VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Scanner(s) (0/39)found malware!
Behavior analysis report:         Habo file analysis
Time: 2014-11-01 10:24:33 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
ahnlab 9.9.9 9.9.9 2013-05-28 Found nothing 3
antivir 1.9.2.0 1.9.159.0 7.11.182.144 Found nothing 14
antiy 114701 AVL141003 2014-10-04 Found nothing 6
arcavir 1.0 2011 2014-05-30 Found nothing 13
asquared 9.0.0.4157 9.0.0.4157 2014-07-30 Found nothing 6
avast 141031-1 4.7.4 2014-10-31 Found nothing 35
avg 2109/7906 10.0.1405 2014-10-17 Found nothing 8
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 1
baidusd 1.0 1.0 2014-04-02 Found nothing 3
bitdefender 7.57469 7.90123 2014-10-31 Found nothing 12
clamav 19561 0.97.5 2014-10-31 Found nothing 5
comodo 15023 5.1 2014-10-03 Found nothing 3
ctch 4.6.5 5.3.14 2013-12-01 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-10-31 Found nothing 58
fortinet Found nothing 1
fprot 4.6.2.117 6.5.1.5418 2014-10-31 Found nothing 8
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 19
gdata 24.3819 24.3819 2014-08-29 Found nothing 14
hauri 2.73 2.73 2014-06-13 Found nothing 1
ikarus 1.06.01 V1.32.31.0 2014-10-31 Found nothing 28
jiangmin 16.0.100 1.0.0.0 2014-07-28 Found nothing 15
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 31
kingsoft 2.1 2.1 2013-09-22 Found nothing 4
mcafee 7520 5400.1158 2014-08-04 Found nothing 13
nod32 0436 3.0.21 2014-09-18 Found nothing 18
panda 9.05.01 9.05.01 2014-06-15 Found nothing 4
pcc 11.246.06 9.500-1005 2014-10-31 Found nothing 6
qh360 1.0.1 1.0.1 1.0.1 Found nothing 12
qqphone 1.0.0.0 1.0.0.0 2014-11-01 Found nothing 1
quickheal 14.00 14.00 2014-06-14 Found nothing 4
rising 25.17.00.04 25.17.00.04 2014-06-02 Found nothing 11
sophos 5.04 3.51.0 2014-08-05 Found nothing 8
sunbelt 3.9.2589.2 3.9.2589.2 2014-06-13 Found nothing 11
symantec 20141028.001 1.3.0.24 2014-10-28 Found nothing 4
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 9
thehacker 6.8.0.5 6.8.0.5 2014-06-12 Found nothing 6
tws 17.47.17308 1.0.2.2108 2014-06-16 Found nothing 18
vba 3.12.26.3 3.12.26.3 2014-10-31 Found nothing 9
virusbuster 15.0.953.1 5.5.2.13 2014-10-31 Found nothing 21
权限列表
许可名称 信息
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.UPDATE_DEVICE_STATS 更新设备状态
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.INTERACT_ACROSS_USERS
android.permission.ACCESS_SUPERUSER
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.WRITE_OWNER_DATA
android.permission.READ_OWNER_DATA
android.permission.READ_LOGS 读取系统日志
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
文件信息
VirSCANVirSCAN
安全评分 :84
基本信息
VirSCANVirSCAN
MD5:c4a22435b4e78d81d568b95482b675fb
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:fq.router2
最低运行环境:Android 2.3, 2.3.1, 2.3.2
版权:fqrouter
关键行为
VirSCANVirSCAN
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
C:\Documents and Settings\Administrator\IETldCache
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,Afx:400000:8:10011:1900015:0]
文件行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: \WINDOWS\system32\zh-cn\ieframe.dll.mui
Local\UrlZonesSM_Administrator
Local\!PrivacIE!SharedMem!Counter
\Documents and Settings\Administrator\IETldCache\index.datndex.dat_245760
CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
C:\Documents and Settings\Administrator\IETldCache
行为描述: 修改文件内容
详情信息: C:\monitor\temp\vst_player.html---> Offset = 0
C:\monitor\temp\vst_vlc.html---> Offset = 0
C:\monitor\temp\vst_vj.html---> Offset = 0
C:\monitor\temp\vst_letv.html---> Offset = 0
C:\monitor\temp\vst_forcetv.html---> Offset = 0
C:\monitor\temp\jw.swf---> Offset = 0
C:\monitor\temp\jw_m3u8.swf---> Offset = 0
C:\monitor\temp\jw_skin.zip---> Offset = 0
C:\monitor\temp\vj.swf---> Offset = 0
网络行为
VirSCANVirSCAN
行为描述: 连接指定站点
详情信息: InternetConnectA: ServerName = live.91vst.com, PORT = 80
InternetConnectA: ServerName = js.users.51.la, PORT = 80
InternetConnectA: ServerName = update.91vst.com, PORT = 80
行为描述: 建立到一个指定的套接字连接
详情信息: 127.0.0.1:1040
行为描述: 读取网络文件
详情信息: hFile = 0x000005b8, BytesToRead =512, BytesRead = 512.
hFile = 0x000004d4, BytesToRead =512, BytesRead = 512.
hFile = 0x000004b0, BytesToRead =512, BytesRead = 512.
hFile = 0x00000460, BytesToRead =512, BytesRead = 512.
hFile = 0x000004c0, BytesToRead =512, BytesRead = 512.
hFile = 0x000003f4, BytesToRead =512, BytesRead = 512.
hFile = 0x000003e8, BytesToRead =512, BytesRead = 512.
hFile = 0x00000388, BytesToRead =512, BytesRead = 512.
hFile = 0x00000358, BytesToRead =512, BytesRead = 512.
hFile = 0x000003dc, BytesToRead =512, BytesRead = 512.
行为描述: 打开HTTP请求
详情信息: HttpOpenRequestA: live.91vst.com:80/cmp/player.php?v=v2&by=qq243944493, hConnect = 0x000005b4
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x000004d8
HttpOpenRequestA: js.users.51.la:80/1843570.js, hConnect = 0x000004c4
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x000004c0
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x00000434
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x000003f4
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x00000444
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x0000045c
HttpOpenRequestA: js.users.51.la:80/1843570.js, hConnect = 0x0000039c
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x0000038c
HttpOpenRequestA: update.91vst.com:80/62796e51cf6d76.json, hConnect = 0x00000380
HttpOpenRequestA: live.91vst.com:80/tvlist?v=v3, hConnect = 0x00000354
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X\BaseClass
\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows Script\Settings\JITDebug
行为描述: 删除注册表键值_IE连接设置
详情信息: \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: Local\ZonesCounterMutex
Local\ZoneAttributeCacheCounterMutex
Local\ZonesCacheCounterMutex
Local\ZonesLockedCacheCounterMutex
Local\!PrivacIE!SharedMemory!Mutex
Local\c:!documents and settings!administrator!ietldcache!
RasPbFile
CTF.LBES.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Compart.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Asm.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Layouts.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TMD.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TimListCache.FMPDefaultS-1-5-21-1482476501-1645522239-1417001333-500MUTEX.DefaultS-1-5-21-1482476501-1645522239-1417001333-500
行为描述: 窗口信息
详情信息: Pid = 484, Hwnd=0xb01de, Text = VST直播V1.0.6, ClassName = WTWindow.
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,Afx:400000:8:10011:1900015:0]
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [MS_AutodialMonitor,]
NtUserFindWindowEx: [Class,Window] = [MS_WebCheckMonitor,]
行为描述: 获取系统权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
动态列表行为
VirSCANVirSCAN
行为描述: 访问网络
详情信息: host:127.0.0.1 port:2515
host:208.67.222.222 port:443
host:208.67.222.222 port:53
host:208.67.220.220 port:443
host:208.67.220.220 port:53
host:106.186.17.181 port:2053
host:106.186.17.181 port:53
host:113.20.6.2 port:443
host:113.20.6.2 port:53
host:199.91.73.222 port:3389
host:199.91.73.222 port:53
host:173.230.156.28 port:443
host:173.230.156.28 port:53
行为描述: 传递附加信息
详情信息: Ljava/lang/String;=appWidgetIds | [I=null
Ljava/lang/String;=Action | Ljava/lang/String;=Start
行为描述: 调用哈希算法
详情信息: MD5
行为描述: 读取文件
详情信息: path:/proc/meminfo length:105
path:/proc/783/cmdline length:105
path:/proc/798/cmdline length:105
path:/proc/810/cmdline length:105
path:/proc/840/cmdline length:105
path:/proc/851/cmdline length:105
path:/proc/885/cmdline length:105
path:/proc/889/cmdline length:105
path:/data/data/fq.router2/var/started-at length:105
path:/data/data/fq.router2/var/started-at length:105
path:/proc/928/cmdline length:105
path:/proc/930/cmdline length:105
path:/proc/938/cmdline length:105
path:/data/data/fq.router2/shared_prefs/fq.router2_preferences.xml length:105
path:/proc/1052/cmdline length:105
path:/proc/1054/cmdline length:105
行为描述: 发送网络数据
详情信息: operation:send host:208.67.222.222 port:443 data:data:\prodandroidverfqroutercom
operation:send host:208.67.220.220 port:443 data:data:f@prodandroidverfqroutercom
operation:send host:106.186.17.181 port:2053 data:data:prodandroidverfqroutercom
operation:send host:113.20.6.2 port:443 data:data:<prodandroidverfqroutercom
operation:send host:199.91.73.222 port:3389 data:data:A prodandroidverfqroutercom
operation:send host:173.230.156.28 port:443 data:data:hprodandroidverfqroutercom
行为描述: 输出数据流写入数据
详情信息: Wed Apr 30 09:44:43 GMT 2014 INFO ver:
Wed Apr 30 09:44:43 GMT 2014 INFO my public key:
Wed Apr 30 09:44:43 GMT 2014 INFO
Wed Apr 30 09:45:35 GMT 2014 INFO actual launch mode:
Wed Apr 30 09:45:35 GMT 2014 INFO command: [killall, -0,
Wed Apr 30 09:45:35 GMT 2014 INFO Kill existing manager
Wed Apr 30 09:45:35 GMT 2014 INFO try to kill manager process before
Wed Apr 30 09:45:35 GMT 2014 INFO killall
Wed Apr 30 09:45:35 GMT 2014 INFO command: [killall,
Wed Apr 30 09:45:36 GMT 2014 ERROR failed to kill manager process before launch\r\njava.lang.NullPointerException\n at
Wed Apr 30 09:45:36 GMT 2014 INFO Deploying
Wed Apr 30 09:45:36 GMT 2014 INFO copying busybox to data
Wed Apr 30 09:45:39 GMT 2014 INFO sudo: [echo,
Wed Apr 30 09:45:40 GMT 2014 INFO rooted:
Wed Apr 30 09:45:43 GMT 2014 ERROR failed to download\r\njava.net.MalformedURLException\n at
Wed Apr 30 09:45:44 GMT 2014 ERROR started at 1398851135453, current is
Wed Apr 30 09:45:44 GMT 2014 INFO Exiting, session life
Wed Apr 30 09:45:44 GMT 2014 INFO killall
Wed Apr 30 09:45:44 GMT 2014 INFO command: [/data/data/fq.router2/busybox,
Wed Apr 30 09:45:44 GMT 2014 ERROR failed to kill manager process\r\njava.lang.NullPointerException\n at
Wed Apr 30 09:45:47 GMT 2014 ERROR failed to check dns pollution\r\njava.net.ConnectException: failed to connect to /127.0.0.1 (port
Wed Apr 30 09:45:48 GMT 2014 INFO acquired wifi
Wed Apr 30 09:45:49 GMT 2014 INFO released wifi
Wed Apr 30 09:45:50 GMT 2014 INFO checking
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /208.67.222.222:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /208.67.222.222 (port
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /208.67.220.220:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /208.67.220.220 (port
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /106.186.17.181:2053\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /106.186.17.181 (port
Wed Apr 30 09:45:51 GMT 2014 INFO wifi repeater service:
Wed Apr 30 09:45:51 GMT 2014 INFO sudo: [/data/data/fq.router2/python/bin/python /data/data/fq.router2/manager/main.pyc stop-wifi-repeater > /data/data/fq.router2/log/current-python.log
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to toggle wifi repeater\r\njava.lang.NullPointerException\n at
Wed Apr 30 09:45:51 GMT 2014 INFO wifi repeater service ended with:
Wed Apr 30 09:45:51 GMT 2014 ERROR failed to resolve txt over udp at /113.20.6.2:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
Wed Apr 30 09:45:54 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /113.20.6.2 (port
/data/data/fq.router2/python/bin/python /data/data/fq.router2/manager/main.pyc stop-wifi-repeater > /data/data/fq.router2/log/current-python.log
Wed Apr 30 09:45:55 GMT 2014 ERROR failed to resolve txt over udp at /199.91.73.222:3389\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
Wed Apr 30 09:45:55 GMT 2014 ERROR failed to start wifi repeater\r\njava.io.IOException: write failed: EPIPE (Broken
Wed Apr 30 09:45:55 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /199.91.73.222 (port
Wed Apr 30 09:45:55 GMT 2014 INFO on destroy
Wed Apr 30 09:45:56 GMT 2014 ERROR failed to resolve txt over udp at /173.230.156.28:443\r\njava.net.SocketException: sendto failed: ENETUNREACH (Network is
Wed Apr 30 09:45:56 GMT 2014 ERROR wifi lock is
Wed Apr 30 09:45:56 GMT 2014 ERROR failed to resolve: prod.android.ver.fqrouter.com\r\njava.net.ConnectException: failed to connect to /173.230.156.28 (port
Wed Apr 30 09:45:57 GMT 2014 ERROR check updates failed\r\njava.lang.ArrayIndexOutOfBoundsException: length=1; index=1\n at
Wed Apr 30 09:45:59 GMT 2014 INFO Exiting, session life
Wed Apr 30 09:45:59 GMT 2014 INFO killall
Wed Apr 30 09:45:59 GMT 2014 INFO sudo: [/data/data/fq.router2/busybox, killall,
Wed Apr 30 09:45:59 GMT 2014 ERROR failed to kill manager process\r\njava.io.IOException: write failed: EPIPE (Broken
行为描述: 类加载
详情信息: path:/system/app/PicoTts.apk
path:/system/app/MusicFX.apk
path:/system/framework/am.jar
path:/data/app/fq.router2-1.apk
行为描述: 缓冲区读取一行数据
详情信息: 1398851135453
null
行为描述: 启动服务
详情信息: com.android.musicfx.Compatibility$Service
com.android.mms.transaction.SmsReceiverService
fq.router2.wifi_repeater.ReleaseWifiLockService
fq.router2.life_cycle.ExitService
行为描述: 写入文件
详情信息: path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
path:/data/data/fq.router2/log/current-java.log length:52
path:/data/data/fq.router2/shared_prefs/fq.router2_preferences.xml length:105
path:/data/data/fq.router2/shared_prefs/_has_set_default_values.xml length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:52
path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/fq.router2/log/current-java.log length:65
path:/data/data/fq.router2/log/current-java.log length:71
path:/data/data/fq.router2/var/started-at length:18
path:/data/data/fq.router2/log/current-java.log length:70
path:/data/data/fq.router2/log/current-java.log length:82
path:/data/data/fq.router2/log/current-java.log length:55
path:/data/data/fq.router2/log/current-java.log length:67
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:58
path:/data/data/fq.router2/log/current-java.log length:74
path:/data/data/fq.router2/log/current-java.log length:60
path:pipe:[3642] length:22
path:/data/data/fq.router2/log/current-java.log length:54
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:92
path:/data/data/fq.router2/log/current-java.log length:70
path:/data/data/fq.router2/log/current-java.log length:55
path:/data/data/fq.router2/log/current-java.log length:85
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:59
path:/data/data/fq.router2/log/current-java.log length:59
path:/data/data/fq.router2/log/current-java.log length:59
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:68
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:81
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:pipe:[3865] length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:55
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:59
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:105
path:/data/data/fq.router2/log/current-java.log length:67
path:/data/data/fq.router2/log/current-java.log length:55
path:/data/data/fq.router2/log/current-java.log length:95
path:pipe:[3975] length:56
path:/data/data/fq.router2/log/current-java.log length:105
行为描述: 访问URL
详情信息: libcore.net.http.HttpURLConnectionImpl:http://127.0.0.1:2515/dns-polluted-at
行为描述: 初始化Intent
详情信息: Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.MainActivity
Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.life_cycle.ExitService
Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.feedback.DownloadService
Landroid/content/Context;=fq.router2.life_cycle.ExitService@415f9198 | Ljava/lang/Class;=class fq.router2.wifi_repeater.AcquireWifiLockService
Landroid/content/Context;=android.app.Application@4153c008 | Ljava/lang/Class;=class fq.router2.wifi_repeater.WifiRepeaterService
Landroid/content/Context;=fq.router2.SocksVpnService@4156f260 | Ljava/lang/Class;=class fq.router2.MainActivity
Landroid/content/Context;=fq.router2.wifi_repeater.WifiRepeaterService@415b5868 | Ljava/lang/Class;=class fq.router2.wifi_repeater.ReleaseWifiLockService
Landroid/content/Context;=fq.router2.SocksVpnService@4156f260 | Ljava/lang/Class;=class fq.router2.life_cycle.ExitService
Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.MainActivity
Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.life_cycle.ExitService
Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.feedback.DownloadService
Landroid/content/Context;=fq.router2.life_cycle.ExitService@415cd348 | Ljava/lang/Class;=class fq.router2.wifi_repeater.AcquireWifiLockService
Activities
VirSCANVirSCAN
活动名 类型
.MainActivity android.intent.action.MAIN
.MainActivity android.intent.category.LAUNCHER
危险函数
VirSCANVirSCAN
函数名称 信息
ContentResolver;->query 读取联系人、短信等数据库
HttpClient;->execute 请求远程服务器
android/app/NotificationManager;->notify 信息通知栏
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
启动方式
VirSCANVirSCAN
名称 信息
fq.router2.BootCompletedReceiver 开机启动服务
fq.router2.ConnectivityChangeReceiver 网络连接改变时启动服务
fq.router2.wifi_repeater.WifiRepeaterWidgetProvider 更新应用小部件时启动服务
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.UPDATE_DEVICE_STATS 更新设备状态
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.INTERACT_ACROSS_USERS
android.permission.ACCESS_SUPERUSER
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.WRITE_OWNER_DATA
android.permission.READ_OWNER_DATA
android.permission.READ_LOGS 读取系统日志
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
服务列表
VirSCANVirSCAN
名称
fq.router2.life_cycle.LaunchService
fq.router2.life_cycle.CheckRootService
fq.router2.life_cycle.ExitService
fq.router2.feedback.DownloadService
fq.router2.feedback.CheckUpdateService
fq.router2.CheckDnsPollutionService
fq.router2.wifi_repeater.AcquireWifiLockService
fq.router2.wifi_repeater.ReleaseWifiLockService
fq.router2.wifi_repeater.WifiRepeaterService
fq.router2.SocksVpnService
文件列表
VirSCANVirSCAN
文件名 校验码
assets/pages/about-cn.html 0x9356a16
assets/pages/about-en.html 0x17a4d45b
assets/busybox 0x374038f6
assets/payload.zip 0x497d9091
res/layout/main.xml 0x2c9044eb
res/layout/widget.xml 0x33f721ae
res/xml/preferences.xml 0x62424cb8
res/xml/provider_info.xml 0xe8f961fa
AndroidManifest.xml 0xeaa5c865
resources.arsc 0x9d1d4d2
res/drawable-hdpi/ic_notification.png 0x286f5a0d
res/drawable-hdpi/ic_wifi_off.png 0xd714d806
res/drawable-hdpi/ic_wifi_on.png 0x7e8988b6
res/drawable-hdpi/ic_wifi_on_0.png 0xa523ebaf
res/drawable-hdpi/ic_wifi_on_1.png 0xe4f06be3
res/drawable-hdpi/ic_wifi_on_2.png 0x9a37f4c3
res/drawable-hdpi/icon.png 0x31681639
res/drawable-mdpi/ic_notification.png 0x39daafec
res/drawable-mdpi/ic_wifi_off.png 0x77057945
res/drawable-mdpi/ic_wifi_on.png 0x284eaafd
res/drawable-mdpi/ic_wifi_on_0.png 0x611b185a
res/drawable-mdpi/ic_wifi_on_1.png 0x98029f1
res/drawable-mdpi/ic_wifi_on_2.png 0xc0d9134f
res/drawable-mdpi/icon.png 0xb46d4b68
res/drawable-xhdpi/ic_notification.png 0x8940deab
res/drawable-xhdpi/ic_wifi_off.png 0x68a88a9e
res/drawable-xhdpi/ic_wifi_on.png 0x93753732
res/drawable-xhdpi/ic_wifi_on_0.png 0xb22db531
res/drawable-xhdpi/ic_wifi_on_1.png 0x393b3963
res/drawable-xhdpi/ic_wifi_on_2.png 0x4b104faf
res/drawable-xhdpi/icon.png 0x2424ee9
res/drawable-xxhdpi/ic_notification.png 0x1154c970
res/drawable-xxhdpi/ic_wifi_off.png 0xf069953a
res/drawable-xxhdpi/ic_wifi_on.png 0xf1faeddb
res/drawable-xxhdpi/ic_wifi_on_0.png 0x6ca93162
res/drawable-xxhdpi/ic_wifi_on_1.png 0x70ab1963
res/drawable-xxhdpi/ic_wifi_on_2.png 0xdbdcea20
res/drawable-xxhdpi/icon.png 0x1d0aa7d6
classes.dex 0x89948b5c
META-INF/MANIFEST.MF 0x64753763
META-INF/CERT.SF 0x9a077d9e
META-INF/CERT.RSA 0x1a79f7f
运行截图
VirSCANVirSCAN
VirSCAN