VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load



File information
File Name : 12.apk (File not down)
File Size :2417183 byte
File Type :application/zip
MD5:9962e41be43d8c00cdd1f4e87618581c
SHA1:ff2a4bdf04af13c5fe88b28aac44f4f65190eeb9
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!        Behavior
    Time: 2015-10-20 15:02:15 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
    avast 150725-1 4.7.4 2015-07-25 Found nothing 0
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 6
    baidusd 1.0 1.0 2014-04-02 Found nothing 1
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
    clamav 19861 0.97.5 2014-12-31 Found nothing 0
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
    gdata 25.3964 25.3964 2015-10-19 Found nothing 9
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
    jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 45
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
    kingsoft 2.1 2.1 2013-09-22 Found nothing 12
    mcafee 7638 5400.1158 2014-11-30 Found nothing 0
    nod32 0920 3.0.21 2014-12-23 Found nothing 0
    panda 9.05.01 9.05.01 2015-07-26 Found nothing 5
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 4
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
    quickheal 14.00 14.00 2015-07-25 Found nothing 3
    rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 4
    sophos 5.08 3.55.0 2014-12-01 Found nothing 0
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 4
    thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 3
    tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 14
    vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.READ_PHONE_SINTERNETWIFI_STATE
    android.permission.CALL_PHONE拨打电话
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.BIND_ACCESSIBILITY_SERVICE绑定辅助服务
    android.permission.DISABLE_KEYGUARD禁用键盘锁
    com.android.launcher.permission.INSTALL_SHORTCUT创建快捷方式
    com.android.launcher.permission.UNINSTALL_SHORTCUT删除快捷方式
    com.android.launcher.permission.READ_SETTINGS读取快捷方式信息
    com.android.launcher.permission.WRITE_SETTINGS
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.RESTART_PACKAGES重启其他程序
    android.permission.BROADCAST_STICKY发送持久广播
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.RECEIVE_USER_PRESENT
    android.permission.READ_LOGS读取系统日志
    android.permission.VIBRATE允许设备震动
    android.permission.BLUETOOTH连接蓝牙设备
    android.permission.BATTERY_STATS电量统计
  • 文件信息
    安全评分 :
    基本信息
    MD5:9962e41be43d8c00cdd1f4e87618581c
    包名:com.shuiguo.redenvelope
    最低运行环境:Android 2.3, 2.3.1, 2.3.2
    版权:
    关键行为
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    MSCTF.MarshalInterface.FileMap.ECI..JCLJG
    MSCTF.MarshalInterface.FileMap.ECI.B.IELJG
    MSCTF.MarshalInterface.FileMap.ECI.C.IELJG
    MSCTF.MarshalInterface.FileMap.ECI.D.IELJG
    MSCTF.MarshalInterface.FileMap.ECI.E.IFLJG
    MSCTF.MarshalInterface.FileMap.ECI.F.IGLJG
    MSCTF.MarshalInterface.FileMap.ECI.G.HHLJG
    MSCTF.Shared.SFM.ECI
    MSCTF.MarshalInterface.FileMap.ECI.H.DBING
    MSCTF.MarshalInterface.FileMap.ECI.I.DBING
    MSCTF.MarshalInterface.FileMap.ECI.J.DBING
    MSCTF.MarshalInterface.FileMap.ECI.K.DBING
    MSCTF.MarshalInterface.FileMap.ECI.L.CCING
    MSCTF.MarshalInterface.FileMap.ECI.M.CDING
    行为描述:检测自身是否被调试
    详情信息:N/A
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\UNINST~1
    C:\OKDOS
    C:\GHOST
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [AutoIt v3,AutoIt v3]
    [Window,Class] = [,ComboLBox]
    [Window,Class] = [高级选项:,Button]
    [Window,Class] = [禁用访问 IDE 设备(&D),Button]
    [Window,Class] = [密码(&P),Button]
    [Window,Class] = [,Edit]
    [Window,Class] = [自定义 GHOST 版本(&V),Button]
    [Window,Class] = [忽略 CRC 错误(&E),Button]
    [Window,Class] = [,ComboBox]
    [Window,Class] = [检查 GHO 完整性(&F),Button]
    [Window,Class] = [完成后关机(&X),Button]
    [Window,Class] = [完成后重启(&R),Button]
    [Window,Class] = [Ghost 11.5.1(4K 정렬),Button]
    [Window,Class] = [Ghost32 热备份(&H),Button]
    [Window,Class] = [撤消(&U),Button]
    行为描述:修改敏感的系统文件
    详情信息:C:\boot.ini
    进程行为
    行为描述:隐藏窗口创建进程
    详情信息:ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c c:\docume~1\admini~1\locals~1\temp\isodrv.dll -print
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c c:\docume~1\admini~1\locals~1\temp\showdrive.dl_ *
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c c:\docume~1\admini~1\locals~1\temp\showefi.dl_
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c c:\docume~1\admini~1\locals~1\temp\y~9170.tmp -a/part
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c c:\docume~1\admini~1\locals~1\temp\grubinst.exe --read-only --save=mbr.tmp (hd0)
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c <nul set/p=123456>gmd5p.tmp
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c gmd5.dll gmd5p.tmp gmd5r.txt
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c echo y|cacls c:\ghost /t /c /g everyone:r
    ImagePath = , CmdLine = c:\windows\system32\cmd.exe /c echo y|cacls c:\ghost /t /e /c /g everyone:w
    行为描述:创建进程
    详情信息:ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ISODrv.dll -Print
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowDrive.dl_ *
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowEFI.dl_
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Y~9170.tmp -a/part
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\grubinst.exe --read-only --save=MBR.tmp (hd0)
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c <nul Set/p=123456>GMD5P.TMP
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c GMD5.dll GMD5P.TMP GMD5R.TXT
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c echo y|cacls C:\GHOST /T /C /G Everyone:R
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /S /D /c" echo y"
    ImagePath = C:\WINDOWS\system32\cacls.exe, CmdLine = cacls C:\GHOST /T /C /G Everyone:R
    ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c echo y|cacls C:\GHOST /T /E /C /G Everyone:W
    ImagePath = C:\WINDOWS\system32\cacls.exe, CmdLine = cacls C:\GHOST /T /E /C /G Everyone:W
    行为描述:创建新文件进程
    详情信息:ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ISODrv.dll, CmdLine = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ISODrv.dll -Print
    ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowDrive.dl_, CmdLine = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowDrive.dl_ *
    ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowEFI.dl_, CmdLine = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowEFI.dl_
    ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Y~9170.tmp, CmdLine = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Y~9170.tmp -a/part
    ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\grubinst.exe, CmdLine = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\grubinst.exe --read-only --save=MBR.tmp (hd0)
    ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\GMD5.dll, CmdLine = GMD5.dll GMD5P.TMP GMD5R.TXT
    行为描述:枚举进程
    详情信息:N/A
    文件行为
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    MSCTF.MarshalInterface.FileMap.ECI..JCLJG
    MSCTF.MarshalInterface.FileMap.ECI.B.IELJG
    MSCTF.MarshalInterface.FileMap.ECI.C.IELJG
    MSCTF.MarshalInterface.FileMap.ECI.D.IELJG
    MSCTF.MarshalInterface.FileMap.ECI.E.IFLJG
    MSCTF.MarshalInterface.FileMap.ECI.F.IGLJG
    MSCTF.MarshalInterface.FileMap.ECI.G.HHLJG
    MSCTF.Shared.SFM.ECI
    MSCTF.MarshalInterface.FileMap.ECI.H.DBING
    MSCTF.MarshalInterface.FileMap.ECI.I.DBING
    MSCTF.MarshalInterface.FileMap.ECI.J.DBING
    MSCTF.MarshalInterface.FileMap.ECI.K.DBING
    MSCTF.MarshalInterface.FileMap.ECI.L.CCING
    MSCTF.MarshalInterface.FileMap.ECI.M.CDING
    行为描述:创建可执行文件
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ISODrv.dll
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ISODrive.sys
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\B~7074.tmp
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowDrive.dl_
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ShowEFI.dl_
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Y~9170.tmp
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\grubinst.exe
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\GMD5.dll
    行为描述:修改文件内容
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\aut3.tmp---> Offset = 32768
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\zywnisz---> Offset = 184320
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\aut4.tmp---> Offset = 4096
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\aut5.tmp---> Offset = 49152
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\aut6.tmp---> Offset = 24576
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\aut7.tmp---> Offset = 0
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\aut8.tmp---> Offset = 4096
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\aut9.tmp---> Offset = 20480
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\B~7074.tmp---> Offset = 58350
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\B~7074.tmp---> Offset = 58367
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\autA.tmp---> Offset = 24576
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MBR.tmp---> Offset = 0
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\autB.tmp---> Offset = 24576
    C:\UNINST~1\boot.ini---> Offset = 0
    C:\UNINST~1\Ghost.ini---> Offset = 0
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\UNINST~1
    C:\OKDOS
    C:\GHOST
    行为描述:修改敏感的系统文件
    详情信息:C:\boot.ini
    网络行为
    行为描述:连接指定站点
    详情信息:InternetConnectA: ServerName = ghost.onekey.cc, PORT = 80
    行为描述:打开HTTP请求
    详情信息:HttpOpenRequestA: ghost.onekey.cc:80/okinfo/okinfo.asp, hConnect = 0x00000548
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\GlobalUserOffline
    \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
    行为描述:删除注册表键值_IE连接设置
    详情信息:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
    \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
    其他行为
    行为描述:检测自身是否被调试
    详情信息:N/A
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.Compart.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.Asm.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.Layouts.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.TMD.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.TimListCache.FMPDefaultS-1-5-21-1482476501-1645522239-1417001333-500MUTEX.DefaultS-1-5-21-1482476501-1645522239-1417001333-500
    SHIMLIB_LOG_MUTEX
    RasPbFile
    MSCTF.Shared.MUTEX.AEH
    MSCTF.Shared.MUTEX.ECI
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [AutoIt v3,AutoIt v3]
    [Window,Class] = [,ComboLBox]
    [Window,Class] = [高级选项:,Button]
    [Window,Class] = [禁用访问 IDE 设备(&D),Button]
    [Window,Class] = [密码(&P),Button]
    [Window,Class] = [,Edit]
    [Window,Class] = [自定义 GHOST 版本(&V),Button]
    [Window,Class] = [忽略 CRC 错误(&E),Button]
    [Window,Class] = [,ComboBox]
    [Window,Class] = [检查 GHO 完整性(&F),Button]
    [Window,Class] = [完成后关机(&X),Button]
    [Window,Class] = [完成后重启(&R),Button]
    [Window,Class] = [Ghost 11.5.1(4K 정렬),Button]
    [Window,Class] = [Ghost32 热备份(&H),Button]
    [Window,Class] = [撤消(&U),Button]
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    NtUserFindWindowEx: [Class,Window] = [OleMainThreadWndClass,]
    行为描述:枚举窗口
    详情信息:N/A
    行为描述:获取系统权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    行为描述:尝试打开调试器或监控软件的驱动设备对象
    详情信息:\??\SICE
    \??\NTICE
    行为描述:窗口信息
    详情信息:Pid = 2080, Hwnd=0x70196, Text = Ghost ?? ??(&T), ClassName = Button.
    Pid = 2080, Hwnd=0x60240, Text = http://HanGulHwa.Tistory.Com, ClassName = Static.
    Pid = 2080, Hwnd=0x301be, Text = 还原分区(&R), ClassName = Button(RadioButton).
    Pid = 2080, Hwnd=0x301c0, Text = 备份分区(&B), ClassName = Button(RadioButton).
    Pid = 2080, Hwnd=0x301c6, Text = &Ghost32, ClassName = Button(CheckBox).
    Pid = 2080, Hwnd=0x301d0, Text = 安装(&I), ClassName = Button(CheckBox).
    Pid = 2080, Hwnd=0x501ae, Text = GHO WIM ISO 映像路径:, ClassName = Button(GroupBox).
    Pid = 2080, Hwnd=0x30228, Text = C:\GHOST\C_WINXP.GHO, ClassName = ComboBox.
    Pid = 2080, Hwnd=0x301e6, Text = C:\GHOST\C_WINXP.GHO, ClassName = Edit.
    Pid = 2080, Hwnd=0x50258, Text = 保存(&S), ClassName = Button.
    Pid = 2080, Hwnd=0x501ba, Text = 高级选项:, ClassName = Button(GroupBox).
    Pid = 2080, Hwnd=0x40250, Text = 禁用访问 IDE 设备(&D), ClassName = Button(CheckBox).
    Pid = 2080, Hwnd=0x50230, Text = 密码(&P), ClassName = Button(CheckBox).
    Pid = 2080, Hwnd=0x50216, Text = 自定义 GHOST 版本(&V), ClassName = Button(CheckBox).
    Pid = 2080, Hwnd=0x4021e, Text = 忽略 CRC 错误(&E), ClassName = Button(CheckBox).
    行为描述:直接操作物理设备
    详情信息:\??\PhysicalDrive0
    危险行为
    行为描述:执行系统命令
    详情信息:[u'[/data/data/com.shuiguo.redenvelope/lib/libtpnsWatchdog.so, com.shuiguo.redenvelope,2100088994;, 55069, 14.18.245.161, [{"idx":0,"ts":%d,"et":2000,"si":0,"ui":"357143040944263","ky":"Axg%lu","mid":"0","mc":"60:e7:01:09:b9:6f","ev":{"ov":"16","sr":"768*1184","md":"sdk","lg":"en","sv":"2.36","mf":"unknown","apn":"%s"}}], 0, 16]']
    [u'chmod 0755 /data/data/com.shuiguo.redenvelope/app_bin/daemon']
    [u'/data/data/com.shuiguo.redenvelope/app_bin/daemon -p com.shuiguo.redenvelope -s com.shuiguo.service.DaemonService -t 1800']
    动态列表行为
    行为描述:添加悬浮窗口
    详情信息:[u'com.android.internal.policy.impl.PhoneWindow$DecorView@41512dc8', u'WM.LayoutParams{(0,0)(fillxfill) sim=#100 ty=1 fl=#1810100 pfl=0x8 wanim=0x103028f}', u'android.view.CompatibilityInfoHolder@414b4338']
    [u'com.android.internal.policy.impl.PhoneWindow$DecorView@4150bd70', u'WM.LayoutParams{(0,0)(fillxfill) sim=#100 ty=1 fl=#1810100 pfl=0x8 wanim=0x103028f}', u'android.view.CompatibilityInfoHolder@414b4338']
    行为描述:激活Activity
    详情信息:Intent { cmp=com.shuiguo.redenvelope/com.shuiguo.activity.MainActivity }
    行为描述:访问网络
    详情信息:host:127.0.0.1 port:55069
    行为描述:读取文件
    详情信息:path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:5
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:6
    path:/data/data/com.shuiguo.redenvelope/shared_prefs/.tpns.xml.xml length:118
    path:/data/app/com.shuiguo.redenvelope-1.apk length:7
    path:/data/app/com.shuiguo.redenvelope-1.apk length:27
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1208
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1380
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1223
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1129
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1228
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1196
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1169
    path:/data/app/com.shuiguo.redenvelope-1.apk length:1224
    path:/data/app/com.shuiguo.redenvelope-1.apk length:5
    行为描述:对指定数据计算哈希
    详情信息:com.tencent.tpus.recTo
    com.tencent.tpus.hbIntvl
    com.tencent.tpus.httpHbIntvl
    com.tencent.tpus.stIntvl
    com.tencent.tpus.cnMsgExp
    com.tencent.tpus.fqcSuc
    com.tencent.tpus.fqcFal
    com.tencent.tpus.rptIntvl
    com.tencent.tpus.rptMaxCnt
    com.tencent.tpus.httpRtCnt
    com.tencent.tpus.ackMaxCnt
    com.tencent.tpus.ackDuration
    com.tencent.tpus.loadIpIntvl
    com.tencent.tpus.redirectConnectTime
    com.tencent.tpus.redirectSoTime
    com.tencent.tpus.strategyExpiredTime
    com.tencent.tpus.rptLive
    com.tencent.tpus.rptLiveIntvl
    com.tencent.tpus.logLevel
    com.tencent.tpus.logFileSizeLimit
    com.tencent.tpus.errCount
    com.tencent.tpus.logUploadDomain
    com.tencent.android.tpush.debug,com.shuiguo.redenvelope
    com.tencent.tpus.stopXG
    isClearCache.com.tencent.tpush.cache.redirect
    tpush.running.service.name
    com.shuiguo.redenvelope.com.tencent.tpush.cache.ver
    com.shuiguo.redenvelope.com.tencent.tpush.cache.pri
    tpush.wifi.bandon
    tpush_reginfos.com.tencent.tpush.cache.reg
    com.tencent.android.tpush.socket.name
    3-1.com.tencent.tpush.cache.redirect
    com.shuiguo.redenvelope.com.tencent.tpush.cache.reg
    Manifest-Version:1.0 Created-By:1.6.0_37(SunMicrosystemsInc.) Name:res/layout/main_activity_view.xml SHA1-Digest:wkWU+5mDAFUA7bCuQ0py2SU5I3Q= Name:res/drawable/abc_btn_check_material.xml SHA1-Digest:WJwxXYQHl6QWDka2O1BvIEtMjAQ= Name:res/drawable-hdpi-v4/abc_ic_menu_cut_mtrl_alpha.png SHA1-Digest:DK56Y6UjLNHOo/ha0XddWTzD+NE= Name:res/drawable-hdpi-v4/abc_textfield_activated_mtrl_alpha.9.png SHA1-Digest:sSd73UlwBBESVH63lNNrS2c8dsI= Name:res/drawable-hdpi-v4/abc_tab_indicator_mtrl_alpha.9.png SHA1-Digest:NJuMq0n7Coq8s/ff6QHhDQhI9uw= Name:res/drawable-xhdpi-v4/abc_btn_check_to_on_mtrl_015.png SHA1-Digest:Liu4ZSvXVbRTfKfw/Sf1BCXStdc= Name:res/drawable-xhdpi-v4/abc_spinner_mtrl_am_alpha.9.png SHA1-Digest:stIAi0l6do5PtxTEEt+OuazTScA= Name:res/drawable-ldrtl-xxxhdpi-v17/abc_spinner_mtrl_am_alpha.9.png SHA1-Digest:dT9O498/3E1mpkpzpSmdy7tcxxU= Name:res/drawable-xxxhdpi-v4/abc_ic_menu_moreoverflow_mtrl_alpha.png SHA1-Digest:HSo66NSY39XTXO777pXaLU1UHYM= Name:res/drawable-hdpi-v4/abc_switch_track_mtrl_alpha.9.png SHA1-Digest:RMsgj4KJpKAEXVBRBwDt8FeaMY8= Name:res/drawable-xxhdpi-v4/abc_list_selector_disabled_holo_dark.9.pn g SHA1-Digest:vq3AaVX19jU0c0v1npZsAQOh+CI= Name:res/drawable/abc_list_selector_background_transition_holo_dark.x ml SHA1-Digest:tB5OWH9PLfGhYUi0ff5UDkaatac= Name:res/drawable-hdpi-v4/abc_textfield_search_activated_mtrl_alpha.9 .png SHA1-Digest:IuYI5vQjWWP1qL2ucpoSX2vYK8Y= Name:res/drawable-mdpi-v4/abc_list_selector_disabled_holo_dark.9.png SHA1-Digest:+bjkZfnp7jH8HvA5wzYQ85O04Ic= Name:res/drawable/abc_switch_thumb_material.xml SHA1-Digest:6ga3ohDAgjszm8vt3QE6o48ucng= Name:res/drawable-xhdpi-v4/abc_btn_radio_to_on_mtrl_015.png SHA1-Digest:sSo2eVyCVNeDBah+XyDsR3c+eao= Name:res/drawable-xxxhdpi-v4/abc_btn_switch_to_on_mtr[@[Truncated]@]
    \xEF\xBF\xBD9\xEF\xBF\xBDy4Rv\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD.>Rjx\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD,`t\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBDL\xEF\xBF\xBD\xEF\xBF\xBDB\xEF\xBF\xBD\xEF\xBF\xBDd\xEF\xBF\xBDD\xEF\xBF\xBD\xEF\xBF\xBD>\xEF\xBF\xBD\xEF\xBF\xBDB\xEF\xBF\xBD l \xEF\xBF\xBD " l \xEF\xBF\xBD \xEF\xBF\xBD N \xEF\xBF\xBD \xEF\xBF\xBD \xEF\xBF\xBD B \ \xEF\xBF\xBD \xEF\xBF\xBD  . f z \xEF\xBF\xBD R\xEF\xBF\xBD\xEF\xBF\xBD(:\xEF\xBF\xBD\xEF\xBF\xBD6L\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\\xEF\xBF\xBD`\xEF\xBF\xBD h\xEF\xBF\xBDb\xEF\xBF\xBD\xEF\xBF\xBD R\xEF\xBF\xBD\xEF\xBF\xBDx\xEF\xBF\xBD\\xEF\xBF\xBDR\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD<FPZh[@[Truncated]@]
    \xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD8\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD((\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD8\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD))\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD8\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD**\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD8\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD++\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD8\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD,,\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD8\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD\xEF\xBF\xBD[@[Truncated]@]
    com.tencent.tpush.last_wifi_ts
    .com.tencent.tpush.cache.deviceId_v1
    .com.tencent.tpush.cache.qua.2100088994
    行为描述:输出数据流写入数据
    详情信息:[C@4154f5b8
    [C@416302a8
    [C@41a42800
    [C@41a53de0
    [C@41579140
    [C@415851a0
    行为描述:注册ContentObserver
    详情信息:URI=content://settings/secure/enabled_accessibility_services
    行为描述:执行系统命令
    详情信息:[u'[/data/data/com.shuiguo.redenvelope/lib/libtpnsWatchdog.so, com.shuiguo.redenvelope,2100088994;, 55069, 14.18.245.161, [{"idx":0,"ts":%d,"et":2000,"si":0,"ui":"357143040944263","ky":"Axg%lu","mid":"0","mc":"60:e7:01:09:b9:6f","ev":{"ov":"16","sr":"768*1184","md":"sdk","lg":"en","sv":"2.36","mf":"unknown","apn":"%s"}}], 0, 16]']
    [u'chmod 0755 /data/data/com.shuiguo.redenvelope/app_bin/daemon']
    [u'/data/data/com.shuiguo.redenvelope/app_bin/daemon -p com.shuiguo.redenvelope -s com.shuiguo.service.DaemonService -t 1800']
    行为描述:设置组件属性
    详情信息:[u'ComponentInfo{com.shuiguo.redenvelope/com.tencent.android.tpush.service.XGPushService}', u'1', u'1']
    [u'ComponentInfo{com.shuiguo.redenvelope/com.tencent.android.tpush.XGPushActivity}', u'1', u'1']
    [u'ComponentInfo{com.shuiguo.redenvelope/com.tencent.android.tpush.rpc.XGRemoteService}', u'1', u'1']
    [u'ComponentInfo{com.shuiguo.redenvelope/com.tencent.android.tpush.XGPushReceiver}', u'1', u'1']
    [u'ComponentInfo{com.shuiguo.redenvelope/com.shuiguo.receiver.PushReceiver}', u'1', u'1']
    行为描述:初始化Intent
    详情信息:[u'android.os.Parcel@414b1738']
    [u'android.os.Parcel@414b16f8']
    [u'com.tencent.android.tpush.action.ENABLE_DEBUG']
    [u'com.shuiguo.redenvelope.PUSH_ACTION']
    [u'com.tencent.android.tpush.action.REGISTER']
    [u'com.shuiguo.activity.SplashActivity@414f0a38', u'class com.shuiguo.activity.MainActivity']
    [u'android.os.Parcel@414a9eb8']
    [u'android.os.Parcel@414a9e78']
    [u'android.os.Parcel@414b28c8']
    [u'android.os.Parcel@414b2888']
    [u'com.tencent.android.tpush.action.SERVICE_START']
    [u'android.intent.action']
    [u'']
    [u'com.tencent.android.tpush.action.SDK']
    [u'android.intent.action.MAIN']
    [u'com.tencent.android.tpush.action.REGISTER.RESULT']
    [u'android.os.Parcel@414b3808']
    [u'com.tencent.android.tpush.action.FEEDBACK']
    行为描述:文件写入初始化
    详情信息:[u'/data/data/com.shuiguo.redenvelope/files/tencent/TPush/Logs/20150521/16.1.app.log', u'true']
    行为描述:传递附加信息
    详情信息:debugMode:false
    accId:K81sAc5Bsad2EdnhubmEo9gSYFF1r3kZ
    accKey:sQZU5msOi71LlIZxduh1XXPEhxztTMvl
    packName:dJ02HUVjJ64nfmgtsEVCMX2k0WPgT/baAjPHOlTbPj/VQ6fob4RiNg==
    appVer:1.2.0
    reserved:YwJVgTASr/hGxwQT7gGzsPbClMyUgM4tXaPd9jaWzhpHFWr2G+mvz3DJOe9YPTTr6fZX2cat1ujL o4fUYrBEv4NSAPOG5BFumW1zjho0r0M8L3y0HWFs8hum2Rw8N5LR
    ticketType:-1
    operation:100
    aidl:false
    currentTimeMillis:1432196558159
    opType:0
    accId:tomZJRrmbwzbP0JYH6nRv/qauhDVvslL
    accKey:mH0jCfOHpGlp/VPBS19kMit+M7yOr+M8
    packName:UXiUFOgwfAXDJBe4jiroHAODhQjITPQ54fbI3/RxdZvOoTS3SgnpJg==
    reserved:DKZwGTwGfhLES5LH1aztdWEaPdzN5VRtr+cltIGjAMOr+p7Wayl3dRxYu7B7R3TqTeh0HNco3YxK FdmT26GjfVeeKvbujG3opTynY3F1K00ZVHQknV+xdbaNp7IIJ/8m
    currentTimeMillis:1432196565296
    pkg:com.shuiguo.redenvelope
    ver:2.36
    accId:I22IcctnlTCPAU6Wx9g7DzQGNcHYG9Mw
    accKey:oBrHCT4EtktrudJLkAUZGzrmV/Vh5ylQ
    packName:kNhOiBZogEVMJhPJVUUlIOu2f1d4MSKEfXssyM5jmbEMxEc0MxoxSA==
    reserved:q40GPNI1BovK5ZJUSdSH3Ug7QlzoNjKYRnEUHR3DGELJ0L/w8NKapMBIP/dVpsSGaKvYYoGtOaqy RhIEjTny/rygfLalzuBzwVl49FHXBot1cLfk2eWXkQwWpSc0XPgc
    currentTimeMillis:1432196593871
    data:
    code:10100
    msg:network can't reachable!
    flag:0
    operation:1
    TPUSH.FEEDBACK:1
    TPUSH.ERRORCODE:10100
    accId:2100088994
    token:0
    deviceId:4c6653a4ac93dc6853435e9e13eccd5c
    行为描述:调用哈希算法
    详情信息:MD5
    SHA1
    行为描述:解析通用资源标识符
    详情信息:content://telephony/carriers/preferapn
    行为描述:注册广播接收器
    详情信息:[u'com.squareup.picasso.Dispatcher$NetworkBroadcastReceiver@41508468', u'android.content.IntentFilter@414f02a8']
    [u'com.tencent.android.tpush.z@4153ab90', u'android.content.IntentFilter@4153aba8']
    [u'com.tencent.android.tpush.stat.b@4153fe58', u'android.content.IntentFilter@4153fee0']
    [u'com.tencent.android.tpush.z@4152cde0', u'android.content.IntentFilter@414f9f28']
    [u'com.tencent.android.tpush.service.i@4155aba0', u'android.content.IntentFilter@4155abb8']
    [u'com.tencent.android.tpush.service.k@41533bc0', u'android.content.IntentFilter@41533bd8']
    [u'com.shuiguo.activity.MainActivity$2@4156bf70', u'android.content.IntentFilter@4181e170']
    [u'com.tencent.android.tpush.z@415375b8', u'android.content.IntentFilter@4152da48']
    [u'com.tencent.android.tpush.common.d@41a15a38', u'android.content.IntentFilter@41a15a50']
    [u'com.tencent.android.tpush.common.d@414ed770', u'android.content.IntentFilter@4155ba58']
    行为描述:窗口信息
    详情信息:{"text": "温馨提示:关闭密码锁屏 提高抢红包成功率。", "class": "android.widget.TextView"}
    {"text": "用户QQ交流群:399474902", "class": "android.widget.TextView"}
    行为描述:写入文件
    详情信息:path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:33
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:10
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:8
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:5
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:31
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:43
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:7
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:10
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:19
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:14
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:13
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:9
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:8
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:11
    path:/data/data/com.shuiguo.redenvelope/shared_prefs/.tpns.xml.xml length:118
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:16
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:16
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:15
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:489
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:530
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:2915
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:2316
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:2176
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:2270
    path:unknown length:112
    path:/data/data/com.shuiguo.redenvelope/shared_prefs/app.xml length:108
    path:/data/data/com.shuiguo.redenvelope/shared_prefs/device.xml length:98
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:3203
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:2053
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:4068
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:712
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:5
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:608
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:350
    path:/data/data/com.shuiguo.redenvelope/app_bin/daemon length:365
    path:unknown length:652
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:17
    path:/data/data/com.shuiguo.redenvelope/files/properties/com.shuiguo.redenvelope_properties.xml length:10
    path:/data/data/com.shuiguo.redenvelope/shared_prefs/.tpns.xml.xml length:158
    行为描述:获取设备ID
    详情信息:357143040944263
    行为描述:发送网络数据
    详情信息:operation:send host:127.0.0.1 port:55069 data:data:xgapplist:com.shuiguo.redenvelope,2100088994;
    operation:send host:127.0.0.1 port:55069 data:data:ver:
    行为描述:初始化IntentFilter
    详情信息:
    [u'com.tencent.android.tpush.action.REGISTER.RESULT']
    [u'android.net.conn.CONNECTIVITY_CHANGE']
    [u'android.intent.action.CLOSE_SYSTEM_DIALOGS']
    行为描述:缓冲区读取一行数据
    详情信息:0
    2
    行为描述:发送广播
    详情信息:[u'Intent { act=com.tencent.android.tpush.action.ENABLE_DEBUG (has extras) }']
    [u'Intent { act=com.tencent.android.tpush.action.REGISTER pkg=com.tencent.game.SSGame (has extras) }']
    [u'Intent { act=com.tencent.android.tpush.action.SERVICE_START (has extras) }']
    [u'Intent { act=com.tencent.android.tpush.action.REGISTER pkg=com.shuiguo.redenvelope (has extras) }']
    [u'Intent { act=com.tencent.android.tpush.action.REGISTER.RESULT pkg=com.shuiguo.redenvelope (has extras) }']
    [u'Intent { act=com.tencent.android.tpush.action.FEEDBACK pkg=com.shuiguo.redenvelope (has extras) }']
    行为描述:数据库查询
    详情信息:[u'events', u'null', u'content=?', u'[test]', u'null', u'null', u'null', u'1']
    [u'user', u'null', u'null', u'null', u'null', u'null', u'null', u'null']
    [u'config', u'null', u'null', u'null', u'null', u'null', u'null']
    Activities
    活动名类型
    com.shuiguo.activity.SplashActivityandroid.intent.action.MAIN
    com.shuiguo.activity.SplashActivityandroid.intent.category.LAUNCHER
    com.shuiguo.activity.IconActivityandroid.intent.action.CREATE_SHORTCUT
    com.tencent.android.tpush.XGPushActivityandroid.intent.action
    危险函数
    函数名称信息
    android/app/NotificationManager;->notify信息通知栏
    ContentResolver;->query读取联系人、短信等数据库
    java/net/URL;->openConnection连接URL
    getRuntime获取命令行环境
    HttpClient;->execute请求远程服务器
    java/lang/Runtime;->exec执行字符串命令
    TelephonyManager;->getDeviceId搜集用户手机IMEI码、电话号码、系统版本号等信息
    DefaultHttpClient;->execute发送HTTP请求
    ContentResolver;->delete删除短信、联系人
    TelephonyManager;->getSimSerialNumber获取SIM序列号
    java/net/HttpURLConnection;->connect连接URL
    LocationManager;->getLastKnownLocation获取地址位置
    java/net/URLConnection;->connect连接URL
    启动方式
    名称信息
    com.tencent.android.tpush.XGPushReceiver开机启动服务
    com.shuiguo.receiver.PushReceiver
    com.shuiguo.receiver.AppReceiver应用安装时启动服务
    权限列表
    许可名称信息
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.READ_PHONE_SINTERNETWIFI_STATE
    android.permission.CALL_PHONE拨打电话
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.BIND_ACCESSIBILITY_SERVICE绑定辅助服务
    android.permission.DISABLE_KEYGUARD禁用键盘锁
    com.android.launcher.permission.INSTALL_SHORTCUT创建快捷方式
    com.android.launcher.permission.UNINSTALL_SHORTCUT删除快捷方式
    com.android.launcher.permission.READ_SETTINGS读取快捷方式信息
    com.android.launcher.permission.WRITE_SETTINGS
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.RESTART_PACKAGES重启其他程序
    android.permission.BROADCAST_STICKY发送持久广播
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.RECEIVE_USER_PRESENT
    android.permission.READ_LOGS读取系统日志
    android.permission.VIBRATE允许设备震动
    android.permission.BLUETOOTH连接蓝牙设备
    android.permission.BATTERY_STATS电量统计
    服务列表
    名称
    com.shuiguo.service.DaemonService
    com.shuiguo.service.RedEnvelopeService
    com.tencent.android.tpush.service.XGPushService
    com.tencent.android.tpush.rpc.XGRemoteService
    com.tencent.android.tpush.service.XGDaemonService
    文件列表
    文件名 校验码
    META-INF/MANIFEST.MF 0x8d9f10fe
    META-INF/REDENV.SF 0x20776011
    META-INF/REDENV.RSA 0xf9dc2caa
    AndroidManifest.xml 0xca1e2c9a
    assets/daemon 0x1af562b8
    res/anim/abc_fade_in.xml 0x2f94166b
    res/anim/abc_fade_out.xml 0x396f7a13
    res/anim/abc_slide_in_bottom.xml 0x73663fbe
    res/anim/abc_slide_in_top.xml 0x41f8f3af
    res/anim/abc_slide_out_bottom.xml 0x51b9c50a
    res/anim/abc_slide_out_top.xml 0x4f613364
    res/color/abc_background_cache_hint_selector_material_dark.xml 0xbebdeab3
    res/color/abc_background_cache_hint_selector_material_light.xml 0xe4a65aee
    res/color/abc_primary_text_disable_only_material_dark.xml 0x78906468
    res/color/abc_primary_text_disable_only_material_light.xml 0xeb8f1b12
    res/color/abc_primary_text_material_dark.xml 0xced71770
    res/color/abc_primary_text_material_light.xml 0x3f1edb8f
    res/color/abc_search_url_text.xml 0xef922f8
    res/color/abc_secondary_text_material_dark.xml 0x24dccfa8
    res/color/abc_secondary_text_material_light.xml 0x1e15865c
    res/drawable-hdpi-v4/abc_ab_share_pack_holo_dark.9.png 0xc8f9e38b
    res/drawable-hdpi-v4/abc_ab_share_pack_holo_light.9.png 0x11e6af30
    res/drawable-hdpi-v4/abc_btn_check_to_on_mtrl_000.png 0xd03742f2
    res/drawable-hdpi-v4/abc_btn_check_to_on_mtrl_015.png 0xd2d6badf
    res/drawable-hdpi-v4/abc_btn_radio_to_on_mtrl_000.png 0xff76aca0
    res/drawable-hdpi-v4/abc_btn_radio_to_on_mtrl_015.png 0x40073691
    res/drawable-hdpi-v4/abc_btn_switch_to_on_mtrl_00001.9.png 0xa8ea08e8
    res/drawable-hdpi-v4/abc_btn_switch_to_on_mtrl_00012.9.png 0xd86a40af
    res/drawable-hdpi-v4/abc_cab_background_top_mtrl_alpha.9.png 0x3df2f3
    res/drawable-hdpi-v4/abc_ic_ab_back_mtrl_am_alpha.png 0x12e781b
    res/drawable-hdpi-v4/abc_ic_clear_mtrl_alpha.png 0xe5d3821a
    res/drawable-hdpi-v4/abc_ic_commit_search_api_mtrl_alpha.png 0x29b0319a
    res/drawable-hdpi-v4/abc_ic_go_search_api_mtrl_alpha.png 0x50e4f199
    res/drawable-hdpi-v4/abc_ic_menu_copy_mtrl_am_alpha.png 0xc3e37254
    res/drawable-hdpi-v4/abc_ic_menu_cut_mtrl_alpha.png 0xdadcfc6b
    res/drawable-hdpi-v4/abc_ic_menu_moreoverflow_mtrl_alpha.png 0xb8ef5307
    res/drawable-hdpi-v4/abc_ic_menu_paste_mtrl_am_alpha.png 0xb00ec44b
    res/drawable-hdpi-v4/abc_ic_menu_selectall_mtrl_alpha.png 0xbbf49cde
    res/drawable-hdpi-v4/abc_ic_menu_share_mtrl_alpha.png 0x424df025
    res/drawable-hdpi-v4/abc_ic_search_api_mtrl_alpha.png 0x1a4117f3
    res/drawable-hdpi-v4/abc_ic_voice_search_api_mtrl_alpha.png 0xdfd550e6
    res/drawable-hdpi-v4/abc_list_divider_mtrl_alpha.9.png 0x72ff0f68
    res/drawable-hdpi-v4/abc_list_focused_holo.9.png 0x8e4da209
    res/drawable-hdpi-v4/abc_list_longpressed_holo.9.png 0x81b12fde
    res/drawable-hdpi-v4/abc_list_pressed_holo_dark.9.png 0x62993bc8
    res/drawable-hdpi-v4/abc_list_pressed_holo_light.9.png 0x7c69f413
    res/drawable-hdpi-v4/abc_list_selector_disabled_holo_dark.9.png 0xe50f1648
    res/drawable-hdpi-v4/abc_list_selector_disabled_holo_light.9.png 0x43f655e6
    res/drawable-hdpi-v4/abc_menu_hardkey_panel_mtrl_mult.9.png 0xd545942a
    res/drawable-hdpi-v4/abc_popup_background_mtrl_mult.9.png 0xda0d75a8
    res/drawable-hdpi-v4/abc_spinner_mtrl_am_alpha.9.png 0x794a6a7
    res/drawable-hdpi-v4/abc_switch_track_mtrl_alpha.9.png 0xc3a621e0
    res/drawable-hdpi-v4/abc_tab_indicator_mtrl_alpha.9.png 0x6c11debe
    res/drawable-hdpi-v4/abc_textfield_activated_mtrl_alpha.9.png 0xd4c413c7
    res/drawable-hdpi-v4/abc_textfield_default_mtrl_alpha.9.png 0x4ad2d936
    res/drawable-hdpi-v4/abc_textfield_search_activated_mtrl_alpha.9.png 0x280969db
    res/drawable-hdpi-v4/abc_textfield_search_default_mtrl_alpha.9.png 0xee0f1fea
    res/drawable-ldrtl-hdpi-v17/abc_ic_ab_back_mtrl_am_alpha.png 0x649274a
    res/drawable-ldrtl-hdpi-v17/abc_ic_menu_copy_mtrl_am_alpha.png 0x1cab6e79
    res/drawable-ldrtl-hdpi-v17/abc_ic_menu_cut_mtrl_alpha.png 0x68855ee1
    res/drawable-ldrtl-hdpi-v17/abc_spinner_mtrl_am_alpha.9.png 0xa596c3d0
    res/drawable-ldrtl-mdpi-v17/abc_ic_ab_back_mtrl_am_alpha.png 0x3dd2af1
    res/drawable-ldrtl-mdpi-v17/abc_ic_menu_copy_mtrl_am_alpha.png 0x9dd80c40
    res/drawable-ldrtl-mdpi-v17/abc_ic_menu_cut_mtrl_alpha.png 0x5df414eb
    res/drawable-ldrtl-mdpi-v17/abc_spinner_mtrl_am_alpha.9.png 0xb1c14ea7
    res/drawable-ldrtl-xhdpi-v17/abc_ic_ab_back_mtrl_am_alpha.png 0x3d5fe422
    res/drawable-ldrtl-xhdpi-v17/abc_ic_menu_copy_mtrl_am_alpha.png 0xbba16689
    res/drawable-ldrtl-xhdpi-v17/abc_ic_menu_cut_mtrl_alpha.png 0x8cf6bf4c
    res/drawable-ldrtl-xhdpi-v17/abc_spinner_mtrl_am_alpha.9.png 0x64a842b9
    res/drawable-ldrtl-xxhdpi-v17/abc_ic_ab_back_mtrl_am_alpha.png 0xa41983f1
    res/drawable-ldrtl-xxhdpi-v17/abc_ic_menu_copy_mtrl_am_alpha.png 0x1d5aea2b
    res/drawable-ldrtl-xxhdpi-v17/abc_ic_menu_cut_mtrl_alpha.png 0xed023aa
    res/drawable-ldrtl-xxhdpi-v17/abc_spinner_mtrl_am_alpha.9.png 0x48f4c207
    res/drawable-ldrtl-xxxhdpi-v17/abc_ic_ab_back_mtrl_am_alpha.png 0x3b12c1e6
    res/drawable-ldrtl-xxxhdpi-v17/abc_ic_menu_copy_mtrl_am_alpha.png 0x9917cc6e
    res/drawable-ldrtl-xxxhdpi-v17/abc_ic_menu_cut_mtrl_alpha.png 0x5dc1bc5e
    res/drawable-ldrtl-xxxhdpi-v17/abc_spinner_mtrl_am_alpha.9.png 0x2ff6ecc
    res/drawable-mdpi-v4/abc_ab_share_pack_holo_dark.9.png 0x7636e4e2
    res/drawable-mdpi-v4/abc_ab_share_pack_holo_light.9.png 0x8755aa70
    res/drawable-mdpi-v4/abc_btn_check_to_on_mtrl_000.png 0xd152fae1
    res/drawable-mdpi-v4/abc_btn_check_to_on_mtrl_015.png 0xa32a8346
    res/drawable-mdpi-v4/abc_btn_radio_to_on_mtrl_000.png 0x9394b434
    res/drawable-mdpi-v4/abc_btn_radio_to_on_mtrl_015.png 0x1bcdcb4b
    res/drawable-mdpi-v4/abc_btn_switch_to_on_mtrl_00001.9.png 0xe8a926bc
    res/drawable-mdpi-v4/abc_btn_switch_to_on_mtrl_00012.9.png 0xcd774af1
    res/drawable-mdpi-v4/abc_cab_background_top_mtrl_alpha.9.png 0xb6857dd0
    res/drawable-mdpi-v4/abc_ic_ab_back_mtrl_am_alpha.png 0x139df14f
    res/drawable-mdpi-v4/abc_ic_clear_mtrl_alpha.png 0xc91c4b1f
    res/drawable-mdpi-v4/abc_ic_commit_search_api_mtrl_alpha.png 0xc890fc5c
    res/drawable-mdpi-v4/abc_ic_go_search_api_mtrl_alpha.png 0xef213bb9
    res/drawable-mdpi-v4/abc_ic_menu_copy_mtrl_am_alpha.png 0xf441f369
    res/drawable-mdpi-v4/abc_ic_menu_cut_mtrl_alpha.png 0x32e7d88e
    res/drawable-mdpi-v4/abc_ic_menu_moreoverflow_mtrl_alpha.png 0x462e916e
    res/drawable-mdpi-v4/abc_ic_menu_paste_mtrl_am_alpha.png 0xda4f722
    res/drawable-mdpi-v4/abc_ic_menu_selectall_mtrl_alpha.png 0x38b59203
    res/drawable-mdpi-v4/abc_ic_menu_share_mtrl_alpha.png 0x41f4ffb2
    res/drawable-mdpi-v4/abc_ic_search_api_mtrl_alpha.png 0xe10a04c9
    res/drawable-mdpi-v4/abc_ic_voice_search_api_mtrl_alpha.png 0x3166a648
    res/drawable-mdpi-v4/abc_list_divider_mtrl_alpha.9.png 0x72ff0f68
    res/drawable-mdpi-v4/abc_list_focused_holo.9.png 0xb1ab9d03
    res/drawable-mdpi-v4/abc_list_longpressed_holo.9.png 0x78c37895
    res/drawable-mdpi-v4/abc_list_pressed_holo_dark.9.png 0x686b7a66
    res/drawable-mdpi-v4/abc_list_pressed_holo_light.9.png 0x32efca3
    res/drawable-mdpi-v4/abc_list_selector_disabled_holo_dark.9.png 0x551f7c98
    res/drawable-mdpi-v4/abc_list_selector_disabled_holo_light.9.png 0xd6426851
    res/drawable-mdpi-v4/abc_menu_hardkey_panel_mtrl_mult.9.png 0x54345552
    res/drawable-mdpi-v4/abc_popup_background_mtrl_mult.9.png 0x3c2b73c5
    res/drawable-mdpi-v4/abc_spinner_mtrl_am_alpha.9.png 0xcc2f6eda
    res/drawable-mdpi-v4/abc_switch_track_mtrl_alpha.9.png 0x9517f5a8
    res/drawable-mdpi-v4/abc_tab_indicator_mtrl_alpha.9.png 0xb58b040f
    res/drawable-mdpi-v4/abc_textfield_activated_mtrl_alpha.9.png 0x6f3d3312
    res/drawable-mdpi-v4/abc_textfield_default_mtrl_alpha.9.png 0xbca1ab83
    res/drawable-mdpi-v4/abc_textfield_search_activated_mtrl_alpha.9.png 0xfb4249d4
    res/drawable-mdpi-v4/abc_textfield_search_default_mtrl_alpha.9.png 0x19a0052e
    res/drawable-v21/abc_cab_background_top_material.xml 0x5fe216c8
    res/drawable-xhdpi-v4/abc_ab_share_pack_holo_dark.9.png 0xf876048d
    res/drawable-xhdpi-v4/abc_ab_share_pack_holo_light.9.png 0x670b77f9
    res/drawable-xhdpi-v4/abc_btn_check_to_on_mtrl_000.png 0xcfba78ba
    res/drawable-xhdpi-v4/abc_btn_check_to_on_mtrl_015.png 0x726c24c9
    res/drawable-xhdpi-v4/abc_btn_radio_to_on_mtrl_000.png 0xe6c8339c
    res/drawable-xhdpi-v4/abc_btn_radio_to_on_mtrl_015.png 0x2c324db4
    res/drawable-xhdpi-v4/abc_btn_switch_to_on_mtrl_00001.9.png 0x1b3b3347
    res/drawable-xhdpi-v4/abc_btn_switch_to_on_mtrl_00012.9.png 0xd2cf9d2d
    res/drawable-xhdpi-v4/abc_cab_background_top_mtrl_alpha.9.png 0xf70ddcc0
    res/drawable-xhdpi-v4/abc_ic_ab_back_mtrl_am_alpha.png 0xb0c9bc5
    res/drawable-xhdpi-v4/abc_ic_clear_mtrl_alpha.png 0x32c3e102
    res/drawable-xhdpi-v4/abc_ic_commit_search_api_mtrl_alpha.png 0xa633729c
    res/drawable-xhdpi-v4/abc_ic_go_search_api_mtrl_alpha.png 0x93ca28c3
    res/drawable-xhdpi-v4/abc_ic_menu_copy_mtrl_am_alpha.png 0x533b142e
    res/drawable-xhdpi-v4/abc_ic_menu_cut_mtrl_alpha.png 0xae52a132
    res/drawable-xhdpi-v4/abc_ic_menu_moreoverflow_mtrl_alpha.png 0xe871f885
    res/drawable-xhdpi-v4/abc_ic_menu_paste_mtrl_am_alpha.png 0xe8d92779
    res/drawable-xhdpi-v4/abc_ic_menu_selectall_mtrl_alpha.png 0xb1440f00
    res/drawable-xhdpi-v4/abc_ic_menu_share_mtrl_alpha.png 0xb8c1d645
    res/drawable-xhdpi-v4/abc_ic_search_api_mtrl_alpha.png 0xf748a486
    res/drawable-xhdpi-v4/abc_ic_voice_search_api_mtrl_alpha.png 0x86fc4299
    res/drawable-xhdpi-v4/abc_list_divider_mtrl_alpha.9.png 0x72ff0f68
    res/drawable-xhdpi-v4/abc_list_focused_holo.9.png 0xbde23956
    res/drawable-xhdpi-v4/abc_list_longpressed_holo.9.png 0x84a788a6
    res/drawable-xhdpi-v4/abc_list_pressed_holo_dark.9.png 0x98f7c81a
    res/drawable-xhdpi-v4/abc_list_pressed_holo_light.9.png 0x5314692b
    res/drawable-xhdpi-v4/abc_list_selector_disabled_holo_dark.9.png 0x41748705
    res/drawable-xhdpi-v4/abc_list_selector_disabled_holo_light.9.png 0x1c2ff2be
    res/drawable-xhdpi-v4/abc_menu_hardkey_panel_mtrl_mult.9.png 0xc889872d
    res/drawable-xhdpi-v4/abc_popup_background_mtrl_mult.9.png 0x5343eaf
    res/drawable-xhdpi-v4/abc_spinner_mtrl_am_alpha.9.png 0x7d5ac7b2
    res/drawable-xhdpi-v4/abc_switch_track_mtrl_alpha.9.png 0x48d4fcce
    res/drawable-xhdpi-v4/abc_tab_indicator_mtrl_alpha.9.png 0x361544c6
    res/drawable-xhdpi-v4/abc_textfield_activated_mtrl_alpha.9.png 0x679b414f
    res/drawable-xhdpi-v4/abc_textfield_default_mtrl_alpha.9.png 0xdd92a059
    res/drawable-xhdpi-v4/abc_textfield_search_activated_mtrl_alpha.9.png 0xeaa0434b
    res/drawable-xhdpi-v4/abc_textfield_search_default_mtrl_alpha.9.png 0x4cfa2def
    res/drawable-xxhdpi-v4/abc_ab_share_pack_holo_dark.9.png 0x7f5ca225
    res/drawable-xxhdpi-v4/abc_ab_share_pack_holo_light.9.png 0x27b44e63
    res/drawable-xxhdpi-v4/abc_btn_check_to_on_mtrl_000.png 0xa8af72f3
    res/drawable-xxhdpi-v4/abc_btn_check_to_on_mtrl_015.png 0x47977e9
    res/drawable-xxhdpi-v4/abc_btn_radio_to_on_mtrl_000.png 0xcfc747f2
    res/drawable-xxhdpi-v4/abc_btn_radio_to_on_mtrl_015.png 0xdbaceef4
    res/drawable-xxhdpi-v4/abc_btn_switch_to_on_mtrl_00001.9.png 0x83b2cf26
    res/drawable-xxhdpi-v4/abc_btn_switch_to_on_mtrl_00012.9.png 0xc4a02862
    res/drawable-xxhdpi-v4/abc_cab_background_top_mtrl_alpha.9.png 0x7cd87445
    res/drawable-xxhdpi-v4/abc_ic_ab_back_mtrl_am_alpha.png 0xe6a7081f
    res/drawable-xxhdpi-v4/abc_ic_clear_mtrl_alpha.png 0xd5ad0324
    res/drawable-xxhdpi-v4/abc_ic_commit_search_api_mtrl_alpha.png 0x25b5619d
    res/drawable-xxhdpi-v4/abc_ic_go_search_api_mtrl_alpha.png 0x978987bf
    res/drawable-xxhdpi-v4/abc_ic_menu_copy_mtrl_am_alpha.png 0x49d49756
    res/drawable-xxhdpi-v4/abc_ic_menu_cut_mtrl_alpha.png 0x185907e3
    res/drawable-xxhdpi-v4/abc_ic_menu_moreoverflow_mtrl_alpha.png 0xa2a2dc9c
    res/drawable-xxhdpi-v4/abc_ic_menu_paste_mtrl_am_alpha.png 0xde8d92d0
    res/drawable-xxhdpi-v4/abc_ic_menu_selectall_mtrl_alpha.png 0x69be88b4
    res/drawable-xxhdpi-v4/abc_ic_menu_share_mtrl_alpha.png 0x7cea469e
    res/drawable-xxhdpi-v4/abc_ic_search_api_mtrl_alpha.png 0xc94a51b0
    res/drawable-xxhdpi-v4/abc_ic_voice_search_api_mtrl_alpha.png 0xfedf00ca
    res/drawable-xxhdpi-v4/abc_list_divider_mtrl_alpha.9.png 0x2d5a2100
    res/drawable-xxhdpi-v4/abc_list_focused_holo.9.png 0x19c09c27
    res/drawable-xxhdpi-v4/abc_list_longpressed_holo.9.png 0x236b6e98
    res/drawable-xxhdpi-v4/abc_list_pressed_holo_dark.9.png 0x823780d0
    res/drawable-xxhdpi-v4/abc_list_pressed_holo_light.9.png 0x813ae23c
    res/drawable-xxhdpi-v4/abc_list_selector_disabled_holo_dark.9.png 0xdddaae2e
    res/drawable-xxhdpi-v4/abc_list_selector_disabled_holo_light.9.png 0x1ff1856f
    res/drawable-xxhdpi-v4/abc_menu_hardkey_panel_mtrl_mult.9.png 0xf530669f
    res/drawable-xxhdpi-v4/abc_popup_background_mtrl_mult.9.png 0x478db1d1
    res/drawable-xxhdpi-v4/abc_spinner_mtrl_am_alpha.9.png 0xcf6b8a3c
    res/drawable-xxhdpi-v4/abc_switch_track_mtrl_alpha.9.png 0x8f09b28c
    res/drawable-xxhdpi-v4/abc_tab_indicator_mtrl_alpha.9.png 0x2ebcb002
    res/drawable-xxhdpi-v4/abc_textfield_activated_mtrl_alpha.9.png 0xb1a48ddb
    res/drawable-xxhdpi-v4/abc_textfield_default_mtrl_alpha.9.png 0x7a521950
    res/drawable-xxhdpi-v4/abc_textfield_search_activated_mtrl_alpha.9.png 0x77c42d34
    res/drawable-xxhdpi-v4/abc_textfield_search_default_mtrl_alpha.9.png 0x9e0d73d
    res/drawable-xxxhdpi-v4/abc_btn_check_to_on_mtrl_000.png 0x23bc6175
    res/drawable-xxxhdpi-v4/abc_btn_check_to_on_mtrl_015.png 0x2ea066c3
    res/drawable-xxxhdpi-v4/abc_btn_radio_to_on_mtrl_000.png 0xed039207
    res/drawable-xxxhdpi-v4/abc_btn_radio_to_on_mtrl_015.png 0x590aeae3
    res/drawable-xxxhdpi-v4/abc_btn_switch_to_on_mtrl_00001.9.png 0x526e70a4
    res/drawable-xxxhdpi-v4/abc_btn_switch_to_on_mtrl_00012.9.png 0xf4cf7694
    res/drawable-xxxhdpi-v4/abc_ic_ab_back_mtrl_am_alpha.png 0xe35af066
    res/drawable-xxxhdpi-v4/abc_ic_clear_mtrl_alpha.png 0x53dc259e
    res/drawable-xxxhdpi-v4/abc_ic_menu_copy_mtrl_am_alpha.png 0x39d6d931
    res/drawable-xxxhdpi-v4/abc_ic_menu_cut_mtrl_alpha.png 0xc9f78467
    res/drawable-xxxhdpi-v4/abc_ic_menu_moreoverflow_mtrl_alpha.png 0xb7cc364f
    res/drawable-xxxhdpi-v4/abc_ic_menu_paste_mtrl_am_alpha.png 0xa9f4da32
    res/drawable-xxxhdpi-v4/abc_ic_menu_selectall_mtrl_alpha.png 0x529b0aa2
    res/drawable-xxxhdpi-v4/abc_ic_search_api_mtrl_alpha.png 0xfe786fa7
    res/drawable-xxxhdpi-v4/abc_ic_voice_search_api_mtrl_alpha.png 0x1022e769
    res/drawable-xxxhdpi-v4/abc_spinner_mtrl_am_alpha.9.png 0xe0b0765
    res/drawable-xxxhdpi-v4/abc_switch_track_mtrl_alpha.9.png 0x61eb59ce
    res/drawable-xxxhdpi-v4/abc_tab_indicator_mtrl_alpha.9.png 0x7a59660c
    res/drawable/abc_btn_check_material.xml 0xe285d876
    res/drawable/abc_btn_radio_material.xml 0x1fb8f5bf
    res/drawable/abc_cab_background_internal_bg.xml 0x9c5b1555
    res/drawable/abc_cab_background_top_material.xml 0x14069a82
    res/drawable/abc_edit_text_material.xml 0x5ae1e9c4
    res/drawable/abc_item_background_holo_dark.xml 0xf70e71a0
    res/drawable/abc_item_background_holo_light.xml 0x1aba361f
    res/drawable/abc_list_selector_background_transition_holo_dark.xml 0xdf41e69a
    res/drawable/abc_list_selector_background_transition_holo_light.xml 0x74c8d965
    res/drawable/abc_list_selector_holo_dark.xml 0x619b0a23
    res/drawable/abc_list_selector_holo_light.xml 0x15ae17ad
    res/drawable/abc_switch_thumb_material.xml 0x80c41477
    res/drawable/abc_tab_indicator_material.xml 0xf037c160
    res/drawable/abc_textfield_search_material.xml 0x531218f
    res/drawable/help_relayout_style.xml 0x8c5fdcd3
    res/drawable/help_setbt_green_style.xml 0xc6f924e4
    res/drawable/help_setbt_style.xml 0x9f2cdd7a
    res/layout-v11/abc_screen_content_include.xml 0x539e62c1
    res/layout-v21/abc_screen_toolbar.xml 0x7a18627
    res/layout/abc_action_bar_title_item.xml 0x8b061435
    res/layout/abc_action_bar_up_container.xml 0x4d2cfd5e
    res/layout/abc_action_bar_view_list_nav_layout.xml 0xefb0f6e2
    res/layout/abc_action_menu_item_layout.xml 0xbed8eb2e
    res/layout/abc_action_menu_layout.xml 0xd4285a8a
    res/layout/abc_action_mode_bar.xml 0x86ac2972
    res/layout/abc_action_mode_close_item_material.xml 0x2cabf49
    res/layout/abc_activity_chooser_view.xml 0xe9f6cc4c
    res/layout/abc_activity_chooser_view_include.xml 0xe12eeb2f
    res/layout/abc_activity_chooser_view_list_item.xml 0x7abe8353
    res/layout/abc_expanded_menu_layout.xml 0x35dbeb74
    res/layout/abc_list_menu_item_checkbox.xml 0x401757ea
    res/layout/abc_list_menu_item_icon.xml 0x5cddc185
    res/layout/abc_list_menu_item_layout.xml 0x5935c475
    res/layout/abc_list_menu_item_radio.xml 0x23c57b81
    res/layout/abc_popup_menu_item_layout.xml 0xeb431273
    res/layout/abc_screen_content_include.xml 0x1e8268df
    res/layout/abc_screen_simple.xml 0xba4d6ac8
    res/layout/abc_screen_simple_overlay_action_mode.xml 0xae92284
    res/layout/abc_screen_toolbar.xml 0xf332635f
    res/layout/abc_search_dropdown_item_icons_2line.xml 0xa512e48e
    res/layout/abc_search_view.xml 0x17e8e07c
    res/layout/abc_simple_dropdown_hint.xml 0xa35203a5
    res/layout/activity_main.xml 0x84b56d43
    res/layout/help_activity_view.xml 0xc24085a6
    res/layout/main_activity_view.xml 0x3edd9e9d
    res/layout/splash_activity_view.xml 0xf02543f2
    res/layout/support_simple_spinner_dropdown_item.xml 0xffb1c430
    res/menu/menu_main.xml 0xe3c2b866
    res/mipmap-hdpi-v4/bg.png 0xaef97402
    res/mipmap-hdpi-v4/go_down.png 0x694678
    res/mipmap-hdpi-v4/go_right.png 0x7b10fed9
    res/mipmap-hdpi-v4/help.png 0x295d39a1
    res/mipmap-hdpi-v4/ic_launcher.png 0xa9c15a48
    res/mipmap-hdpi-v4/img_set_accessibility.png 0xc8633306
    res/mipmap-hdpi-v4/love.png 0x136fd71
    res/mipmap-hdpi-v4/share.png 0xc2d47b75
    res/mipmap-hdpi-v4/sound_off.png 0x8ff26c99
    res/mipmap-hdpi-v4/sound_on.png 0xdc2d6ec8
    res/mipmap-hdpi-v4/splashbg.9.png 0xf169c69c
    res/mipmap-hdpi-v4/start.png 0xcca2f29
    res/mipmap-hdpi-v4/stop.png 0x456f986c
    res/mipmap-hdpi-v4/tip0.png 0xc8633306
    res/mipmap-hdpi-v4/tip1.png 0xcc60ac70
    res/mipmap-hdpi-v4/tip2.png 0xa358485
    res/mipmap-hdpi-v4/tip4.png 0xcc82d657
    res/mipmap-mdpi-v4/ic_launcher.png 0xc17e529f
    res/mipmap-xhdpi-v4/ic_launcher.png 0xf8161572
    res/mipmap-xxhdpi-v4/ic_launcher.png 0x7471ec28
    res/raw/ringtone.amr 0x1627d758
    res/xml/accessibility_service_config.xml 0x2ec04260
    resources.arsc 0xa3ea9d17
    classes.dex 0x4ded06b9
    org/apache/http/entity/mime/version.properties 0x53e10a06
    com/tencent/mm/sdk/platformtools/rep5402863540997075488.tmp 0x0
    assets/com.tencent.open.config.json 0xb3d4a81a
    assets/libwbsafeedit 0xb05a63a9
    com/qq/jce/wup/wup.properties 0x5dae5c2
    src/com/qq/jce/wup/wup.properties 0x5dae5c2
    lib/armeabi/libtpnsSecurity.so 0x433b775f
    lib/armeabi/libtpnsWatchdog.so 0x7657fd5
    lib/armeabi-v7a/libtpnsSecurity.so 0x9a09c16
    lib/armeabi-v7a/libtpnsWatchdog.so 0x7bdce98f
    apkprotect.com/ 0x0
    apkprotect.com/key.dat 0x66c3a433
    apkprotect.com/readme.txt 0x4eec3826
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号