VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
File Name :chitu.apk (File not down)
File Size :8232701 byte
File Type :application/jar
MD5:2b5529ed7c5740be177b82ae0c15ab77
SHA1:04e7f203b5ad9bbc54293ab419965024deff47dc
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2016-05-27 18:23:22 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 8
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 3
    avast 150725-1 4.7.4 2015-07-25 Found nothing 60
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 2
    baidusd 1.0 1.0 2014-04-02 Found nothing 2
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 60
    clamav 19861 0.97.5 2014-12-31 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 60
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 60
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 60
    gdata 25.6721 25.6721 2016-05-27 Found nothing 17
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 49
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2013-09-22 Found nothing 9
    mcafee 7638 5400.1158 2014-11-30 Found nothing 60
    nod32 0920 3.0.21 2014-12-23 Found nothing 60
    panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 4
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 60
    quickheal 14.00 14.00 2015-07-25 Found nothing 4
    rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 8
    sophos 5.08 3.55.0 2014-12-01 Found nothing 60
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 10
    thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 5
    tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 18
    vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
  • 权限列表
    许可名称信息
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.BROADCAST_STICKY发送持久广播
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.READ_LOGS读取系统日志
    android.permission.CALL_PHONE拨打电话
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.MOUNT_UNMOUNT_FILESYSTEMS挂载、反挂载外部文件系统
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.SET_DEBUG_APP调试程序
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.GET_ACCOUNTS访问账户列表
    android.permission.USE_CREDENTIALS获取认证令牌
    android.permission.MANAGE_ACCOUNTS管理账户
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
  • 文件信息
    安全评分 :
    基本信息
    MD5:2b5529ed7c5740be177b82ae0c15ab77
    包名:net.chitu.chitujsq
    最低运行环境:Android 2.2.x
    版权:赤兔
    关键行为
    行为描述:检测自身是否被调试
    详情信息:N/A
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\Documents and Settings\Administrator\IETldCache
    行为描述:获取TickCount值
    详情信息:TickCount = 1076721, SleepMilliseconds = 50.
    TickCount = 1076768, SleepMilliseconds = 50.
    TickCount = 1076784, SleepMilliseconds = 50.
    TickCount = 1076815, SleepMilliseconds = 50.
    TickCount = 1076831, SleepMilliseconds = 50.
    TickCount = 1076862, SleepMilliseconds = 50.
    TickCount = 1076878, SleepMilliseconds = 50.
    TickCount = 1076893, SleepMilliseconds = 50.
    TickCount = 1076971, SleepMilliseconds = 50.
    TickCount = 1076987, SleepMilliseconds = 50.
    TickCount = 1077003, SleepMilliseconds = 50.
    TickCount = 1077018, SleepMilliseconds = 50.
    TickCount = 1077065, SleepMilliseconds = 50.
    TickCount = 1077081, SleepMilliseconds = 50.
    TickCount = 1077096, SleepMilliseconds = 50.
    进程行为
    行为描述:创建本地线程
    详情信息:TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 1844, StartAddress = 77DC845A, Parameter = 00000000
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 124, StartAddress = 0044ADE3, Parameter = 0090C6B0
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 1360, StartAddress = 6359727B, Parameter = 0095ABB8
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 284, StartAddress = 7C947EBB, Parameter = 00000000
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 412, StartAddress = 7C930230, Parameter = 00000000
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2056, StartAddress = 6302B849, Parameter = 00B949B0
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2072, StartAddress = 77E56C7D, Parameter = 00B275A0
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2076, StartAddress = 769AE43B, Parameter = 00C9F3D8
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2080, StartAddress = 01F6507F, Parameter = 008FDD78
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2084, StartAddress = 01F6507F, Parameter = 008F85E8
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2088, StartAddress = 6359727B, Parameter = 00B3B340
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2092, StartAddress = 6359727B, Parameter = 00B3B520
    TargetProcess: 呼死你(内嵌网页版).exe, InheritedFromPID = 1944, ProcessID = 1000, ThreadID = 2108, StartAddress = 4AEA7456, Parameter = 00000000
    文件行为
    行为描述:创建文件
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\wpad[1].dat
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\dlsoftlist[1].asp
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\reg[1].asp
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\navcancl[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\ErrorPageTemplate[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\errorPageStrings[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\httpErrorPagesScripts[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\background_gradient[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\info_48[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\bullet[1]
    行为描述:覆盖已有文件
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\navcancl[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\ErrorPageTemplate[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\errorPageStrings[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\httpErrorPagesScripts[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\background_gradient[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\info_48[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\bullet[1]
    行为描述:查找文件
    详情信息:FileName = C:\Documents and Settings
    FileName = C:\Documents and Settings\Administrator
    FileName = C:\Documents and Settings\Administrator\Local Settings
    FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
    FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
    行为描述:删除文件
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\wpad[1].dat
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\reg[1].asp
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\navcancl[2]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\ErrorPageTemplate[2]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\errorPageStrings[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\httpErrorPagesScripts[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\background_gradient[2]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\info_48[1]
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\bullet[1]
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\Documents and Settings\Administrator\IETldCache
    行为描述:修改文件内容
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\navcancl[1] ---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\ErrorPageTemplate[1] ---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\errorPageStrings[1] ---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\httpErrorPagesScripts[1] ---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\background_gradient[1] ---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\info_48[1] ---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\bullet[1] ---> Offset = 0
    网络行为
    行为描述:联网打开网址
    详情信息:InternetOpenUrlA: http://**.133.40.**:128/wpad.dat, hInternet = 0x00cc0010, Flags = 0x00000010
    行为描述:连接指定站点
    详情信息:InternetConnectA: ServerName = ww****cn, PORT = 80, UserName = , Password = , hSession = 0x00cc0004, hConnect = 0x00cc0008, Flags = 0x00000000
    InternetConnectA: ServerName = **.133.40.**, PORT = 128, UserName = , Password = , hSession = 0x00cc0010, hConnect = 0x00cc0014, Flags = 0x00000010
    InternetConnectA: ServerName = ww****cn, PORT = 80, UserName = , Password = , hSession = 0x00cc0004, hConnect = 0x00cc0010, Flags = 0x00000000
    行为描述:打开HTTP连接
    详情信息:InternetOpenA: UserAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; KB974489), hSession = 0x00cc0004
    InternetOpenA: UserAgent: Mozilla/4.0 (compatible; MSIE 8.0; Win32; Trident/4.0), hSession = 0x00cc0010
    行为描述:建立到一个指定的套接字连接
    详情信息:URL: wpad, IP: **.133.40.**:128, SOCKET = 0x00000364
    URL: ww****cn, IP: **.133.40.**:80, SOCKET = 0x00000358
    URL: ww****cn, IP: **.133.40.**:80, SOCKET = 0x0000030c
    URL: ww****cn, IP: **.133.40.**:80, SOCKET = 0x00000248
    行为描述:读取网络文件
    详情信息:hFile = 0x00cc0018, BytesToRead =4010, BytesRead = 4010.
    hFile = 0x00cc000c, BytesToRead =2048, BytesRead = 2048.
    hFile = 0x00cc0014, BytesToRead =4096, BytesRead = 4096.
    行为描述:发送HTTP包
    详情信息:GET /wpad.dat HTTP/1.1 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32; Trident/4.0) Host: **.133.40.**:128
    GET /web1/dlsoftlist.asp?dl_name=fengchu HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, image/pjpeg, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/msword, */* Accept-Language: zh-cn Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; KB974489) Host: ww****cn Connection: Keep-Alive
    GET /web1/reg.asp?dl_name=fengchu HTTP/1.1 Accept: */* Accept-Language: zh-cn Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; KB974489) Host: ww****cn Connection: Keep-Alive
    行为描述:打开HTTP请求
    详情信息:HttpOpenRequestA: ww****cn:80/web1/dlsoftlist.asp?dl_name=fengchu, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x00400f00
    HttpOpenRequestA: **.133.40.**:128/wpad.dat, hConnect = 0x00cc0014, hRequest = 0x00cc0018, Verb: GET, Referer: , Flags = 0x00000010
    HttpOpenRequestA: ww****cn:80/web1/reg.asp?dl_name=fengchu, hConnect = 0x00cc0010, hRequest = 0x00cc0014, Verb: GET, Referer: , Flags = 0x00400200
    HttpOpenRequestA: ww****cn:80/web1/reg.asp?dl_name=fengchu, hConnect = 0x00cc0010, hRequest = 0x00cc0014, Verb: GET, Referer: , Flags = 0x00400010
    行为描述:按名称获取主机地址
    详情信息:GetAddrInfoW: computer
    GetAddrInfoW: wpad
    GetAddrInfoW: ww****cn
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
    \REGISTRY\MACHINE\SOFTWARE\Microsoft\ESENT\Process\呼死你(内嵌网页版)\DEBUG\Trace Level
    行为描述:删除注册表键值
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
    \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
    \REGISTRY\MACHINE\SOFTWARE\Microsoft\ESENT\Process\呼死你(内嵌网页版)\DEBUG\Trace Level
    其他行为
    行为描述:检测自身是否被调试
    详情信息:N/A
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    Local\!PrivacIE!SharedMemory!Mutex
    Local\ZonesCounterMutex
    Local\ZoneAttributeCacheCounterMutex
    Local\ZonesCacheCounterMutex
    Local\ZonesLockedCacheCounterMutex
    MSCTF.Shared.MUTEX.ELH
    RasPbFile
    CritOpMutex
    MSIMGSIZECacheMutex
    行为描述:创建事件对象
    详情信息:EventName = DINPUTWINMM
    EventName = Global\userenv: User Profile setup event
    EventName = Global\crypt32LogoffEvent
    EventName = MSCTF.SendReceive.Event.ACI.IC
    EventName = MSCTF.SendReceive.Event.ECI.IC
    EventName = MSCTF.SendReceiveConection.Event.ACI.IC
    EventName = MSCTF.SendReceiveConection.Event.ECI.IC
    EventName = MSCTF.SendReceive.Event.MCC.IC
    EventName = MSCTF.SendReceiveConection.Event.MCC.IC
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [MS_AutodialMonitor,]
    NtUserFindWindowEx: [Class,Window] = [MS_WebCheckMonitor,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    行为描述:获取TickCount值
    详情信息:TickCount = 1076721, SleepMilliseconds = 50.
    TickCount = 1076768, SleepMilliseconds = 50.
    TickCount = 1076784, SleepMilliseconds = 50.
    TickCount = 1076815, SleepMilliseconds = 50.
    TickCount = 1076831, SleepMilliseconds = 50.
    TickCount = 1076862, SleepMilliseconds = 50.
    TickCount = 1076878, SleepMilliseconds = 50.
    TickCount = 1076893, SleepMilliseconds = 50.
    TickCount = 1076971, SleepMilliseconds = 50.
    TickCount = 1076987, SleepMilliseconds = 50.
    TickCount = 1077003, SleepMilliseconds = 50.
    TickCount = 1077018, SleepMilliseconds = 50.
    TickCount = 1077065, SleepMilliseconds = 50.
    TickCount = 1077081, SleepMilliseconds = 50.
    TickCount = 1077096, SleepMilliseconds = 50.
    行为描述:调整进程token权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    行为描述:窗口信息
    详情信息:Pid = 1000, Hwnd=0x1039c, Text = 您想运行或保存此文件吗?, ClassName = Static.
    Pid = 1000, Hwnd=0x103a0, Text = 名称:, ClassName = Static.
    Pid = 1000, Hwnd=0x103a2, Text = update.exe, ClassName = SysLink.
    Pid = 1000, Hwnd=0x103a4, Text = 发行者:, ClassName = Static.
    Pid = 1000, Hwnd=0x103a8, Text = 类型:, ClassName = Static.
    Pid = 1000, Hwnd=0x103aa, Text = 应用程序, 358KB, ClassName = Static.
    Pid = 1000, Hwnd=0x103ac, Text = 从:, ClassName = Static.
    Pid = 1000, Hwnd=0x103ae, Text = www.ppcing.cn, ClassName = Static.
    Pid = 1000, Hwnd=0x103b0, Text = 运行(&R), ClassName = Button.
    Pid = 1000, Hwnd=0x103b2, Text = 保存(&S), ClassName = Button.
    Pid = 1000, Hwnd=0x103b4, Text = 取消, ClassName = Button.
    Pid = 1000, Hwnd=0x103b6, Text = 打开此类文件前总是询问(&W), ClassName = Button(CheckBox).
    Pid = 1000, Hwnd=0x103bc, Text = 来自 Internet 的文件可能对您有所帮助,但此文件类型可能危害您的计算机。如果您不信任其来源,请不要运行或保存该软件。<A>有何风险?</A>, ClassName = SysLink.
    Pid = 1000, Hwnd=0x1039a, Text = 文件下载 - 安全警告, ClassName = #32770.
    Pid = 1000, Hwnd=0xe02fe, Text = 下载完毕, ClassName = Static.
    行为描述:调用Sleep函数
    详情信息:[1]: MilliSeconds = 60000.
    [2]: MilliSeconds = 100.
    [3]: MilliSeconds = 60000.
    [4]: MilliSeconds = 100.
    [5]: MilliSeconds = 60000.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [AutoIt v3,AutoIt v3]
    [Window,Class] = [,SysLink]
    [Window,Class] = [,Static]
    [Window,Class] = [文件大小未知,Static]
    [Window,Class] = [打开此类文件前总是询问(&W),Button]
    [Window,Class] = [发行者:,Static]
    Activities
    活动名类型
    net.chitu.chitujsq.ui.LoginActivitynet.chitu.chitujsq.action.LOGIN
    net.chitu.chitujsq.ui.LoginActivityandroid.intent.category.DEFAULT
    net.chitu.chitujsq.ui.RegActivityandroid.intent.category.DEFAULT
    net.chitu.chitujsq.ui.MainActivityandroid.net.vpn.SETTINGS
    net.chitu.chitujsq.ui.MainActivityandroid.intent.category.LAUNCHER
    net.chitu.chitujsq.ui.MainActivitycom.android.settings.SHORTCUT
    net.chitu.chitujsq.ui.MainActivityandroid.intent.category.DEFAULT
    net.chitu.chitujsq.ui.LeadActivityandroid.intent.action.MAIN
    net.chitu.chitujsq.ui.LeadActivityandroid.intent.category.LAUNCHER
    com.tencent.tauth.AuthActivityandroid.intent.action.VIEW
    com.tencent.tauth.AuthActivityandroid.intent.category.DEFAULT
    com.tencent.tauth.AuthActivityandroid.intent.category.BROWSABLE
    de.blinkt.openvpn.api.GrantPermissionsActivityandroid.intent.action.MAIN
    de.blinkt.openvpn.api.ConfirmDialogandroid.intent.action.MAIN
    de.blinkt.openvpn.activities.ConfigConverterandroid.intent.action.VIEW
    de.blinkt.openvpn.activities.ConfigConverterandroid.intent.category.DEFAULT
    de.blinkt.openvpn.activities.ConfigConverterandroid.intent.category.BROWSABLE
    de.blinkt.openvpn.LaunchVPNandroid.intent.action.MAIN
    de.blinkt.openvpn.LaunchVPNandroid.intent.category.DEFAULT
    de.blinkt.openvpn.activities.CreateShortcutsandroid.intent.action.CREATE_SHORTCUT
    de.blinkt.openvpn.activities.CreateShortcutsandroid.intent.category.DEFAULT
    危险函数
    函数名称信息
    android/app/NotificationManager;->notify信息通知栏
    ContentResolver;->query读取联系人、短信等数据库
    HttpClient;->execute请求远程服务器
    getRuntime获取命令行环境
    TelephonyManager;->getDeviceId搜集用户手机IMEI码、电话号码、系统版本号等信息
    ContentResolver;->delete删除短信、联系人
    TelephonyManager;->getSimSerialNumber获取SIM序列号
    java/net/URL;->openConnection连接URL
    java/net/HttpURLConnection;->connect连接URL
    LocationManager;->getLastKnownLocation获取地址位置
    DefaultHttpClient;->execute发送HTTP请求
    java/net/URLConnection;->connect连接URL
    java/lang/Runtime;->exec执行字符串命令
    TelephonyManager;->getLine1Number获取手机号
    启动方式
    名称信息
    net.chitu.chitujsq.broadcastreceiver.LoginFromLoginActivityReceiver
    net.chitu.chitujsq.broadcastreceiver.ConnectivityReceiver
    de.blinkt.openvpn.OnBootReceiver开机启动服务
    de.blinkt.openvpn.OnBootReceiver
    权限列表
    许可名称信息
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.BROADCAST_STICKY发送持久广播
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.READ_LOGS读取系统日志
    android.permission.CALL_PHONE拨打电话
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.MOUNT_UNMOUNT_FILESYSTEMS挂载、反挂载外部文件系统
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.SET_DEBUG_APP调试程序
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.GET_ACCOUNTS访问账户列表
    android.permission.USE_CREDENTIALS获取认证令牌
    android.permission.MANAGE_ACCOUNTS管理账户
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    服务列表
    名称
    net.chitu.chitujsq.service.PodVPNServiceBinder
    de.blinkt.openvpn.OpenVpnService
    de.blinkt.openvpn.core.OpenVPNService
    de.blinkt.openvpn.api.ExternalOpenVPNService
    Providers
    名字信息
    de.blinkt.openvpn.FileProvider1
    文件列表
    文件名 校验码
    AndroidManifest.xml 0x66559074
    assets/config.properties 0x98507980
    assets/full_licenses.html 0x6f49344c
    assets/minivpn.armeabi 0x85b8c7c6
    assets/minivpn.armeabi-v7a 0x85b8c7c6
    assets/nopie_openvpn.arm64-v8a 0xa7ce111c
    assets/nopie_openvpn.armeabi 0x5333a942
    assets/nopie_openvpn.armeabi-v7a 0x38c9cbc0
    assets/nopie_openvpn.x86 0x6f623b00
    assets/pie_openvpn.arm64-v8a 0xa7ce111c
    assets/pie_openvpn.armeabi 0x38e33579
    assets/pie_openvpn.armeabi-v7a 0xd750709a
    assets/pie_openvpn.x86 0xa25f97c6
    assets/template.ovpn 0x6363ce30
    assets/template2.ovpn 0x3b057e0a
    res/anim-v11/fab_anim.xml 0xd4616236
    res/anim/anim_alpha_logo.xml 0xf965904f
    res/anim/below_out.xml 0x214a3b27
    res/anim/enter.xml 0x6428d2f8
    res/anim/fab_anim.xml 0xc41a8dfa
    res/anim/left_in.xml 0x4b0c1885
    res/anim/left_out.xml 0xc5a5d239
    res/anim/login_animotion.xml 0x165b6c98
    res/anim/menu_in.xml 0x7c9f6171
    res/anim/menu_out.xml 0x44ab68fe
    res/anim/out.xml 0x3d58ec1b
    res/anim/right_in.xml 0xcb0777c
    res/anim/right_out.xml 0x5d1e2b6f
    res/anim/top_in.xml 0x375808cd
    res/anim/umeng_socialize_fade_in.xml 0xf2e7bdac
    res/anim/umeng_socialize_fade_out.xml 0x19682b1d
    res/anim/umeng_socialize_shareboard_animation_in.xml 0x5b62eaa8
    res/anim/umeng_socialize_shareboard_animation_out.xml 0x100d0f13
    res/anim/umeng_socialize_slide_in_from_bottom.xml 0x72fa759c
    res/anim/umeng_socialize_slide_out_from_bottom.xml 0x62fd58e7
    res/drawable-hdpi-v4/contactcustomerservice.png 0x7e365150
    res/drawable-hdpi-v4/ic_action_search.png 0x64275be8
    res/drawable-hdpi-v4/ic_add_circle_outline_grey600_24dp.png 0xf0473317
    res/drawable-hdpi-v4/ic_add_circle_outline_white_24dp.png 0xd61833f5
    res/drawable-hdpi-v4/ic_archive_grey600_24dp.png 0xcc021793
    res/drawable-hdpi-v4/ic_archive_white_24dp.png 0xf680cedd
    res/drawable-hdpi-v4/ic_check_white_24dp.png 0x47027e22
    res/drawable-hdpi-v4/ic_close_white_24dp.png 0x3f976daa
    res/drawable-hdpi-v4/ic_content_copy_white_24dp.png 0xc3e37254
    res/drawable-hdpi-v4/ic_delete_grey600_24dp.png 0x194550e4
    res/drawable-hdpi-v4/ic_delete_white_24dp.png 0x69014b6a
    res/drawable-hdpi-v4/ic_doc_generic_am.png 0xb432d70f
    res/drawable-hdpi-v4/ic_edit_grey600_24dp.png 0x2693bf0a
    res/drawable-hdpi-v4/ic_edit_white_24dp.png 0x1264724c
    res/drawable-hdpi-v4/ic_filter_list_white_24dp.png 0xda45edf9
    res/drawable-hdpi-v4/ic_menu_archive.png 0x187bf79a
    res/drawable-hdpi-v4/ic_menu_copy_holo_dark.png 0x72d03a18
    res/drawable-hdpi-v4/ic_menu_copy_holo_light.png 0x69a7e958
    res/drawable-hdpi-v4/ic_menu_log.png 0xee99b7d0
    res/drawable-hdpi-v4/ic_pause_white_24dp.png 0xc3f0c8bd
    res/drawable-hdpi-v4/ic_play_arrow_white_24dp.png 0x838e7da5
    res/drawable-hdpi-v4/ic_receipt_white_24dp.png 0x140ce4f7
    res/drawable-hdpi-v4/ic_root_folder_am.png 0xd12655a
    res/drawable-hdpi-v4/ic_search_white_24dp.png 0xaa7b4262
    res/drawable-hdpi-v4/ic_share_white_24dp.png 0x84490b5d
    res/drawable-hdpi-v4/ic_stat_vpn.png 0x1a0251d6
    res/drawable-hdpi-v4/ic_stat_vpn_empty_halo.png 0x56651992
    res/drawable-hdpi-v4/ic_stat_vpn_offline.png 0x645702f5
    res/drawable-hdpi-v4/ic_stat_vpn_outline.png 0x9929e7f3
    res/drawable-hdpi-v4/ic_warning_black_36dp.png 0x680ee940
    res/drawable-hdpi-v4/icon.png 0x91d9e30
    res/drawable-hdpi-v4/paysuccess1.png 0xb3492bb2
    res/drawable-hdpi-v4/paysuccess2.png 0xb95ddf6b
    res/drawable-hdpi-v4/umeng_socialize_light_bar_bg_pad.9.png 0xcb8cb217
    res/drawable-hdpi-v4/umeng_socialize_nav_bar_bg_pad.9.png 0x57af3ba1
    res/drawable-hdpi-v4/umeng_socialize_oauth_check_off.png 0xd0d60451
    res/drawable-hdpi-v4/umeng_socialize_oauth_check_on.png 0x666c6035
    res/drawable-hdpi-v4/umeng_socialize_share_music.png 0x970770da
    res/drawable-hdpi-v4/umeng_socialize_share_pic.png 0x1b838ca6
    res/drawable-hdpi-v4/umeng_socialize_share_video.png 0x6eead77a
    res/drawable-hdpi-v4/vpn_item_settings.png 0xb42581b0
    res/drawable-ldpi-v4/area_none.png 0x3c13576b
    res/drawable-ldpi-v4/background_login.xml 0x68fe3cb9
    res/drawable-ldpi-v4/background_login_div_bg.xml 0x5f06546a
    res/drawable-ldpi-v4/checkbox.xml 0xe3b7306c
    res/drawable-ldpi-v4/greenbgswitch.xml 0xeecc93c3
    res/drawable-ldpi-v4/minitab_selector.xml 0x65ed1a92
    res/drawable-ldpi-v4/tbg.png 0xb1fe83a0
    res/drawable-mdpi-v4/device.png 0x467b36ea
    res/drawable-mdpi-v4/ic_add_circle_outline_grey600_24dp.png 0xbd5725bc
    res/drawable-mdpi-v4/ic_add_circle_outline_white_24dp.png 0x5ed7541c
    res/drawable-mdpi-v4/ic_archive_grey600_24dp.png 0xa2370dc3
    res/drawable-mdpi-v4/ic_archive_white_24dp.png 0xfe1a4450
    res/drawable-mdpi-v4/ic_check_white_24dp.png 0xaa82d78a
    res/drawable-mdpi-v4/ic_close_white_24dp.png 0x696fbaf9
    res/drawable-mdpi-v4/ic_content_copy_white_24dp.png 0xf441f369
    res/drawable-mdpi-v4/ic_delete_grey600_24dp.png 0x7c66fb74
    res/drawable-mdpi-v4/ic_delete_white_24dp.png 0xde7e5f07
    res/drawable-mdpi-v4/ic_doc_generic_am.png 0x1feedf34
    res/drawable-mdpi-v4/ic_edit_grey600_24dp.png 0x7a4e919f
    res/drawable-mdpi-v4/ic_edit_white_24dp.png 0x5bd6be88
    res/drawable-mdpi-v4/ic_filter_list_white_24dp.png 0xe14144f5
    res/drawable-mdpi-v4/ic_menu_archive.png 0xc2c5a68e
    res/drawable-mdpi-v4/ic_menu_copy_holo_dark.png 0x7ce2ac9f
    res/drawable-mdpi-v4/ic_menu_copy_holo_light.png 0x2b4f0df6
    res/drawable-mdpi-v4/ic_menu_log.png 0x9ae9ac45
    res/drawable-mdpi-v4/ic_pause_white_24dp.png 0x2a914868
    res/drawable-mdpi-v4/ic_play_arrow_white_24dp.png 0x5414e5cd
    res/drawable-mdpi-v4/ic_receipt_white_24dp.png 0x7c5024fb
    res/drawable-mdpi-v4/ic_root_folder_am.png 0xb4c7787f
    res/drawable-mdpi-v4/ic_search_white_24dp.png 0x99c01143
    res/drawable-mdpi-v4/ic_share_white_24dp.png 0xbcbbb8b0
    res/drawable-mdpi-v4/ic_stat_vpn.png 0x58e58e54
    res/drawable-mdpi-v4/ic_stat_vpn_empty_halo.png 0x466b012e
    res/drawable-mdpi-v4/ic_stat_vpn_offline.png 0x4bb587c1
    res/drawable-mdpi-v4/ic_stat_vpn_outline.png 0xd192fa94
    res/drawable-mdpi-v4/ic_warning_black_36dp.png 0xb86a1a2f
    res/drawable-mdpi-v4/icon.png 0xd544e808
    res/drawable-mdpi-v4/person_kuang.png 0x6aa9d4a2
    res/drawable-mdpi-v4/vpn_item_settings.png 0x73c12c31
    res/drawable-v11/slidingtab_background.xml 0xe082d43d
    res/drawable-xhdpi-v4/australia.png 0xc901524e
    res/drawable-xhdpi-v4/bck.png 0xf28006af
    res/drawable-xhdpi-v4/checkbox_normal.png 0x51f16d1f
    res/drawable-xhdpi-v4/checkbox_selected.png 0xc217c12a
    res/drawable-xhdpi-v4/china.png 0x94b033e1
    res/drawable-xhdpi-v4/contactcustomerservice.png 0xf06f6b8b
    res/drawable-xhdpi-v4/customer_service.png 0xec030ae5
    res/drawable-xhdpi-v4/disconnect.png 0xa57cdfdb
    res/drawable-xhdpi-v4/email.png 0x6ae9a238
    res/drawable-xhdpi-v4/english.png 0xe4fc5d2b
    res/drawable-xhdpi-v4/european.png 0x7c8e67cf
    res/drawable-xhdpi-v4/extend.png 0x32b2fd7e
    res/drawable-xhdpi-v4/germany.png 0xd46de937
    res/drawable-xhdpi-v4/h1.png 0x2bafec31
    res/drawable-xhdpi-v4/h2.png 0xd2c0027b
    res/drawable-xhdpi-v4/h3.png 0x62a6bff2
    res/drawable-xhdpi-v4/h4.png 0x189eb858
    res/drawable-xhdpi-v4/help1.png 0xe6c9304f
    res/drawable-xhdpi-v4/help2.png 0xe73e2ce8
    res/drawable-xhdpi-v4/hongkong.png 0x6865c8d0
    res/drawable-xhdpi-v4/ic_add_circle_outline_grey600_24dp.png 0x611f2663
    res/drawable-xhdpi-v4/ic_add_circle_outline_white_24dp.png 0xaa4b31cc
    res/drawable-xhdpi-v4/ic_archive_grey600_24dp.png 0x1ead80cd
    res/drawable-xhdpi-v4/ic_archive_white_24dp.png 0xfcc3d8d5
    res/drawable-xhdpi-v4/ic_check_white_24dp.png 0x4fb1da0e
    res/drawable-xhdpi-v4/ic_close_white_24dp.png 0x63f44d4c
    res/drawable-xhdpi-v4/ic_content_copy_white_24dp.png 0x91c7d375
    res/drawable-xhdpi-v4/ic_delete_grey600_24dp.png 0x978f2
    res/drawable-xhdpi-v4/ic_delete_white_24dp.png 0xbbcf5db5
    res/drawable-xhdpi-v4/ic_doc_generic_am.png 0x8108d17d
    res/drawable-xhdpi-v4/ic_edit_grey600_24dp.png 0x2312ca35
    res/drawable-xhdpi-v4/ic_edit_white_24dp.png 0x38f8d392
    res/drawable-xhdpi-v4/ic_filter_list_white_24dp.png 0x60268012
    res/drawable-xhdpi-v4/ic_free.png 0x43cce69d
    res/drawable-xhdpi-v4/ic_launcher.png 0xcb16c9f3
    res/drawable-xhdpi-v4/ic_log.png 0xcb16c9f3
    res/drawable-xhdpi-v4/ic_login_banner.png 0xef878286
    res/drawable-xhdpi-v4/ic_menu_archive.png 0xc3d7d352
    res/drawable-xhdpi-v4/ic_menu_copy_holo_dark.png 0xaa30546c
    res/drawable-xhdpi-v4/ic_menu_copy_holo_light.png 0xef0befb5
    res/drawable-xhdpi-v4/ic_menu_log.png 0x9676b846
    res/drawable-xhdpi-v4/ic_notification.png 0xcb16c9f3
    res/drawable-xhdpi-v4/ic_pause_white_24dp.png 0x45e3f8ae
    res/drawable-xhdpi-v4/ic_play_arrow_white_24dp.png 0xc37a242
    res/drawable-xhdpi-v4/ic_receipt_white_24dp.png 0x6114698d
    res/drawable-xhdpi-v4/ic_root_folder_am.png 0xf8074f1
    res/drawable-xhdpi-v4/ic_search_white_24dp.png 0x5d3ec086
    res/drawable-xhdpi-v4/ic_share_white_24dp.png 0xb2f2834e
    res/drawable-xhdpi-v4/ic_stat_vpn.png 0x7a5b392f
    res/drawable-xhdpi-v4/ic_stat_vpn_empty_halo.png 0x3035a848
    res/drawable-xhdpi-v4/ic_stat_vpn_offline.png 0xa952c0d
    res/drawable-xhdpi-v4/ic_stat_vpn_outline.png 0x7b50c574
    res/drawable-xhdpi-v4/ic_warning_black_36dp.png 0x4ebfdb5d
    res/drawable-xhdpi-v4/icon.png 0xf005cd1b
    res/drawable-xhdpi-v4/japan.png 0xa32b10b8
    res/drawable-xhdpi-v4/korea.png 0x158fa961
    res/drawable-xhdpi-v4/lead1.png 0x61b5182a
    res/drawable-xhdpi-v4/lead2.png 0xa0e5a764
    res/drawable-xhdpi-v4/lead3.png 0x49a2a226
    res/drawable-xhdpi-v4/link.png 0xb1290b6a
    res/drawable-xhdpi-v4/login_progress.png 0x3d078942
    res/drawable-xhdpi-v4/logining5.png 0x9e14ed1c
    res/drawable-xhdpi-v4/logining_back1.png 0x8a9ad982
    res/drawable-xhdpi-v4/logo.png 0xe8b5ab2a
    res/drawable-xhdpi-v4/malaysia.png 0xa64b20b0
    res/drawable-xhdpi-v4/my_vip.png 0x8039845f
    res/drawable-xhdpi-v4/my_vip11.png 0xfe89e433
    res/drawable-xhdpi-v4/my_vip12.png 0xfdd09bbe
    res/drawable-xhdpi-v4/my_vip13.png 0x408e6717
    res/drawable-xhdpi-v4/my_vip23.png 0xbd443156
    res/drawable-xhdpi-v4/myrr1.png 0x45de1175
    res/drawable-xhdpi-v4/myrr2.png 0xb8edee02
    res/drawable-xhdpi-v4/name.png 0x64afec5b
    res/drawable-xhdpi-v4/netherlands.png 0x3a1d2a84
    res/drawable-xhdpi-v4/off.png 0x37be7d33
    res/drawable-xhdpi-v4/out.png 0x80abc603
    res/drawable-xhdpi-v4/password.png 0x1ed2d6a9
    res/drawable-xhdpi-v4/paysuccess1.png 0xc89d167
    res/drawable-xhdpi-v4/paysuccess2.png 0xaa7248c2
    res/drawable-xhdpi-v4/pc.png 0xaacd7303
    res/drawable-xhdpi-v4/person.png 0x8bd32292
    res/drawable-xhdpi-v4/person_kuang2.png 0xcf7bdd25
    res/drawable-xhdpi-v4/philippines.png 0x98a562c1
    res/drawable-xhdpi-v4/photo.png 0x735627de
    res/drawable-xhdpi-v4/progress_login.png 0x47d4f3bd
    res/drawable-xhdpi-v4/russia.png 0xf40b8dc4
    res/drawable-xhdpi-v4/share.png 0xcc177b85
    res/drawable-xhdpi-v4/share_title.png 0xb5259ae3
    res/drawable-xhdpi-v4/singapore.png 0x64d31c8b
    res/drawable-xhdpi-v4/skip1.png 0xfa7d2df1
    res/drawable-xhdpi-v4/skip2.png 0x78d1eb99
    res/drawable-xhdpi-v4/speedup1.png 0xd8c48e7a
    res/drawable-xhdpi-v4/speedup2.png 0x1c8b8fa2
    res/drawable-xhdpi-v4/taiwan.png 0x6e5fb380
    res/drawable-xhdpi-v4/thailand.png 0x39267c61
    res/drawable-xhdpi-v4/the_french.png 0x9356f575
    res/drawable-xhdpi-v4/tiao.png 0x31b227fe
    res/drawable-xhdpi-v4/top_up.png 0x1508a57e
    res/drawable-xhdpi-v4/usa.png 0xd3968bab
    res/drawable-xhdpi-v4/vpn_item_settings.png 0x658f162d
    res/drawable-xhdpi-v4/welcome.png 0x337663f6
    res/drawable-xhdpi-v4/zg_netcom.png 0x3319544a
    res/drawable-xxhdpi-v4/contactcustomerservice.png 0x9a0b479a
    res/drawable-xxhdpi-v4/help1.png 0xe6638fa8
    res/drawable-xxhdpi-v4/help2.png 0x5580d525
    res/drawable-xxhdpi-v4/ic_add_circle_outline_grey600_24dp.png 0xa2dcf066
    res/drawable-xxhdpi-v4/ic_add_circle_outline_white_24dp.png 0x71520296
    res/drawable-xxhdpi-v4/ic_archive_grey600_24dp.png 0x931af6ba
    res/drawable-xxhdpi-v4/ic_archive_white_24dp.png 0x22f6f86a
    res/drawable-xxhdpi-v4/ic_check_white_24dp.png 0xd7492764
    res/drawable-xxhdpi-v4/ic_close_white_24dp.png 0xf7eea1df
    res/drawable-xxhdpi-v4/ic_content_copy_white_24dp.png 0x49d49756
    res/drawable-xxhdpi-v4/ic_delete_grey600_24dp.png 0x249af966
    res/drawable-xxhdpi-v4/ic_delete_white_24dp.png 0xc92cff73
    res/drawable-xxhdpi-v4/ic_doc_generic_am.png 0x3f8b0cf8
    res/drawable-xxhdpi-v4/ic_edit_grey600_24dp.png 0x8ee2b125
    res/drawable-xxhdpi-v4/ic_edit_white_24dp.png 0xa3f47ed9
    res/drawable-xxhdpi-v4/ic_filter_list_white_24dp.png 0x8adb6edc
    res/drawable-xxhdpi-v4/ic_menu_copy_holo_dark.png 0xe2ec5ba7
    res/drawable-xxhdpi-v4/ic_menu_copy_holo_light.png 0x72c4eccd
    res/drawable-xxhdpi-v4/ic_menu_log.png 0x8691dbb
    res/drawable-xxhdpi-v4/ic_pause_white_24dp.png 0xd0c5daf2
    res/drawable-xxhdpi-v4/ic_play_arrow_white_24dp.png 0x5e53bc1b
    res/drawable-xxhdpi-v4/ic_receipt_white_24dp.png 0xcec27e9e
    res/drawable-xxhdpi-v4/ic_root_folder_am.png 0x1407c8f9
    res/drawable-xxhdpi-v4/ic_search_white_24dp.png 0x79e1cda0
    res/drawable-xxhdpi-v4/ic_share_white_24dp.png 0xc61f982d
    res/drawable-xxhdpi-v4/ic_warning_black_36dp.png 0x5391c0d6
    res/drawable-xxhdpi-v4/icon.png 0x6aad92ec
    res/drawable-xxhdpi-v4/myrr1.png 0xbbd3e131
    res/drawable-xxhdpi-v4/myrr2.png 0x1d940464
    res/drawable-xxhdpi-v4/paysuccess1.png 0x3a7cc3b4
    res/drawable-xxhdpi-v4/paysuccess2.png 0x32260784
    res/drawable-xxhdpi-v4/speedup1.png 0xb908e8b9
    res/drawable-xxhdpi-v4/speedup2.png 0x745c925c
    res/drawable-xxxhdpi-v4/ic_add_circle_outline_grey600_24dp.png 0x46897896
    res/drawable-xxxhdpi-v4/ic_add_circle_outline_white_24dp.png 0x7386d6bf
    res/drawable-xxxhdpi-v4/ic_archive_grey600_24dp.png 0x113b7d2d
    res/drawable-xxxhdpi-v4/ic_archive_white_24dp.png 0x86b1d518
    res/drawable-xxxhdpi-v4/ic_check_white_24dp.png 0xcc6d3dec
    res/drawable-xxxhdpi-v4/ic_close_white_24dp.png 0xa73cc237
    res/drawable-xxxhdpi-v4/ic_content_copy_white_24dp.png 0x73365aa1
    res/drawable-xxxhdpi-v4/ic_delete_grey600_24dp.png 0xcab649d9
    res/drawable-xxxhdpi-v4/ic_delete_white_24dp.png 0x10a584ec
    res/drawable-xxxhdpi-v4/ic_edit_grey600_24dp.png 0x6da5a28d
    res/drawable-xxxhdpi-v4/ic_edit_white_24dp.png 0x844745f7
    res/drawable-xxxhdpi-v4/ic_filter_list_white_24dp.png 0x7b8823b6
    res/drawable-xxxhdpi-v4/ic_pause_white_24dp.png 0xfb1ed99a
    res/drawable-xxxhdpi-v4/ic_play_arrow_white_24dp.png 0x5c4f800e
    res/drawable-xxxhdpi-v4/ic_receipt_white_24dp.png 0xc85ed192
    res/drawable-xxxhdpi-v4/ic_search_white_24dp.png 0xf5710ade
    res/drawable-xxxhdpi-v4/ic_share_white_24dp.png 0xb6abe438
    res/drawable-xxxhdpi-v4/ic_warning_black_36dp.png 0x8c23e6df
    res/drawable/actionbar_back_indicator.png 0xf076f2e8
    res/drawable/bg_rect_round.xml 0xa73fee34
    res/drawable/bg_switchbar.xml 0xfc1a376d
    res/drawable/bg_tabs.xml 0x1c9f7e18
    res/drawable/help.xml 0xd1e4cc08
    res/drawable/lead_gray.xml 0xe3d0572b
    res/drawable/lead_skip.xml 0x63d19a51
    res/drawable/lead_yellow.xml 0xefba7c7e
    res/drawable/list_icon.xml 0xace56937
    res/drawable/myrr.xml 0x958a67ee
    res/drawable/oval_ripple.xml 0x2d006335
    res/drawable/slidingtab_background.xml 0xc93a8ac1
    res/drawable/speedup.xml 0xb06d431e
    res/drawable/umeng_socialize_action_back.xml 0x10a0b104
    res/drawable/umeng_socialize_action_back_normal.png 0xba8b7386
    res/drawable/umeng_socialize_action_back_selected.png 0xce53b418
    res/drawable/umeng_socialize_at_button.xml 0xb2e17ce4
    res/drawable/umeng_socialize_at_normal.png 0x5f0e2072
    res/drawable/umeng_socialize_at_selected.png 0x8dffa32e
    res/drawable/umeng_socialize_bind_bg.9.png 0xab9459e6
    res/drawable/umeng_socialize_button_blue.9.png 0xcc547839
    res/drawable/umeng_socialize_button_grey.9.png 0xe9619b98
    res/drawable/umeng_socialize_button_grey_blue.xml 0xdb460089
    res/drawable/umeng_socialize_button_login.xml 0x5ca894ac
    res/drawable/umeng_socialize_button_login_normal.png 0x815ff5a
    res/drawable/umeng_socialize_button_login_pressed.png 0x815ff5a
    res/drawable/umeng_socialize_button_red.9.png 0xb621bf9c
    res/drawable/umeng_socialize_button_red_blue.xml 0x4ad8c504
    res/drawable/umeng_socialize_button_white.9.png 0x10d8bc8b
    res/drawable/umeng_socialize_button_white_blue.xml 0xb294485f
    res/drawable/umeng_socialize_default_avatar.png 0xd968c89b
    res/drawable/umeng_socialize_douban_off.png 0x2c165aac
    res/drawable/umeng_socialize_douban_on.png 0x72af12c1
    res/drawable/umeng_socialize_facebook.png 0x79e8d3ee
    res/drawable/umeng_socialize_fetch_image.png 0x79c102e9
    res/drawable/umeng_socialize_follow_check.xml 0x3a640155
    res/drawable/umeng_socialize_follow_off.png 0x7a3382ea
    res/drawable/umeng_socialize_follow_on.png 0xe9907840
    res/drawable/umeng_socialize_google.png 0x14e0c993
    res/drawable/umeng_socialize_light_bar_bg.9.png 0x3f4805b5
    res/drawable/umeng_socialize_location_ic.png 0xaa26ffe6
    res/drawable/umeng_socialize_location_off.png 0x351812a3
    res/drawable/umeng_socialize_location_on.png 0x793abdae
    res/drawable/umeng_socialize_nav_bar_bg.png 0x816c111f
    res/drawable/umeng_socialize_oauth_check.xml 0x1aeebaea
    res/drawable/umeng_socialize_oauth_check_off.png 0xe4317840
    res/drawable/umeng_socialize_oauth_check_on.png 0x43a08af1
    res/drawable/umeng_socialize_qq_off.png 0x7bdd3319
    res/drawable/umeng_socialize_qq_on.png 0x1c72a73
    res/drawable/umeng_socialize_qzone_off.png 0x9058e27f
    res/drawable/umeng_socialize_qzone_on.png 0x9a0765c4
    res/drawable/umeng_socialize_refersh.png 0x79e6fe33
    res/drawable/umeng_socialize_renren_off.png 0xe8ee095b
    res/drawable/umeng_socialize_renren_on.png 0x67c8b264
    res/drawable/umeng_socialize_search_icon.png 0x277770e7
    res/drawable/umeng_socialize_shape_solid_black.xml 0x1b444197
    res/drawable/umeng_socialize_shape_solid_grey.xml 0xd3b9615
    res/drawable/umeng_socialize_share_to_button.xml 0x258be656
    res/drawable/umeng_socialize_share_transparent_corner.xml 0x2177c030
    res/drawable/umeng_socialize_shareboard_item_background.xml 0x2b6939c4
    res/drawable/umeng_socialize_sidebar_normal.xml 0x65ceb328
    res/drawable/umeng_socialize_sidebar_selected.xml 0xe80b415a
    res/drawable/umeng_socialize_sidebar_selector.xml 0x104c0870
    res/drawable/umeng_socialize_sina_off.png 0x9ace6a82
    res/drawable/umeng_socialize_sina_on.png 0xa87f0657
    res/drawable/umeng_socialize_title_back_bt.xml 0xa10c7776
    res/drawable/umeng_socialize_title_back_bt_normal.png 0xf06342af
    res/drawable/umeng_socialize_title_back_bt_selected.png 0xa372e23a
    res/drawable/umeng_socialize_title_right_bt.xml 0xb2a7eeda
    res/drawable/umeng_socialize_title_right_bt_normal.png 0x361e32e5
    res/drawable/umeng_socialize_title_right_bt_selected.png 0x3abfd408
    res/drawable/umeng_socialize_title_tab_button_left.xml 0x9cbf2717
    res/drawable/umeng_socialize_title_tab_button_right.xml 0x68afd543
    res/drawable/umeng_socialize_title_tab_left_normal.png 0x3867c1c8
    res/drawable/umeng_socialize_title_tab_left_pressed.png 0x36d083e1
    res/drawable/umeng_socialize_title_tab_right_normal.png 0xc8ec4ad
    res/drawable/umeng_socialize_title_tab_right_pressed.png 0xcda47f76
    res/drawable/umeng_socialize_twitter.png 0x2e7076b0
    res/drawable/umeng_socialize_tx_off.png 0xbf6cc43
    res/drawable/umeng_socialize_tx_on.png 0xfb1960db
    res/drawable/umeng_socialize_wechat.png 0xdb75721e
    res/drawable/umeng_socialize_wechat_gray.png 0xb960e5cb
    res/drawable/umeng_socialize_window_shadow_pad.xml 0xccbfb7d1
    res/drawable/umeng_socialize_wxcircle.png 0xb71e1c46
    res/drawable/umeng_socialize_wxcircle_gray.png 0x445beb69
    res/drawable/umeng_socialize_x_button.png 0x12819e5e
    res/drawable/white_rect.xml 0x287c91ff
    res/layout-sw550dp-large-v13/umeng_socialize_full_alert_dialog.xml 0xb47ff5de
    res/layout-sw550dp-large-v13/umeng_socialize_oauth_dialog.xml 0x31379f68
    res/layout-sw550dp-large-v13/umeng_socialize_post_share.xml 0x3298ae37
    res/layout-sw550dp-large-v13/umeng_socialize_titile_bar.xml 0xca6bb44f
    res/layout-sw600dp-port-v13/log_fragment.xml 0xe698f586
    res/layout-sw600dp-port-v21/log_fragment.xml 0x1b01a59
    res/layout-sw600dp-v13/log_fragment.xml 0x77f95bdf
    res/layout-sw600dp-v21/log_fragment.xml 0x52996fe
    res/layout-v11/connections.xml 0x4d458c2a
    res/layout-v11/file_select.xml 0xe2585a70
    res/layout-v11/server_card.xml 0xa188fac8
    res/layout-v13/allowed_application_layout.xml 0xcd6f3b7d
    res/layout-v13/connections.xml 0x587adb7f
    res/layout-v17/allowed_application_layout.xml 0x762da35
    res/layout-v17/allowed_vpn_apps.xml 0x46884bbe
    res/layout-v17/connections.xml 0xea3c95e0
    res/layout-v17/server_card.xml 0xce55d45c
    res/layout-v17/vpn_list_item.xml 0xc9467468
    res/layout-v21/allowed_vpn_apps.xml 0x8529ed19
    res/layout-v21/connection_fab.xml 0x13212d5b
    res/layout-v21/connections.xml 0x76bf0bb8
    res/layout-v21/faqcard.xml 0xabda69b0
    res/layout-v21/log_fragment.xml 0xad8d04d4
    res/layout-v21/profile_list_fabs.xml 0x2fa5483c
    res/layout-v21/save_fab.xml 0x7811c52d
    res/layout-v21/share_fab.xml 0x1ad4ff62
    res/layout-v21/tabs.xml 0xdf07587
    res/layout/about.xml 0xda059e28
    res/layout/activity_lead.xml 0x632858ed
    res/layout/activity_login.xml 0x6dd13e91
    res/layout/activity_main.xml 0xc2701ee5
    res/layout/activity_register.xml 0x31241769
    res/layout/activity_test.xml 0x7f3e80de
    res/layout/allowed_application_layout.xml 0x9b119575
    res/layout/allowed_vpn_apps.xml 0x6118b3d2
    res/layout/api_confirm.xml 0x1b79be62
    res/layout/basic_settings.xml 0x4df26f7b
    res/layout/config_converter.xml 0x8a64bac
    res/layout/connection_fab.xml 0x81583ae4
    res/layout/connections.xml 0x8c2e6832
    res/layout/detail.xml 0x4e414c0c
    res/layout/faq.xml 0x27e8166b
    res/layout/faqcard.xml 0xe8414dc4
    res/layout/file_dialog.xml 0x7c9a7f07
    res/layout/file_dialog_inline.xml 0x67504d25
    res/layout/file_dialog_main.xml 0xe34c4893
    res/layout/file_dialog_row.xml 0xabca67e9
    res/layout/file_select.xml 0x716ce00e
    res/layout/fragment_senddump.xml 0x9072de22
    res/layout/gridview_menu.xml 0x1491c4e4
    res/layout/header_item.xml 0x9f85a2be
    res/layout/item_menu.xml 0x56ed3deb
    res/layout/keystore_selector.xml 0xa72b9b75
    res/layout/layout_chatfragment.xml 0x62cf7334
    res/layout/layout_chatfragment2.xml 0x4c93f70e
    res/layout/layout_findfragment.xml 0x5a47e3a7
    res/layout/layout_minefragment.xml 0x11835fda
    res/layout/layout_titlebar.xml 0xd10b1ec5
    res/layout/log_fragment.xml 0x757001c9
    res/layout/log_silders.xml 0xbe959c40
    res/layout/log_window.xml 0xfb27839b
    res/layout/login_process.xml 0xe6e192f0
    res/layout/main_activity.xml 0xaf4b61c6
    res/layout/minitab.xml 0x39fdb527
    res/layout/myrr_item.xml 0x2c3203b8
    res/layout/myrr_main.xml 0x201f71c5
    res/layout/network_settings.xml 0xb24da940
    res/layout/padersliding_tab.xml 0xe7f23d98
    res/layout/popu.xml 0xfa648507
    res/layout/popu_item.xml 0x5f67cee4
    res/layout/profile_list_fabs.xml 0xd56769b9
    res/layout/save_fab.xml 0x81583ae4
    res/layout/server_card.xml 0xa9853157
    res/layout/server_footer.xml 0xf13b9348
    res/layout/server_list.xml 0x161ea99d
    res/layout/settings_usereditable.xml 0x9d82d427
    res/layout/share_fab.xml 0xf5e59f12
    res/layout/softupdate_progress.xml 0xca6a7840
    res/layout/splash.xml 0xb72fcbbc
    res/layout/tabs.xml 0x5f110c2c
    res/layout/tlsremote.xml 0xf6ef467f
    res/layout/umeng_bak_at_list.xml 0x59ddc8c0
    res/layout/umeng_bak_at_list_item.xml 0xae4e6789
    res/layout/umeng_bak_platform_item_simple.xml 0x53c64b7d
    res/layout/umeng_bak_platform_selector_dialog.xml 0xa7c63b35
    res/layout/umeng_socialize_at_item.xml 0x5ffde10a
    res/layout/umeng_socialize_at_overlay.xml 0xf0fb2c53
    res/layout/umeng_socialize_at_view.xml 0x45e4bdb0
    res/layout/umeng_socialize_base_alert_dialog.xml 0xe29128fb
    res/layout/umeng_socialize_base_alert_dialog_button.xml 0x7da483a
    res/layout/umeng_socialize_bind_select_dialog.xml 0x8ba715a3
    res/layout/umeng_socialize_composer_header.xml 0x93f95c1d
    res/layout/umeng_socialize_failed_load_page.xml 0x1d289292
    res/layout/umeng_socialize_full_alert_dialog.xml 0xa1c360f9
    res/layout/umeng_socialize_full_alert_dialog_item.xml 0x6b0bb3ab
    res/layout/umeng_socialize_full_curtain.xml 0xeab67736
    res/layout/umeng_socialize_oauth_dialog.xml 0x2f74b6a7
    res/layout/umeng_socialize_post_share.xml 0x9446f4e5
    res/layout/umeng_socialize_shareboard_item.xml 0x1aaf5061
    res/layout/umeng_socialize_simple_spinner_item.xml 0xc86dcc89
    res/layout/umeng_socialize_titile_bar.xml 0x103fa3d7
    res/layout/userpass.xml 0x22d72402
    res/layout/viewconfig.xml 0xa9239a9d
    res/layout/vpn_list_item.xml 0xa907e2c7
    res/layout/vpn_profile_list.xml 0xbf65da72
    res/layout/vpnstatus.xml 0xaf2671e2
    res/menu-v11/allowed_apps.xml 0x53189572
    res/menu-v11/configmenu.xml 0x5a57bc09
    res/menu-v11/connections.xml 0xa3bbcc47
    res/menu-v11/import_menu.xml 0x8e661fa1
    res/menu-v11/lead.xml 0x7e2e9726
    res/menu-v11/logmenu.xml 0xb70f5cc
    res/menu-v11/main.xml 0x7e2e9726
    res/menu-v11/main_menu.xml 0x163b9ca
    res/menu-v11/vpnpreferences_menu.xml 0x1b51a7e4
    res/menu/allowed_apps.xml 0x8109cf5a
    res/menu/configmenu.xml 0x65e950a4
    res/menu/connections.xml 0xa7a368be
    res/menu/exit_menu.xml 0x41fb3b08
    res/menu/import_menu.xml 0x52c6ef5
    res/menu/lead.xml 0x61a16d91
    res/menu/login_menu.xml 0x91dbec7
    res/menu/logmenu.xml 0xcf56377b
    res/menu/main.xml 0x61a16d91
    res/menu/main_menu.xml 0x8fde6cd3
    res/menu/servers_menu.xml 0xce5bc9f2
    res/menu/vpnpreferences_menu.xml 0x26fa1ea
    res/mipmap-hdpi-v4/ic_launcher.png 0x8a633132
    res/mipmap-mdpi-v4/ic_launcher.png 0xce9c5715
    res/mipmap-xhdpi-v4/ic_launcher.png 0x99cd846d
    res/mipmap-xxhdpi-v4/ic_launcher.png 0xab937e6e
    res/mipmap-xxxhdpi-v4/ic_launcher.png 0xbadcbebd
    res/xml/general_settings.xml 0xdae6e0c
    res/xml/vpn_authentification.xml 0x45261729
    res/xml/vpn_ipsettings.xml 0xfe3fed7
    res/xml/vpn_obscure.xml 0xa5713abe
    res/xml/vpn_routing.xml 0xe6269418
    resources.arsc 0x253dbd44
    classes.dex 0x31fb3099
    assets/com.tencent.open.config.json 0xb3d4a81a
    assets/libwbsafeedit 0xb05a63a9
    META-INF/NOTICE.txt 0x97605e0d
    META-INF/LICENSE.txt 0x537475cb
    org/apache/http/entity/mime/version.properties 0x53e10a06
    android/net/vpn/IVpnService.aidl 0x241b24c4
    android/net/vpn/VpnProfile.aidl 0x51e36144
    net/chitu/chitujsq/service/IPodVPNService.aidl 0x621ad388
    lib/arm64-v8a/libjbcrypto.so 0x4007c7e7
    lib/arm64-v8a/libopenvpn.so 0xa64cf00f
    lib/arm64-v8a/libopvpnutil.so 0x46fe1344
    lib/armeabi/libjbcrypto.so 0x78b0307
    lib/armeabi/libopenvpn.so 0x66a8c4cb
    lib/armeabi/libopvpnutil.so 0x7794e829
    lib/armeabi/libssl.so 0x3f968120
    lib/armeabi-v7a/libjbcrypto.so 0xd2aec4da
    lib/armeabi-v7a/libopenvpn.so 0x22f6622
    lib/armeabi-v7a/libopvpnutil.so 0xc6bb7faf
    lib/armeabi-v7a/libssl.so 0xf094d9c4
    lib/x86/libjbcrypto.so 0x4c982ca3
    lib/x86/libopenvpn.so 0x1156b411
    lib/x86/libopvpnutil.so 0x6ce6bbe5
    lib/x86/libssl.so 0x8d13c8e7
    META-INF/MANIFEST.MF 0x1ee5fd93
    META-INF/CERT.SF 0xf029dfb
    META-INF/CERT.RSA 0x6baf4719
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号