VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
File Name :screenclicker_1.2.2_crack_rus.apk (File not down)
File Size :239602 byte
File Type :application/zip
MD5:f2e99442a8d8c04ae92e2fc00131a68f
SHA1:e7b63b8b78361f57afca2232f7cdb8b30912a24f
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:3%Scanner(s) (1/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2015-10-24 22:43:25 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
    avast 150725-1 4.7.4 2015-07-25 Found nothing 0
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
    baidusd 1.0 1.0 2014-04-02 Found nothing 1
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
    clamav 19861 0.97.5 2014-12-31 Found nothing 0
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
    gdata 25.4025 25.4025 2015-10-23 Android.Adware.Wapsx.Z 8
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
    jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 40
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
    kingsoft 2.1 2.1 2013-09-22 Found nothing 4
    mcafee 7638 5400.1158 2014-11-30 Found nothing 0
    nod32 0920 3.0.21 2014-12-23 Found nothing 0
    panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 8
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
    quickheal 14.00 14.00 2015-07-25 Found nothing 2
    rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 1
    sophos 5.08 3.55.0 2014-12-01 Found nothing 0
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 4
    thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 1
    vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
  • 权限列表
    许可名称信息
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.SYSTEM_OVERLAY_WINDOW
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
  • 文件信息
    安全评分 :
    基本信息
    MD5:f2e99442a8d8c04ae92e2fc00131a68f
    包名:com.pw.screenclicker
    最低运行环境:Android 4.0, 4.0.1, 4.0.2
    版权:Android
    关键行为
    行为描述:写权限映射文件
    详情信息:\WINDOWS\system32\zh-cn\ieframe.dll.mui
    Internet Explorer Immutable Application State (00000550-0000-0000-0000-000000000000)
    CiceroSharedMemDefaultS-*
    ie_lcie_LogonMedium
    ie_lcie_main_550
    Isolation Process Registry (BC4A745F-4B12-11E5-91BE-000000000000)
    Isolation Signal Registry (BC4A745F-4B12-11E5-91BE-000000000000, 0)
    Local\IEFrame!GetAsyncKeyStateSharedMem!1360
    Local\UrlZonesSM_Administrator
    ie_lcie_ConnHashTable<1360>
    AtlDebugAllocator_FileMappingNameStatic3_550
    DfRoot0003D4F75
    DfRoot0003D5A49
    Local\Feed Eventing Shared Memory S-*
    MSCTF.MarshalInterface.FileMap.MJB..AIPGH
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~
    C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5\MSHist012015102420151025
    C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Feeds Cache
    C:\Documents and Settings\Administrator\IECompatCache
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,BrowserFrameGripperClass]
    [Window,Class] = [缩放级别,ToolbarWindow32]
    [Window,Class] = [,msctls_progress32]
    行为描述:设置消息钩子
    详情信息:C:\WINDOWS\system32\DINPUT8.dll
    行为描述:按名称获取主机地址
    详情信息:computer
    wpad
    www.yixun.com
    进程行为
    行为描述:创建进程
    详情信息:ImagePath = C:\Program Files\Internet Explorer\iexplore.exe, CmdLine = "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:1360 CREDAT:79873
    行为描述:枚举进程
    详情信息:N/A
    文件行为
    行为描述:写权限映射文件
    详情信息:\WINDOWS\system32\zh-cn\ieframe.dll.mui
    Internet Explorer Immutable Application State (00000550-0000-0000-0000-000000000000)
    CiceroSharedMemDefaultS-*
    ie_lcie_LogonMedium
    ie_lcie_main_550
    Isolation Process Registry (BC4A745F-4B12-11E5-91BE-000000000000)
    Isolation Signal Registry (BC4A745F-4B12-11E5-91BE-000000000000, 0)
    Local\IEFrame!GetAsyncKeyStateSharedMem!1360
    Local\UrlZonesSM_Administrator
    ie_lcie_ConnHashTable<1360>
    AtlDebugAllocator_FileMappingNameStatic3_550
    DfRoot0003D4F75
    DfRoot0003D5A49
    Local\Feed Eventing Shared Memory S-*
    MSCTF.MarshalInterface.FileMap.MJB..AIPGH
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~
    C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5\MSHist012015102420151025
    C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Feeds Cache
    C:\Documents and Settings\Administrator\IECompatCache
    行为描述:修改文件内容
    详情信息:C:\Documents and Settings\Administrator\Application Data\Adobe\Flash Player\NativeCache\NativeCache.directory---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5\MSHist012015102420151025\index.dat---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\dnserrordiagoff[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\ErrorPageTemplate[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\errorPageStrings[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\httpErrorPagesScripts[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\noConnect[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\bullet[2]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\background_gradient[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\down[2]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\favcenter[1]---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\tools[2]---> Offset = 0
    行为描述:查找文件
    详情信息:FileName = C:\Program Files\Common Files\Adobe
    FileName = C:\Program Files\Common Files\Adobe\Acrobat
    FileName = C:\Program Files\Common Files\Adobe\Acrobat\ActiveX
    FileName = C:\DOCUME~1
    FileName = C:\Documents and Settings\ADMINI~1
    FileName = C:\Documents and Settings\Administrator\LOCALS~1
    FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E.swf
    FileName = C:\Program Files\Internet Explorer\iexplore.exe
    FileName = C:\Documents and Settings
    FileName = C:\Documents and Settings\Administrator
    FileName = C:\Documents and Settings\Administrator\Local Settings
    FileName = C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Connections\Pbk\*.pbk
    FileName = C:\WINDOWS\system32\Ras\*.pbk
    网络行为
    行为描述:联网打开网址
    详情信息:InternetOpenUrlA: http://110.110.110.110:80/wpad.dat hInternet = 0x000004a0
    InternetOpenUrlA: http://110.110.110.110:80/wpad.dat hInternet = 0x0000037c
    行为描述:下载文件
    详情信息:URLDownloadToFileW: http://www.live.com/favicon.ico ---> C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    URLDownloadToFileW: https://go.microsoft.com/fwlink/?LinkId=141260 ---> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Kno4.tmp
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Kno4.tmp
    行为描述:读取网络文件
    详情信息:hFile = 0x000004a0, BytesToRead =4010, BytesRead = 4010.
    hFile = 0x0000037c, BytesToRead =4010, BytesRead = 4010.
    行为描述:按名称获取主机地址
    详情信息:computer
    wpad
    www.yixun.com
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
    \REGISTRY\USER\S-*\Software\Microsoft\Internet Explorer\Recovery\Active\{BC4A7462-4B12-11E5-91BE-000000000000}
    \REGISTRY\USER\S-*\Software\Microsoft\CTF\TIP\{1188450c-fdab-47ae-80d8-c9633f71be64}\LanguageProfile\0x00000000\{63800dac-e7ca-4df9-9a5c-20765055488d}\Enable
    \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{1EA4DBF0-3C3B-11CF-810C-00AA00389B71}\1.1\0\win32\
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Count
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Time
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\LoadTime
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\LoadTimeCount
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore\Count
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore\Time
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012015102420151025\CachePath
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012015102420151025\CachePrefix
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012015102420151025\CacheLimit
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012015102420151025\CacheOptions
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012015102420151025\CacheRepair
    行为描述:删除注册表键值
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\0\Expiration
    \REGISTRY\USER\S-*\Software\Microsoft\Internet Explorer\LinksBar\ItemCache\1\Expiration
    行为描述:删除注册表键值_IE连接设置
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
    行为描述:删除注册表键
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\CTF\TIP\{1188450c-fdab-47ae-80d8-c9633f71be64}\LanguageProfile\0x00000000\{63800dac-e7ca-4df9-9a5c-20765055488d}
    \REGISTRY\USER\S-*\Software\Microsoft\CTF\TIP\{1188450c-fdab-47ae-80d8-c9633f71be64}\LanguageProfile\0x00000000
    \REGISTRY\USER\S-*\Software\Microsoft\CTF\TIP\{1188450c-fdab-47ae-80d8-c9633f71be64}\LanguageProfile
    \REGISTRY\USER\S-*\Software\Microsoft\CTF\TIP\{1188450c-fdab-47ae-80d8-c9633f71be64}
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012015082520150826
    其他行为
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [Static,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    NtUserFindWindowEx: [Class,Window] = [MS_AutodialMonitor,]
    NtUserFindWindowEx: [Class,Window] = [MS_WebCheckMonitor,]
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    Local\!BrowserEmulation!SharedMemory!Mutex
    Local\ZoneAttributeCacheCounterMutex
    Local\ZonesCacheCounterMutex
    Local\ZonesLockedCacheCounterMutex
    RasPbFile
    ConnHashTable<1360>_HashTable_Mutex
    oleacc-msaa-loaded
    Local\ZonesCounterMutex
    Local\RSS Eventing Connection Database Mutex 00000550
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,BrowserFrameGripperClass]
    [Window,Class] = [缩放级别,ToolbarWindow32]
    [Window,Class] = [,msctls_progress32]
    行为描述:设置消息钩子
    详情信息:C:\WINDOWS\system32\DINPUT8.dll
    行为描述:获取系统权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    动态列表行为
    行为描述:启动服务
    详情信息:{"FLAG":0,"COMPONENT_NAME":"ComponentInfo{com.pw.screenclicker\/com.pw.screenclicker.service.MainService}"}
    {"FLAG":0,"COMPONENT_NAME":"ComponentInfo{com.pw.screenclicker\/com.pw.screenclicker.service.MainService}"}
    {"FLAG":0,"COMPONENT_NAME":"ComponentInfo{com.pw.screenclicker\/com.pw.screenclicker.service.MainService}"}
    行为描述:获取安装应用列表
    详情信息:[u'0']
    [u'0']
    行为描述:获取加密实例
    详情信息:[u'DES/CBC/PKCS5Padding']
    行为描述:初始化IntentFilter
    详情信息:[u'ACTION_EXIT_COM_PW_SCREENCLICKER']
    [u'ACTION_DATA_CHANGE_COM_PW_SCREENCLICKER']
    行为描述:添加View
    详情信息:[u'android.view.View@415474a0', u'WM.LayoutParams{(-1,-1)(1x1) gr=#33 ty=2010 fl=#40308 fmt=-2}', u'android.view.CompatibilityInfoHolder@414b8878']
    [u'com.android.internal.policy.impl.PhoneWindow$DecorView@414a8400', u'WM.LayoutParams{(0,0)(fillxfill) sim=#100 ty=1 fl=#1810100 pfl=0x8 wanim=0x7f060001}', u'android.view.CompatibilityInfoHolder@414b8878']
    [u'android.widget.LinearLayout@4150f730', u'WM.LayoutParams{(0,128)(wrapxwrap) gr=#51 ty=2005 fl=#98 fmt=-3 wanim=0x1030004}']
    [u'android.view.View@4154e8b0', u'WM.LayoutParams{(-1,-1)(1x1) gr=#33 ty=2003 fl=#60308 fmt=-2}', u'android.view.CompatibilityInfoHolder@414b0688']
    行为描述:激活Activity
    详情信息:{"ACTION":"android.app.action.ADD_DEVICE_ADMIN","FLAG":0,"EXTRAS":{"android.app.extra.DEVICE_ADMIN":"ComponentInfo{com.pw.screenclicker\/android.app.admin.DeviceAdminReceiver}"}}
    行为描述:root权限检测
    详情信息:/system/bin/su
    /system/xbin/su
    行为描述:读取文件
    详情信息:path:/mnt/sdcard/Android/data/.class/android length:38
    path:/mnt/sdcard/Android/data/.class/android length:5
    path:/data/data/com.pw.screenclicker/shared_prefs/sp.xml length:110
    path:/mnt/sdcard/Android/data/cache/AppPackage.dat length:5
    path:/data/data/com.pw.screenclicker/shared_prefs/sp.xml length:171
    行为描述:判断手机是否为待机状态
    详情信息:false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    false
    行为描述:初始化Intent
    详情信息:[u'com.pw.screenclicker.activity.SettingActivity@4153d770', u'class com.pw.screenclicker.service.MainService']
    [u'android.app.action.ADD_DEVICE_ADMIN']
    [u'android.intent.action.MAIN']
    [u'ACTION_DATA_CHANGE_COM_PW_SCREENCLICKER']
    [u'android.os.Parcel@414adf90']
    [u'android.os.Parcel@414b5fa0']
    [u'com.pw.screenclicker.activity.SettingActivity@4153d770', u'class com.pw.screenclicker.service.MainService']
    [u'android.os.Parcel@414adf50']
    [u'android.os.Parcel@414adf90']
    [u'android.os.Parcel@414adf90']
    [u'android.os.Parcel@414b5fa0']
    [u'ACTION_DATA_CHANGE_COM_PW_SCREENCLICKER']
    [u'android.intent.action.VIEW', u'http://app.meizu.com/phone/apps/22b4cbf22dec4950801e045fb9897ee0']
    [u'android.os.Parcel@414adf90']
    [u'android.app.ReceiverRestrictedContext@414dbf70', u'class com.pw.screenclicker.service.MainService']
    [u'android.os.Parcel@414adf50']
    行为描述:获得当前运行的程序列表
    详情信息:[u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    [u'1']
    行为描述:传递附加信息
    详情信息:android.app.extra.DEVICE_ADMIN:ComponentInfo{com.pw.screenclicker/android.app.admin.DeviceAdminReceiver}
    行为描述:调用哈希算法
    详情信息:MD5
    行为描述:发出状态栏通知
    详情信息:[u'2130837520', u'Notification(pri=0 contentView=com.pw.screenclicker/0x7f030007 vibrate=null sound=null defaults=0x0 flags=0x10 kind=[null])']
    行为描述:解析通用资源标识符
    详情信息:http://app.meizu.com/phone/apps/22b4cbf22dec4950801e045fb9897ee0
    行为描述:注册广播接收器
    详情信息:[u'com.pw.screenclicker.activity.d@414cb1f0', u'android.content.IntentFilter@414cb278']
    [u'com.pw.screenclicker.core.b@414c5b10', u'android.content.IntentFilter@414c5b98']
    行为描述:初始化URL
    详情信息:[u'http://app.wapx.cn/action/connect/active?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264628572']
    [u'http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264639420']
    [u'http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264645259']
    [u'http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264653372']
    [u'http://app.waps.cn/action/user_info']
    [u'http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264661702']
    [u'http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264667853']
    [u'http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264678487']
    [u'http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264683814']
    行为描述:读取sdcard
    详情信息:path:/mnt/sdcard/Android/data/.class/android
    path:/mnt/sdcard/Android/data/.class/android
    path:/mnt/sdcard/Android/data/.class/android
    path:/mnt/sdcard/Android/data/cache/AppPackage.dat
    行为描述:窗口信息
    详情信息:{"text": "Screen Clicker", "class": "android.widget.TextView"}
    {"text": "Блокировка 2-ым нажатием", "class": "android.widget.TextView"}
    {"text": "Интервал между нажатиями", "class": "android.widget.TextView"}
    {"text": "Меньше 0.4 секунд", "class": "android.widget.TextView"}
    {"text": "Автозапуск", "class": "android.widget.TextView"}
    {"text": "Только на домашнем экране", "class": "android.widget.TextView"}
    {"text": "Защита от других приложений", "class": "android.widget.TextView"}
    {"text": "Другие приложения", "class": "android.widget.TextView"}
    {"text": "Блокировка в этих приложениях", "class": "android.widget.TextView"}
    {"text": "О программе", "class": "android.widget.TextView"}
    {"text": "Выход", "class": "android.widget.TextView"}
    行为描述:写入文件
    详情信息:path:/data/data/com.pw.screenclicker/files/CacheTime.dat length:18
    path:/mnt/sdcard/Android/data/.class/android length:38
    path:/data/data/com.pw.screenclicker/shared_prefs/AppSettings.xml length:139
    path:/data/data/com.pw.screenclicker/shared_prefs/abnormal_shutdown_helper.xml length:121
    path:/data/data/com.pw.screenclicker/shared_prefs/sp.xml length:110
    path:/mnt/sdcard/Android/data/cache/AppPackage.dat length:69
    path:/mnt/sdcard/Android/data/cache/UnPackage.dat length:69
    path:/data/data/com.pw.screenclicker/shared_prefs/sp.xml length:171
    行为描述:访问URL
    详情信息:http://app.wapx.cn/action/connect/active?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264628572
    http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264639420
    http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264645259
    http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264653372
    http://app.waps.cn/action/user_info
    http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264661702
    http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264667853
    http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264678487
    http://app.waps.cn/action/account/getinfo?app_id=53966f6a92aa0b6cf5741a234834e3f6&udid=357143040944263&imsi=460000043140572&net=wifi&base=wapx.cn&app_version=1.2.2&sdk_version=2.4.3&device_name=sdk&device_brand=Lenovo&y=4fc02873008214a76f405018d7eead53&device_type=android&os_version=4.1.2&country_code=US&language=en&act=com.pw.screenclicker&root=true&channel=meizu&device_width=768&device_height=1184&rec=h9fFLgXL%2BJ3C9bjehErUIxN6wKZIfLn3lAkMFR2ZmZeG4%2F2Cr8lFS3xQG13%2BOSMXwcdnnEgVpzax%0AGmBSo9dIpnDzaqneTHWpZyzbh4CnG7RTbdnFqj8SN%2FXY7wF46qeP6JggAsCDe2eX0bXcPhSfc0g%2B%0AgGVGMzoWLFMJLXFSj8QVj8enZPWgHkMT3E5Pz5tO%0A&at=1439264683814
    行为描述:添加悬浮窗口
    详情信息:[u'android.view.View@415474a0', u'WM.LayoutParams{(-1,-1)(1x1) gr=#33 ty=2010 fl=#40308 fmt=-2}', u'android.view.CompatibilityInfoHolder@414b8878']
    [u'android.view.View@4154e8b0', u'WM.LayoutParams{(-1,-1)(1x1) gr=#33 ty=2003 fl=#60308 fmt=-2}', u'android.view.CompatibilityInfoHolder@414b0688']
    行为描述:获取设备ID
    详情信息:357143040944263
    行为描述:Toast->makeText弹出提示
    详情信息:text:2131296259 duration:1
    行为描述:获取当前连接的Wifi热点信息
    详情信息:[]
    []
    []
    行为描述:获取用户ID
    详情信息:460000043140572
    460000043140572
    行为描述:缓冲区读取一行数据
    详情信息:RSZbbUsEdX%2Fd49IujgZPfA%3D%3D%0A
    null
    null
    行为描述:发送广播
    详情信息:{"ACTION":"ACTION_DATA_CHANGE_COM_PW_SCREENCLICKER","FLAG":0}
    {"ACTION":"ACTION_DATA_CHANGE_COM_PW_SCREENCLICKER","FLAG":0}
    行为描述:获取网络状态信息[*]
    详情信息:NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    行为描述:写入sdcard
    详情信息:path:/mnt/sdcard/Android/data/.class/android
    path:/mnt/sdcard/Android/data/cache/AppPackage.dat
    path:/mnt/sdcard/Android/data/cache/UnPackage.dat
    Activities
    活动名类型
    com.pw.screenclicker.activity.SettingActivityandroid.intent.action.MAIN
    com.pw.screenclicker.activity.SettingActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    java/net/HttpURLConnection;->connect连接URL
    getRuntime获取命令行环境
    java/lang/Runtime;->exec执行字符串命令
    TelephonyManager;->getDeviceId搜集用户手机IMEI码、电话号码、系统版本号等信息
    android/app/NotificationManager;->notify信息通知栏
    java/net/URL;->openConnection连接URL
    启动方式
    名称信息
    com.pw.screenclicker.core.BootBroadcastReceiver开机启动服务
    权限列表
    许可名称信息
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.SYSTEM_OVERLAY_WINDOW
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    服务列表
    名称
    com.pw.screenclicker.service.MainService
    com.pw.screenclicker.service.MyAccessibilityService
    文件列表
    文件名 校验码
    resources.arsc 0xd11c0d6f
    AndroidManifest.xml 0x10109eda
    classes.dex 0x786dcf37
    res/anim/slide_in_left.xml 0xfa195a10
    res/anim/slide_in_right.xml 0xb1acba37
    res/anim/slide_out_left.xml 0x4f371910
    res/anim/slide_out_right.xml 0x82a5528a
    res/drawable-xhdpi/check_button_off.png 0x8751a6cb
    res/drawable-xhdpi/check_button_on.png 0xfe3886d4
    res/drawable-xhdpi/default_app_icon.png 0x9c0a7b5f
    res/drawable-xhdpi/ic_card_more.png 0x3b927ede
    res/drawable-xhdpi/ic_list_more_right.png 0xf8b660a
    res/drawable-xhdpi/ic_menu_edit.png 0x34425db3
    res/drawable-xhdpi/ic_tab_add.png 0x8f4577cb
    res/drawable-xhdpi/ic_tab_back.png 0x7c9699e2
    res/drawable-xhdpi/ic_tab_delete.png 0x50261231
    res/drawable-xhdpi/logo_dsb.png 0x5a716611
    res/drawable-xhdpi/logo_home_manager.png 0x2caeb077
    res/drawable-xhdpi/logo_km.png 0x7f60a33b
    res/drawable-xhdpi/logo_pccontroller.png 0x5d68bff9
    res/drawable-xhdpi/logo_qb.png 0x8e1b61b9
    res/drawable-xhdpi/logo_screen_clicker.png 0x6967adb6
    res/drawable-xhdpi/logo_ssb.png 0x3786dce4
    res/drawable-xxhdpi/ash_dialog_close.png 0x175280d7
    res/drawable/card_background.xml 0x37ea3e9a
    res/drawable/card_item_background.xml 0xaa60688c
    res/drawable/check_button.xml 0x41b8e722
    res/drawable/text_des_background.xml 0xbbc87dcc
    res/drawable/text_name_background.xml 0x4767ed3c
    res/layout/activity_about_content.xml 0xbceef23f
    res/layout/activity_container.xml 0x141abb1f
    res/layout/activity_main_content.xml 0xbc381f73
    res/layout/activity_whitelist.xml 0x52b785ee
    res/layout/activity_wpeng_apps.xml 0x73c5a964
    res/layout/ash_float_killed_help.xml 0xc776c140
    res/layout/custom_title_bar.xml 0x5b959f98
    res/layout/exit_app_notify.xml 0x9d203e15
    res/layout/list_footer.xml 0x829d81b8
    res/layout/list_header.xml 0xf4cd2bde
    res/layout/white_list_item.xml 0xa9dadeb7
    res/menu/add_white_list.xml 0xcb6443e4
    res/menu/manage_white_list.xml 0x9e1459ef
    res/menu/white_list.xml 0xcba3709
    res/xml/accessibility_service_config.xml 0xbd75b5cb
    res/xml/device_admin.xml 0xeab2c16b
    META-INF/MANIFEST.MF 0x97053a39
    META-INF/CERT.SF 0xaccc386
    META-INF/CERT.RSA 0x5750fdaa
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号