VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2015-03-01 14:16:37 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 5
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 4
avast 141231-0 4.7.4 2014-12-31 Found nothing 35
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 7
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2014-04-02 Found nothing 4
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 1
clamav 19745 0.97.5 2014-12-07 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 49
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 1
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 12
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 40
gdata 25.459 25.459 2015-02-28 Found nothing 13
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 26
jiangmin 16.0.100 1.0.0.0 2014-08-20 Found nothing 43
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 29
kingsoft 2.1 2.1 2013-09-22 Found nothing 9
mcafee 7638 5400.1158 2014-11-30 Found nothing 46
nod32 0920 3.0.21 2014-12-23 Found nothing 4
panda 9.05.01 9.05.01 2014-12-31 Found nothing 6
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 6
qh360 1.0.1 1.0.1 1.0.1 Found nothing 10
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 1
quickheal 14.00 14.00 2014-12-31 Found nothing 8
rising 25.46.06.04 25.46.06.04 2014-12-28 Found nothing 26
sophos 5.08 3.55.0 2014-12-01 Found nothing 56
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 3
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 19
thehacker 6.8.0.5 6.8.0.5 2014-12-29 Found nothing 13
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 23
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 36
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 48
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.VIBRATE 允许设备震动
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.BACKUP_DATA
android.permission.READ_PHONE_STATE 读取电话状态
com.baidu.permission.SEND_DOWNLOAD_COMPLETED_INTENTS
com.baidu.permission.ACCESS_DOWNLOAD_MANAGER
com.baidu.permission.ACCESS_CACHE_FILESYSTEM
com.baidu.permission.ACCESS_BOOKMARKS
android.permission.CLEAR_APP_CACHE 清除应用缓存
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.RECORD_AUDIO 录音(使用AudioRecord)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.RESTART_PACKAGES 重启其他程序
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.browser.permission.READ_HISTORY_BOOKMARKS 读取浏览器书签
android.permission.PERSISTENT_ACTIVITY 创建长期驻留的Activity
android.permission.CAMERA 访问照相机设备
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.BROADCAST_STICKY 发送持久广播
android.permission.GET_ACCOUNTS 访问账户列表
com.google.android.c2dm.permission.RECEIVE
com.baidu.browser.inter.permission.C2D_MESSAGE
android.permission.READ_LOGS 读取系统日志
com.google.android.providers.gsf.permission.READ_GSERVICES
文件信息
VirSCANVirSCAN
安全评分 :88
基本信息
VirSCANVirSCAN
MD5:f281ba03380bb1647aa92e84e7f156c0
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.baidu.browser.inter
最低运行环境:Android 2.2.x
版权:Baidu Inc.
文件行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
MSCTF.MarshalInterface.FileMap.EAK..ELLFF
MSCTF.MarshalInterface.FileMap.EAK.B.ELLFF
MSCTF.MarshalInterface.FileMap.EAK.C.ELLFF
MSCTF.MarshalInterface.FileMap.EAK.D.ELLFF
MSCTF.MarshalInterface.FileMap.EAK.E.ELLFF
MSCTF.MarshalInterface.FileMap.EAK.F.ELLFF
MSCTF.MarshalInterface.FileMap.EAK.G.ELLFF
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Compart.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Asm.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Layouts.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TMD.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TimListCache.FMPDefaultS-1-5-21-1482476501-1645522239-1417001333-500MUTEX.DefaultS-1-5-21-1482476501-1645522239-1417001333-500
MSCTF.Shared.MUTEX.AEH
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
行为描述: 窗口信息
详情信息: Pid = 2560, Hwnd=0x10350, Text = 确定, ClassName = Button.
Pid = 2560, Hwnd=0x10354, Text = This system doesn"t have the minimum requirements., ClassName = Static.
Pid = 2560, Hwnd=0x1034c, Text = Installer, ClassName = #32770.
危险行为
VirSCANVirSCAN
行为描述: 执行系统命令
详情信息: /data/data/com.baidu.browser.inter/files/libprocmox_v1_4.so /data/data/com.baidu.browser.inter /data/data/com.baidu.browser.inter/lib b9cb707eee723ea0adbe38c425e9464d http://s.mobile-global.baidu.com/mbrowser/mbrowser-beback/usersaving.html?uid=C9EEBC211EA390B486594C83704D4465%7C000000000000000&sub=&pkn=com.baidu.browser.inter&la=en&sv=16&ua=bd_768_1184_unknown-Full+Android+on+Emulator-4-1-1_4-5-0-4_j2&pid=&ch=waterworld_tailormade15&av=4.5.0.4 0 com.android.browser/com.android.browser.BrowserActivity
{logcat, -t, 200, -v, time}
动态列表行为
VirSCANVirSCAN
行为描述: 传递附加信息
详情信息: Ljava/lang/String;=cache_data | [Ljava/lang/String;={{"010014-3":[[1398851182307,"connect_ioexception","no_net"]]}, {"010003-3":[[1398851188932,"58"]]}}
Ljava/lang/String;=sf | Ljava/lang/String;=0
Ljava/lang/String;=la | Ljava/lang/String;=en
Ljava/lang/String;=tc | Ljava/lang/String;=0
Ljava/lang/String;=ts | Ljava/lang/String;=0
Ljava/lang/String;=tv | Ljava/lang/String;=
行为描述: 数据加密
详情信息: {u'operation': u'keyalgo', u'algorithm': u'AES', u'key': u'82, -9, 25, 78, -86, 53, 51, 62, 36, -124, -22, 90, -51, -125, -52, 102, -126, 19, 124, -98, 118, -80, 37, 42, 57, -22, -34, 97, -128, -5, -23, -33'}
行为描述: 调用哈希算法
详情信息: MD5
SHA-1
行为描述: 读取文件
详情信息: path:/proc/cpuinfo length:105
path:/proc/cpuinfo length:105
path:/dev/urandom length:15
path:/proc/777/cmdline length:105
path:/proc/790/cmdline length:105
path:/proc/819/cmdline length:105
path:/proc/832/cmdline length:105
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:94
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:70
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:68
path:/data/data/com.baidu.browser.inter/files/config_gb.json length:105
path:/data/data/com.baidu.browser.inter/files/bbm/tnconfig.ini length:105
path:/data/data/com.baidu.browser.inter/files/bbm/tnconfig.ini length:105
path:/data/data/com.baidu.browser.inter/files/home/navi_gb.json length:105
path:/data/data/com.baidu.browser.inter/files/home/navi_gb.json length:105
path:/proc/meminfo length:105
path:/data/data/com.baidu.browser.inter/lib/libprocmox_v1_4.so length:99
path:/data/data/com.baidu.browser.inter/lib/libprocmox_v1_4.so length:75
path:/data/data/com.baidu.browser.inter/lib/libprocmox_v1_4.so length:105
path:/data/data/com.baidu.browser.inter/files/AF_INSTALLATION length:41
path:/data/data/com.baidu.browser.inter/lib/libprocmox_v1_4.so length:105
path:/proc/881/cmdline length:105
path:/data/data/com.baidu.browser.inter/files/config_gb.json length:105
path:/data/data/com.baidu.browser.inter/files/config_gb.json length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/batsdk_user_info.xml length:105
path:/proc/819/stat length:105
path:/proc/819/stat length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/com.baidu.browser.inter_preferences.xml length:105
path:/proc/meminfo length:105
path:pipe:[3739] length:105
path:pipe:[3739] length:105
path:pipe:[3739] length:105
path:pipe:[3740] length:105
path:pipe:[3739] length:105
path:pipe:[3739] length:105
path:pipe:[3739] length:105
path:/proc/940/cmdline length:105
path:/proc/986/cmdline length:105
path:/proc/988/cmdline length:105
path:/data/data/com.baidu.browser.inter/files/bbm/d7f35a175a08c22d1db369415c5a49da length:105
path:/data/data/com.baidu.browser.inter/files/bbm/d7f35a175a08c22d1db369415c5a49da length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/BrowserActivity.xml length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/com.baidu.browser.inter_preferences.xml length:105
path:/proc/996/cmdline length:105
path:/proc/1015/cmdline length:105
path:/proc/1058/cmdline length:105
path:/proc/1060/cmdline length:105
行为描述: 对指定数据计算哈希
详情信息: statistics_settings
statistics_ub_cache
statistics_ub_upload
statistics_product
statistics_pv_product
com.baidu357242043237511d3894529ac5a14ec
357242043237511d3894529ac5a14ec42d8db5a-3d99-405e-9d72-5f972dcc39da
FTimQoW9bc06b11145019
C9EEBC211EA390B486594C83704D4465|115732340242753
行为描述: 访问URL
详情信息: libcore.net.http.HttpURLConnectionImpl:http://br.bmbs.baidu.com/cs/pl.php?ua=bd_768_1184_unknown-Full+Android+on+Emulator-4-1-1_4-5-0-4_j2&cuid=C9EEBC211EA390B486594C83704D4465%7C000000000000000&cfrom=waterworld_tailormade15&lfrom=waterworld_tailormade15&from=waterworld_tailormade15&it=0&ctv=1&type=1
libcore.net.http.HttpURLConnectionImpl:http://br.bmbs.baidu.com/reportinfo.php?ua=bd_768_1184_unknown-Full+Android+on+Emulator-4-1-1_4-5-0-4_j2&cuid=C9EEBC211EA390B486594C83704D4465%7C000000000000000&cfrom=waterworld_tailormade15&lfrom=waterworld_tailormade15&from=waterworld_tailormade15&it=0&ctv=1&vn=0&sn=0&sf=0&ref=
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/stat/pv.do
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/content/get_content_by_category?api=2&pt=ma&co=US&la=en&ch=waterworld_tailormade15&av=4.5.0.4&sv=a_16&pr=&n=null&&nks=0-5&pks=1082-202_1080-202&vks=2041-301_2044-301&nhot=1&resolution=768X1280
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/management/get_squaredup.do?&api=1&pt=ma&co=US&la=en&ch=waterworld_tailormade15&av=4.5.0.4&sv=a_16&pr=&n=null
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/management/get_second_home.do?&api=1&pt=ma&co=US&la=en&ch=waterworld_tailormade15&av=4.5.0.4&sv=a_16&pr=&n=null
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/management/apk_version_update.do?&api=1&pt=ma&co=US&la=en&ch=waterworld_tailormade15&av=4.5.0.4&sv=a_16&pr=&n=null
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/management/red_point_update.do?api=1&pt=ma&co=US&la=en&ch=waterworld_tailormade15&av=4.5.0.4&sv=a_16&pr=&n=null
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/management/config.do?api=1&pt=ma&co=US&la=en&ch=waterworld_tailormade15&av=4.5.0.4&sv=a_16&pr=&n=null
libcore.net.http.HttpsURLConnectionImpl$HttpUrlConnectionDelegate:https://track.appsflyer.com/api/v2.3/androidevent?buildnumber=1.6&app_id=com.baidu.browser.inter
libcore.net.http.HttpURLConnectionImpl:http://track.appsflyer.com/api/v2.3/androidevent?buildnumber=1.6&app_id=com.baidu.browser.inter
libcore.net.http.HttpURLConnectionImpl:http://br.bmbs.baidu.com/nav.php?loca=gb&ver=21
libcore.net.http.HttpURLConnectionImpl:http://mobile-global.baidu.com/mbrowser/stat/act.do
行为描述: 数据泄露
详情信息: sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <boolean name="plugin_zeus_installed"
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <int name="launch_time_from_outer_ver
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="weather_country">gb</st
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="weather_data">rO0ABXA=<
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <boolean name="join_plan" value="true
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <int name="refuse_rate_count" value="
sink:File operation:write data:data:version=1.6 url=https://track.appsflyer.com/api/v2.3/androidevent?buildnumber=1.6&app_id=com.baidu.b
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="last_visited_path_of_fi
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="LattestVisitedUrl"></st
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="LattestVisitedUrl">[]</
行为描述: 类加载
详情信息: path:/system/app/PicoTts.apk
path:/system/app/MusicFX.apk
path:/system/framework/am.jar
path:/data/app/com.baidu.browser.inter-1.apk
行为描述: 缓冲区读取一行数据
详情信息: Processor : ARMv7 Processor rev 0
BogoMIPS : 453.83
Features : swp half thumb fastmult vfp edsp neon vfpv3
CPU implementer : 0x41
CPU architecture: 7
CPU variant : 0x0
CPU part : 0xc08
CPU revision : 0
Hardware : Goldfish
Revision : 0000
Serial : 0000000000000000
null
{
"data": [
{
"color": "#0181FF",
"key": "1mobile"
},
"color": "#1786c3",
"key": "4shared"
"color": "#b60a00",
"key": "ahram"
"color": "#A24A4B",
"key": "alarabiya"
"color": "#d1b26f",
"key": "aljazeera"
"color": "#505050",
"key": "amazon"
"color": "#6bb81e",
"key": "aplikanologi"
"color": "#cf0101",
"key": "ask"
"color": "#1a4792",
"key": "avito"
"color": "#6d0504",
"key": "bbc"
"color": "#231F20",
"key": "billboard"
"color": "#1f5da6",
"key": "catho"
"color": "#ED0A80",
"key": "dailynews"
"color": "#C385A1",
"key": "detik"
"color": "#01a0e2",
"key": "dubattery"
"color": "#E53238",
"key": "ebay"
"color": "#d61313",
"key": "ensonhaber"
"color": "#313131",
"key": "erdioo"
"color": "#CC0000",
"key": "espn"
"color": "#E57728",
"key": "espncricinfo"
"color": "#3b5998",
"key": "facebook"
"color": "#164064",
"key": "flipkart"
"color": "#a7000c",
"key": "g1"
"color": "#2368b2",
"key": "gittigidiyor"
"color": "#597900",
"key": "globo"
"color": "#3ea91c",
"key": "globoesporte"
"color": "#4285F4",
"key": "gmail"
"color": "#636085",
"key": "go"
"color": "#091f2d",
"key": "goal"
"key": "google"
"color": "#A50021",
"key": "haberturk"
"color": "#7FA0B0",
"key": "habrahabr"
"color": "#014384",
"key": "hdfcbank"
"color": "#212321",
"key": "hurriyet"
"color": "#E41E26",
"key": "in"
"color": "#808080",
"key": "indianrail"
"color": "#424242",
"key": "indiatimes"
"color": "#02217e",
"key": "itau"
"color": "#FF6C00",
"key": "justdial"
"color": "#e98a3e",
"key": "kapook"
"color": "#F7B12C",
"key": "kaskus"
"color": "#8468b5",
"key": "kboing"
"color": "#fc9da5",
"key": "kodhit"
"color": "#005487",
"key": "kompas"
"color": "#960F1D",
"key": "ligtv"
"color": "#0080B2",
"key": "linkedin"
"color": "#2672ec",
"key": "live"
"color": "#003366",
"key": "livejournal"
"color": "#004890",
"key": "mailru"
"color": "#e70730",
"key": "milliyet"
"color": "#9ABB70",
"key": "moneycontrol"
"color": "#ea602a",
"key": "mthai"
"color": "#292929",
"key": "mtv"
"color": "#003082",
"key": "mynet"
"color": "#006cb7",
"key": "naukri"
"color": "#044180",
"key": "nhk"
"color": "#1b50c2",
"key": "nikkei"
"color": "#F58220",
"key": "odnoklassniki"
"color": "#ff7700",
"key": "olx"
"color": "#f82790",
"key": "orkut"
"color": "#1b4554",
"key": "pbs"
"color": "#CC2127",
"key": "pinterest"
"color": "#292e94",
"key": "rambler"
"color": "#D20000",
"key": "rediff"
"key": "sabq"
"color": "#1a8f00",
"key": "sahadan"
"color": "#e70600",
"key": "sanook"
"color": "#CD171E",
"key": "shaadi"
"color": "#d5538a",
"key": "siamsport"
"color": "#efbc2b",
"key": "som13"
"color": "#6d8ebb",
"key": "souq"
"color": "#DF4A25",
"key": "sporx"
"color": "#7ccbea",
"key": "sritown"
"color": "#FD0404",
"key": "stafaband"
"color": "#EE1C25",
"key": "tempo"
"color": "#5D9321",
"key": "thairath"
"key": "translate"
"color": "#367BB6",
"key": "tribunnews"
"color": "#eb3930",
"key": "truelife"
"color": "#424141",
"key": "tubidy"
"color": "#00acee",
"key": "twitter"
"color": "#F8CC38",
"key": "uol"
"color": "#8ea308",
"key": "vagalume"
"color": "#c70607",
"key": "viva"
"color": "#6D8FB3",
"key": "vk"
"color": "#79D0FE",
"key": "waptrick"
"key": "wikipedia"
"color": "#82129E",
"key": "yahoo"
"key": "yahoo_mail"
"color": "#f95656",
"key": "yallakora"
"color": "#ff0000",
"key": "yandex"
"color": "#C4110B",
"key": "youtube"
"color": "#63ad63",
"key": "trophymanager"
"color": "#0101FF",
"key": "cnnmoblie"
"color": "#8F015E",
"key": "craigslist"
"color": "#8D2502",
"key": "weather"
"key": "cnn"
"color": "#121212",
"key": "9gag"
"color": "#39CCA3",
"key": "hulu"
"color": "#474747",
"key": "tech2"
"color": "#2275F5",
"key": "oneindia"
"color": "#3c8acb",
"key": "cricbuzz"
"color": "#10171",
"key": "ndtv"
"color": "#1003ba",
"key": "snapdeal"
"color": "#882004",
"key": "eskimi"
"color": "#82553E",
"key": "softpedia"
"color": "#A47C24",
"key": "indianexpress"
"color": "#043568",
"key": "okezone"
"color": "#E0C43E",
"key": "kompasiana"
"color": "#e11f26",
"key": "blogdetik"
"key": "bursalagu"
"key": "softonic"
"color": "#24204ED",
"key": "tokobagus"
"key": "gudanglagu"
"color": "#0201CD",
"key": "merdeka"
"color": "#ec2b2d",
"key": "youm7"
"color": "#ffc714",
"key": "almasryalyoum"
"color": "#6957ab",
"key": "fatakat"
"color": "#f59131",
"key": "myegy"
"color": "#96040c",
"key": "akhbarak"
"color": "#ce242a",
"key": "masrawy"
"color": "#f3762a",
"key": "elwatannews"
"key": "filgoal"
"color": "#65B7D7",
"key": "mixi"
"color": "#bc0711",
"key": "rakuten"
"color": "#353535",
"key": "nicovideo"
"color": "#8399D5",
"key": "2ch"
"color": "#01AAFF",
"key": "tabelog"
"color": "#cc3033",
"key": "goo"
"color": "#c5092f",
"key": "mapfan"
"color": "#0505FF",
"key": "clipmass"
"color": "#10101",
"key": "imdb"
"color": "#f93028",
"key": "manager"
"color": "#fd380b",
"key": "livescore"
"color": "#02a14f",
"key": "soccersuck"
"color": "#913410",
"key": "khaosod"
"color": "#4ba409",
"key": "sapo"
"color": "#0079be",
"key": "r7"
"color": "#009ABE",
"key": "videolog"
"color": "#ffbc00",
"key": "lancenet"
"color": "#fcde05",
"key": "correios"
"color": "#f5bdbd",
"key": "mp3skull"
"color": "#ef4c23",
"key": "cyworld"
"color": "#f57b20",
"key": "zing"
"color": "#258614",
"key": "24h"
"color": "#c32769",
"key": "haivl"
"color": "#f49717",
"key": "coccoc"
"color": "#197a9d",
"key": "baomoi"
"color": "#F7941E",
"key": "clip"
"color": "#996600",
"key": "kienthuc"
"color": "#0C5216",
"key": "dantri"
"color": "#df1e1f",
"key": "kenh14"
"color": "#f37021",
"key": "lazada"
"color": "#9D1F45",
"key": "vnexpress"
"color": "#2c2c2c",
"key": "themalaysianinsider"
"color": "#00008c",
"key": "malaysiakini"
"color": "#0066B2",
"key": "lelong"
"color": "#6f82b9",
"key": "cari"
"color": "#e63434",
"key": "thestar"
"color": "#262626",
"key": "varzesh3"
"color": "#BF0707",
"key": "tasnimnews"
"color": "#ef5fa3",
"key": "aparat"
"color": "#273583",
"key": "khabaronline"
"color": "#0050c0",
"key": "farsnews"
"color": "#ec1b2e",
"key": "digikala"
}
],
"ver": "1"
}
"ret": 1,
"version": 1,
"subscription": {
"hotsites": [
{
"n": "0000000000000000",
"s": 1,
"d": {
"searchItems": [
{
"type": 0,
"url": "http://www.google.com/m/search?q=",
"name": "Google",
"regex":
"icon": "category_item_google_focus",
"panelIcon": "category_item_google_focus"
},
"type": 1,
"url": "http://www.yahoo.com/m/search?q=",
"name": "Yahoo",
"icon": "category_item_yahoo_focus",
"panelIcon": "category_item_yahoo_focus"
"type": 2,
"url": "http://m.bing.com/search?q=",
"name": "Bing",
"icon": "category_item_bing_focus",
"panelIcon": "category_item_bing_focus"
"type": 3,
"url": "http://m.youtube.com/results?search_query=",
"name": "Youtube",
"icon": "category_item_youtube_focus",
"panelIcon": "category_item_youtube_focus"
}
]
}
"name": "Youtube",
"icon": "youtube",
"data": "http://m.youtube.com"
waterworld_tailormade15
},
"name": "Twitter",
"icon": "twitter",
"data": "http://mobile.twitter.com"
[{"ver":21},{"navi":[{"group":"*","items":[{"text":"4shared","url":"m.4shared.com"},{"text":"TrophyManager","url":"trophymanager.com"},{"text":"Tubidy","url":"tubidy.mobi"},{"text":"CNN","url":"cnnmobile.com"},{"text":"9GAG","url":"m.9gag.com"},{"text":"hulu","url":"hulu.com"},{"text":"ESPN","url":"espncricinfo.com"},{"text":"Weather","url":"weather.com "},{"text":"Craigslist","url":"craigslist.org"}]},{"group":"Social","items":[{"text":"Facebook","url":"m.facebook.com"},{"text":"twitter","url":"mobile.twitter.com "},{"text":"linkedin ","url":"linkedin.com"},{"text":"Google+ ","url":"m.google.com\/app\/plus "},{"text":"WordPress ","url":"WordPress.com "},{"text":"Flickr ","url":"flickr.com\/mobile "}]},{"group":"Video","items":[{"text":"youtube ","url":"m.youtube.com "},{"text":"reuters ","url":"mobile.reuters.com\/media "},{"text":"vimeo ","url":"vimeo.com\/m "},{"text":"hulu ","url":"hulu.com "},{"text":"bebo ","url":"bebo.com\/c\/videocntnt "},{"text":"PBS Video ","url":"video.pbs.org"}]},{"group":"Games","items":[{"text":"Y8","url":"http:\/\/m.y8.com\/"},{"text":"Goodgame","url":"http:\/\/www.goodgamestudios.com\/"},{"text":"GameSpot","url":"http:\/\/m.gamespot.com\/"},{"text":"GamesFreak","url":"http:\/\/m.gamesfreak.net"},{"text":"GameFAQs","url":"http:\/\/m.gamefaqs.com\/"},{"text":"KiZi","url":"http:\/\/m.kizi.com\/"}]},{"group":"Music","items":[{"text":"MP3 ","url":"mp3.com "},{"text":"Yahoo ","url":"music.yahoo.com "},{"text":"Bigpond ","url":"bigpondmusic.com\/mobile "},{"text":"MTV ","url":"mtv.com "},{"text":"Lyrics ","url":"m.metrolyrics.com "},{"text":"billboard ","url":"m.billboard.com "}]},{"group":"News","items":[{"text":"CNN ","url":"cnnmobile.com "},{"text":"CBS ","url":"m.cbsnews.com "},{"text":"FOX ","url":"foxnews.com "},{"text":"Yahoo ","url":"m.yahoo.com "},{"text":"Usatoday ","url":"m.usatoday.com "},{"text":"NYTimes ","url":"mobile.nytimes.com "}]},{"group":"Sports","items":[{"text":"ESPN ","url":"m.espn.go.com "},{"text":"Fox Sports ","url":"sports.mobile.msn.com\/en-us"},{"text":"CBS Sports ","url":"m.cbssports.com"}]},{"group":"IT","items":[{"text":"CNet ","url":"m.cnet.com "},{"text":"Engadget ","url":"engadget.com "},{"text":"slashdot ","url":"m.slashdot.com "},{"text":"ZDNet ","url":"m.zdnet.com "},{"text":"Thinkdigit ","url":"thinkdigit.com "},{"text":"Techarena ","url":"techarena.in "}]},{"group":"Shopping","items":[{"text":"Amazon ","url":"www.amazon.com"},{"text":"ebay ","url":"ebay.com"},{"text":"bestbuy ","url":"bestbuy.com"},{"text":"groupon ","url":"groupon.com\/mobile "},{"text":"walmart ","url":"walmart.com"},{"text":"buy ","url":"rakuten.com"}]},{"group":"Email","items":[{"text":"Hotmail ","url":"login.live.com "},{"text":"Gmail ","url":"accounts.google.com"},{"text":"Y!Mail ","url":"mlogin.yahoo.com"}]}]}]
"name": "Facebook",
"icon": "facebook",
"data": "http://m.facebook.com"
"name": "Google",
"icon": "google",
"data": "http://google.com/m"
"name": "Yahoo",
"icon": "yahoo",
"data": "http://yahoo.com"
"name": "Wikipedia",
"icon": "wikipedia",
"data": "http://m.wikipedia.com"
"name": "Gmail",
"icon": "gmail",
"data": "https://mail.google.com"
"name": "Translate",
"icon": "google_translate",
"data": "http://translate.google.com"
"name": "Go",
"icon": "go",
"data": "http://go.com"
"name": "Yahoo!Mail",
"data": "http://mlogin.yahoo.com"
"name": "Hotmail",
"icon": "live",
"data": "http://login.live.com"
"name": "Ask",
"icon": "ask",
"data": "http://ask.com"
"name": "1mobile",
"icon": "1mobile",
"data": "http://m.1mobile.com"
"name": "PBS Video",
"icon": "pbs",
"data": "http://video.pbs.org"
"name": "MTV",
"icon": "mtv",
"data": "http://www.mtv.com"
"name": "Amazon",
"icon": "amazon",
"data": "http://www.amazon.com"
"name": "Billboard",
"icon": "billboard",
"data": "http://m.billboard.com"
"name": "eBay",
"icon": "ebay",
"data": "http://www.ebay.com"
"name": "ESPN",
"icon": "espn",
"data": "http://m.espn.go.com"
"name": "4shared",
"icon": "4shared",
"data": "http://m.4shared.com"
"name": "TrophyManage",
"icon": "trophymanager",
"data": "http://trophymanager.com"
"name": "Tubidy",
"icon": "tubidy",
"data": "http://tubidy.mobi"
"name": "CNN",
"icon": "cnn",
"data": "http://cnnmobile.com"
"name": "9GAG",
"icon": "9gag",
"data": "http://m.9gag.com"
"name": "hulu",
"icon": "hulu",
"data": "http://hulu.com"
"name": "ESPN Cricinfo",
"icon": "espncricinfo",
"data": "http://espncricinfo.com"
"name": "Weather",
"icon": "weather",
"data": "http://weather.com"
"name": "Craigslist",
"icon": "craigslist",
"data": "http://craigslist.org"
"name": "DU Battery",
"icon": "dubattery",
"data": "http://app.appsflyer.com/com.dianxinos.dxbs?pid=BaiduBrowser&c=1"
"name": "Apps&Games",
"icon": "androidapp",
"data": "http://s.mobile-global.baidu.com/mbrowser/cache/dianxin/apps"
"name": "Wallpaper",
"icon": "skinstore",
"data": "http://mobile-global.baidu.com/mbrowser/skin/homepage"
}
],
"news": [
"name": "Hot news",
"icon": "news_subscription_icon_hotnews",
"data": "{\"category\":\"-1\", \"home_icon\":\"news_icon_hotnews\"}"
"name": "US/Canada",
"icon": "news_subscription_icon_nasional",
"data": "{\"category\":\"0\", \"home_icon\":\"news_icon_nasional\"}"
"name": "International",
"icon": "news_subscription_icon_international",
"data": "{\"category\":\"1\", \"home_icon\":\"news_icon_international\"}"
"name": "Technology",
"icon": "news_subscription_icon_technology",
"data": "{\"category\":\"2\", \"home_icon\":\"news_icon_technology\"}"
"name": "Business",
"icon": "news_subscription_icon_business",
"data": "{\"category\":\"3\", \"home_icon\":\"news_icon_business\"}"
"name": "Sports",
"icon": "news_subscription_icon_sports",
"data": "{\"category\":\"42\", \"home_icon\":\"news_icon_sports\"}"
"name": "Entertainment",
"icon": "news_subscription_icon_entertainment",
"data": "{\"category\":\"4\", \"home_icon\":\"news_icon_entertainment\"}"
"name": "Lifestyle",
"icon": "news_subscription_icon_life",
"data": "{\"category\":\"56\", \"home_icon\":\"news_icon_life\"}"
"picture": [
"name": "Pets",
"icon": "picture_subscription_icon_pet",
"data": "{\"category\":\"1082\", \"home_icon\":\"picture_icon_pet\"}"
"name": "Funny",
"icon": "picture_subscription_icon_funny",
"data": "{\"category\":\"1080\", \"home_icon\":\"picture_icon_funny\"}"
"name": "Pop Stars",
"icon": "picture_subscription_icon_musician",
"data": "{\"category\":\"1083\", \"home_icon\":\"picture_icon_musician\"}"
"name": "Rage Comic",
"icon": "picture_subscription_icon_crazycomic",
"data": "{\"category\":\"1079\", \"home_icon\":\"picture_icon_crazycomic\"}"
"name": "Facebook Pictures",
"icon": "picture_subscription_icon_facebookpicture",
"data": "{\"category\":\"1081\", \"home_icon\":\"picture_icon_facebookpicture\"}"
"name": "Religion",
"icon": "picture_subscription_icon_religion",
"data": "{\"category\":\"1078\", \"home_icon\":\"picture_icon_religion\"}"
"weather": [
"name": "New York",
"data": "{\"lng\": -74.005966, \"lat\": 40.714272}"
"name": "Los Angeles",
"data": "{\"lng\": -118.243683,\"lat\": 34.052231}"
"name": "Washington",
"data": "{\"lng\": -77.04,\"lat\": 38.9}"
"name": "Seattle",
"data": "{\"lng\": -122.332069,\"lat\": 47.606209}"
"name": "San Francisco",
"data": "{\"lng\": -122.419418,\"lat\": 37.774929}"
"video": [
"name": "Popular",
"data": "{\"category\":\"2093\", \"home_icon\":\"video_icon_ftball\"}"
{
"name": "Music",
"icon": "video_subscription_icon_music",
"data": "{\"category\":\"2041\", \"home_icon\":\"video_icon_ftball\"}"
"name": "Games",
"icon": "video_subscription_icon_game",
"data": "{\"category\":\"2042\", \"home_icon\":\"video_icon_ftball\"}"
"name": "Comedy",
"icon": "video_subscription_icon_comedy",
"data": "{\"category\":\"2043\", \"home_icon\":\"video_icon_ftball\"}"
"name": "Sport",
"data": "{\"category\":\"2044\", \"home_icon\":\"video_icon_ftball\"}"
"name": "Movie trails",
"icon": "video_subscription_icon_trailer",
"data": "{\"category\":\"2045\", \"home_icon\":\"video_icon_ftball\"}"
"name": "News",
"icon": "video_subscription_icon_news",
"data": "{\"category\":\"2046\", \"home_icon\":\"video_icon_ftball\"}"
"name": "Shows",
"icon": "video_subscription_icon_islam",
"data": "{\"category\":\"2047\", \"home_icon\":\"video_icon_ftball\"}"
]
}
819
MemTotal: 841036 kB
MemFree: 489336 kB
Buffers: 0 kB
Cached: 149524 kB
SwapCached: 0 kB
Active: 246900 kB
04-30 09:45:54.114 W/System.err(
04-30 09:45:54.124 W/System.err(
04-30 09:45:54.194 D/dalvikvm(
04-30 09:45:54.264 V/DroidBox(
04-30 09:45:54.274 E/bb-i18n (
04-30 09:45:54.284 V/DroidBox(
04-30 09:45:54.344 V/DroidBox(
04-30 09:45:54.354 V/DroidBox(
04-30 09:45:54.374 V/DroidBox(
04-30 09:45:54.384 V/DroidBox(
04-30 09:45:54.395 V/DroidBox(
04-30 09:45:54.404 V/DroidBox(
04-30 09:45:54.414 V/DroidBox(
04-30 09:45:54.454 I/dalvikvm(
04-30 09:46:20.194 D/AndroidRuntime(
04-30 09:46:20.224 D/dalvikvm(
04-30 09:46:20.234 D/dalvikvm(
04-30 09:46:20.254 D/dalvikvm(
04-30 09:46:20.663 D/AndroidRuntime(
04-30 09:46:20.704 D/WebNotificationManagerService(
04-30 09:46:20.704 D/AndroidRuntime(
04-30 09:46:20.714 D/dalvikvm(
04-30 09:46:20.724 I/AndroidRuntime(
04-30 09:46:20.724 V/DroidBox(
04-30 09:46:20.734 V/DroidBox(
04-30 09:46:20.744 D/WebNotificationManagerService(
04-30 09:46:20.744 V/DroidBox(
04-30 09:46:21.174 D/AndroidRuntime(
04-30 09:46:21.204 D/dalvikvm(
04-30 09:46:21.214 D/dalvikvm(
04-30 09:46:21.234 D/dalvikvm(
04-30 09:46:21.634 D/AndroidRuntime(
04-30 09:46:21.684 D/AndroidRuntime(
04-30 09:46:21.694 D/dalvikvm(
04-30 09:46:21.694 I/AndroidRuntime(
04-30 09:46:22.154 V/DroidBox(
04-30 09:46:22.163 V/DroidBox(
04-30 09:46:22.174 D/AndroidRuntime(
04-30 09:46:22.184 V/DroidBox(
04-30 09:46:22.204 V/DroidBox(
04-30 09:46:22.204 W/DroidBox(
04-30 09:46:22.234 D/dalvikvm(
04-30 09:46:22.244 V/DroidBox(
04-30 09:46:22.254 W/DroidBox(
04-30 09:46:22.274 V/DroidBox(
04-30 09:46:22.284 D/dalvikvm(
04-30 09:46:22.304 W/System.err(
04-30 09:46:22.314 W/System.err(
04-30 09:46:22.314 W/SocketClient(
04-30 09:46:22.324 W/System.err(
04-30 09:46:22.334 W/System.err(
04-30 09:46:22.344 W/System.err(
04-30 09:46:22.734 D/AndroidRuntime(
04-30 09:46:22.774 V/DroidBox(
04-30 09:46:22.784 V/DroidBox(
04-30 09:46:22.794 D/AndroidRuntime(
04-30 09:46:22.804 D/dalvikvm(
04-30 09:46:22.834 I/AndroidRuntime(
04-30 09:46:23.264 D/AndroidRuntime(
04-30 09:46:23.294 D/dalvikvm(
04-30 09:46:23.314 D/dalvikvm(
04-30 09:46:23.724 D/AndroidRuntime(
04-30 09:46:23.794 I/ActivityManager(
04-30 09:46:23.794 D/AndroidRuntime(
04-30 09:46:23.804 D/dalvikvm(
04-30 09:46:23.844 I/AndroidRuntime(
04-30 09:46:23.894 E/Trace (
04-30 09:46:24.294 D/dalvikvm(
04-30 09:46:24.474 D/AndroidRuntime(
04-30 09:46:24.534 D/dalvikvm(
04-30 09:46:24.584 D/dalvikvm(
04-30 09:46:24.734 D/dalvikvm(
04-30 09:46:25.054 D/dalvikvm(
04-30 09:46:25.064 D/dalvikvm(
04-30 09:46:25.064 E/zjj-dump-native(
04-30 09:46:25.064 V/DroidBox(
04-30 09:46:25.094 V/DroidBox(
04-30 09:46:25.114 V/DroidBox(
04-30 09:46:25.163 I/BAT (
04-30 09:46:25.284 D/dalvikvm(
04-30 09:46:25.304 V/DroidBox(
04-30 09:46:25.304 I/BAT (
04-30 09:46:25.354 I/BAT (
04-30 09:46:25.373 V/DroidBox(
04-30 09:46:25.413 V/DroidBox(
04-30 09:46:25.424 D/AndroidRuntime(
04-30 09:46:25.424 V/DroidBox(
04-30 09:46:25.484 D/AndroidRuntime(
04-30 09:46:25.484 W/dalvikvm(
04-30 09:46:25.484 E/BAT (
04-30 09:46:25.494 D/AndroidRuntime(
04-30 09:46:25.514 D/dalvikvm(
04-30 09:46:25.514 V/DroidBox(
04-30 09:46:25.524 V/DroidBox(
04-30 09:46:25.534 I/AndroidRuntime(
04-30 09:46:25.554 V/DroidBox(
04-30 09:46:25.663 V/DroidBox(
04-30 09:46:25.684 V/DroidBox(
04-30 09:46:25.704 V/DroidBox(
04-30 09:46:25.714 V/DroidBox(
04-30 09:46:25.734 V/DroidBox(
04-30 09:46:25.774 V/DroidBox(
JTdCJTIyOTkwMDAwLTMlMjIlM0ElNUIlNUIxMzk4ODUxMTI5NDQ1JTJDJTIyMSUyMiU1RCU1RCU3RA==
JTdCJTIyOTkwMDAxLTMlMjIlM0ElNUIlNUIxMzk4ODUxMTI5NDU5JTJDJTIyMSUyMiU1RCU1RCU3RA==
JTdCJTIyMDEwMDE0LTMlMjIlM0ElNUIlNUIxMzk4ODUxMTQxOTIzJTJDJTIyY29ubmVjdF9pb2V4Y2VwdGlvbiUyMiUyQyUyMm5vX25ldCUyMiU1RCU1RCU3RA==
JTdCJTIyMDEwMDAwLTElMjIlM0ElNUIlNUIxMzk4ODUxMTQyMTM4JTJDJTIyMCUyMiU1RCU1RCU3RA==
JTdCJTIyMDEwMDAxLTElMjIlM0ElNUIlNUIxMzk4ODUxMTQyMTM5JTJDJTIyMCUyMiU1RCU1RCU3RA==
JTdCJTIyMDEwMDA2LTMlMjIlM0ElNUIlNUIxMzk4ODUxMTQyMTQyJTJDJTIybm9uZXR3b3JrJTIyJTVEJTVEJTdE
JTdCJTIyMDEwMDAyLTElMjIlM0ElNUIlNUIxMzk4ODUxMTQyMTQ0JTJDJTIyMSUyMiU1RCU1RCU3RA==
JTdCJTIyMjYwMDAwLTElMjIlM0ElNUIlNUIxMzk4ODUxMTQyMTQ2JTJDJTIyMCUyMiU1RCU1RCU3RA==
JTdCJTIyMDEwMDA1LTMlMjIlM0ElNUIlNUIxMzk4ODUxMTQ1ODk5JTJDJTIyMCUyMiUyQyUyMmdiJTIyJTVEJTVEJTdE
JTdCJTIyMDEwMDE0LTMlMjIlM0ElNUIlNUIxMzk4ODUxMTUyMTM3JTJDJTIyY29ubmVjdF9pb2V4Y2VwdGlvbiUyMiUyQyUyMm5vX25ldCUyMiU1RCU1RCU3RA==
行为描述: 执行系统命令
详情信息: /data/data/com.baidu.browser.inter/files/libprocmox_v1_4.so /data/data/com.baidu.browser.inter /data/data/com.baidu.browser.inter/lib b9cb707eee723ea0adbe38c425e9464d http://s.mobile-global.baidu.com/mbrowser/mbrowser-beback/usersaving.html?uid=C9EEBC211EA390B486594C83704D4465%7C000000000000000&sub=&pkn=com.baidu.browser.inter&la=en&sv=16&ua=bd_768_1184_unknown-Full+Android+on+Emulator-4-1-1_4-5-0-4_j2&pid=&ch=waterworld_tailormade15&av=4.5.0.4 0 com.android.browser/com.android.browser.BrowserActivity
{logcat, -t, 200, -v, time}
行为描述: 启动服务
详情信息: com.android.musicfx.Compatibility$Service
com.baidu.browser.weather.BdWeatherService
com.baidu.browser.stat.BdUploadService
行为描述: 写入文件
详情信息: path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/batsdk_user_info.xml length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/com.baidu.browser.inter_preferences.xml length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/com.baidu.browser.inter_preferences.xml length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/BrowserActivity.xml length:105
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:94
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:97
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:75
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:99
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:69
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:75
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:65
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:65
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:68
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:67
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:56
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:66
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:64
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:56
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:62
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:70
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:70
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:62
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:59
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:57
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:62
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:39
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:67
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:52
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:55
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:52
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:47
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:32
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:43
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:48
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:67
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:67
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:68
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:78
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:96
path:/data/data/com.baidu.browser.inter/files/skin/wallpaper_bg.jpg length:94
path:/data/data/com.baidu.browser.inter/shared_prefs/com.baidu.browser.inter_preferences.xml length:105
path:/data/data/com.baidu.browser.inter/cache/img_cache/waterfall/journal.tmp length:36
path:/data/data/com.baidu.browser.inter/files/bbm/tnconfig.ini length:76
path:/data/data/com.baidu.browser.inter/shared_prefs/f6ea13bf0c7b6bb3994355193857e227.xml length:105
path:/data/data/com.baidu.browser.inter/files/bbm/6cf0f720d603ea40802ea189dbbf091a.dat length:44
path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.baidu.browser.inter/files/config_gb.json length:105
path:/data/data/com.baidu.browser.inter/files/config_gb.json length:105
path:/data/data/com.baidu.browser.inter/files/config_gb.json length:105
path:/data/data/com.baidu.browser.inter/files/home/navi_gb.json length:105
path:/data/data/com.baidu.browser.inter/files/libprocmox_v1_4.so length:99
path:/data/data/com.baidu.browser.inter/shared_prefs/appsflyer-data.xml length:105
path:/data/data/com.baidu.browser.inter/files/libprocmox_v1_4.so length:75
path:/data/data/com.baidu.browser.inter/files/AF_INSTALLATION length:41
path:/data/data/com.baidu.browser.inter/files/libprocmox_v1_4.so length:105
path:/data/data/com.baidu.browser.inter/files/libprocmox_v1_4.so length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/appsflyer-data.xml length:105
path:/data/data/com.baidu.browser.inter/shared_prefs/appsflyer-data.xml length:105
path:/data/data/com.baidu.browser.inter/files/bbm/d7f35a175a08c22d1db369415c5a49da length:105
path:/data/data/com.baidu.browser.inter/files/zeus_web_error_icon.png length:77
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:55
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:53
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:58
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:52
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:58
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:63
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:54
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:43
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:49
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:60
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:61
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:56
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:52
path:/data/data/com.baidu.browser.inter/files/bat_crash_1398851188471 length:57
行为描述: 文件写入初始化
详情信息: Ljava/io/File;=/data/data/com.baidu.browser.inter/cache/img_cache/waterfall/journal.tmp
Ljava/io/File;=/data/data/com.baidu.browser.inter/cache/img_cache/waterfall/journal | Z=true
Ljava/io/File;=/mnt/sdcard/baidu/.cuid | Z=false
Ljava/io/File;=/data/data/com.baidu.browser.inter/files/bbm/tnconfig.ini
Ljava/io/File;=/data/data/com.baidu.browser.inter/files/bbm/d7f35a175a08c22d1db369415c5a49da | Z=true
行为描述: 初始化Intent
详情信息: Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=http://m.baidu.com/?
Ljava/lang/String;=android.intent.action.MAIN | Landroid/net/Uri;=null
Ljava/lang/String;=android.intent.action.NOTIFICATIONSERVICE_CLOSE
Landroid/content/Context;=com.baidu.browser.inter.BdApplication@41627670 | Ljava/lang/Class;=class com.baidu.browser.floatwindow.FloatWindowService$AlarmReceiver
Landroid/content/Context;=com.baidu.browser.weather.BdWeatherService@41619f30 | Ljava/lang/Class;=class com.baidu.browser.weather.BdWeatherReceiver
Landroid/content/Context;=com.baidu.browser.inter.BdApplication@41626f28 | Ljava/lang/Class;=class com.baidu.browser.floatwindow.FloatWindowService$AlarmReceiver
行为描述: 激活Activity
详情信息: flg=0x10000 cmp=com.baidu.browser.inter/.BrowserActivity
行为描述: 定位移动终端
详情信息: null
行为描述: 获取用户ID
详情信息: 310260000000000
行为描述: 获取设备ID
详情信息: 357242043237511
Activities
VirSCANVirSCAN
活动名 类型
.SplashActivity android.intent.action.MAIN
.SplashActivity android.intent.action.VIEW
.SplashActivity android.intent.action.SENDTO
.SplashActivity android.intent.category.LAUNCHER
.SplashActivity android.intent.category.DEFAULT
.SplashActivity android.intent.category.BROWSABLE
.BrowserActivity com.baidu.browser.inter.BrowserActivity.TestPageLoad
.BrowserActivity android.intent.action.VIEW
.BrowserActivity com.baidu.browser.inter.INVOKE
.BrowserActivity android.intent.category.DEFAULT
.BrowserActivity android.intent.category.BROWSABLE
com.baidu.browser.qrcode.BdCaptureActivity com.baidu.browser.inter.INVOKES
com.baidu.browser.qrcode.BdCaptureActivity android.intent.category.DEFAULT
危险函数
VirSCANVirSCAN
函数名称 信息
ContentResolver;->query 读取联系人、短信等数据库
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL
getRuntime 获取命令行环境
LocationManager;->getLastKnownLocation 获取地址位置
HttpClient;->execute 请求远程服务器
DefaultHttpClient;->execute 发送HTTP请求
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
java/lang/Runtime;->exec 执行字符串命令
android/app/NotificationManager;->notify 信息通知栏
Camera;->open 开启相机
TelephonyManager;->getSimSerialNumber 获取SIM序列号
WifiManager;->setWifiEnabled 变更WIFI状态
启动方式
VirSCANVirSCAN
名称 信息
com.baidu.browser.inter.AppBoot 开机启动服务
com.baidu.browser.downloads.DownloadReceiver 网络连接改变时启动服务
com.baidu.browser.downloads.DownloadReceiver 应用安装时启动服务
com.baidu.browser.widget.SearchWidget 更新应用小部件时启动服务
广告信息
VirSCANVirSCAN
名称 信息
com.baidu 百度
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.VIBRATE 允许设备震动
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.BACKUP_DATA
android.permission.READ_PHONE_STATE 读取电话状态
com.baidu.permission.SEND_DOWNLOAD_COMPLETED_INTENTS
com.baidu.permission.ACCESS_DOWNLOAD_MANAGER
com.baidu.permission.ACCESS_CACHE_FILESYSTEM
com.baidu.permission.ACCESS_BOOKMARKS
android.permission.CLEAR_APP_CACHE 清除应用缓存
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.RECORD_AUDIO 录音(使用AudioRecord)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.RESTART_PACKAGES 重启其他程序
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.browser.permission.READ_HISTORY_BOOKMARKS 读取浏览器书签
android.permission.PERSISTENT_ACTIVITY 创建长期驻留的Activity
android.permission.CAMERA 访问照相机设备
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.BROADCAST_STICKY 发送持久广播
android.permission.GET_ACCOUNTS 访问账户列表
com.google.android.c2dm.permission.RECEIVE
com.baidu.browser.inter.permission.C2D_MESSAGE
android.permission.READ_LOGS 读取系统日志
com.google.android.providers.gsf.permission.READ_GSERVICES
服务列表
VirSCANVirSCAN
名称
com.baidu.htmlNotification.WebNotificationManagerService
com.baidu.browser.message.BdMessageService
com.baidu.browser.floatwindow.FloatWindowService
com.baidu.browser.weather.BdWeatherService
com.baidu.batsdk.ui.BatsdkService
com.baidu.browser.push.GcmIntentService
com.baidu.browser.stat.BdUploadService