97885
    res/drawable-xhdpi/ic_protected.png 0x49a433be
    res/drawable-xhdpi/ic_protected_dark.png 0x7853e942
    res/drawable-xhdpi/ic_stat_notification.png 0xd967fbc2
    res/drawable-xhdpi/ic_theme.png 0xeb3c5cc9
    res/drawable-xhdpi/ic_theme_dark.png 0xf38cfa8b
    res/drawable-xhdpi/ic_timeout.png 0xcd7c3c78
    res/drawable-xhdpi/ic_timeout_dark.png 0xc71b2be2
    res/drawable-xhdpi/ic_toggle.png 0x8805197
    res/drawable-xhdpi/ic_toggle_dark.png 0xa018c0e8
    res/drawable-xhdpi/ic_users.png 0x3a1bdc1a
    res/drawable-xhdpi/ic_users_dark.png 0x81d2ef57
    res/drawable-xhdpi/panel_bg_holo_dark.9.png 0x888d72e3
    res/drawable-xhdpi/panel_bg_holo_light.9.png 0xda4b55f6
    res/drawable-xhdpi-v11/ic_stat_notification.png 0x6963c158
    res/drawable-xhdpi-v9/ic_stat_notification.png 0x8ed957a3
    res/drawable-xxhdpi/ic_launcher.png 0xfb9f5c17
    res/layout/app_info.xml 0xf28f1e4
    res/layout/app_layout.xml 0x1bd84cc
    res/layout/app_request.xml 0x426b693e
    res/layout/container_activity.xml 0xd918cc8b
    res/layout/list_content.xml 0x3bc0f4dc
    res/layout/list_content_header.xml 0x3815077
    res/layout/list_content_large.xml 0xc18402f2
    res/layout/list_content_small.xml 0xe30aa6ca
    res/layout/list_fragment.xml 0xcccde0e4
    res/layout/list_header.xml 0x4760a3ee
    res/layout/list_item.xml 0xfeff8476
    res/layout/list_item_base.xml 0xd8d0f0f2
    res/layout/list_item_selectable.xml 0xfeff8476
    res/layout/log_item.xml 0x501950de
    res/layout/log_item_base.xml 0x15637bae
    res/layout/log_toggle.xml 0xaab7cb47
    res/layout/notification_toggle.xml 0xbaade876
    res/layout/notify.xml 0xa861ddac
    res/layout/packageinfo.xml 0x15c60431
    res/layout/pin.xml 0x597e4f2e
    res/layout/policy_header.xml 0xc09489ba
    res/layout/policy_info.xml 0xbe75fe9c
    res/layout/policy_list_content.xml 0x3bc0f4dc
    res/layout/request.xml 0x17fab865
    res/layout/request_choices.xml 0xdef5184e
    res/layout/request_spinner.xml 0x3e4083c0
    res/layout/request_spinner_choice.xml 0xffc805b8
    res/layout/settings.xml 0x11171398
    res/layout/unknown_app.xml 0x4154d81d
    res/layout-land/app_info.xml 0x48a22ca7
    res/layout-land/app_request.xml 0x759fc4c8
    res/layout-land/log_item.xml 0x25afdb8e
    res/layout-large/app_info.xml 0x67bfa267
    res/layout-large/app_request.xml 0x426b693e
    res/layout-large/container_activity.xml 0x4fd3ee95
    res/layout-large/list_content.xml 0xb4f84346
    res/layout-large/list_content_header.xml 0x95236c21
    res/layout-large/list_item_selectable.xml 0x591d268c
    res/layout-large/policy_info.xml 0x3019e0f7
    res/layout-large/policy_list_content.xml 0x3bc0f4dc
    res/layout-large-land/policy_list_content.xml 0xb4f84346
    res/layout-normal-land/policy_info.xml 0xf6860e97
    res/layout-v14/log_toggle.xml 0x44c2a936
    res/layout-v14/notification_toggle.xml 0x54d88a07
    res/menu/app.xml 0x4a894ad1
    res/menu/main.xml 0xffb3f372
    res/menu/policy.xml 0xacbae8ec
    res/menu-v11/app.xml 0x57c614c9
    res/menu-v11/main.xml 0xa0846e9d
    res/menu-v11/policy.xml 0x2a2bbce4
    META-INF/MANIFEST.MF 0x6007113d
    META-INF/CERT.SF 0xe1a0b1af
    META-INF/CERT.RSA 0xe24a2d0d
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号