VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:2%Scanner(s) (1/39)found malware!
Behavior analysis report:         Habo file analysis
Time: 2014-11-12 01:19:14 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
ahnlab 9.9.9 9.9.9 2013-05-28 Found nothing 5
antivir 1.9.2.0 1.9.159.0 7.11.184.98 Found nothing 16
antiy 104803 AVL141109 2014-11-10 Found nothing 5
arcavir 1.0 2011 2014-05-30 Found nothing 9
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 2
avast 141111-0 4.7.4 2014-11-11 Found nothing 16
avg 2109/8019 10.0.1405 2014-11-06 Found nothing 3
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 4
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.57661 7.90123 2014-11-10 Found nothing 7
clamav 19608 0.97.5 2014-11-10 Found nothing 2
comodo 15023 5.1 2014-11-10 Found nothing 3
ctch 4.6.5 5.3.14 2013-12-01 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-10-31 Found nothing 58
fortinet 23.159, 23.159 5.1.158 2014-11-11 Found nothing 1
fprot 4.6.2.117 6.5.1.5418 2014-11-11 Found nothing 1
gdata 24.4872 24.4872 2014-11-10 Found nothing 10
hauri 2.73 2.73 2014-11-10 Found nothing 1
ikarus 1.06.01 V1.32.31.0 2014-11-11 Found nothing 19
jiangmin 16.0.100 1.0.0.0 2014-08-20 Found nothing 44
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 34
kingsoft 2.1 2.1 2013-09-22 Found nothing 4
mcafee 7520 5400.1158 2014-08-04 Found nothing 18
nod32 0436 3.0.21 2014-09-18 Found nothing 1
panda 9.05.01 9.05.01 2014-11-10 Found nothing 10
pcc 11.270.05 9.500-1005 2014-11-11 Found nothing 2
qh360 1.0.1 1.0.1 1.0.1 Found nothing 12
qqphone 1.0.0.0 1.0.0.0 2014-11-12 盟徳(a.banner.admob.a) 1
quickheal 14.00 14.00 2014-11-08 Found nothing 5
rising 25.39.06.04 25.39.06.04 2014-11-09 Found nothing 5
sophos 5.04 3.51.0 2014-08-05 Found nothing 7
sunbelt 3.9.2595.2 3.9.2595.2 2014-11-10 Found nothing 3
symantec 20141110.003 1.3.0.24 2014-11-10 Found nothing 1
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 13
thehacker 6.8.0.5 6.8.0.5 2014-11-09 Found nothing 5
tws 17.47.17308 1.0.2.2108 2014-11-10 Found nothing 7
vba 3.12.26.3 3.12.26.3 2014-11-11 Found nothing 6
virusbuster 15.0.965.0 5.5.2.13 2014-11-11 Found nothing 17
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.READ_EXTERNAL_STORAGE 读外部存储器(如:SD卡)
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
com.android.vending.CHECK_LICENSE
文件信息
VirSCANVirSCAN
安全评分 :80
基本信息
VirSCANVirSCAN
MD5:8fd5a7d552ffcb56a62cb0c147842888
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.vladyud.balance
最低运行环境:Android 2.1.x
版权:Unknown
关键行为
VirSCANVirSCAN
行为描述: 在桌面创建快捷方式
详情信息: C:\Documents and Settings\All Users\桌面\英雄联盟百宝箱.lnk
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,Auto-Suggest Dropdown]
[Window,Class] = [,ComboLBox]
[Window,Class] = [安装向导 - 英雄联盟百宝箱,TWizardForm]
[Window,Class] = [快速换肤,Button]
[Window,Class] = [注销,Static]
进程行为
VirSCANVirSCAN
行为描述: 在桌面创建快捷方式
详情信息: C:\Documents and Settings\All Users\桌面\英雄联盟百宝箱.lnk
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,Auto-Suggest Dropdown]
[Window,Class] = [,ComboLBox]
[Window,Class] = [安装向导 - 英雄联盟百宝箱,TWizardForm]
[Window,Class] = [快速换肤,Button]
[Window,Class] = [注销,Static]
文件行为
VirSCANVirSCAN
行为描述: 在系统敏感位置(如开始菜单等)释放链接或快捷方式
详情信息: C:\Documents and Settings\All Users\「开始」菜单\程序\英雄联盟百宝箱\英雄联盟百宝箱.lnk
C:\Documents and Settings\All Users\「开始」菜单\程序\英雄联盟百宝箱\卸载 英雄联盟百宝箱.lnk
行为描述: 创建可执行文件
详情信息: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-M2351.tmp\sample.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-TQ7V1.tmp\_isetup\_RegDLL.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-TQ7V1.tmp\_isetup\_shfoldr.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-TQ7V1.tmp\UpdateIcon.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-TQ7V1.tmp\psvince.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-M2351.tmp\RCX2.tmp
C:\Program Files\YXLMBBX\is-0DDG4.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-6B41P.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-RP37B.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-DJF5C.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-UM965.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-10NS7.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-LGBUH.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-RGVVT.tmp
C:\Program Files\YXLMBBX\YXLMBBX\is-AK22R.tmp
行为描述: 在桌面创建快捷方式
详情信息: C:\Documents and Settings\All Users\桌面\英雄联盟百宝箱.lnk
行为描述: 写权限映射文件
详情信息: ___JDBBX_YXLMBBX_20140220___
\WINDOWS\system32\zh-cn\ieframe.dll.mui
Local\UrlZonesSM_Administrator
LOLFileMap-P2845
\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
Local\!PrivacIE!SharedMem!Counter
CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
\WINDOWS\system32\zh-cn\mshtml.dll.mui
行为描述: 重命名文件
详情信息: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-M2351.tmp\sample.tmp ---> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-M2351.tmp\sample.tmp.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-M2351.tmp\RCX2.tmp ---> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-M2351.tmp\sample.tmp
C:\Program Files\YXLMBBX\is-0DDG4.tmp ---> C:\Program Files\YXLMBBX\unins000.exe
C:\Program Files\YXLMBBX\YXLMBBX\is-6B41P.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\psvince.dll
C:\Program Files\YXLMBBX\YXLMBBX\is-RP37B.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\d3dx9_31.dll
C:\Program Files\YXLMBBX\YXLMBBX\is-DJF5C.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\FeedbackModule.dll
C:\Program Files\YXLMBBX\YXLMBBX\is-U836P.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\fmkey
C:\Program Files\YXLMBBX\YXLMBBX\is-UM965.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\Login.dll
C:\Program Files\YXLMBBX\YXLMBBX\is-10NS7.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\LOLFasterWindow.dll
C:\Program Files\YXLMBBX\YXLMBBX\is-B7T8N.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\ToolUp.key
C:\Program Files\YXLMBBX\YXLMBBX\is-LGBUH.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\ToolUpdater.exe
C:\Program Files\YXLMBBX\YXLMBBX\is-RGVVT.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\ToolUpdater.exe.down
C:\Program Files\YXLMBBX\YXLMBBX\is-Q01C1.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\ToolUpgrade.dat
C:\Program Files\YXLMBBX\YXLMBBX\is-AK22R.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\unrar.dll
C:\Program Files\YXLMBBX\YXLMBBX\is-F6EO4.tmp ---> C:\Program Files\YXLMBBX\YXLMBBX\xunyoucall.dll
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 修改文件内容
详情信息: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-TQ7V1.tmp\Uninstall.ico---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\is-U836P.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\is-B7T8N.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\is-Q01C1.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\Module\is-CHTNP.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\is-HDP72.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\is-E20SN.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\is-E56N9.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\is-L193B.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\Feedback\is-NPN3S.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\Feedback\is-HSFRR.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\Feedback\is-DIGTV.tmp---> Offset = 0
C:\Program Files\YXLMBBX\YXLMBBX\skin\Feedback\is-9RORN.tmp---> Offset = 0
C:\Documents and Settings\All Users\「开始」菜单\程序\英雄联盟百宝箱\英雄联盟百宝箱.lnk---> Offset = 0
C:\Documents and Settings\All Users\桌面\英雄联盟百宝箱.lnk---> Offset = 0
网络行为
VirSCANVirSCAN
行为描述: 连接指定站点
详情信息: InternetConnectA: ServerName = dt.soft.jdbbx.com, PORT = 80
InternetConnectA: ServerName = soft.lol.jdbbx.com, PORT = 80
行为描述: 建立到一个指定的套接字连接
详情信息: 127.0.0.1:1043
行为描述: 打开HTTP请求
详情信息: HttpOpenRequestA: dt.soft.jdbbx.com:80/interfaces/alonetoolver.aspx, hConnect = 0x00000394
HttpOpenRequestA: soft.lol.jdbbx.com:80/interface/setmachinecode.aspx, hConnect = 0x00000428
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X\BaseClass
\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\YXLMBBX\InstallDir
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\Inno Setup: Setup Version
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\Inno Setup: App Path
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\InstallLocation
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\Inno Setup: Icon Group
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\Inno Setup: User
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\Inno Setup: Language
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\DisplayName
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\UninstallString
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\QuietUninstallString
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\Publisher
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\URLInfoAbout
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\HelpLink
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\英雄联盟百宝箱_is1\URLUpdateInfo
行为描述: 修改注册表_延迟重命名项
详情信息: \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\Session Manager\PendingFileRenameOperations
行为描述: 删除注册表键值_IE连接设置
详情信息: \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: Local\ZonesCounterMutex
Local\ZoneAttributeCacheCounterMutex
Local\ZonesCacheCounterMutex
Local\ZonesLockedCacheCounterMutex
RasPbFile
DDrawWindowListMutex
__DDrawExclMode__
__DDrawCheckExclMode__
Local\!PrivacIE!SharedMemory!Mutex
CTF.LBES.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Compart.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Asm.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Layouts.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TMD.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TimListCache.FMPDefaultS-1-5-21-1482476501-1645522239-1417001333-500MUTEX.DefaultS-1-5-21-1482476501-1645522239-1417001333-500
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,Auto-Suggest Dropdown]
[Window,Class] = [,ComboLBox]
[Window,Class] = [安装向导 - 英雄联盟百宝箱,TWizardForm]
[Window,Class] = [快速换肤,Button]
[Window,Class] = [注销,Static]
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [RiotWindowClass,]
NtUserFindWindowEx: [Class,Window] = [MS_AutodialMonitor,]
NtUserFindWindowEx: [Class,Window] = [MS_WebCheckMonitor,]
行为描述: 窗口信息
详情信息: Pid = 1920, Hwnd=0xd0190, Text = 欢迎使用 英雄联盟百宝箱 安装向导 , ClassName = TNewStaticText.
Pid = 1920, Hwnd=0xb0174, Text = 安装向导将在你的电脑上安装 英雄联盟百宝箱V1.4版本。 建议你在继续之前关闭所有其它应用程序。 单击“下一步”继续,或单击“取消, ClassName = TNewStaticText.
Pid = 1920, Hwnd=0xd01e8, Text = C:\Program Files\YXLMBBX, ClassName = TEdit.
Pid = 1920, Hwnd=0xb0192, Text = 下一步(&N) >, ClassName = TNewButton.
Pid = 1920, Hwnd=0xb0164, Text = 取消, ClassName = TNewButton.
Pid = 1920, Hwnd=0xd01c2, Text = 安装向导 - 英雄联盟百宝箱, ClassName = TWizardForm.
Pid = 1920, Hwnd=0xc01b2, Text = 许可协议, ClassName = TNewStaticText.
Pid = 1920, Hwnd=0xb019c, Text = 请在继续之前阅读以下重要信息。, ClassName = TNewStaticText.
Pid = 1920, Hwnd=0xb01e0, Text = 请阅读以下许可协议。在继续安装之前,你必须接受此协议的条款。, ClassName = TNewStaticText.
Pid = 1920, Hwnd=0xe01b8, Text = 我接受协议(&A), ClassName = TNewRadioButton.
Pid = 1920, Hwnd=0xc01b6, Text = 我不接受协议(&D), ClassName = TNewRadioButton.
Pid = 1920, Hwnd=0xc01ee, Text = < 上一步(&B), ClassName = TNewButton.
Pid = 1920, Hwnd=0xc01b2, Text = 选择目标位置, ClassName = TNewStaticText.
Pid = 1920, Hwnd=0xb019c, Text = 将 英雄联盟百宝箱 安装到哪里?, ClassName = TNewStaticText.
Pid = 1920, Hwnd=0xc01a6, Text = 安装向导将把 英雄联盟百宝箱 安装到以下文件夹中。, ClassName = TNewStaticText.
行为描述: 获取系统权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
SE_DEBUG_PRIVILEGE
行为描述: 枚举窗口
详情信息: N/A
动态列表行为
VirSCANVirSCAN
行为描述: 调用哈希算法
详情信息: MD5
行为描述: 读取文件
详情信息: path:/proc/meminfo length:105
path:/proc/783/cmdline length:105
path:/data/data/com.vladyud.balance/cache/ads-563730749.jar length:9
path:/proc/799/cmdline length:105
path:/data/data/com.vladyud.balance/cache/ads-563730749.jar length:22
path:/data/data/com.vladyud.balance/cache/ads-563730749.jar length:99
path:/proc/811/cmdline length:105
path:/proc/841/cmdline length:105
path:/proc/852/cmdline length:105
path:/dev/urandom length:13
path:/dev/urandom length:12
path:/proc/898/cmdline length:105
path:/proc/900/cmdline length:105
行为描述: 注册ContentObserver
详情信息: URI=content://com.vladyud.balance.BalanceProvider/groups
URI=content://com.vladyud.balance.BalanceProvider/accounts
URI=content://com.vladyud.balance.BalanceProvider/notifications
行为描述: 对指定数据计算哈希
详情信息: emulator
d3894529ac5a14ec
00 44 00 0a 00 05 00 34 00 2e 00 31 00 2e 00 31 00 12 00 11 00 61 00 66 00 6d 00 61 00 2d 00 73 00 64 00 6b 00 2d 00 61 00 2d 00 76 00 36 00 2e 00 34 00 2e 00 31 ff ff ff c8 00 01 ff ff ff 90 ff ff ff 8c ff ff ff 83 ff ff ff 9b 00 05 ff ff ff c2 00 01 00 20 00 42 00 35 00 38 00 41 00 36 00 45 00 43 00 46 00 34 00 34 00 45 00 45 00 33 00 38 00 38 00 37 00 35 00 37 00 36 00 46 00 31 00 44 00 41 00 33 00 39 00 32 00 42 00 36 00 41 00 42 00 39 00 42 ff ff ff e4 ff ff ff 8d ff ff ff ff ff ff ff e8 00 1e ff ff ff 85 ff ff ff a6 ff ff ff ad ff ff ff da ff ff ff c8 00 17 00 12 00 4f ff ff ff e5 00 34 00 40 00 22 ff ff ff c0 00 07 ff ff ff f1 00 55 00 61 ff ff ff f9 00 30 00 6d ff ff ff d0 00 20 00 23 ff ff ff cf ff ff ff a3 00 65 00 4e ff ff ff 9b ff ff ff a4 ff ff ff e7 00 74 ff ff ff f5 00 00 ff ff ff 80 00 37 ff ff ff bc 00 5b ff ff ff f7 ff ff ff 87 00 52 00 54 ff ff ff d9 ff ff ff 90 00 43 00 5e ff ff ff 8f ff ff ff e6 00 3d 00 22 00 41 ff ff ff 91 ff ff ff ad 00 7a 00 09 00 66 00 4f 00 41 ff ff ff ba ff ff ff 86 ff ff ff c8 00 23 ff ff ff f9 00 4c ff ff ff d9 00 44 00 71 00 6e ff ff ff c4 ff ff ff bd 00 03 00 5b 00 1a 00 58 ff ff ff ee 00 0c ff ff ff d8 00 34 00 67 00 46 00 23 ff ff ff a4 00 60 00 17 00 79 00 2e ff ff ff d3 00 50 ff ff ff 8e 00 6a 00 17 00 2c 00 1d 00 2a 00 7c ff ff ff 96 00 4d ff ff ff f8 ff ff ff de ff ff ff a1 ff ff ff a1 00 19 00 02 ff ff ff df ff ff ff d0 ff ff ff aa ff ff ff e0 ff ff ff d9 ff ff ff bd ff ff ff 9f 00 6e ff ff ff ba 00 01 00 46 00 16 ff ff ff 97 00 64 ff ff ff f4 ff ff ff 96 00 41 ff ff ff d1 ff ff ff 9b 00 48 ff ff ff dc 00 49 00 2a ff ff ff e5 ff ff ff d8 00 32 00 0c ff ff ff ab ff ff ff 91 00 64 ff ff ff aa ff ff ff a7 00 0e ff ff ff f0 00 0b ff ff ff b1 ff ff ff c6 00 03 00 77 ff ff ff 8b ff ff ff c5 00 79 00 01 ff ff ff e5 ff ff ff 97 ff ff ff dc 00 6c 00 38 ff ff ff e1 ff ff ff bf 00 1a ff ff ff b5 00 1f ff ff ff c4 00 40 ff ff ff 9c 00 6f 00 2f ff ff ff 89 ff ff ff a9 ff ff ff 98 ff ff ff 8b ff ff ff bb ff ff ff eb
ff ff ff bb 00 35 ff ff ff b2 ff ff ff ef 00 0c 00 45 00 56 ff ff ff 8d
00 32 ff ff ff dc 00 47 00 0a ff ff ff b7 ff ff ff c8 00 43 00 7a
行为描述: 数据加密
详情信息: {u'operation': u'keyalgo', u'algorithm': u'AES', u'key': u'26, -93, 67, 75, -71, -87, -56, 40, 74, 119, -58, 102, -27, 48, 51, -108'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.a', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.d', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.c', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.e', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.b', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'a', u'algorithm': u'AES/CBC/PKCS5Padding'}
行为描述: 类加载
详情信息: path:/system/app/PicoTts.apk
path:/system/app/MusicFX.apk
path:/system/framework/am.jar
path:/data/app/com.vladyud.balance-1.apk
path:/data/data/com.vladyud.balance/cache/ads-563730749.jar
行为描述: 启动服务
详情信息: com.android.musicfx.Compatibility$Service
com.vladyud.balance.AccountsService
com.vladyud.balance.notification.NotificationService
com.android.mms.transaction.SmsReceiverService
行为描述: 初始化Intent
详情信息: Landroid/content/Context;=com.vladyud.balance.AccountsActivity@4156def8 | Ljava/lang/Class;=class com.google.ads.AdActivity
Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=market://details?id=com.google.ads
Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=geo:0,0?q=donuts
Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=market://search?q=pname:com.google
Landroid/content/Context;=com.vladyud.balance.AccountsActivity@4156def8 | Ljava/lang/Class;=class com.vladyud.balance.AccountsService
Ljava/lang/String;=com.vladyud.balance.service.UpdateEvent
Landroid/content/Context;=com.vladyud.balance.BalanceApplication@41569428 | Ljava/lang/Class;=class com.vladyud.balance.notification.NotificationService
行为描述: 写入文件
详情信息: path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
path:/data/data/com.vladyud.balance/shared_prefs/com.vladyud.balance_preferences.xml length:105
path:/data/data/com.vladyud.balance/shared_prefs/com.vladyud.balance_preferences.xml length:105
path:/data/data/com.vladyud.balance/cache/ads-563730749.jar length:101
path:/data/data/com.vladyud.balance/shared_prefs/com.vladyud.balance_preferences.xml length:105
path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
Activities
VirSCANVirSCAN
活动名 类型
com.vladyud.balance.AccountsActivity android.intent.action.MAIN
com.vladyud.balance.AccountsActivity com.vladyud.balance.action.ACCOUNTS
com.vladyud.balance.AccountsActivity android.intent.category.LAUNCHER
com.vladyud.balance.AccountsActivity android.intent.category.DEFAULT
com.vladyud.balance.widget.WidgetConfigActivity1x1 android.appwidget.action.APPWIDGET_CONFIGURE
com.vladyud.balance.widget.WidgetConfigActivity2x1 android.appwidget.action.APPWIDGET_CONFIGURE
危险函数
VirSCANVirSCAN
函数名称 信息
ContentResolver;->query 读取联系人、短信等数据库
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL
ContentResolver;->delete 删除短信、联系人
HttpClient;->execute 请求远程服务器
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
android/app/NotificationManager;->notify 信息通知栏
启动方式
VirSCANVirSCAN
名称 信息
com.vladyud.balance.receiver.BootCompletedReceiver 开机启动服务
com.vladyud.balance.widget.AccountWidget1x1 更新应用小部件时启动服务
com.vladyud.balance.widget.AccountWidget2x1 更新应用小部件时启动服务
com.vladyud.balance.receiver.ConnectivityReceiver 网络连接改变时启动服务
广告信息
VirSCANVirSCAN
名称 信息
com.google.ads AdMob
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.READ_EXTERNAL_STORAGE 读外部存储器(如:SD卡)
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
com.android.vending.CHECK_LICENSE
服务列表
VirSCANVirSCAN
名称
com.vladyud.balance.AccountsService
com.vladyud.balance.notification.NotificationService
Providers
VirSCANVirSCAN
名称 信息
com.vladyud.balance.AccountsService
com.vladyud.balance.notification.NotificationService
文件列表
VirSCANVirSCAN
文件名 校验码
assets/icons/inet_by_idom.png 0xa6f4506b
assets/icons/inet_by_solo.png 0xb261c529
assets/icons/tel_by_diallog.png 0xcbdcf087
assets/icons/tel_ru_akos.png 0xa70abd59
assets/icons/tel_ru_skylink.png 0x83a22d4f
assets/icons/tel_ru_smarts.png 0x5edff862
assets/icons/test.png 0xe1721a5d
assets/providers/test_subaccount_1.xml 0x90c85378
assets/repository.xml 0x8002507
res/anim/abc_fade_in.xml 0x7415ad2d
res/anim/abc_fade_out.xml 0x62eec155
res/anim/abc_slide_in_bottom.xml 0x18f6f50e
res/anim/abc_slide_in_top.xml 0x2a68391f
res/anim/abc_slide_out_bottom.xml 0x3a290fba
res/anim/abc_slide_out_top.xml 0x24f1f9d4
res/color/abc_search_url_text_holo.xml 0xaf9ccddf
res/drawable/abc_ic_clear.xml 0xdc2e9af5
res/drawable/abc_ic_clear_holo_light.xml 0x991e7bbc
res/drawable/abc_item_background_holo_dark.xml 0x9f3eb4b
res/drawable/abc_item_background_holo_light.xml 0xb0d9dd18
res/drawable/abc_list_selector_background_transition_holo_dark.xml 0xd8179e68
res/drawable/abc_list_selector_background_transition_holo_light.xml 0xc54a502c
res/drawable/abc_list_selector_holo_dark.xml 0x7f975f24
res/drawable/abc_list_selector_holo_light.xml 0x4d6ef4db
res/drawable/abc_search_dropdown_dark.xml 0x7923a890
res/drawable/abc_search_dropdown_light.xml 0x84407795
res/drawable/abc_spinner_ab_holo_dark.xml 0xdb19559b
res/drawable/abc_spinner_ab_holo_light.xml 0x67cf5ce7
res/drawable/abc_tab_indicator_ab_holo.xml 0x869aa28e
res/drawable/abc_textfield_searchview_holo_dark.xml 0x8400b4b9
res/drawable/abc_textfield_searchview_holo_light.xml 0xbec9fd4d
res/drawable/abc_textfield_searchview_right_holo_dark.xml 0xbce22b06
res/drawable/abc_textfield_searchview_right_holo_light.xml 0x438605f8
res/drawable/balance_background_blue.9.png 0xfcd057c1
res/drawable/balance_background_green.9.png 0xce7f2712
res/drawable/balance_background_grey.9.png 0x447fc91
res/drawable/balance_background_magenta.9.png 0xfc4dd301
res/drawable/balance_background_main.9.png 0x47b2d159
res/drawable/balance_background_red.9.png 0xdf0cc1dd
res/drawable/deactivated.png 0xd87f5335
res/drawable/error_14.png 0xd2f8f423
res/drawable/header_btn_add_account.png 0xad1661fc
res/drawable/header_btn_refresh.png 0xf158168a
res/drawable/new_list_button_selector.xml 0xdd829f60
res/drawable/notify_by.png 0x37e1d72e
res/drawable/qr_code.png 0xd9b103ad
res/drawable/status_error.png 0xd2f8f423
res/drawable/status_ext_cmd.png 0xbedefd6e
res/drawable/status_to_update.png 0x39186013
res/drawable/status_updating.png 0x49e68ca1
res/drawable/widget_background_dark_100.xml 0x9fff7010
res/drawable/widget_background_dark_20.xml 0x4253abac
res/drawable/widget_background_dark_40.xml 0xd071b988
res/drawable/widget_background_dark_60.xml 0xb0112b46
res/drawable/widget_background_dark_80.xml 0xa18564d1
res/drawable/widget_background_light_100.xml 0x72bc5f95
res/drawable/widget_background_light_20.xml 0xaf108429
res/drawable/widget_background_light_40.xml 0x3d32960d
res/drawable/widget_background_light_60.xml 0x5d5204c3
res/drawable/widget_background_light_80.xml 0x4cc64b54
res/drawable/widget_background_transparent.xml 0x2744a3
res/layout/abc_action_bar_decor.xml 0xf4b5ae71
res/layout/abc_action_bar_decor_include.xml 0x83fa7eac
res/layout/abc_action_bar_decor_overlay.xml 0x2823a8dc
res/layout/abc_action_bar_home.xml 0x6f47c249
res/layout/abc_action_bar_tab.xml 0xaa526c57
res/layout/abc_action_bar_tabbar.xml 0x713be40d
res/layout/abc_action_bar_title_item.xml 0x2740e550
res/layout/abc_action_bar_view_list_nav_layout.xml 0xe184c03b
res/layout/abc_action_menu_item_layout.xml 0xeb0524ba
res/layout/abc_action_menu_layout.xml 0xa05b1150
res/layout/abc_action_mode_bar.xml 0x25668a93
res/layout/abc_action_mode_close_item.xml 0x70e3e81e
res/layout/abc_activity_chooser_view.xml 0xdfa76022
res/layout/abc_activity_chooser_view_include.xml 0x86c5aa7e
res/layout/abc_activity_chooser_view_list_item.xml 0x61483593
res/layout/abc_expanded_menu_layout.xml 0xf405add8
res/layout/abc_list_menu_item_checkbox.xml 0xa8df6dcf
res/layout/abc_list_menu_item_icon.xml 0x5ff9f64b
res/layout/abc_list_menu_item_layout.xml 0xd1be220b
res/layout/abc_list_menu_item_radio.xml 0xce5e65c
res/layout/abc_popup_menu_item_layout.xml 0x58eba4d5
res/layout/abc_search_dropdown_item_icons_2line.xml 0x57f84e33
res/layout/abc_search_view.xml 0x50594440
res/layout/account_row_layout.xml 0x3cf62df3
res/layout/accounts_layout.xml 0xceedb1a7
res/layout/accounts_list_fragment.xml 0xbd2f0cfc
res/layout/add_notification_dialog_layout.xml 0x88dba560
res/layout/balance_config_dialog_layout.xml 0x436aac07
res/layout/balance_config_row_layout.xml 0x5d2023ac
res/layout/help_layout.xml 0x4b62ff2b
res/layout/new_account_layout.xml 0x460335a2
res/layout/notification_row_layout.xml 0xd3a9cd0d
res/layout/notifications_layout.xml 0xf067b6d2
res/layout/notifications_list_fragment.xml 0xd3728e3b
res/layout/popup_editbox_dialog_layout.xml 0xb671fb59
res/layout/provider_type_pref_layout.xml 0x3c472bd4
res/layout/share_layout.xml 0x322e5dc1
res/layout/statistics_layout.xml 0x5b676665
res/layout/support_simple_spinner_dropdown_item.xml 0x4b528c18
res/layout/version_history_layout.xml 0xfeb012fa
res/layout/widget_1x1_config_layout.xml 0x8ba016d0
res/layout/widget_1x1_layout_dark.xml 0x703e23d9
res/layout/widget_1x1_layout_light.xml 0xc5f7f08e
res/layout/widget_2x1_layout_dark.xml 0x9b3141e2
res/layout/widget_2x1_layout_light.xml 0x35032650
res/layout/widget_layout_empty.xml 0xeedcbb57
res/layout/widget_layout_warning.xml 0xa2d8135f
res/menu/accounts_options_menu.xml 0x8c6d7514
res/menu/main_options_menu.xml 0x6f04d864
res/menu/notification_context_menu.xml 0x601f9be6
res/menu/notifications_options_menu.xml 0x65430d90
res/menu/statistics_options_menu.xml 0xf6883ad4
res/raw/donate.txt 0x53182682
res/raw/version_history.txt 0xf74ab942
res/xml/about_prefs.xml 0x5f226e00
res/xml/new_account_prefs.xml 0x43d3c5b6
res/xml/preferences.xml 0xd3968ad7
res/xml/widget_1x1_config.xml 0x32d3d6d1
res/xml/widget_2x1_config.xml 0xf8ebe7c4
AndroidManifest.xml 0x68f16aab
resources.arsc 0x68c837a1
res/layout-v11/abc_action_bar_decor.xml 0x3ff80e8d
res/layout-v14/abc_activity_chooser_view.xml 0x971c131d
res/menu-v14/notifications_options_menu.xml 0x81885c1e
res/drawable-hdpi/abc_ab_bottom_solid_dark_holo.9.png 0x2a5170de
res/drawable-hdpi/abc_ab_bottom_solid_light_holo.9.png 0x29355cf7
res/drawable-hdpi/abc_ab_bottom_transparent_dark_holo.9.png 0x18c6edaa
res/drawable-hdpi/abc_ab_bottom_transparent_light_holo.9.png 0xe9136d
res/drawable-hdpi/abc_ab_share_pack_holo_dark.9.png 0xe504decd
res/drawable-hdpi/abc_ab_share_pack_holo_light.9.png 0x1c3ac42
res/drawable-hdpi/abc_ab_solid_dark_holo.9.png 0xa39d484f
res/drawable-hdpi/abc_ab_solid_light_holo.9.png 0xb6e03b91
res/drawable-hdpi/abc_ab_stacked_solid_dark_holo.9.png 0x909db13
res/drawable-hdpi/abc_ab_stacked_solid_light_holo.9.png 0xde0e075f
res/drawable-hdpi/abc_ab_stacked_transparent_dark_holo.9.png 0x2eb3885a
res/drawable-hdpi/abc_ab_stacked_transparent_light_holo.9.png 0x5e205a10
res/drawable-hdpi/abc_ab_transparent_dark_holo.9.png 0xfca261e7
res/drawable-hdpi/abc_ab_transparent_light_holo.9.png 0xe7ff01af
res/drawable-hdpi/abc_cab_background_bottom_holo_dark.9.png 0x6f320319
res/drawable-hdpi/abc_cab_background_bottom_holo_light.9.png 0x178e620c
res/drawable-hdpi/abc_cab_background_top_holo_dark.9.png 0x5cfcf75c
res/drawable-hdpi/abc_cab_background_top_holo_light.9.png 0xffd6c088
res/drawable-hdpi/abc_ic_ab_back_holo_dark.png 0x174488a8
res/drawable-hdpi/abc_ic_ab_back_holo_light.png 0x4dcc2ed8
res/drawable-hdpi/abc_ic_cab_done_holo_dark.png 0x32a65180
res/drawable-hdpi/abc_ic_cab_done_holo_light.png 0x91f0698a
res/drawable-hdpi/abc_ic_clear_disabled.png 0x4d21628f
res/drawable-hdpi/abc_ic_clear_normal.png 0xfc69de1a
res/drawable-hdpi/abc_ic_clear_search_api_disabled_holo_light.png 0x2e310e0e
res/drawable-hdpi/abc_ic_clear_search_api_holo_light.png 0x87e64891
res/drawable-hdpi/abc_ic_commit_search_api_holo_dark.png 0x2c715553
res/drawable-hdpi/abc_ic_commit_search_api_holo_light.png 0xf90511bf
res/drawable-hdpi/abc_ic_go.png 0xe6ccea3f
res/drawable-hdpi/abc_ic_go_search_api_holo_light.png 0xe21362f7
res/drawable-hdpi/abc_ic_menu_moreoverflow_normal_holo_dark.png 0x13804a99
res/drawable-hdpi/abc_ic_menu_moreoverflow_normal_holo_light.png 0x3a4b4477
res/drawable-hdpi/abc_ic_menu_share_holo_dark.png 0x2a6c5116
res/drawable-hdpi/abc_ic_menu_share_holo_light.png 0x3e081d60
res/drawable-hdpi/abc_ic_search.png 0x55176584
res/drawable-hdpi/abc_ic_search_api_holo_light.png 0x333d525b
res/drawable-hdpi/abc_ic_voice_search.png 0xcf92a5d3
res/drawable-hdpi/abc_ic_voice_search_api_holo_light.png 0x75ab2e6a
res/drawable-hdpi/abc_list_divider_holo_dark.9.png 0xe4823600
res/drawable-hdpi/abc_list_divider_holo_light.9.png 0xb0dc2b05
res/drawable-hdpi/abc_list_focused_holo.9.png 0xb6034205
res/drawable-hdpi/abc_list_longpressed_holo.9.png 0x9ee3dd42
res/drawable-hdpi/abc_list_pressed_holo_dark.9.png 0x816ffde7
res/drawable-hdpi/abc_list_pressed_holo_light.9.png 0x816ffde7
res/drawable-hdpi/abc_list_selector_disabled_holo_dark.9.png 0x5f501b8d
res/drawable-hdpi/abc_list_selector_disabled_holo_light.9.png 0x63f15616
res/drawable-hdpi/abc_menu_dropdown_panel_holo_dark.9.png 0x9bdee42d
res/drawable-hdpi/abc_menu_dropdown_panel_holo_light.9.png 0xd9da1ab4
res/drawable-hdpi/abc_menu_hardkey_panel_holo_dark.9.png 0xc53da73e
res/drawable-hdpi/abc_menu_hardkey_panel_holo_light.9.png 0x34a2f020
res/drawable-hdpi/abc_spinner_ab_default_holo_dark.9.png 0x79286178
res/drawable-hdpi/abc_spinner_ab_default_holo_light.9.png 0xa910af35
res/drawable-hdpi/abc_spinner_ab_disabled_holo_dark.9.png 0xe9afcfa1
res/drawable-hdpi/abc_spinner_ab_disabled_holo_light.9.png 0x95db2c46
res/drawable-hdpi/abc_spinner_ab_focused_holo_dark.9.png 0xb5ec2a4f
res/drawable-hdpi/abc_spinner_ab_focused_holo_light.9.png 0x3f8ca162
res/drawable-hdpi/abc_spinner_ab_pressed_holo_dark.9.png 0xca49cc10
res/drawable-hdpi/abc_spinner_ab_pressed_holo_light.9.png 0xad8ca096
res/drawable-hdpi/abc_tab_selected_focused_holo.9.png 0x18146f4e
res/drawable-hdpi/abc_tab_selected_holo.9.png 0xc88b0629
res/drawable-hdpi/abc_tab_selected_pressed_holo.9.png 0x3461add3
res/drawable-hdpi/abc_tab_unselected_pressed_holo.9.png 0x3f9a3680
res/drawable-hdpi/abc_textfield_search_default_holo_dark.9.png 0x26a9a88a
res/drawable-hdpi/abc_textfield_search_default_holo_light.9.png 0xef7abffe
res/drawable-hdpi/abc_textfield_search_right_default_holo_dark.9.png 0x51617422
res/drawable-hdpi/abc_textfield_search_right_default_holo_light.9.png 0xa243c65b
res/drawable-hdpi/abc_textfield_search_right_selected_holo_dark.9.png 0x248ccaa4
res/drawable-hdpi/abc_textfield_search_right_selected_holo_light.9.png 0x5a47eb9b
res/drawable-hdpi/abc_textfield_search_selected_holo_dark.9.png 0xdeca3ad0
res/drawable-hdpi/abc_textfield_search_selected_holo_light.9.png 0xdeca3ad0
res/drawable-hdpi/balance_background_blue.9.png 0xfcd057c1
res/drawable-hdpi/balance_background_green.9.png 0xce7f2712
res/drawable-hdpi/balance_background_grey.9.png 0x447fc91
res/drawable-hdpi/balance_background_magenta.9.png 0xfc4dd301
res/drawable-hdpi/balance_background_main.9.png 0x47b2d159
res/drawable-hdpi/balance_background_red.9.png 0xdf0cc1dd
res/drawable-hdpi/deactivated.png 0xd87f5335
res/drawable-hdpi/error_14.png 0xd2f8f423
res/drawable-hdpi/ic_menu_add.png 0x2ede9955
res/drawable-hdpi/ic_menu_help.png 0x4806f11d
res/drawable-hdpi/ic_menu_info_details.png 0xf9a844dd
res/drawable-hdpi/ic_menu_preferences.png 0x976b15f3
res/drawable-hdpi/ic_menu_refresh.png 0xe59f711
res/drawable-hdpi/icon.png 0x7184889f
res/drawable-hdpi/notify_by.png 0x4641512e
res/drawable-hdpi/status_error.png 0xd2f8f423
res/drawable-hdpi/status_ext_cmd.png 0x54ef2ee3
res/drawable-hdpi/status_to_update.png 0x228f6114
res/drawable-hdpi/status_updating.png 0x1857a36e
res/drawable-hdpi-v11/ic_menu_refresh.png 0x1d97bbe0
res/drawable-mdpi/abc_ab_bottom_solid_dark_holo.9.png 0x7b47c4fe
res/drawable-mdpi/abc_ab_bottom_solid_light_holo.9.png 0x8a943208
res/drawable-mdpi/abc_ab_bottom_transparent_dark_holo.9.png 0x897aedcb
res/drawable-mdpi/abc_ab_bottom_transparent_light_holo.9.png 0xf44d2d39
res/drawable-mdpi/abc_ab_share_pack_holo_dark.9.png 0x63478378
res/drawable-mdpi/abc_ab_share_pack_holo_light.9.png 0xb749488d
res/drawable-mdpi/abc_ab_solid_dark_holo.9.png 0xbc71f7a7
res/drawable-mdpi/abc_ab_solid_light_holo.9.png 0xd8cd9429
res/drawable-mdpi/abc_ab_stacked_solid_dark_holo.9.png 0xeacbecce
res/drawable-mdpi/abc_ab_stacked_solid_light_holo.9.png 0xde0f77d5
res/drawable-mdpi/abc_ab_stacked_transparent_dark_holo.9.png 0x14d06f11
res/drawable-mdpi/abc_ab_stacked_transparent_light_holo.9.png 0xc4c6064f
res/drawable-mdpi/abc_ab_transparent_dark_holo.9.png 0x659932db
res/drawable-mdpi/abc_ab_transparent_light_holo.9.png 0x77592f84
res/drawable-mdpi/abc_cab_background_bottom_holo_dark.9.png 0xa8873073
res/drawable-mdpi/abc_cab_background_bottom_holo_light.9.png 0x23b67c99
res/drawable-mdpi/abc_cab_background_top_holo_dark.9.png 0xfb2e5f57
res/drawable-mdpi/abc_cab_background_top_holo_light.9.png 0x5818ab75
res/drawable-mdpi/abc_ic_ab_back_holo_dark.png 0xfcab22b6
res/drawable-mdpi/abc_ic_ab_back_holo_light.png 0x8b88c538
res/drawable-mdpi/abc_ic_cab_done_holo_dark.png 0x73c5de5f
res/drawable-mdpi/abc_ic_cab_done_holo_light.png 0x8e10da0a
res/drawable-mdpi/abc_ic_clear_disabled.png 0x31c22a50
res/drawable-mdpi/abc_ic_clear_normal.png 0x86297e78
res/drawable-mdpi/abc_ic_clear_search_api_disabled_holo_light.png 0x61c26545
res/drawable-mdpi/abc_ic_clear_search_api_holo_light.png 0xa4331b55
res/drawable-mdpi/abc_ic_commit_search_api_holo_dark.png 0xb7de15d3
res/drawable-mdpi/abc_ic_commit_search_api_holo_light.png 0x8ad302fe
res/drawable-mdpi/abc_ic_go.png 0xd1b50114
res/drawable-mdpi/abc_ic_go_search_api_holo_light.png 0x74a702db
res/drawable-mdpi/abc_ic_menu_moreoverflow_normal_holo_dark.png 0x46183a6
res/drawable-mdpi/abc_ic_menu_moreoverflow_normal_holo_light.png 0xe0a776a7
res/drawable-mdpi/abc_ic_menu_share_holo_dark.png 0x7f93973c
res/drawable-mdpi/abc_ic_menu_share_holo_light.png 0xe576f47
res/drawable-mdpi/abc_ic_search.png 0xa3ccea1e
res/drawable-mdpi/abc_ic_search_api_holo_light.png 0x1ece718b
res/drawable-mdpi/abc_ic_voice_search.png 0x33a1251c
res/drawable-mdpi/abc_ic_voice_search_api_holo_light.png 0xc9db478c
res/drawable-mdpi/abc_list_divider_holo_dark.9.png 0xe4823600
res/drawable-mdpi/abc_list_divider_holo_light.9.png 0xb0dc2b05
res/drawable-mdpi/abc_list_focused_holo.9.png 0xe40d1bf
res/drawable-mdpi/abc_list_longpressed_holo.9.png 0xc09562f2
res/drawable-mdpi/abc_list_pressed_holo_dark.9.png 0x449401f4
res/drawable-mdpi/abc_list_pressed_holo_light.9.png 0x449401f4
res/drawable-mdpi/abc_list_selector_disabled_holo_dark.9.png 0x9d81afe3
res/drawable-mdpi/abc_list_selector_disabled_holo_light.9.png 0xa481684d
res/drawable-mdpi/abc_menu_dropdown_panel_holo_dark.9.png 0x5c0fa5f3
res/drawable-mdpi/abc_menu_dropdown_panel_holo_light.9.png 0xb4d9c7d8
res/drawable-mdpi/abc_menu_hardkey_panel_holo_dark.9.png 0x31aa7ad5
res/drawable-mdpi/abc_menu_hardkey_panel_holo_light.9.png 0x9518827f
res/drawable-mdpi/abc_spinner_ab_default_holo_dark.9.png 0x1d8819d9
res/drawable-mdpi/abc_spinner_ab_default_holo_light.9.png 0x63e3b3b7
res/drawable-mdpi/abc_spinner_ab_disabled_holo_dark.9.png 0xeee50900
res/drawable-mdpi/abc_spinner_ab_disabled_holo_light.9.png 0x13a238c1
res/drawable-mdpi/abc_spinner_ab_focused_holo_dark.9.png 0x6521b9bf
res/drawable-mdpi/abc_spinner_ab_focused_holo_light.9.png 0x93649699
res/drawable-mdpi/abc_spinner_ab_pressed_holo_dark.9.png 0x488f40a4
res/drawable-mdpi/abc_spinner_ab_pressed_holo_light.9.png 0x667536f4
res/drawable-mdpi/abc_tab_selected_focused_holo.9.png 0x6f51e593
res/drawable-mdpi/abc_tab_selected_holo.9.png 0x2ab487a
res/drawable-mdpi/abc_tab_selected_pressed_holo.9.png 0xc0728d80
res/drawable-mdpi/abc_tab_unselected_pressed_holo.9.png 0xd59cc9e6
res/drawable-mdpi/abc_textfield_search_default_holo_dark.9.png 0x992cf4b8
res/drawable-mdpi/abc_textfield_search_default_holo_light.9.png 0xee0d6e1a
res/drawable-mdpi/abc_textfield_search_right_default_holo_dark.9.png 0x15e0405b
res/drawable-mdpi/abc_textfield_search_right_default_holo_light.9.png 0x26fb1df7
res/drawable-mdpi/abc_textfield_search_right_selected_holo_dark.9.png 0x1e180986
res/drawable-mdpi/abc_textfield_search_right_selected_holo_light.9.png 0x1e180986
res/drawable-mdpi/abc_textfield_search_selected_holo_dark.9.png 0xf29f6f89
res/drawable-mdpi/abc_textfield_search_selected_holo_light.9.png 0xf29f6f89
res/drawable-mdpi/ic_menu_add.png 0x3a919a85
res/drawable-mdpi/ic_menu_help.png 0x3113f51a
res/drawable-mdpi/ic_menu_info_details.png 0xafb15df0
res/drawable-mdpi/ic_menu_preferences.png 0x48b719f2
res/drawable-mdpi/ic_menu_refresh.png 0x5b3150dc
res/drawable-mdpi/icon.png 0xb31db7ca
res/drawable-mdpi-v11/ic_menu_refresh.png 0xcc8b64f4
res/drawable-nodpi/add_list_button.png 0x8255d7cb
res/drawable-nodpi/add_list_button_pressed.png 0xb9304474
res/drawable-xhdpi/abc_ab_bottom_solid_dark_holo.9.png 0x89c634b3
res/drawable-xhdpi/abc_ab_bottom_solid_light_holo.9.png 0x1053168
res/drawable-xhdpi/abc_ab_bottom_transparent_dark_holo.9.png 0x5a6affd1
res/drawable-xhdpi/abc_ab_bottom_transparent_light_holo.9.png 0x8dc2ee5f
res/drawable-xhdpi/abc_ab_share_pack_holo_dark.9.png 0x283c19cc
res/drawable-xhdpi/abc_ab_share_pack_holo_light.9.png 0xd59220f0
res/drawable-xhdpi/abc_ab_solid_dark_holo.9.png 0x5b0c1e70
res/drawable-xhdpi/abc_ab_solid_light_holo.9.png 0x86f0155a
res/drawable-xhdpi/abc_ab_stacked_solid_dark_holo.9.png 0x45995026
res/drawable-xhdpi/abc_ab_stacked_solid_light_holo.9.png 0x4fa1423
res/drawable-xhdpi/abc_ab_stacked_transparent_dark_holo.9.png 0xf3c72c9b
res/drawable-xhdpi/abc_ab_stacked_transparent_light_holo.9.png 0xed5a755d
res/drawable-xhdpi/abc_ab_transparent_dark_holo.9.png 0xe5266da1
res/drawable-xhdpi/abc_ab_transparent_light_holo.9.png 0xa2a434df
res/drawable-xhdpi/abc_cab_background_bottom_holo_dark.9.png 0xc9ae8fde
res/drawable-xhdpi/abc_cab_background_bottom_holo_light.9.png 0xaf26e5ea
res/drawable-xhdpi/abc_cab_background_top_holo_dark.9.png 0xc6079444
res/drawable-xhdpi/abc_cab_background_top_holo_light.9.png 0x3396b7e2
res/drawable-xhdpi/abc_ic_ab_back_holo_dark.png 0xfda7dde0
res/drawable-xhdpi/abc_ic_ab_back_holo_light.png 0xbffc39b3
res/drawable-xhdpi/abc_ic_cab_done_holo_dark.png 0x72b10371
res/drawable-xhdpi/abc_ic_cab_done_holo_light.png 0x8791c4c4
res/drawable-xhdpi/abc_ic_clear_disabled.png 0xa5bd47fa
res/drawable-xhdpi/abc_ic_clear_search_api_disabled_holo_light.png 0x15f5e76a
res/drawable-xhdpi/abc_ic_clear_search_api_holo_light.png 0x89cd0d44
res/drawable-xhdpi/abc_ic_commit_search_api_holo_dark.png 0xe095afdb
res/drawable-xhdpi/abc_ic_commit_search_api_holo_light.png 0x62093d86
res/drawable-xhdpi/abc_ic_go.png 0x53dcc19f
res/drawable-xhdpi/abc_ic_go_search_api_holo_light.png 0xc1b35918
res/drawable-xhdpi/abc_ic_menu_moreoverflow_normal_holo_dark.png 0x3201d039
res/drawable-xhdpi/abc_ic_menu_moreoverflow_normal_holo_light.png 0xc2a9ad8e
res/drawable-xhdpi/abc_ic_menu_share_holo_dark.png 0x94b0462d
res/drawable-xhdpi/abc_ic_menu_share_holo_light.png 0x93f40272
res/drawable-xhdpi/abc_ic_search.png 0xfa0e764a
res/drawable-xhdpi/abc_ic_search_api_holo_light.png 0xa33e22e0
res/drawable-xhdpi/abc_ic_voice_search.png 0x3940d715
res/drawable-xhdpi/abc_ic_voice_search_api_holo_light.png 0xee58532f
res/drawable-xhdpi/abc_list_divider_holo_dark.9.png 0xde176f71
res/drawable-xhdpi/abc_list_divider_holo_light.9.png 0x3cad70fb
res/drawable-xhdpi/abc_list_focused_holo.9.png 0x866a4f58
res/drawable-xhdpi/abc_list_longpressed_holo.9.png 0xf31ffc88
res/drawable-xhdpi/abc_list_pressed_holo_dark.9.png 0xb9cef664
res/drawable-xhdpi/abc_list_pressed_holo_light.9.png 0xb9cef664
res/drawable-xhdpi/abc_list_selector_disabled_holo_dark.9.png 0xbd51fa51
res/drawable-xhdpi/abc_list_selector_disabled_holo_light.9.png 0x819deaae
res/drawable-xhdpi/abc_menu_dropdown_panel_holo_dark.9.png 0x90e63080
res/drawable-xhdpi/abc_menu_dropdown_panel_holo_light.9.png 0xbfae0e99
res/drawable-xhdpi/abc_menu_hardkey_panel_holo_dark.9.png 0x4bbedc45
res/drawable-xhdpi/abc_menu_hardkey_panel_holo_light.9.png 0xa21fc677
res/drawable-xhdpi/abc_spinner_ab_default_holo_dark.9.png 0x8d019f97
res/drawable-xhdpi/abc_spinner_ab_default_holo_light.9.png 0x603d46bf
res/drawable-xhdpi/abc_spinner_ab_disabled_holo_dark.9.png 0xce27881
res/drawable-xhdpi/abc_spinner_ab_disabled_holo_light.9.png 0x1376612b
res/drawable-xhdpi/abc_spinner_ab_focused_holo_dark.9.png 0xb70d16f7
res/drawable-xhdpi/abc_spinner_ab_focused_holo_light.9.png 0x54f05d49
res/drawable-xhdpi/abc_spinner_ab_pressed_holo_dark.9.png 0x3dc83e95
res/drawable-xhdpi/abc_spinner_ab_pressed_holo_light.9.png 0x48a95234
res/drawable-xhdpi/abc_tab_selected_focused_holo.9.png 0x7c3f77bc
res/drawable-xhdpi/abc_tab_selected_holo.9.png 0x20fb759a
res/drawable-xhdpi/abc_tab_selected_pressed_holo.9.png 0xbb04ca93
res/drawable-xhdpi/abc_tab_unselected_pressed_holo.9.png 0x313d81a3
res/drawable-xhdpi/abc_textfield_search_default_holo_dark.9.png 0xd4977908
res/drawable-xhdpi/abc_textfield_search_default_holo_light.9.png 0x9dd3f918
res/drawable-xhdpi/abc_textfield_search_right_default_holo_dark.9.png 0xbbd47d
res/drawable-xhdpi/abc_textfield_search_right_default_holo_light.9.png 0x386c91c4
res/drawable-xhdpi/abc_textfield_search_right_selected_holo_dark.9.png 0x63357d8e
res/drawable-xhdpi/abc_textfield_search_right_selected_holo_light.9.png 0x63357d8e
res/drawable-xhdpi/abc_textfield_search_selected_holo_dark.9.png 0xf856a124
res/drawable-xhdpi/abc_textfield_search_selected_holo_light.9.png 0x8b354482
res/drawable-xhdpi/ic_menu_add.png 0xf596ba14
res/drawable-xhdpi/ic_menu_help.png 0x837fa01c
res/drawable-xhdpi/ic_menu_info_details.png 0x145a9848
res/drawable-xhdpi/ic_menu_preferences.png 0x9cd8aa7
res/drawable-xhdpi/ic_menu_refresh.png 0xfd8b5611
res/drawable-xhdpi/icon.png 0x59ddff4
res/drawable-xhdpi/notify_by.png 0x73c7d005
res/drawable-xhdpi/notify_by_color.png 0x4b08796f
res/drawable-xxhdpi/icon.png 0x1515d935
classes.dex 0xce52c108
jsr305_annotations/Jsr305_annotations.gwt.xml 0x8d4f3e59
jsr305_annotations/v0_r47/V0_r47.gwt.xml 0x8b4479b0
META-INF/MANIFEST.MF 0x791ea1d5
META-INF/CERT.SF 0x77bd5493
META-INF/CERT.RSA 0x4f642641
运行截图
VirSCANVirSCAN
VirSCAN