VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load



File information
File Name :AA阅读器3.7修改版V4.apk (File not down)
File Size :3583094 byte
File Type :application/zip
MD5:a7f11189f7f167865413344f2649722b
SHA1:36e2ec7af27b3228f589ceddbe07e56e4594e61e
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:3%Scanner(s) (1/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2017-09-26 16:44:27 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 2.0 1970-01-01 Found nothing 6
    asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 3
    avast 170303-1 4.7.4 2017-03-03 Found nothing 60
    avg 2109/14460 10.0.1405 2017-09-14 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 3
    baidusd 1.0 1.0 2017-03-22 Found nothing 2
    bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
    clamav 23869 0.97.5 2017-09-25 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2017-09-11 Found nothing 60
    fortinet 1.000, 51.909, 51.765, 51.789 5.4.247 2017-09-26 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
    fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
    gdata 25.14301 25.14301 2017-09-25 Found nothing 14
    ikarus 3.02.10 V1.32.31.0 2017-09-25 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2017-09-25 Found nothing 3
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2017-09-25 Found nothing 54
    mcafee 8620 5400.1158 2017-08-12 Found nothing 60
    nod32 6133 3.0.21 2017-09-24 Found nothing 60
    panda 9.05.01 9.05.01 2017-09-25 Found nothing 4
    pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 4
    qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
    quickheal 14.00 14.00 2017-09-23 Android.Waps.GEN9364 (PUP) 4
    rising 2656 2656 2017-09-22 Found nothing 7
    sophos 5.32 3.65.2 2016-10-10 Found nothing 60
    symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 5
    thehacker 6.8.0.5 6.8.0.5 2017-09-21 Found nothing 4
    tws 17.47.17308 1.0.2.2108 2017-09-25 Found nothing 17
    vba 3.12.29.5 beta 3.12.29.5 beta 2017-09-25 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.ACCESS_COARSE_UPDATES
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.READ_LOGS读取系统日志
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.VIBRATE允许设备震动
    android.permission.WRITE_SETTINGS读写系统设置项
  • 文件信息
    安全评分 :
    基本信息
    MD5:a7f11189f7f167865413344f2649722b
    包名:com.aareader.ggm
    最低运行环境:Android 2.0
    版权:w
    关键行为
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    行为描述:获取TickCount值
    详情信息:TickCount = 221500, SleepMilliseconds = 500.
    TickCount = 221515, SleepMilliseconds = 500.
    TickCount = 221531, SleepMilliseconds = 500.
    TickCount = 221546, SleepMilliseconds = 500.
    TickCount = 221578, SleepMilliseconds = 500.
    TickCount = 221278, SleepMilliseconds = 200.
    TickCount = 221293, SleepMilliseconds = 200.
    TickCount = 221309, SleepMilliseconds = 200.
    TickCount = 221325, SleepMilliseconds = 200.
    TickCount = 221340, SleepMilliseconds = 200.
    TickCount = 221356, SleepMilliseconds = 200.
    TickCount = 221371, SleepMilliseconds = 200.
    TickCount = 221465, SleepMilliseconds = 200.
    TickCount = 221481, SleepMilliseconds = 200.
    TickCount = 221828, SleepMilliseconds = 500.
    进程行为
    行为描述:创建本地线程
    详情信息:TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2632, ThreadID = 2644, StartAddress = 77DC845A, Parameter = 00000000
    TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2632, ThreadID = 2824, StartAddress = 004A1E7A, Parameter = 0112D400
    TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2632, ThreadID = 2828, StartAddress = 004A15CA, Parameter = 0112D340
    TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2632, ThreadID = 2832, StartAddress = 0047E3B6, Parameter = 01137118
    TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2632, ThreadID = 2836, StartAddress = 0049D303, Parameter = 0112B1C8
    TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2632, ThreadID = 2844, StartAddress = 7C947EBB, Parameter = 00000000
    TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2632, ThreadID = 2848, StartAddress = 7C930230, Parameter = 00000000
    文件行为
    行为描述:创建文件
    详情信息:C:\Documents and Settings\Administrator\Application Data\TeamViewer\TeamViewer3_Logfile.log
    C:\Documents and Settings\Administrator\Application Data\Microsoft\Crypto\RSA\S-*\978360d6c2d0ec978d50212be19a18c5_dcff734b-bc3f-43cb-8911-9b5d467629cf
    C:\Documents and Settings\Administrator\Application Data\Microsoft\Crypto\RSA\S-*\f71321f08fcf5b7e11d5564d485d58fb_dcff734b-bc3f-43cb-8911-9b5d467629cf
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    行为描述:修改文件内容
    详情信息:C:\Documents and Settings\Administrator\Application Data\TeamViewer\TeamViewer3_Logfile.log ---> Offset = 0
    C:\Documents and Settings\Administrator\Application Data\TeamViewer\TeamViewer3_Logfile.log ---> Offset = 9
    C:\Documents and Settings\Administrator\Application Data\TeamViewer\TeamViewer3_Logfile.log ---> Offset = 55
    C:\Documents and Settings\Administrator\Application Data\TeamViewer\TeamViewer3_Logfile.log ---> Offset = 86
    C:\Documents and Settings\Administrator\Application Data\TeamViewer\TeamViewer3_Logfile.log ---> Offset = 110
    C:\Documents and Settings\Administrator\Application Data\Microsoft\Crypto\RSA\S-*\978360d6c2d0ec978d50212be19a18c5_dcff734b-bc3f-43cb-8911-9b5d467629cf ---> Offset = 0
    C:\Documents and Settings\Administrator\Application Data\Microsoft\Crypto\RSA\S-*\f71321f08fcf5b7e11d5564d485d58fb_dcff734b-bc3f-43cb-8911-9b5d467629cf ---> Offset = 0
    行为描述:查找文件
    详情信息:FileName = C:\Documents and Settings
    FileName = C:\Documents and Settings\Administrator
    FileName = C:\Documents and Settings\Administrator\Application Data
    FileName = C:\Program Files
    FileName = C:\Documents and Settings\Administrator\Local Settings
    FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Crypto\RSA\S-*\978360d6c2d0ec978d50212be19a18c5_*
    FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Crypto\RSA\S-*\f71321f08fcf5b7e11d5564d485d58fb_*
    FileName = C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Connections\Pbk\*.pbk
    FileName = C:\WINDOWS\system32\Ras\*.pbk
    FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Network\Connections\Pbk\*.pbk
    FileName = C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\*
    FileName = C:\Documents and Settings\Administrator\Application Data\Mozilla\Profiles\default\*
    网络行为
    行为描述:连接指定站点
    详情信息:InternetConnectA: ServerName = ma****om, PORT = 80, UserName = , Password = , hSession = 0x00cc0004, hConnect = 0x00cc0008, Flags = 0x00000000
    行为描述:打开HTTP连接
    详情信息:InternetOpenA: UserAgent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate), hSession = 0x00000000
    InternetOpenA: UserAgent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate), hSession = 0x00cc0004
    行为描述:建立到一个指定的套接字连接
    详情信息:URL: pi****om, IP: **.133.40.**:5938, SOCKET = 0x00000254
    URL: ma****om, IP: **.133.40.**:80, SOCKET = 0x00000348
    URL: ma****om, IP: **.133.40.**:80, SOCKET = 0x0000034c
    URL: ma****om, IP: **.133.40.**:80, SOCKET = 0x00000360
    URL: ma****om, IP: **.133.40.**:80, SOCKET = 0x00000368
    URL: ma****om, IP: **.133.40.**:80, SOCKET = 0x0000035c
    URL: ma****om, IP: **.133.40.**:80, SOCKET = 0x00000210
    URL: ma****om, IP: **.133.40.**:80, SOCKET = 0x00000204
    行为描述:读取网络文件
    详情信息:hFile = 0x00cc000c, BytesToRead =2, BytesRead = 2.
    hFile = 0x00000000, BytesToRead =2, BytesRead = 2.
    行为描述:发送HTTP包
    详情信息:GET /din.aspx?s=00000000&id=0&client=DynGate&rnd=397774962&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=688627707&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=92842860&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=383767520&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=674726176&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=78746630&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=369735961&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=660814185&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=64612880&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=355708122&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=646894938&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=50468670&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=341669823&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=632962560&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    GET /din.aspx?s=00000000&id=0&client=DynGate&retry=1&rnd=36312660&p=10000001 HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; DynGate) Host: ma****om Connection: Keep-Alive Cache-Control: no-cache
    行为描述:打开HTTP请求
    详情信息:HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&rnd=397774962&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=688627707&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=92842860&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=383767520&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=674726176&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=78746630&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=369735961&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=660814185&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=64612880&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=355708122&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=646894938&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=50468670&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=341669823&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=632962560&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    HttpOpenRequestA: ma****om:80/din.aspx?s=00000000&id=0&client=dyngate&retry=1&rnd=36312660&p=10000001, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x84400100
    行为描述:按名称获取主机地址
    详情信息:gethostbyname: 
    gethostbyname: pi****om
    GetAddrInfoW: ma****om
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\MACHINE\SOFTWARE\TeamViewer3\ManualStop
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\ClientID
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\ClientIDMaster
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\ClientIC
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\LicenseType
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\InternalListenPort
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\GatewayAllowed
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\ListenHttp
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\UseDNS
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\useUDP
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\Gateway
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\Gatewayname
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\CustomRouter
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\ServerPasswordSecure
    \REGISTRY\MACHINE\SOFTWARE\TeamViewer3\TotalSessions
    行为描述:删除注册表键值
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyOverride
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
    其他行为
    行为描述:获取光标位置
    详情信息:CursorPos = (80,18468), SleepMilliseconds = 200.
    CursorPos = (6414,27472), SleepMilliseconds = 500.
    CursorPos = (19249,16696), SleepMilliseconds = 500.
    CursorPos = (11558,30330), SleepMilliseconds = 500.
    CursorPos = (27042,25436), SleepMilliseconds = 500.
    CursorPos = (5785,29117), SleepMilliseconds = 500.
    CursorPos = (23361,17799), SleepMilliseconds = 500.
    CursorPos = (10041,1463), SleepMilliseconds = 500.
    CursorPos = (3075,12914), SleepMilliseconds = 500.
    CursorPos = (4907,6408), SleepMilliseconds = 500.
    CursorPos = (32471,15576), SleepMilliseconds = 500.
    CursorPos = (3982,1125), SleepMilliseconds = 500.
    CursorPos = (372,13354), SleepMilliseconds = 500.
    CursorPos = (17501,19688), SleepMilliseconds = 500.
    CursorPos = (19798,20867), SleepMilliseconds = 500.
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    TeamViewer3_Win32_Instance_Mutex
    TeamViewer_Win32_Instance_Mutex
    DynGateInstanceMutex
    RasPbFile
    Local\ZonesCounterMutex
    Local\ZoneAttributeCacheCounterMutex
    Local\ZonesCacheCounterMutex
    Local\ZonesLockedCacheCounterMutex
    MSCTF.Shared.MUTEX.IOH
    行为描述:枚举网络共享资源
    详情信息:N/A
    行为描述:创建事件对象
    详情信息:EventName = Global\crypt32LogoffEvent
    EventName = Global\userenv: User Profile setup event
    EventName = TV_StreamDataEvent_Out_1
    EventName = TV_StreamDataEvent_In_2
    EventName = TV_StreamDataEvent_Out_3
    EventName = TV_StreamDataEvent_In_4
    EventName = DINPUTWINMM
    EventName = MSCTF.SendReceive.Event.MEK.IC
    EventName = MSCTF.SendReceiveConection.Event.MEK.IC
    EventName = TV_StreamDataEvent_Out_5
    EventName = TV_StreamDataEvent_In_6
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [TrayNotifyWnd,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    行为描述:窗口信息
    详情信息:Pid = 2632, Hwnd=0x10372, Text = ID, ClassName = Static.
    Pid = 2632, Hwnd=0x1037a, Text = 远程协助, ClassName = Button(RadioButton).
    Pid = 2632, Hwnd=0x1037c, Text = 远程演示, ClassName = Button(RadioButton).
    Pid = 2632, Hwnd=0x1037e, Text = 传送文件, ClassName = Button(RadioButton).
    Pid = 2632, Hwnd=0x10384, Text = 连接伙伴, ClassName = Button.
    Pid = 2632, Hwnd=0x10386, Text = ID, ClassName = Static.
    Pid = 2632, Hwnd=0x10388, Text = -, ClassName = Edit.
    Pid = 2632, Hwnd=0x1038a, Text = 密码, ClassName = Static.
    Pid = 2632, Hwnd=0x1038c, Text = -, ClassName = Edit.
    Pid = 2632, Hwnd=0x1038e, Text = 入站连接已禁用, ClassName = Static.
    Pid = 2632, Hwnd=0x10390, Text = 正在激活 TeamViewer..., ClassName = Static.
    Pid = 2632, Hwnd=0x10394, Text = 免费授权(仅供非商业使用) - computer, ClassName = Static.
    Pid = 2632, Hwnd=0x10398, Text = 如果您在等候连接,请告诉您的伙伴以下的ID和密码., ClassName = Static.
    Pid = 2632, Hwnd=0x1039a, Text = 等候会话, ClassName = Button(GroupBox).
    Pid = 2632, Hwnd=0x1039c, Text = 请在下面输入您伙伴的ID以建立一个远程会话., ClassName = Static.
    行为描述:获取TickCount值
    详情信息:TickCount = 221500, SleepMilliseconds = 500.
    TickCount = 221515, SleepMilliseconds = 500.
    TickCount = 221531, SleepMilliseconds = 500.
    TickCount = 221546, SleepMilliseconds = 500.
    TickCount = 221578, SleepMilliseconds = 500.
    TickCount = 221278, SleepMilliseconds = 200.
    TickCount = 221293, SleepMilliseconds = 200.
    TickCount = 221309, SleepMilliseconds = 200.
    TickCount = 221325, SleepMilliseconds = 200.
    TickCount = 221340, SleepMilliseconds = 200.
    TickCount = 221356, SleepMilliseconds = 200.
    TickCount = 221371, SleepMilliseconds = 200.
    TickCount = 221465, SleepMilliseconds = 200.
    TickCount = 221481, SleepMilliseconds = 200.
    TickCount = 221828, SleepMilliseconds = 500.
    行为描述:调整进程token权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    行为描述:生成随机会话密钥或公/私钥对
    详情信息:[CryptGenKey] Algorithm: Undefined (0x00000001) Flags: 0x04000000
    [CryptGenKey] Algorithm: Undefined (0x00000002) Flags: 0x04000000
    行为描述:打开事件
    详情信息:Global\crypt32LogoffEvent
    HookSwitchHookEnabledEvent
    _fCanRegisterWithShellService
    \SECURITY\LSA_AUTHENTICATION_INITIALIZED
    \INSTALLATION_SECURITY_HOLD
    Global\SvcctrlStartEvent_A3752DX
    CTF.ThreadMIConnectionEvent.000007E8.00000000.00000010
    CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.00000010
    MSCTF.SendReceiveConection.Event.IOH.IC
    MSCTF.SendReceive.Event.IOH.IC
    行为描述:调用Sleep函数
    详情信息:[1]: MilliSeconds = 500.
    [2]: MilliSeconds = 200.
    [3]: MilliSeconds = 0.
    [4]: MilliSeconds = 0.
    [5]: MilliSeconds = 0.
    [6]: MilliSeconds = 0.
    [7]: MilliSeconds = 500.
    [8]: MilliSeconds = 0.
    [9]: MilliSeconds = 0.
    [10]: MilliSeconds = 0.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,ComboLBox]
    [Window,Class] = [,ComboBox]
    [Window,Class] = [中止连接,Button]
    [Window,Class] = [,Static]
    行为描述:打开互斥体
    详情信息:Local\_!MSFTHISTORY!_
    Local\c:!documents and settings!administrator!local settings!temporary internet files!content.ie5!
    Local\c:!documents and settings!administrator!cookies!
    Local\c:!documents and settings!administrator!local settings!history!history.ie5!
    Local\WininetStartupMutex
    Local\WininetConnectionMutex
    Local\WininetProxyRegistryMutex
    ShimCacheMutex
    RasPbFile
    Local\!IETld!Mutex
    行为描述:导入密钥
    详情信息:[CryptImportKey] Algorithm: CALG_RSA_KEYX (0x0000a400), Data: 0x006190A8, DataLen: 148, Flags: 0x00000000
    [CryptImportKey] Algorithm: CALG_RSA_SIGN (0x00002400), Data: 0x00619140, DataLen: 148, Flags: 0x00000000
    [CryptImportKey] Algorithm: CALG_RSA_KEYX (0x0000a400), Data: 0x00618F70, DataLen: 308, Flags: 0x00000000
    [CryptImportKey] Algorithm: CALG_RC4 (0x00006801), Data: 0x006191D8, DataLen: 76, Flags: 0x00000000
    Activities
    活动名类型
    com.aareader.RSplashActivityandroid.intent.action.MAIN
    com.aareader.RSplashActivityandroid.intent.action.VIEW
    com.aareader.RSplashActivityandroid.intent.action.PICK
    com.aareader.RSplashActivityandroid.intent.category.LAUNCHER
    com.aareader.RSplashActivityandroid.intent.category.DEFAULT
    com.aareader.RSplashActivityandroid.intent.category.BROWSABLE
    危险函数
    函数名称信息
    ContentResolver;->query读取联系人、短信等数据库
    TelephonyManager;->getDeviceId搜集用户手机IMEI码、电话号码、系统版本号等信息
    getRuntime获取命令行环境
    HttpClient;->execute请求远程服务器
    DefaultHttpClient;->execute发送HTTP请求
    android/app/NotificationManager;->notify信息通知栏
    ContentResolver;->delete删除短信、联系人
    java/net/HttpURLConnection;->connect连接URL
    java/lang/Runtime;->exec执行字符串命令
    java/net/URL;->openConnection连接URL
    java/net/URLConnection;->connect连接URL
    LocationManager;->getLastKnownLocation获取地址位置
    启动方式
    名称信息
    com.aareader.MediaButtonReceiver
    com.aareader.MyReceiver
    权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.ACCESS_COARSE_UPDATES
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.READ_LOGS读取系统日志
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.VIBRATE允许设备震动
    android.permission.WRITE_SETTINGS读写系统设置项
    服务列表
    名称
    com.aareader.download.service.UpdateService
    文件列表
    文件名 校验码
    META-INF/MANIFEST.MF 0x983ead27
    META-INF/POJIE.SF 0x71f69354
    META-INF/POJIE.RSA 0x33404f86
    AndroidManifest.xml 0xc97dbd14
    assets/__xadsdk__remote__final__.jar 0xdbd7c6a6
    assets/aaread.png 0x8e899836
    assets/about.txt 0xe03b059f
    assets/about1.txt 0xd8cd333e
    assets/biduad_plugin/__pasys_remote_offer_wall.jar 0xa52110d8
    assets/drawable/aatheme.jpg 0xda7b6780
    assets/drawable/aatheme1.jpg 0xda7b6780
    assets/drawable/thmb_panel1.jpg 0x4d460b4b
    assets/drawable/thmb_panel2.png 0x1e973ec3
    assets/drawable/thmb_panel3.jpg 0xbd0ce061
    assets/drawable/thmb_panel_js.jpg 0xd69a1e1a
    assets/drawable/thmb_panel_red.jpg 0x48650676
    assets/drawable/thmb_panel_song.jpg 0x8603e910
    assets/drawable/thmb_panel_start.jpg 0x4b04c70e
    assets/drawable/thmb_panel_ye.jpg 0x7711ba10
    assets/gdt_plugin/gdtadv2.jar 0xc14d3253
    assets/ie.txt 0x9f8846df
    assets/readme.txt 0xe307c46
    assets/rule/111freeqidian.txt 0x19919d15
    assets/rule/11cmfu.txt 0xfd58d8fd
    assets/rule/12zongheng.txt 0x74331904
    assets/rule/13qq.txt 0x845b4ecc
    assets/rule/13yunqi.txt 0x7c349c9
    assets/rule/14yqk.txt 0x2cb80661
    assets/rule/16kbook.txt 0xba3a73e5
    assets/rule/23us.txt 0x2335fcdd
    assets/rule/263zwtxt 0x40c70ffa
    assets/rule/300ks.txt 0xb18d5db1
    assets/rule/3kzw.txt 0xc1296f00
    assets/rule/4g23sw.txt 0x616bc253
    assets/rule/4g365if.txt 0xec3ad5eb
    assets/rule/4g60ks.txt 0xc6edabae
    assets/rule/4gbookben.txt 0x268607ca
    assets/rule/4glingdian.txt 0xc947d750
    assets/rule/4gliwen.cc.txt 0x11bae47a
    assets/rule/4gltoooo.txt 0x2a30f81c
    assets/rule/4glwxs520.txt 0x1c38395e
    assets/rule/4gquanben5.txt 0xae6cd4c2
    assets/rule/4gub.txt 0xa35f02b2
    assets/rule/4gwenxuemi.txt 0xc30b605a
    assets/rule/4gxaishang.txt 0xff039ef0
    assets/rule/4gyipinxia.txt 0x5691d6a5
    assets/rule/4gzineworm.txt 0xc508cf37
    assets/rule/55dushu.txt 0xa8100eb
    assets/rule/666wx.txt 0x9bc97213
    assets/rule/80txt.txt 0x531f8013
    assets/rule/8264.txt 0xc8997681
    assets/rule/8jzw.txt 0x1b85e962
    assets/rule/a306.txt 0x649fa971
    assets/rule/abiquge_com_tw.txt 0x908d2899
    assets/rule/axqy.txt 0x469d1f41
    assets/rule/baoliny.txt 0x640b8313
    assets/rule/bbsvoc.txt 0xc946b46a
    assets/rule/biquge_com.txt 0x1d90411d
    assets/rule/biquge_la.txt 0x9e912782
    assets/rule/biquge_tw.txt 0xab23068f
    assets/rule/biquku.txt 0xc8a3c9
    assets/rule/bixia.txt 0x6e0ebab8
    assets/rule/bookbao.txt 0x484174da
    assets/rule/bookgew.txt 0x1f66fdff
    assets/rule/cishuge.txt 0x707c5e64
    assets/rule/d8qu.txt 0xe3d1565c
    assets/rule/dajiadu.txt 0xd3434ca0
    assets/rule/daomengren.txt 0xa83d044d
    assets/rule/dhwx.txt 0x82a0825e
    assets/rule/dmzj.txt 0x7598171c
    assets/rule/dsnyy.txt 0x826be6b5
    assets/rule/dzdxs.txt 0x641ce838
    assets/rule/feisuzw.txt 0x2a1ca4f5
    assets/rule/fhxs.txt 0x1574e0fa
    assets/rule/fkzww.txt 0xb056fcc0
    assets/rule/hjw.txt 0x8c9b6882
    assets/rule/jsnovel.txt 0xbfcb53ee
    assets/rule/kanunu.txt 0x514acb9b
    assets/rule/ksmzw.txt 0x9ed121fb
    assets/rule/lwxs.txt 0x8b010d0
    assets/rule/meizoo.txt 0x8410e2da
    assets/rule/miaobige.txt 0x921c65d4
    assets/rule/ouoou.txt 0x4e729516
    assets/rule/paoshuba.txt 0xda70d0dd
    assets/rule/pbtxt.txt 0x3f72cadc
    assets/rule/pgyzw.txt 0x560c0bd1
    assets/rule/q360.txt 0x3f868c48
    assets/rule/qbxs8.txt 0xd57ae706
    assets/rule/qfwread.txt 0xd193dcfb
    assets/rule/qiuxiaoshuo.txt 0xaf885238
    assets/rule/qsfbook.txt 0x9a50c749
    assets/rule/ranwennet.txt 0x530b476
    assets/rule/shu008.txt 0xcc63b93
    assets/rule/shuhaha.txt 0xeee4b8a0
    assets/rule/shumilou.txt 0x7aad0205
    assets/rule/siluke.txt 0x59044bb7
    assets/rule/ttzw365.txt 0xd90b92b0
    assets/rule/tyisee.txt 0x62a86b57
    assets/rule/wuyanxia.txt 0x2a7947fa
    assets/rule/www.8535.org.txt 0x830a2da1
    assets/rule/xiaoshuo2016.txt 0x39293559
    assets/rule/xunlook.txt 0xcdc8c27a
    assets/rule/xyshu8.txt 0x36a1d4fa
    assets/site.cfg 0xd71263d4
    assets/style/default/content.json 0x70397d90
    assets/style/eink/content.json 0xad904f3f
    assets/style/eink/drawable/bottombtn_bg.png 0x77630804
    assets/style/eink/drawable/btn_book.png 0x28e7241d
    assets/style/eink/drawable/btn_book_selected.png 0x8bf8d2b9
    assets/style/eink/drawable/btn_explore.png 0xaf64baca
    assets/style/eink/drawable/btn_explore_selected.png 0x4a4fc968
    assets/style/eink/drawable/btn_read.png 0x3512c7b0
    assets/style/eink/drawable/btn_read_selected.png 0x5126f31d
    assets/style/eink/drawable/btn_search.png 0x5d497b9d
    assets/style/eink/drawable/btn_search_selected.png 0xdcfe589c
    assets/style/eink/drawable/btn_setting.png 0x8114b7a3
    assets/style/eink/drawable/btn_setting_selected.png 0xe55cea1f
    assets/style/eink/drawable/btn_update.png 0x1f4a86a1
    assets/style/eink/drawable/btn_update_selected.png 0x49a0d5f1
    assets/style/eink/drawable/thmb_panel.png 0x1ddd535
    assets/style/eink/drawable/topbg.9.png 0x502b8718
    assets/style/eink/drawable/topbtn_check.png 0x2705ad6a
    assets/style/eink/drawable/topbtn_panel.png 0xe574ff2e
    assets/style/gray/content.json 0x9dda389d
    assets/style/green/content.json 0x184dedd0
    assets/style/js/content.json 0x54cd0ed2
    assets/style/red/content.json 0x97b2108f
    assets/style/sm/content.json 0xac5283bc
    assets/style/xk/content.json 0x363c24a1
    assets/style/zk/content.json 0x2eaf205a
    classes.dex 0x7b79666c
    lib/armeabi/libbook-jni.so 0x9aaa3494
    lib/armeabi/libchapter-jni.so 0xf3538a2a
    lib/armeabi/libgif-jni.so 0xa2cdf870
    lib/armeabi/libtool-jni.so 0xf2c79a86
    res/anim/popupanimation.xml 0x6d35318a
    res/anim/push_up_out.xml 0xb631f0a1
    res/anim/umeng_fb_slide_in_from_left.xml 0xbf1f53cd
    res/anim/umeng_fb_slide_in_from_right.xml 0xaf228eae
    res/anim/umeng_fb_slide_out_from_left.xml 0xfdc742be
    res/anim/umeng_fb_slide_out_from_right.xml 0xf9c5359a
    res/drawable-hdpi/aaread.png 0x9b04ac9d
    res/drawable-hdpi/folder.png 0xe08d13a0
    res/drawable-hdpi/head_icon.png 0xbbbd7fe5
    res/drawable-hdpi/icon_favorite.png 0x74b70b6
    res/drawable-hdpi/icon_pagefling.png 0xcd702034
    res/drawable-hdpi/list_icon.png 0x4d53144b
    res/drawable-hdpi/main_top_bg.png 0x5c5674d0
    res/drawable-hdpi/topbg.9.png 0x1a3d46d0
    res/drawable-hdpi/topbtn_check.png 0x2b152ac0
    res/drawable-hdpi/topbtn_panel.png 0x84cf390c
    res/drawable-hdpi/transparent.png 0xb48fba67
    res/drawable-hdpi/umeng_update_close_bg_normal.png 0x6fde0e83
    res/drawable-hdpi/umeng_update_close_bg_tap.png 0x2258ca94
    res/drawable-hdpi/v2_icon_book_download.png 0x12646480
    res/drawable-hdpi/v2_icon_book_jump.png 0x2c59497d
    res/drawable-hdpi/v3_icon_list.png 0xeea0e865
    res/drawable-hdpi/v3_icon_search.png 0x4fc856b7
    res/drawable-hdpi/v3_img_back.png 0x4b7b9017
    res/drawable-hdpi/v3_img_back_press.png 0x17a2000c
    res/drawable-hdpi/v3_main_category_btn.9.png 0x64e5cabd
    res/drawable-hdpi/v3_refresh.png 0x81fd4392
    res/drawable-hdpi/v3_top_back.9.png 0xedd8b6b1
    res/drawable-hdpi/v3_top_back_active.9.png 0xab101f9d
    res/drawable-mdpi/ad_close_h.png 0x374b3652
    res/drawable-mdpi/add.png 0x5918b3b6
    res/drawable-mdpi/app_book_detail_divider_bkg.png 0xde254a16
    res/drawable-mdpi/app_book_shadow.png 0xe1ab3311
    res/drawable-mdpi/app_bottom_bar_bkg.png 0x34c72d54
    res/drawable-mdpi/app_btn_search_normal.png 0x86ec8be8
    res/drawable-mdpi/app_btn_search_press.png 0x38dc170d
    res/drawable-mdpi/app_ic_board.png 0x95bd06eb
    res/drawable-mdpi/app_ic_category.png 0xd1ee2060
    res/drawable-mdpi/app_ic_download.png 0xce099e7f
    res/drawable-mdpi/app_ic_rank.png 0xd8801b63
    res/drawable-mdpi/app_ic_return.png 0x3c25aecb
    res/drawable-mdpi/app_ic_search.png 0x1dd34b2e
    res/drawable-mdpi/app_seach_box_bkg.9.png 0x657f1ec3
    res/drawable-mdpi/app_search_panel_bkg.png 0x5c853f62
    res/drawable-mdpi/app_toolbar_bkg_ept.png 0x3dc9e770
    res/drawable-mdpi/app_toolbar_bkg_sel.png 0xdd88e89d
    res/drawable-mdpi/arrowdown.png 0xbe76c404
    res/drawable-mdpi/arrowup.png 0x5e5db9f9
    res/drawable-mdpi/bg1.jpg 0x20d220c1
    res/drawable-mdpi/bg2.jpg 0x89e37d1e
    res/drawable-mdpi/bg3.jpg 0xd7578d9
    res/drawable-mdpi/bg4.jpg 0x65fe314b
    res/drawable-mdpi/bookfav.png 0x90c333b3
    res/drawable-mdpi/booknext.png 0x8ae42746
    res/drawable-mdpi/bookopen.png 0x69edfd6e
    res/drawable-mdpi/bookprev.png 0x2be588c2
    res/drawable-mdpi/books.png 0xa9e69463
    res/drawable-mdpi/booksassort.png 0x66a0dded
    res/drawable-mdpi/bookupload.png 0x44ee0b6c
    res/drawable-mdpi/bottom_bg_normal.png 0x7dc472b4
    res/drawable-mdpi/bt_corner.png 0xc38ccdcf
    res/drawable-mdpi/bt_left.png 0x9d154580
    res/drawable-mdpi/bt_top.png 0xbd7c1785
    res/drawable-mdpi/btn_folder_front.png 0xefb36471
    res/drawable-mdpi/btn_read_front.png 0x1e523602
    res/drawable-mdpi/btn_search_front.png 0xe99e5460
    res/drawable-mdpi/btn_set_front.png 0xadb2fc6f
    res/drawable-mdpi/btn_shu_front.png 0xf35c59ea
    res/drawable-mdpi/btn_update_front.png 0xbab647b2
    res/drawable-mdpi/button_press.png 0xb2424148
    res/drawable-mdpi/changeimage.png 0xcba8228d
    res/drawable-mdpi/checkbox.png 0xc0a11453
    res/drawable-mdpi/checkbox_empty.png 0x7d2c1230
    res/drawable-mdpi/checkbox_hover.png 0xb5a9458
    res/drawable-mdpi/close.png 0x26b1faf6
    res/drawable-mdpi/colors.png 0x319a9c42
    res/drawable-mdpi/dec.png 0xdda0e37d
    res/drawable-mdpi/deletebutton0.png 0xfc5eb96
    res/drawable-mdpi/downs.png 0x8b1cf376
    res/drawable-mdpi/expand_down.png 0x59810b94
    res/drawable-mdpi/expand_up.png 0x61c09a10
    res/drawable-mdpi/folder.png 0x192696bb
    res/drawable-mdpi/font_focus.png 0x9d231c3f
    res/drawable-mdpi/found.png 0xb2bfa711
    res/drawable-mdpi/highlightbar.9.png 0xfe700eda
    res/drawable-mdpi/home_btn_bg_d.png 0x1ecc6004
    res/drawable-mdpi/home_btn_bg_n.png 0xa4999adb
    res/drawable-mdpi/home_btn_bg_s.png 0x5d76cf73
    res/drawable-mdpi/ic_empty.png 0x14464a52
    res/drawable-mdpi/ico5_1.png 0x4eb94c4d
    res/drawable-mdpi/ico5_2.png 0x6f4a3150
    res/drawable-mdpi/ico6.png 0x1126c292
    res/drawable-mdpi/icon.png 0x89bda823
    res/drawable-mdpi/icon_favorite.png 0x6b6dc0df
    res/drawable-mdpi/icon_pagefling.png 0x86bea35a
    res/drawable-mdpi/iconlenovo.png 0xbf03fa64
    res/drawable-mdpi/landalpha.png 0x39182a21
    res/drawable-mdpi/landscape.png 0x415f7aa3
    res/drawable-mdpi/line_mzzd1.png 0x3d1f7590
    res/drawable-mdpi/lists.png 0x7316a1b7
    res/drawable-mdpi/localbook.png 0xb7da3507
    res/drawable-mdpi/lt.png 0xf32bfef0
    res/drawable-mdpi/maintab_toolbar_bg.png 0x3e73ae4d
    res/drawable-mdpi/mm_zoomin_btn_normal.png 0x7f1f4993
    res/drawable-mdpi/mm_zoomout_btn_normal.png 0xd434ccfe
    res/drawable-mdpi/modify.png 0x71b7fad2
    res/drawable-mdpi/mybg.png 0x7013fe68
    res/drawable-mdpi/noimg.png 0xb7da3507
    res/drawable-mdpi/nosound.png 0x8673fac1
    res/drawable-mdpi/old_umeng_analyse_write_feedback_normal.png 0x52be6d4d
    res/drawable-mdpi/old_umeng_analyse_write_feedback_pressed.png 0x36aed25b
    res/drawable-mdpi/play.png 0x9a1ded51
    res/drawable-mdpi/progressb.png 0x88a56300
    res/drawable-mdpi/rt.png 0x1ce068d8
    res/drawable-mdpi/save.png 0x5ac5b39
    res/drawable-mdpi/scrollbar_handle_accelerated_anim2.png 0x722fbebf
    res/drawable-mdpi/search.png 0x19163be3
    res/drawable-mdpi/share_32.png 0x75f270a8
    res/drawable-mdpi/shuonline.png 0x7a05c2f5
    res/drawable-mdpi/site_plug.png 0xd2ef5b02
    res/drawable-mdpi/skip.png 0xc198c93
    res/drawable-mdpi/sound.png 0x8b4ff644
    res/drawable-mdpi/stop.png 0xb9801ad2
    res/drawable-mdpi/text_next.png 0x7e36fb74
    res/drawable-mdpi/text_pre.png 0xd67a2744
    res/drawable-mdpi/timepicker_down_disabled.9.png 0x31fc60de
    res/drawable-mdpi/timepicker_down_disabled_focused.9.png 0xb66ab55e
    res/drawable-mdpi/timepicker_down_normal.9.png 0xcc6a939e
    res/drawable-mdpi/timepicker_down_pressed.9.png 0x939edae1
    res/drawable-mdpi/timepicker_down_selected.9.png 0x4b2472df
    res/drawable-mdpi/timepicker_input_disabled.9.png 0x3c586220
    res/drawable-mdpi/timepicker_input_normal.9.png 0xcff2e7cc
    res/drawable-mdpi/timepicker_input_pressed.9.png 0x20ea1755
    res/drawable-mdpi/timepicker_input_selected.9.png 0xbcbe085c
    res/drawable-mdpi/timepicker_up_disabled.9.png 0x560b6f9e
    res/drawable-mdpi/timepicker_up_disabled_focused.9.png 0xa939dc60
    res/drawable-mdpi/timepicker_up_normal.9.png 0x7314bfbe
    res/drawable-mdpi/timepicker_up_pressed.9.png 0x9ebc7c75
    res/drawable-mdpi/timepicker_up_selected.9.png 0xd01ad149
    res/drawable-mdpi/titlebkg.png 0x881e2b41
    res/drawable-mdpi/tleft.png 0xa4191167
    res/drawable-mdpi/toolbar_back.png 0xa07e42f6
    res/drawable-mdpi/toolbar_config.png 0x31a17133
    res/drawable-mdpi/toolbar_dw.png 0x37100ae5
    res/drawable-mdpi/toolbar_menu.png 0xbc9ce4c4
    res/drawable-mdpi/toolbar_more.png 0x3a82663
    res/drawable-mdpi/top_bg_normal.png 0x38b65b5f
    res/drawable-mdpi/topbg.9.png 0x76485c2b
    res/drawable-mdpi/tright.png 0x45e486d1
    res/drawable-mdpi/tselected.png 0x9320798b
    res/drawable-mdpi/ups.png 0x4502a6fc
    res/drawable-mdpi/v2_icon_book_download.png 0xa7cfafee
    res/drawable-mdpi/v2_icon_book_jump.png 0x71ef0133
    res/drawable-mdpi/v3_icon_list.png 0x8dd93615
    res/drawable-mdpi/v3_icon_search.png 0xe99e5460
    res/drawable-mdpi/v3_main_category_btn.9.png 0x64e5cabd
    res/drawable-mdpi/v3_refresh.png 0x3bed0bb3
    res/drawable-mdpi/v3_top_back.9.png 0xdbf51b64
    res/drawable-mdpi/v3_top_back_active.9.png 0xcb300309
    res/drawable-mdpi/xian.png 0xfd78c646
    res/drawable-xhdpi/red_center.png 0xa16db96c
    res/drawable-xhdpi/topnormal.png 0xbfc662a3
    res/drawable-xhdpi/v3_main_edit_bg.png 0x798fb88b
    res/drawable-xhdpi/yidonglianmeng.png 0x298000a0
    res/drawable/app_btn_search_selector.xml 0x6b0bc58b
    res/drawable/bottom_btn_bg.xml 0xbb6739c7
    res/drawable/checkbox_selector.xml 0xc3c5c636
    res/drawable/csupdate_back_corner.xml 0xd1650c04
    res/drawable/downbutton_corne.xml 0x5deebcb2
    res/drawable/file_item_color.xml 0xf86550a7
    res/drawable/home_btn_bg.xml 0xcd0d8e80
    res/drawable/rule_bg.xml 0xa4db7d4a
    res/drawable/searchbutton_corne.xml 0x23600cd6
    res/drawable/seek_btn_bg.xml 0x11e57542
    res/drawable/seekbar_style.xml 0x116ac00f
    res/drawable/shu_btn_bg.xml 0x368689cf
    res/drawable/shu_btn_bg0.xml 0xeeaaa74f
    res/drawable/texttip.xml 0xfb01da70
    res/drawable/timepicker_down_btn.xml 0x3f9a26de
    res/drawable/timepicker_input.xml 0x5e494cfe
    res/drawable/timepicker_up_btn.xml 0x7bd653b9
    res/drawable/title_btn_bg.xml 0x4bf4548b
    res/drawable/tool_btn_bg.xml 0x3a77b366
    res/drawable/ttune.png 0xce0e5a26
    res/drawable/umeng_common_gradient_green.xml 0xf20a5f8e
    res/drawable/umeng_common_gradient_orange.xml 0xb1318c6f
    res/drawable/umeng_common_gradient_red.xml 0x771b3885
    res/drawable/umeng_fb_arrow_right.png 0x3c416497
    res/drawable/umeng_fb_back_normal.png 0x3ac4397c
    res/drawable/umeng_fb_back_selected.png 0xcafc6be2
    res/drawable/umeng_fb_back_selector.xml 0x3bf89a78
    res/drawable/umeng_fb_bar_bg.9.png 0x97b27d64
    res/drawable/umeng_fb_btn_bg_selector.xml 0xbdfaf0c5
    res/drawable/umeng_fb_conversation_bg.png 0xdc739dc7
    res/drawable/umeng_fb_gradient_green.xml 0xf20a5f8e
    res/drawable/umeng_fb_gradient_orange.xml 0xb1318c6f
    res/drawable/umeng_fb_gray_frame.xml 0x66be4391
    res/drawable/umeng_fb_list_item.9.png 0x61c80513
    res/drawable/umeng_fb_list_item_pressed.9.png 0xfc5e4585
    res/drawable/umeng_fb_list_item_selector.xml 0x190786e0
    res/drawable/umeng_fb_logo.png 0x78652da7
    res/drawable/umeng_fb_point_new.xml 0xbe6555ba
    res/drawable/umeng_fb_point_normal.xml 0xdb9cc3ec
    res/drawable/umeng_fb_reply_left_bg.9.png 0x741d8998
    res/drawable/umeng_fb_reply_right_bg.9.png 0xb3345001
    res/drawable/umeng_fb_see_list_normal.png 0x628e440c
    res/drawable/umeng_fb_see_list_pressed.png 0x3f53646c
    res/drawable/umeng_fb_see_list_selector.xml 0xd7a92bd
    res/drawable/umeng_fb_statusbar_icon.png 0xe06a33d7
    res/drawable/umeng_fb_submit_selector.xml 0xb9b5248b
    res/drawable/umeng_fb_tick_normal.png 0x4a356488
    res/drawable/umeng_fb_tick_selected.png 0xe847d5d5
    res/drawable/umeng_fb_tick_selector.xml 0xc7820951
    res/drawable/umeng_fb_top_banner.xml 0xe6ffcfd6
    res/drawable/umeng_fb_user_bubble.9.png 0xeeffb3a5
    res/drawable/umeng_fb_write_normal.png 0x6dca4655
    res/drawable/umeng_fb_write_pressed.png 0xcbb4844e
    res/drawable/umeng_fb_write_selector.xml 0x16a764e6
    res/drawable/umeng_update_button_cancel_bg_focused.xml 0x3a2a7521
    res/drawable/umeng_update_button_cancel_bg_normal.xml 0xa5123acb
    res/drawable/umeng_update_button_cancel_bg_selector.xml 0x13376008
    res/drawable/umeng_update_button_cancel_bg_tap.xml 0x9ebb6970
    res/drawable/umeng_update_button_close_bg_selector.xml 0xc442d20b
    res/drawable/umeng_update_button_ok_bg_focused.xml 0xe9376f5e
    res/drawable/umeng_update_button_ok_bg_normal.xml 0xc191aa60
    res/drawable/umeng_update_button_ok_bg_selector.xml 0xd27daa61
    res/drawable/umeng_update_button_ok_bg_tap.xml 0x868a391e
    res/drawable/umeng_update_dialog_bg.xml 0xcecaeba7
    res/drawable/umeng_update_title_bg.xml 0x313d9ecf
    res/drawable/umeng_update_wifi_disable.png 0x9bddb3ab
    res/drawable/v3_btn_bg.xml 0xca3b634
    res/drawable/v3_btn_color.xml 0xb0b90a5e
    res/drawable/v3_btn_rule.xml 0x4c6099c7
    res/drawable/v3_button_back.xml 0xfec8dc3c
    res/drawable/v3_config_color.xml 0x6b26d0dc
    res/drawable/v3_item_color.xml 0x53c6e722
    res/drawable/v3_rule_color.xml 0x7e6ec18d
    res/drawable/v3_top_back_xml.xml 0xd4d4f219
    res/layout-v11/main.xml 0x15f6e5b3
    res/layout-v9/umeng_common_download_notification.xml 0xb038108c
    res/layout/app_comment_list_item.xml 0x6d629bf2
    res/layout/assortitem.xml 0x578293ec
    res/layout/autoaction.xml 0xf122a92
    res/layout/backbookdiag.xml 0xfd5ee2c9
    res/layout/backuplist.xml 0x98ba4a42
    res/layout/bookadd.xml 0x8e40484e
    res/layout/bookassort.xml 0x886889d7
    res/layout/bookcover.xml 0x2df228fc
    res/layout/bookdownload.xml 0x124b7efd
    res/layout/bookicons.xml 0x42a0923e
    res/layout/bookitem.xml 0xc73e6153
    res/layout/booklist.xml 0xe13744ac
    res/layout/bookonline.xml 0x1caf6fa2
    res/layout/booksearch.xml 0xff4d7004
    res/layout/booksearch_item.xml 0xdbaa9d96
    res/layout/bookselect.xml 0xc407dae3
    res/layout/button_mode.xml 0xefb89d22
    res/layout/button_toolbar.xml 0x1bcdeedf
    res/layout/button_toolbar_list.xml 0x2053369d
    res/layout/buttonconfig.xml 0x29f14215
    res/layout/chapter_row.xml 0xd9110d78
    res/layout/chapterselectlist.xml 0x8f436a8c
    res/layout/chaptitem.xml 0x85a92851
    res/layout/childitem.xml 0x27775afe
    res/layout/colorpreference.xml 0x3ddac018
    res/layout/colorview.xml 0x83336bda
    res/layout/comicview.xml 0x2ffc1688
    res/layout/config.xml 0x62d4717
    res/layout/cover.xml 0xe2e0095
    res/layout/createonline.xml 0xc91996ba
    res/layout/ctouch.xml 0xddb1403b
    res/layout/dialogdownload.xml 0xdc7f15b
    res/layout/dialogselectresult.xml 0xc68e594b
    res/layout/directory_list.xml 0xcc823e87
    res/layout/drag_list_item.xml 0x54308ecc
    res/layout/empty.xml 0x6b7ee4cd
    res/layout/erract.xml 0xc0b435d
    res/layout/fav_list.xml 0xfb790c7d
    res/layout/fav_row.xml 0x9d0c7dc2
    res/layout/file_row.xml 0xa93411cb
    res/layout/fontlayout.xml 0x3e332127
    res/layout/hasmore.xml 0x9a8d14f6
    res/layout/hisitem.xml 0x7e2f4fe5
    res/layout/imageview.xml 0x80aff545
    res/layout/item.xml 0x441347d7
    res/layout/item_menu.xml 0x2d6911b
    res/layout/item_result_select.xml 0xd2ff2627
    res/layout/layout_page_select.xml 0xf98da3f6
    res/layout/loading.xml 0x6ce8c520
    res/layout/logindiag.xml 0xa59ea103
    res/layout/main.xml 0xdaef3428
    res/layout/mainlist.xml 0xbdd88d91
    res/layout/msgsend.xml 0x5d9f035e
    res/layout/number_picker.xml 0xd15b3dc3
    res/layout/offers_web_view.xml 0xb99084cc
    res/layout/popmenu.xml 0x78a94fbb
    res/layout/preference.xml 0x5109ee48
    res/layout/preference_category.xml 0x9f508ba1
    res/layout/radioitem.xml 0x1d3aee9c
    res/layout/readmenu.xml 0xdf47577
    res/layout/readseek.xml 0xa2a3d7a1
    res/layout/root_list.xml 0x13cb5992
    res/layout/rootitem.xml 0x4d67abe
    res/layout/rootlist.xml 0xe6bfe6e1
    res/layout/ruleitem.xml 0x4074f87f
    res/layout/rulemodify.xml 0x1489f539
    res/layout/rulemodify_base.xml 0x3f73dced
    res/layout/rulemodify_listurl.xml 0xeb16180
    res/layout/rulemodify_search3.xml 0xdda640e2
    res/layout/rulemodify_txtrule.xml 0x5c8077ef
    res/layout/ruletest.xml 0xc5e556db
    res/layout/search.xml 0x824f5ec9
    res/layout/searchitem.xml 0x74f0c821
    res/layout/seekbar.xml 0x14c5a137
    res/layout/selects.xml 0x992d1175
    res/layout/share_dialog.xml 0x9e9692cb
    res/layout/splash.xml 0x27a61873
    res/layout/srvlayout.xml 0x5fee19b2
    res/layout/styleitem.xml 0x1401bca1
    res/layout/stylelist.xml 0xde40a5d
    res/layout/toastview.xml 0x6b7ee4cd
    res/layout/topchilds.xml 0xc37a31f9
    res/layout/topitemgroup.xml 0x219c6081
    res/layout/toplist.xml 0x76f4efbc
    res/layout/toptable.xml 0x56803997
    res/layout/txtbook.xml 0xf8efcb60
    res/layout/txtbookmenu.xml 0xc8b2b122
    res/layout/txtreadseek.xml 0xd4fc17f5
    res/layout/umeng_common_download_notification.xml 0x870f1040
    res/layout/umeng_fb_activity_contact.xml 0x6482cea4
    res/layout/umeng_fb_activity_conversation.xml 0xb544da5c
    res/layout/umeng_fb_list_header.xml 0x2d8dcca1
    res/layout/umeng_fb_list_item.xml 0xf52f3d00
    res/layout/umeng_fb_new_reply_alert_dialog.xml 0x48701a23
    res/layout/umeng_update_dialog.xml 0xf46ed2f2
    res/layout/update.xml 0x78b01044
    res/layout/updatebookdiag.xml 0xa03eff9
    res/layout/v3configrule.xml 0x8f823a89
    res/layout/v3configsearch.xml 0x79ee6d8e
    res/layout/v3configupdate.xml 0xce844489
    res/layout/v3item.xml 0x7ebc6cf9
    res/raw/aaread.png 0x8e899836
    res/xml/app_config.xml 0x72d06187
    res/xml/bg_config.xml 0x12ed5166
    res/xml/bgmode_config.xml 0x21b1bd3f
    res/xml/daytopic.xml 0xe7234f99
    res/xml/font_config.xml 0x9aa81514
    res/xml/menu_config.xml 0xa3e81ec9
    res/xml/menu_loc_config.xml 0xb797cea9
    res/xml/nighttopic.xml 0x6adca919
    res/xml/read_config.xml 0x97f9a22b
    res/xml/sys_config.xml 0x5e34e56e
    res/xml/tool_config.xml 0x96ddc59d
    resources.arsc 0x394ce8c2
    appx_template.pro 0xe97f1eb7
    project.properties 0xafd21134
    res_bdappx/drawable-xhdpi/appx_bg.9.png 0x797a5992
    res_bdappx/drawable-xhdpi/appx_close.png 0xf797b820
    res_bdappx/drawable-xhdpi/appx_continue_downloading.png 0xc8dbb30a
    res_bdappx/drawable-xhdpi/appx_continue_visit.png 0x2a49260c
    res_bdappx/drawable-xhdpi/appx_download.png 0xed827e0b
    res_bdappx/drawable-xhdpi/appx_exit.png 0xbd4cf4f4
    res_bdappx/drawable-xhdpi/appx_exit_on.png 0x3b7f3bde
    res_bdappx/drawable-xhdpi/appx_icon.png 0xde2ab79
    res_bdappx/drawable-xhdpi/appx_loading.png 0x6ecc0382
    res_bdappx/drawable-xhdpi/appx_logo.9.png 0xf01b07a9
    res_bdappx/drawable-xhdpi/appx_next.png 0x5b24f3c7
    res_bdappx/drawable-xhdpi/appx_next_off.png 0x2eefd45a
    res_bdappx/drawable-xhdpi/appx_next_on.png 0x7926d185
    res_bdappx/drawable-xhdpi/appx_out.png 0x3386eaf
    res_bdappx/drawable-xhdpi/appx_out_on.png 0xe779c15e
    res_bdappx/drawable-xhdpi/appx_pre.png 0x568d338d
    res_bdappx/drawable-xhdpi/appx_pre_off.png 0x38b0c9c9
    res_bdappx/drawable-xhdpi/appx_pre_on.png 0x39f52eb8
    res_bdappx/drawable-xhdpi/appx_refresh.png 0xd800ea10
    res_bdappx/drawable-xhdpi/appx_refresh_on.png 0x5ca61358
    res_bdappx/values/bdappx_errorDescription 0x2610dbd1
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号