VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
File Name :fqrouter2.11.5.apk (File not down)
File Size :9063193 byte
File Type :application/jar
MD5:c4a22435b4e78d81d568b95482b675fb
SHA1:5cfe6e6bcd0556f6ece77fc19979c21be5bf25f8
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/38)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2014-07-08 11:18:54 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    ahnlab 9.9.9 9.9.9 2013-05-28 Found nothing 4
    antivir 1.9.2.0 1.9.159.0 7.11.158.200 Found nothing 33
    antiy 114951 AVL140706 2014-07-07 Found nothing 8
    arcavir 1.0 2011 2014-05-30 Found nothing 12
    asquared 9.0.0.4157 9.0.0.4157 2014-07-03 Found nothing 8
    avast 140707-0 4.7.4 2014-07-07 Found nothing 32
    avg 2109/7210 10.0.1405 2014-06-20 Found nothing 8
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 4
    baidusd 1.0 1.0 2014-04-02 Found nothing 1
    bitdefender 7.55758 7.90123 2014-07-07 Found nothing 14
    clamav 19164 0.97.5 2014-07-06 Found nothing 5
    comodo 15023 5.1 2014-07-07 Found nothing 3
    ctch 4.6.5 5.3.14 2013-12-01 Found nothing 1
    drweb 5.0.2.3300 5.0.1.1 2014-07-06 Found nothing 58
    fortinet 22.419 5.1.153 2014-07-06 Found nothing 5
    fprot 4.6.2.117 6.5.1.5418 2014-07-07 Found nothing 16
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 53
    gdata 24.3064 24.3064 2014-07-07 Found nothing 18
    hauri 2.73 2.73 2014-07-07 Found nothing 1
    ikarus 1.06.01 V1.32.31.0 2014-07-07 Found nothing 50
    jiangmin 16.0.100 1.0.0.0 2014-07-05 Found nothing 43
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 21
    kingsoft 2.1 2.1 2013-09-22 Found nothing 7
    mcafee 7474 5400.1158 2014-06-19 Found nothing 18
    nod32 9809 3.0.21 2014-05-16 Found nothing 36
    panda 9.05.01 9.05.01 2014-07-07 Found nothing 7
    pcc 10.908.07 9.500-1005 2014-07-07 Found nothing 13
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 15
    quickheal 14.00 14.00 2014-07-07 Found nothing 6
    rising 25.21.02.04 25.21.02.04 2014-07-02 Found nothing 14
    sophos 5.02 3.51.0 2014-06-20 Found nothing 15
    sunbelt 3.9.2592.2 3.9.2592.2 2014-07-05 Found nothing 14
    symantec 20030814.017 1.3.0.24 2003-08-14 Found nothing 4
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 17
    thehacker 6.8.0.5 6.8.0.5 2014-07-04 Found nothing 11
    tws 17.47.17308 1.0.2.2108 2014-07-07 Found nothing 21
    vba 3.12.26.3 3.12.26.3 2014-07-07 Found nothing 9
    virusbuster 15.0.840.0 5.5.2.13 2014-07-07 Found nothing 19
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
  • 权限列表
    许可名称信息
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.UPDATE_DEVICE_STATS更新设备状态
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.INTERACT_ACROSS_USERS
    android.permission.ACCESS_SUPERUSER
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.WRITE_OWNER_DATA
    android.permission.READ_OWNER_DATA
    android.permission.READ_LOGS读取系统日志
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
  • 文件信息
    安全评分 :84
    基本信息
    MD5:c4a22435b4e78d81d568b95482b675fb
    包名:fq.router2
    最低运行环境:Android 2.3, 2.3.1, 2.3.2
    版权:fqrouter
    关键行为
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\Documents and Settings\Administrator\IETldCache
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,Afx:400000:8:10011:1900015:0]
    文件行为
    行为描述:写权限映射文件
    详情信息:\WINDOWS\system32\zh-cn\ieframe.dll.mui
    Local\UrlZonesSM_Administrator
    Local\!PrivacIE!SharedMem!Counter
    \Documents and Settings\Administrator\IETldCache\index.datndex.dat_245760
    CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    行为描述:设置特殊文件夹属性
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
    C:\Documents and Settings\Administrator\Local Settings\History
    C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
    C:\Documents and Settings\Administrator\Cookies
    C:\Documents and Settings\Administrator\IETldCache
    行为描述:修改文件内容
    详情信息:C:\monitor\temp\vst_player.html---> Offset = 0
    C:\monitor\temp\vst_vlc.html---> Offset = 0
    C:\monitor\temp\vst_vj.html---> Offset = 0
    C:\monitor\temp\vst_letv.html---> Offset = 0
    C:\monitor\temp\vst_forcetv.html---> Offset = 0
    C:\monitor\temp\jw.swf---> Offset = 0
    C:\monitor\temp\jw_m3u8.swf---> Offset = 0
    C:\monitor\temp\jw_skin.zip---> Offset = 0
    C:\monitor\temp\vj.swf---> Offset = 0
    网络行为
    行为描述:连接指定站点
    详情信息:InternetConnectA: ServerName = live.91vst.com, PORT = 80
    InternetConnectA: ServerName = js.users.51.la, PORT = 80
    InternetConnectA: ServerName = update.91vst.com, PORT = 80
    行为描述:建立到一个指定的套接字连接
    详情信息:127.0.0.1:1040
    行为描述:读取网络文件
    详情信息:hFile = 0x000005b8, BytesToRead =512, BytesRead = 512.
    hFile = 0x000004d4, BytesToRead =512, BytesRead = 512.
    hFile = 0x000004b0, BytesToRead =512, BytesRead = 512.
    hFile = 0x00000460, BytesToRead =512, BytesRead = 512.
    hFile = 0x000004c0, BytesToRead =512, BytesRead = 512.
    hFile = 0x000003f4, BytesToRead =512, BytesRead = 512.
    hFile = 0x000003e8, BytesToRead =512, BytesRead = 512.
    hFile = 0x00000388, BytesToRead =512, BytesRead = 512.
    hFile = 0x00000358, BytesToRead =512, BytesRead = 512.
    hFile = 0x000003dc, BytesToRead =512, BytesRead = 512.
    行为描述:打开HTTP请求
    详情信息:HttpOpenRequestA: live.91vst.com:80/cmp/player.php?v=v2&by=qq243944493, hConnect = 0x000005b4
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x000004d8
    HttpOpenRequestA: js.users.51.la:80/1843570.js, hConnect = 0x000004c4
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x000004c0
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x00000434
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x000003f4
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x00000444
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x0000045c
    HttpOpenRequestA: js.users.51.la:80/1843570.js, hConnect = 0x0000039c
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x0000038c
    HttpOpenRequestA: update.91vst.com:80/62796e51cf6d76.json, hConnect = 0x00000380
    HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x00000354
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X\BaseClass
    \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
    \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows Script\Settings\JITDebug
    行为描述:删除注册表键值_IE连接设置
    详情信息:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
    \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
    其他行为
    行为描述:创建互斥体
    详情信息:Local\ZonesCounterMutex
    Local\ZoneAttributeCacheCounterMutex
    Local\ZonesCacheCounterMutex
    Local\ZonesLockedCacheCounterMutex
    Local\!PrivacIE!SharedMemory!Mutex
    Local\c:!documents and settings!administrator!ietldcache!
    RasPbFile
    CTF.LBES.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.Compart.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.Asm.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.Layouts.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.TMD.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
    CTF.TimListCache.FMPDefaultS-1-5-21-1482476501-1645522239-1417001333-500MUTEX.DefaultS-1-5-21-1482476501-1645522239-1417001333-500
    行为描述:窗口信息
    详情信息:Pid = 484, Hwnd=0xb01de, Text = VST直播V1.0.6, ClassName = WTWindow.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,Afx:400000:8:10011:1900015:0]
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [MS_AutodialMonitor,]
    NtUserFindWindowEx: [Class,Window] = [MS_WebCheckMonitor,]
    行为描述:获取系统权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    动态列表行为
    行为描述:访问网络
    详情信息:host:127.0.0.1 port:2515
    host:208.67.222.222 port:443
    host:208.67.222.222 port:53
    host:208.67.220.220 port:443
    host:208.67.220.220 port:53
    host:106.186.17.181 port:2053
    host:106.186.17.181 port:53
    host:113.20.6.2 port:443
    host:113.20.6.2 port:53
    host:199.91.73.222 port:3389
    host:199.91.73.222 port:53
    host:173.230.156.28 port:443
    host:173.230.156.28 port:53
    行为描述:传递附加信息
    详情信息:Ljava/lang/String;=appWidgetIds | [I=null
    Ljava/lang/String;=Action | Ljava/lang/String;=Start
    行为描述:调用哈希算法
    详情信息:MD5
    行为描述:读取文件
    详情信息:path:/proc/meminfo length:105
    path:/proc/783/cmdline length:105
    path:/proc/798/cmdline length:105
    path:/proc/810/cmdline length:105
    path:/proc/840/cmdline length:105
    path:/proc/851/cmdline length:105
    path:/proc/885/cmdline length:105
    path:/proc/889/cmdline length:105
    path:/data/data/fq.router2/var/started-at length:105
    path:/data/data/fq.router2/var/started-at length:105
    path:/proc/928/cmdline length:105
    path:/proc/930/cmdline length:105
    path:/proc/938/cmdline length:105
    path:/data/data/fq.router2/shared_prefs/fq.router2_preferences.xml length:105
    path:/proc/1052/cmdline length:105
    path:/proc/1054/cmdline length:105
    行为描述:发送网络数据
    详情信息:operation:send host:208.67.222.222 port:443 data:data:\prodandroidverfqroutercom
    operation:send host:208.67.220.220 port:443 data:data:f@prodandroidverfqroutercom
    operation:send host:106.186.17.181 port:2053 data:data:prodandroidverfqroutercom
    operation:send host:113.20.6.2 port:443 data:data:<prodandroidverfqroutercom
    operation:send host:199.91.73.222 port:3389 data:data:A prodandroidverfqroutercom
    operation:send host:173.230.156.28 port:443 data:data:hprodandroidverfqroutercom
    行为描述:输出数据流写入数据
    详情信息:Wed Apr 30 09:44:43 GMT 2014 INFO ver:
    Wed Apr 30 09:44:43 GMT 2014 INFO my public key:
    Wed Apr 30 09:44:43 GMT 2014 INFO
    Wed Apr 30 09:45:35 GMT 2014 INFO actual launch mode:
    Wed Apr 30 09:45:35 GMT 2014 INFO command: [killall, -0,
    Wed Apr 30 09:45:35 GMT 2014 INFO Kill existing manager
    Wed Apr 30 09:45:35 GMT 2014 INFO try to kill manager process before
    Wed Apr 30 09:45:35 GMT 2014 INFO killall
    Wed Apr 30 09:45:35 GMT 2014 INFO command: [killall,
    Wed Apr 30 09:45:36 GMT 2014 ERROR failed to kill manager process before launch\r\njava.lang.NullPointerException\n at
    Wed Apr 30 09:45:36 GMT 2014 INFO Deploying
    Wed Apr 30 09:45:36 GMT 2014 INFO copying busybox to data
    Wed Apr 30 09:45:39 GMT 2014 INFO sudo: [echo,
    Wed Apr 30 09:45:40 GMT 2014 INFO rooted:
    Wed Apr 30 09:45:43 GMT 2014 ERROR failed to download\r\njava.net.MalformedURLException\n at
    Wed Apr 30 09:45:44 GMT 2014 ERROR started at 1398851135453, current is
    Wed Apr 30 09:45:44 GMT 2014 INFO Exiting, session life
    Wed Apr 30 09:45:44 GMT 2014 INFO killall
    Wed Apr 30 09:45:44 GMT 2014 INFO command: [/data/data/fq.router2/busybox,
    Wed Apr 30 09:45:44 GMT 2014 ERROR failed to kill manager process\r\njava.lang.NullPointerException\n at
    Wed Apr 30 09:45:47 GMT 2014 ERROR failed to check dns pollution\r\njava.net.ConnectException: failed to connect to /127.0.0.1 (port
    Wed Apr 30 09:45:48 GMT 2014 INFO acquired wifi
    Wed Apr 30 09:45:49 GMT 2014 INFO released wifi
    Wed Apr 30 09:45:50 GMT 2014 INFO checking
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /208.67.222.222:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /208.67.222.222 (port
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /208.67.220.220:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /208.67.220.220 (port
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /106.186.17.181:2053\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /106.186.17.181 (port
    Wed Apr 30 09:45:51 GMT 2014 INFO wifi repeater service:
    Wed Apr 30 09:45:51 GMT 2014 INFO sudo: [/data/data/fq.router2/python/bin/python /data/data/fq.router2/manager/main.pyc stop-wifi-repeater > /data/data/fq.router2/log/current-python.log
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to toggle wifi repeater\r\njava.lang.NullPointerException\n at
    Wed Apr 30 09:45:51 GMT 2014 INFO wifi repeater service ended with:
    Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /113.20.6.2:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
    Wed Apr 30 09:45:54 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /113.20.6.2 (port
    /data/data/fq.router2/python/bin/python /data/data/fq.router2/manager/main.pyc stop-wifi-repeater > /data/data/fq.router2/log/current-python.log
    Wed Apr 30 09:45:55 GMT 2014 ERROR failed to resolve txt over udp at /199.91.73.222:3389\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
    Wed Apr 30 09:45:55 GMT 2014 ERROR failed to start wifi repeater\r\njava.io.IOException: write failed: EPIPE (Broken
    Wed Apr 30 09:45:55 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /199.91.73.222 (port
    Wed Apr 30 09:45:55 GMT 2014 INFO on destroy
    Wed Apr 30 09:45:56 GMT 2014 ERROR failed to resolve txt over udp at /173.230.156.28:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
    Wed Apr 30 09:45:56 GMT 2014 ERROR wifi lock is
    Wed Apr 30 09:45:56 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /173.230.156.28 (port
    Wed Apr 30 09:45:57 GMT 2014 ERROR check updates failed\r\njava.lang.ArrayIndexOutOfBoundsException: length=1; index=1\n at
    Wed Apr 30 09:45:59 GMT 2014 INFO Exiting, session life
    Wed Apr 30 09:45:59 GMT 2014 INFO killall
    Wed Apr 30 09:45:59 GMT 2014 INFO sudo: [/data/data/fq.router2/busybox, killall,
    Wed Apr 30 09:45:59 GMT 2014 ERROR failed to kill manager process\r\njava.io.IOException: write failed: EPIPE (Broken
    行为描述:类加载
    详情信息:path:/system/app/PicoTts.apk
    path:/system/app/MusicFX.apk
    path:/system/framework/am.jar
    path:/data/app/fq.router2-1.apk
    行为描述:缓冲区读取一行数据
    详情信息:1398851135453
    null
    行为描述:启动服务
    详情信息:com.android.musicfx.Compatibility$Service
    com.android.mms.transaction.SmsReceiverService
    fq.router2.wifi_repeater.ReleaseWifiLockService
    fq.router2.life_cycle.ExitService
    行为描述:写入文件
    详情信息:path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
    path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
    path:/data/data/fq.router2/log/current-java.log length:52
    path:/data/data/fq.router2/shared_prefs/fq.router2_preferences.xml length:105
    path:/data/data/fq.router2/shared_prefs/_has_set_default_values.xml length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:52
    path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
    path:/data/data/fq.router2/log/current-java.log length:65
    path:/data/data/fq.router2/log/current-java.log length:71
    path:/data/data/fq.router2/var/started-at length:18
    path:/data/data/fq.router2/log/current-java.log length:70
    path:/data/data/fq.router2/log/current-java.log length:82
    path:/data/data/fq.router2/log/current-java.log length:55
    path:/data/data/fq.router2/log/current-java.log length:67
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:58
    path:/data/data/fq.router2/log/current-java.log length:74
    path:/data/data/fq.router2/log/current-java.log length:60
    path:pipe:[3642] length:22
    path:/data/data/fq.router2/log/current-java.log length:54
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:92
    path:/data/data/fq.router2/log/current-java.log length:70
    path:/data/data/fq.router2/log/current-java.log length:55
    path:/data/data/fq.router2/log/current-java.log length:85
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:59
    path:/data/data/fq.router2/log/current-java.log length:59
    path:/data/data/fq.router2/log/current-java.log length:59
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:68
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:81
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:pipe:[3865] length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:55
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:59
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:105
    path:/data/data/fq.router2/log/current-java.log length:67
    path:/data/data/fq.router2/log/current-java.log length:55
    path:/data/data/fq.router2/log/current-java.log length:95
    path:pipe:[3975] length:56
    path:/data/data/fq.router2/log/current-java.log length:105
    行为描述:访问URL
    详情信息:libcore.net.http.HttpURLConnectionImpl:http://127.0.0.1:2515/dns-polluted-at
    行为描述:初始化Intent
    详情信息:Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.MainActivity
    Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.life_cycle.ExitService
    Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.feedback.DownloadService
    Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.wifi_repeater.AcquireWifiLockService
    Landroid/content/Context;=android.app.Application@4153c008 | Ljava/lang/Class;=class fq.router2.wifi_repeater.WifiRepeaterService
    Landroid/content/Context;=fq.router2.SocksVpnService@4156f260 | Ljava/lang/Class;=class fq.router2.MainActivity
    Landroid/content/Context;=fq.router2.wifi_repeater.WifiRepeaterService@415b5868 | Ljava/lang/Class;=class fq.router2.wifi_repeater.ReleaseWifiLockService
    Landroid/content/Context;=fq.router2.SocksVpnService@4156f260 | Ljava/lang/Class;=class fq.router2.life_cycle.ExitService
    Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.MainActivity
    Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.life_cycle.ExitService
    Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.feedback.DownloadService
    Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.wifi_repeater.AcquireWifiLockService
    Activities
    活动名类型
    .MainActivityandroid.intent.action.MAIN
    .MainActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    ContentResolver;->query读取联系人、短信等数据库
    HttpClient;->execute请求远程服务器
    android/app/NotificationManager;->notify信息通知栏
    java/net/URL;->openConnection连接URL
    java/net/HttpURLConnection;->connect连接URL
    getRuntime获取命令行环境
    java/lang/Runtime;->exec执行字符串命令
    启动方式
    名称信息
    fq.router2.BootCompletedReceiver开机启动服务
    fq.router2.ConnectivityChangeReceiver网络连接改变时启动服务
    fq.router2.wifi_repeater.WifiRepeaterWidgetProvider更新应用小部件时启动服务
    权限列表
    许可名称信息
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.UPDATE_DEVICE_STATS更新设备状态
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.INTERACT_ACROSS_USERS
    android.permission.ACCESS_SUPERUSER
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.WRITE_OWNER_DATA
    android.permission.READ_OWNER_DATA
    android.permission.READ_LOGS读取系统日志
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    服务列表
    名称
    fq.router2.life_cycle.LaunchService
    fq.router2.life_cycle.CheckRootService
    fq.router2.life_cycle.ExitService
    fq.router2.feedback.DownloadService
    fq.router2.feedback.CheckUpdateService
    fq.router2.CheckDnsPollutionService
    fq.router2.wifi_repeater.AcquireWifiLockService
    fq.router2.wifi_repeater.ReleaseWifiLockService
    fq.router2.wifi_repeater.WifiRepeaterService
    fq.router2.SocksVpnService
    文件列表
    文件名 校验码
    assets/pages/about-cn.html 0x9356a16
    assets/pages/about-en.html 0x17a4d45b
    assets/busybox 0x374038f6
    assets/payload.zip 0x497d9091
    res/layout/main.xml 0x2c9044eb
    res/layout/widget.xml 0x33f721ae
    res/xml/preferences.xml 0x62424cb8
    res/xml/provider_info.xml 0xe8f961fa
    AndroidManifest.xml 0xeaa5c865
    resources.arsc 0x9d1d4d2
    res/drawable-hdpi/ic_notification.png 0x286f5a0d
    res/drawable-hdpi/ic_wifi_off.png 0xd714d806
    res/drawable-hdpi/ic_wifi_on.png 0x7e8988b6
    res/drawable-hdpi/ic_wifi_on_0.png 0xa523ebaf
    res/drawable-hdpi/ic_wifi_on_1.png 0xe4f06be3
    res/drawable-hdpi/ic_wifi_on_2.png 0x9a37f4c3
    res/drawable-hdpi/icon.png 0x31681639
    res/drawable-mdpi/ic_notification.png 0x39daafec
    res/drawable-mdpi/ic_wifi_off.png 0x77057945
    res/drawable-mdpi/ic_wifi_on.png 0x284eaafd
    res/drawable-mdpi/ic_wifi_on_0.png 0x611b185a
    res/drawable-mdpi/ic_wifi_on_1.png 0x98029f1
    res/drawable-mdpi/ic_wifi_on_2.png 0xc0d9134f
    res/drawable-mdpi/icon.png 0xb46d4b68
    res/drawable-xhdpi/ic_notification.png 0x8940deab
    res/drawable-xhdpi/ic_wifi_off.png 0x68a88a9e
    res/drawable-xhdpi/ic_wifi_on.png 0x93753732
    res/drawable-xhdpi/ic_wifi_on_0.png 0xb22db531
    res/drawable-xhdpi/ic_wifi_on_1.png 0x393b3963
    res/drawable-xhdpi/ic_wifi_on_2.png 0x4b104faf
    res/drawable-xhdpi/icon.png 0x2424ee9
    res/drawable-xxhdpi/ic_notification.png 0x1154c970
    res/drawable-xxhdpi/ic_wifi_off.png 0xf069953a
    res/drawable-xxhdpi/ic_wifi_on.png 0xf1faeddb
    res/drawable-xxhdpi/ic_wifi_on_0.png 0x6ca93162
    res/drawable-xxhdpi/ic_wifi_on_1.png 0x70ab1963
    res/drawable-xxhdpi/ic_wifi_on_2.png 0xdbdcea20
    res/drawable-xxhdpi/icon.png 0x1d0aa7d6
    classes.dex 0x89948b5c
    META-INF/MANIFEST.MF 0x64753763
    META-INF/CERT.SF 0x9a077d9e
    META-INF/CERT.RSA 0x1a79f7f
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号