VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2016-04-27 22:14:02 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 7
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 5
avast 150725-1 4.7.4 2015-07-25 Found nothing 18
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 6
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 8
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 1
clamav 19861 0.97.5 2014-12-31 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 47
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 1
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 3
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 30
gdata 25.6363 25.6363 2016-04-27 Found nothing 23
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 12
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 60
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 36
kingsoft 2.1 2.1 2013-09-22 Found nothing 9
mcafee 7638 5400.1158 2014-11-30 Found nothing 32
nod32 0920 3.0.21 2014-12-23 Found nothing 2
panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 3
qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 1
quickheal 14.00 14.00 2015-07-25 Found nothing 4
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 5
sophos 5.08 3.55.0 2014-12-01 Found nothing 6
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 1
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 25
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 4
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 21
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 15
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 4
权限列表
许可名称 信息
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.FORCE_STOP_PACKAGES
android.permission.INTERNET 连接网络(2G或3G)
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.VIBRATE 允许设备震动
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.INTERNAL_SYSTEM_WINDOW 访问系统窗口
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:ba8a357ca4dfeaf3dd5beb883cfbd758
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:cn.com.etronics.atlastv
最低运行环境:Android 4.1, 4.1.1
版权:
关键行为
VirSCANVirSCAN
行为描述: 检测自身是否被调试
详情信息: N/A
行为描述: 跨进程写入数据
详情信息: TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x00010000, Size = 0x000007c2
TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x00020000, Size = 0x0000086c
TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x7ffd3010, Size = 0x00000004
TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x7ffd31e8, Size = 0x00000004
行为描述: 获取TickCount值
详情信息: TickCount = 550015, SleepMilliseconds = 60000.
TickCount = 550031, SleepMilliseconds = 60000.
TickCount = 550156, SleepMilliseconds = 60000.
TickCount = 550187, SleepMilliseconds = 60000.
TickCount = 550218, SleepMilliseconds = 60000.
TickCount = 550343, SleepMilliseconds = 60000.
TickCount = 550390, SleepMilliseconds = 60000.
TickCount = 550406, SleepMilliseconds = 60000.
TickCount = 550640, SleepMilliseconds = 60000.
TickCount = 550656, SleepMilliseconds = 60000.
TickCount = 550671, SleepMilliseconds = 60000.
TickCount = 550765, SleepMilliseconds = 60000.
TickCount = 550781, SleepMilliseconds = 60000.
TickCount = 550812, SleepMilliseconds = 60000.
TickCount = 550828, SleepMilliseconds = 60000.
行为描述: 获取窗口截图信息
详情信息: Foreground window Info: HWND = 0x00000000, DC = 0x410104a4.
Foreground window Info: HWND = 0x00000000, DC = 0x0901048a.
Foreground window Info: HWND = 0x00000000, DC = 0xee01046a.
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖
行为描述: 自删除
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe
进程行为
VirSCANVirSCAN
行为描述: 检测自身是否被调试
详情信息: N/A
行为描述: 跨进程写入数据
详情信息: TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x00010000, Size = 0x000007c2
TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x00020000, Size = 0x0000086c
TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x7ffd3010, Size = 0x00000004
TargetProcess = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe, WriteAddress = 0x7ffd31e8, Size = 0x00000004
行为描述: 获取TickCount值
详情信息: TickCount = 550015, SleepMilliseconds = 60000.
TickCount = 550031, SleepMilliseconds = 60000.
TickCount = 550156, SleepMilliseconds = 60000.
TickCount = 550187, SleepMilliseconds = 60000.
TickCount = 550218, SleepMilliseconds = 60000.
TickCount = 550343, SleepMilliseconds = 60000.
TickCount = 550390, SleepMilliseconds = 60000.
TickCount = 550406, SleepMilliseconds = 60000.
TickCount = 550640, SleepMilliseconds = 60000.
TickCount = 550656, SleepMilliseconds = 60000.
TickCount = 550671, SleepMilliseconds = 60000.
TickCount = 550765, SleepMilliseconds = 60000.
TickCount = 550781, SleepMilliseconds = 60000.
TickCount = 550812, SleepMilliseconds = 60000.
TickCount = 550828, SleepMilliseconds = 60000.
行为描述: 获取窗口截图信息
详情信息: Foreground window Info: HWND = 0x00000000, DC = 0x410104a4.
Foreground window Info: HWND = 0x00000000, DC = 0x0901048a.
Foreground window Info: HWND = 0x00000000, DC = 0xee01046a.
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖
行为描述: 自删除
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\aut4.tmp
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx
C:\Documents and Settings\Administrator\Local Settings\Temp\aut5.tmp
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\aut6.tmp
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\说明.txt
C:\Documents and Settings\Administrator\Local Settings\Temp\aut7.tmp
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\调试地址.txt
C:\Documents and Settings\Administrator\Local Settings\Temp\~DF4D8C.tmp
行为描述: 创建可执行文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe
行为描述: 覆盖已有文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\aut4.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\aut5.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\aut6.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\aut7.tmp
行为描述: 查找文件
详情信息: FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\Local Settings
FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\1461766474.217521.exe
FileName = C:\WINDOWS
FileName = C:\WINDOWS\system32
FileName = C:\WINDOWS\system32\msctfime.ime
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\说明.txt
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\调试地址.txt
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\*.*
行为描述: 删除文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\aut4.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\aut5.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\aut6.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\aut7.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\~DF4D8C.tmp
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\说明.txt
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\调试地址.txt
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖
行为描述: 修改文件内容
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\aut4.tmp ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\aut4.tmp ---> Offset = 20480
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\aut5.tmp ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\aut5.tmp ---> Offset = 16384
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\aut6.tmp ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\说明.txt ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\aut7.tmp ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\调试地址.txt ---> Offset = 0
行为描述: 自删除
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{A1110860-0D00-4EE9-92F5-B1C6CFC69644}\2.0\
\REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{A1110860-0D00-4EE9-92F5-B1C6CFC69644}\2.0\FLAGS\
\REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{A1110860-0D00-4EE9-92F5-B1C6CFC69644}\2.0\0\win32\
\REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{A1110860-0D00-4EE9-92F5-B1C6CFC69644}\2.0\HELPDIR\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E83F4050-F691-4AC7-83CF-4F6CDE3A2DB7}\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E83F4050-F691-4AC7-83CF-4F6CDE3A2DB7}\ProxyStubClsid\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E83F4050-F691-4AC7-83CF-4F6CDE3A2DB7}\ProxyStubClsid32\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E83F4050-F691-4AC7-83CF-4F6CDE3A2DB7}\TypeLib\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E83F4050-F691-4AC7-83CF-4F6CDE3A2DB7}\TypeLib\Version
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{862D02A2-7DB3-478A-91F9-7FDA9AAD5C65}\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{862D02A2-7DB3-478A-91F9-7FDA9AAD5C65}\ProxyStubClsid\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{862D02A2-7DB3-478A-91F9-7FDA9AAD5C65}\ProxyStubClsid32\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{862D02A2-7DB3-478A-91F9-7FDA9AAD5C65}\TypeLib\
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{862D02A2-7DB3-478A-91F9-7FDA9AAD5C65}\TypeLib\Version
\REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D553B0B5-EE7A-4358-9EFA-2F72960E0E7C}\
其他行为
VirSCANVirSCAN
行为描述: 检测自身是否被调试
详情信息: N/A
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
行为描述: 创建事件对象
详情信息: EventName = Global\userenv: User Profile setup event
EventName = DINPUTWINMM
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述: 获取TickCount值
详情信息: TickCount = 550015, SleepMilliseconds = 60000.
TickCount = 550031, SleepMilliseconds = 60000.
TickCount = 550156, SleepMilliseconds = 60000.
TickCount = 550187, SleepMilliseconds = 60000.
TickCount = 550218, SleepMilliseconds = 60000.
TickCount = 550343, SleepMilliseconds = 60000.
TickCount = 550390, SleepMilliseconds = 60000.
TickCount = 550406, SleepMilliseconds = 60000.
TickCount = 550640, SleepMilliseconds = 60000.
TickCount = 550656, SleepMilliseconds = 60000.
TickCount = 550671, SleepMilliseconds = 60000.
TickCount = 550765, SleepMilliseconds = 60000.
TickCount = 550781, SleepMilliseconds = 60000.
TickCount = 550812, SleepMilliseconds = 60000.
TickCount = 550828, SleepMilliseconds = 60000.
行为描述: 调整进程token权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 窗口信息
详情信息: Pid = 1344, Hwnd=0x202d4, Text = 正在联接数据库..., ClassName = ThunderRT6TextBox.
Pid = 1344, Hwnd=0x202d6, Text = 刷机, ClassName = ThunderRT6Frame.
Pid = 1344, Hwnd=0x202d8, Text = 手动刷一次, ClassName = ThunderRT6CommandButton.
Pid = 1344, Hwnd=0x202c2, Text = 0, ClassName = ThunderRT6TextBox.
Pid = 1344, Hwnd=0x202c4, Text = 300, ClassName = ThunderRT6TextBox.
Pid = 1344, Hwnd=0x202c8, Text = 180, ClassName = ThunderRT6TextBox.
Pid = 1344, Hwnd=0x202ca, Text = 正序刷机, ClassName = ThunderRT6OptionButton.
Pid = 1344, Hwnd=0x202c6, Text = 反序刷机, ClassName = ThunderRT6OptionButton.
Pid = 1344, Hwnd=0x302da, Text = 随机刷机, ClassName = ThunderRT6OptionButton.
Pid = 1344, Hwnd=0x302b8, Text = 最大刷 次, ClassName = ThunderRT6CheckBox.
Pid = 1344, Hwnd=0x202b0, Text = 自动刷单 每 秒刷单一次, ClassName = ThunderRT6CheckBox.
Pid = 1344, Hwnd=0x202ae, Text = 手动开奖一次, ClassName = ThunderRT6CommandButton.
Pid = 1344, Hwnd=0x502ce, Text = 正在联接数据库... , ClassName = ThunderRT6TextBox.
Pid = 1344, Hwnd=0x302bc, Text = 彩票开奖 + 刷机 58.49.58.140, ClassName = ThunderRT6FormDC.
Pid = 1344, Hwnd=0x102e0, Text = 确定, ClassName = Button.
行为描述: 获取窗口截图信息
详情信息: Foreground window Info: HWND = 0x00000000, DC = 0x410104a4.
Foreground window Info: HWND = 0x00000000, DC = 0x0901048a.
Foreground window Info: HWND = 0x00000000, DC = 0xee01046a.
行为描述: 可执行文件签名信息
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe(签名验证: 未通过)
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = 60000.
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [AutoIt v3,AutoIt v3]
[Window,Class] = [彩票开奖 + 刷机 58.49.58.140,ThunderRT6FormDC]
[Window,Class] = [,ThunderRT6UserControlDC]
行为描述: 可执行文件MD5
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx ---> 179a00dd36181361a94cb7e9335a6c17
C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\彩票开奖.exe ---> 66d26e2a2291d7a0d7a12a4f9932e18d
行为描述: 加载新释放的文件
详情信息: Image: C:\Documents and Settings\Administrator\Local Settings\%temp%\彩票开奖\EFMTIcn.ocx.
Activities
VirSCANVirSCAN
活动名 类型
cn.com.etronics.atlastv.WelcomeActivity android.intent.action.MAIN
cn.com.etronics.atlastv.WelcomeActivity android.intent.category.DEFAULT
cn.com.etronics.atlastv.WelcomeActivity android.intent.category.LAUNCHER
cn.com.etronics.atlastv.WelcomeActivity android.intent.category.MONKEY
cn.com.etronics.atlastv.WelcomeActivity android.intent.category.HOME
危险函数
VirSCANVirSCAN
函数名称 信息
android/app/NotificationManager;->notify 信息通知栏
ContentResolver;->query 读取联系人、短信等数据库
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
WifiManager;->setWifiEnabled 变更WIFI状态
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
TelephonyManager;->getLine1Number 获取手机号
TelephonyManager;->getSimSerialNumber 获取SIM序列号
java/net/URL;->openConnection 连接URL
ActivityManager;->killBackgroundProcesses 中断进程,可用于关闭杀软
java/net/URLConnection;->connect 连接URL
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.FORCE_STOP_PACKAGES
android.permission.INTERNET 连接网络(2G或3G)
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.VIBRATE 允许设备震动
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.INTERNAL_SYSTEM_WINDOW 访问系统窗口
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0xbf4bf0a7
META-INF/RASTA38.SF 0x8dbca388
META-INF/RASTA38.RSA 0x2a94f22a
AndroidManifest.xml 0xeead8684
classes.dex 0x211f6eb5
lib/armeabi-v7a/libiomx-gingerbread.so 0x11fb8a02
lib/armeabi-v7a/libiomx-hc.so 0x33fa4749
lib/armeabi-v7a/libiomx-ics.so 0x7377704c
lib/armeabi-v7a/libvlcjni.so 0xd0e78837
res/anim/controlerin.xml 0x83ee29da
res/anim/controlerout.xml 0x6df0d581
res/anim/in_lefttoright.xml 0xd1c5a035
res/anim/loading.xml 0x5d2ea4a0
res/anim/out_righttoleft.xml 0x7e1a3fee
res/anim/scale_welcome.xml 0xf764a73b
res/anim/slide_down.xml 0xd29f4241
res/anim/slide_in_left.xml 0xfa195a10
res/anim/slide_in_right.xml 0xb1acba37
res/anim/slide_out_left.xml 0x4f371910
res/anim/slide_out_right.xml 0xce7e3b4
res/anim/slide_up.xml 0xaa234adb
res/anim/tab_item_in.xml 0x1bd1ed33
res/anim/tab_item_out.xml 0xb34eebf3
res/color/spn_item_textcolor.xml 0x8b2a24c3
res/color/tabitem_textcolor.xml 0x8d228124
res/drawable-hdpi-v4/apptheme_list_activated_holo.9.png 0x5a6ca79f
res/drawable-hdpi-v4/apptheme_list_focused_holo.9.png 0xb1eec664
res/drawable-hdpi-v4/apptheme_list_longpressed_holo.9.png 0x5a6ca79f
res/drawable-hdpi-v4/apptheme_list_pressed_holo_light.9.png 0xa9743ab4
res/drawable-hdpi-v4/apptheme_list_selector_disabled_holo_light.9.png 0x43f655e6
res/drawable-hdpi-v4/apptheme_spinner_default_holo_light.9.png 0xbb5e4413
res/drawable-hdpi-v4/apptheme_spinner_disabled_holo_light.9.png 0x10081148
res/drawable-hdpi-v4/apptheme_spinner_focused_holo_light.9.png 0x233eeaf
res/drawable-hdpi-v4/apptheme_spinner_pressed_holo_light.9.png 0xccfc7b1c
res/drawable-hdpi-v4/loading_item.png 0x4e8b471a
res/drawable-mdpi-v4/apptheme_list_activated_holo.9.png 0x42126911
res/drawable-mdpi-v4/apptheme_list_focused_holo.9.png 0x76e7b0b2
res/drawable-mdpi-v4/apptheme_list_longpressed_holo.9.png 0x42126911
res/drawable-mdpi-v4/apptheme_list_pressed_holo_light.9.png 0x604bc0e1
res/drawable-mdpi-v4/apptheme_list_selector_disabled_holo_light.9.png 0xd6426851
res/drawable-mdpi-v4/apptheme_spinner_default_holo_light.9.png 0xbdebb00e
res/drawable-mdpi-v4/apptheme_spinner_disabled_holo_light.9.png 0x3c544e07
res/drawable-mdpi-v4/apptheme_spinner_focused_holo_light.9.png 0x316eb8cf
res/drawable-mdpi-v4/apptheme_spinner_pressed_holo_light.9.png 0x3d18ea66
res/drawable-mdpi-v4/loding_item.png 0x5a59711b
res/drawable-xhdpi-v4/apptheme_list_activated_holo.9.png 0x4ce2ed4d
res/drawable-xhdpi-v4/apptheme_list_focused_holo.9.png 0x84379ed2
res/drawable-xhdpi-v4/apptheme_list_longpressed_holo.9.png 0x4ce2ed4d
res/drawable-xhdpi-v4/apptheme_list_pressed_holo_light.9.png 0x62170a3d
res/drawable-xhdpi-v4/apptheme_list_selector_disabled_holo_light.9.png 0x1c2ff2be
res/drawable-xhdpi-v4/apptheme_spinner_default_holo_light.9.png 0x9510b7b9
res/drawable-xhdpi-v4/apptheme_spinner_disabled_holo_light.9.png 0x39af1c02
res/drawable-xhdpi-v4/apptheme_spinner_focused_holo_light.9.png 0x1d29af83
res/drawable-xhdpi-v4/apptheme_spinner_pressed_holo_light.9.png 0xbefdcff
res/drawable-xhdpi-v4/loading_item.png 0xd1f69b10
res/drawable-xxhdpi-v4/apptheme_list_activated_holo.9.png 0xdef6f1cd
res/drawable-xxhdpi-v4/apptheme_list_focused_holo.9.png 0xde39bcac
res/drawable-xxhdpi-v4/apptheme_list_longpressed_holo.9.png 0xdef6f1cd
res/drawable-xxhdpi-v4/apptheme_list_pressed_holo_light.9.png 0x3bbafad7
res/drawable-xxhdpi-v4/apptheme_list_selector_disabled_holo_light.9.png 0xb882f52f
res/drawable-xxhdpi-v4/apptheme_spinner_default_holo_light.9.png 0x3360a828
res/drawable-xxhdpi-v4/apptheme_spinner_disabled_holo_light.9.png 0xcb3d0047
res/drawable-xxhdpi-v4/apptheme_spinner_focused_holo_light.9.png 0xa30b82f6
res/drawable-xxhdpi-v4/apptheme_spinner_pressed_holo_light.9.png 0x4b2bdedc
res/drawable-xxhdpi-v4/loading_item.png 0xd1f69b10
res/drawable/app_logo.png 0x940ea21f
res/drawable/apptheme_list_selector_background_transition_holo_light.xml 0xeb204e31
res/drawable/apptheme_list_selector_holo_light.xml 0x5b5ff6eb
res/drawable/apptheme_spinner_background_holo_light.xml 0x2df95a63
res/drawable/back.xml 0x28badbbf
res/drawable/back01.png 0xfb2c24f3
res/drawable/back02.png 0x2702fc18
res/drawable/channel_item_selector.xml 0xe7e19ea4
res/drawable/channel_laoding.png 0x940ea21f
res/drawable/drawable.rar 0xf0abcf32
res/drawable/fav2.png 0x28ea81a7
res/drawable/fav3.png 0x45df1093
res/drawable/favour.xml 0xa643fd3c
res/drawable/favour_checked.png 0x78581b8f
res/drawable/favour_normal.png 0x6b54aefa
res/drawable/live.png 0xe9328fac
res/drawable/loading.xml 0x50b46fbd
res/drawable/main_bg1.jpg 0x2f58a358
res/drawable/main_bg2.jpg 0xb0a1ebe0
res/drawable/main_bg3.png 0xf45450bc
res/drawable/main_bg4.jpg 0x89e26314
res/drawable/main_bg5.jpg 0x5c784e19
res/drawable/main_bg6.jpg 0x519bc09e
res/drawable/main_bg7.jpg 0xeac30d9c
res/drawable/main_bg8.jpg 0x8f2a43e9
res/drawable/main_but_select.xml 0x958de00
res/drawable/mainbg.png 0x50fb37eb
res/drawable/media_pause.xml 0xdb72c1e1
res/drawable/media_play.xml 0x53eb32fe
res/drawable/mediacontroller_pause.png 0xba17581d
res/drawable/mediacontroller_play.png 0xb84e3087
res/drawable/music_column_bg_focus.png 0x9651881e
res/drawable/music_column_bg_normal.png 0xd74b72
res/drawable/noimage.png 0x687a27f2
res/drawable/pac_name_bg.9.png 0x2ff5c5db
res/drawable/package_bg.png 0x2bc768a9
res/drawable/play.png 0xe8763d4a
res/drawable/play_loading1.png 0x9d4fe0a
res/drawable/play_loading2.png 0xcad7a002
res/drawable/play_loading3.png 0xd25f3a63
res/drawable/play_loading4.png 0xfc608eb5
res/drawable/play_loading5.png 0xe0969c7a
res/drawable/play_loading6.png 0xe089afe2
res/drawable/play_loading7.png 0xd369a9b2
res/drawable/play_loading8.png 0x4f430731
res/drawable/programselect.png 0x1c9a27b6
res/drawable/radio_button_selector.xml 0x4d494586
res/drawable/seekbar_style.xml 0xcca01cc8
res/drawable/selector_dialog_bg.xml 0x72c459a8
res/drawable/setbg_recovery.png 0xb6fb9fea
res/drawable/setting.png 0xb5978d07
res/drawable/setting_text_bg.xml 0xe108db7c
res/drawable/style1_app.png 0xd35636b0
res/drawable/style1_live.png 0x919ed98d
res/drawable/style1_set.png 0x3f7f8e27
res/drawable/style1_vod.png 0x755c414e
res/drawable/top_navigation_bg.png 0x8835d303
res/drawable/video_brightness_bg.png 0xcac6bea0
res/drawable/video_num_bg.png 0xc48cd4f0
res/drawable/video_num_front.png 0x9f5799d3
res/drawable/video_volumn_bg.png 0xc5cfd19e
res/drawable/vod.png 0x5819fe2
res/drawable/vodcolumnbg.xml 0x60011bfd
res/drawable/vodleftdown.png 0xe38bda90
res/drawable/vodlefticon.xml 0xd636532a
res/drawable/vodlefticon01.png 0xad6b3460
res/drawable/vodlefticon02.png 0x6702b0a2
res/drawable/vodrighticon.xml 0xbc302a73
res/drawable/vodrighticon01.png 0xabc2ce80
res/drawable/vodrighticon02.png 0xbeacb6dc
res/drawable/welcome.jpg 0xa779b482
res/drawable/welcome_btn_off.png 0x9a538ef8
res/drawable/welcome_btn_on.png 0x36162c62
res/layout-v17/activity_movie_info.xml 0xef488e8c
res/layout-v17/fragment_setting.xml 0x355616c8
res/layout/activity_activate.xml 0x74ce8702
res/layout/activity_guide.xml 0x5b804c6d
res/layout/activity_movie_info.xml 0x889d9f1
res/layout/activity_player_live.xml 0x6988e126
res/layout/activity_vod_player.xml 0x9e1b42f8
res/layout/activity_welcome.xml 0x95205f72
res/layout/bgv_item.xml 0x554de3d1
res/layout/browse_app_item.xml 0x1e6ff7cc
res/layout/channel_item.xml 0xed67442c
res/layout/controler.xml 0x3a18647
res/layout/empty_msg_common.xml 0x5b4de4d8
res/layout/fragment_app_launcher.xml 0x8ddc1fc3
res/layout/fragment_live_column_mobile.xml 0x40f710ed
res/layout/fragment_setting.xml 0xc784bdf1
res/layout/fragment_vod_column_mobile.xml 0x7efe70d1
res/layout/loading_common.xml 0x72263347
res/layout/operation_common.xml 0x702b7f63
res/layout/package_item.xml 0x9e038e9c
res/layout/package_item2.xml 0x3080e860
res/layout/popupwindow.xml 0xf2750af0
res/layout/program_channel_item.xml 0xeb46d7fd
res/layout/spinner_item.xml 0xcd40385
res/layout/tab_item.xml 0x1d4caac3
res/mipmap-hdpi-v4/app_icon.png 0x940ea21f
res/mipmap-hdpi-v4/pgl_1.png 0x99fe54a5
res/mipmap-hdpi-v4/pgl_2.png 0x45ff0bb6
res/mipmap-hdpi-v4/pgl_3.png 0xab0f9d63
res/mipmap-hdpi-v4/pgl_4.png 0xcca82b5f
res/mipmap-hdpi-v4/play_controler_bg.png 0xc8867c8e
res/mipmap-hdpi-v4/play_hk.png 0xeeaf311f
res/mipmap-hdpi-v4/play_progress.png 0x769007fa
res/mipmap-hdpi-v4/play_seekbar_bg.png 0x9b08cb8c
resources.arsc 0xc7cff361
运行截图
VirSCANVirSCAN
VirSCAN