VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2015-10-15 08:49:20 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 5
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
avast 150725-1 4.7.4 2015-07-25 Found nothing 0
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
clamav 19861 0.97.5 2014-12-31 Found nothing 0
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
gdata 25.3875 25.3875 2015-10-14 Found nothing 9
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 44
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
kingsoft 2.1 2.1 2013-09-22 Found nothing 8
mcafee 7638 5400.1158 2014-11-30 Found nothing 0
nod32 0920 3.0.21 2014-12-23 Found nothing 0
panda 9.05.01 9.05.01 2015-07-26 Found nothing 5
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
qh360 1.0.1 1.0.1 1.0.1 Found nothing 4
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
quickheal 14.00 14.00 2015-07-25 Found nothing 2
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 3
sophos 5.08 3.55.0 2014-12-01 Found nothing 0
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 4
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 2
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 13
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
文件信息
VirSCANVirSCAN
安全评分 :70
基本信息
VirSCANVirSCAN
MD5:eb13b892abd4d231f5b56e6f665df688
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:cn.luomao.apkeditor
最低运行环境:Android 2.1.x
版权:Android
关键行为
VirSCANVirSCAN
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [,8E5E84D289E448A695B7A242103F72F5]
[Window,Class] = [,995D92B2-4ED9-43A7-9338-8CC7D1746F96]
[Window,Class] = [,Button]
[Window,Class] = [Dexpot 1.6 Setup,Static]
[Window,Class] = [Dexpot 1.6 Setup ,Static]
[Window,Class] = [,Static]
[Window,Class] = [,Auto-Suggest Dropdown]
[Window,Class] = [,#32770]
行为描述: 按名称获取主机地址
详情信息: api.opencandy.com
进程行为
VirSCANVirSCAN
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [,8E5E84D289E448A695B7A242103F72F5]
[Window,Class] = [,995D92B2-4ED9-43A7-9338-8CC7D1746F96]
[Window,Class] = [,Button]
[Window,Class] = [Dexpot 1.6 Setup,Static]
[Window,Class] = [Dexpot 1.6 Setup ,Static]
[Window,Class] = [,Static]
[Window,Class] = [,Auto-Suggest Dropdown]
[Window,Class] = [,#32770]
行为描述: 按名称获取主机地址
详情信息: api.opencandy.com
文件行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: E3640DDC00234C7CB7F0A428D0CD9B4E
85426876-4F81-491C-848D-C7BA755E6DFA
DfSharedHeapDBEA6
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DFBEA9.tmp
DfRoot0000DBEA6
行为描述: 创建可执行文件
详情信息: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\UAC.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\LangDLL.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\System.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\OCSetupHlp.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\nsDialogs.dll
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\InstallOptions.dll
C:\WINDOWS\system32\mscomctl.ocx
行为描述: 修改文件内容
详情信息: C:\WINDOWS\system32\wbem\Logs\wbemprox.log---> Offset = 0
C:\WINDOWS\system32\wbem\Logs\wbemprox.log---> Offset = 225
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\modern-header.bmp---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\modern-wizard.bmp---> Offset = 54877
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 171
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 201
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 355
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 611
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 732
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 142
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 279
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 601
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 735
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\dexpot.ini---> Offset = 862
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
网络行为
VirSCANVirSCAN
行为描述: 建立到一个指定的套接字连接
详情信息: 127.0.0.1:1040
127.0.0.1:1041
127.0.0.1:1042
127.0.0.1:1043
127.0.0.1:1044
127.0.0.1:1045
127.0.0.1:1046
127.0.0.1:1047
127.0.0.1:1048
127.0.0.1:1049
127.0.0.1:1050
127.0.0.1:1051
127.0.0.1:1052
127.0.0.1:1053
127.0.0.1:1054
行为描述: 按名称获取主机地址
详情信息: api.opencandy.com
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X\BaseClass
\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Dexpot\FirstStart
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\InprocServer32\
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\InprocServer32\ThreadingModel
\REGISTRY\MACHINE\SOFTWARE\Classes\MSComctlLib.ListViewCtrl\
\REGISTRY\MACHINE\SOFTWARE\Classes\MSComctlLib.ListViewCtrl\CLSID\
\REGISTRY\MACHINE\SOFTWARE\Classes\MSComctlLib.ListViewCtrl\CurVer\
\REGISTRY\MACHINE\SOFTWARE\Classes\MSComctlLib.ListViewCtrl.2\
\REGISTRY\MACHINE\SOFTWARE\Classes\MSComctlLib.ListViewCtrl.2\CLSID\
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\VersionIndependentProgID\
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\ProgID\
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\TypeLib\
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\Version\
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}\MiscStatus\
行为描述: 删除注册表键
详情信息: \REGISTRY\MACHINE\SOFTWARE\Microsoft\PCHealth\ErrorReporting\DW
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{CCDB0DF2-FD1A-4856-80BC-32929D8359B7}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{979127D3-7D01-4FDE-AF65-A698091468AF}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{996BF5E0-8044-4650-ADEB-0B013914E99C}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BDD1F04B-858B-11D1-B16A-00C0F0283628}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{95F0B3BE-E8AC-4995-9DCA-419849E06410}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9181DC5F-E07D-418A-ACA6-8EEA1ECB8E9E}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{C74190B6-8589-11D1-B16A-00C0F0283628}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9A948063-66C3-4F63-AB46-582EDAA35047}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{24B224E0-9545-4A2F-ABD5-86AA8A849385}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1EFB6596-857C-11D1-B16A-00C0F0283628}
\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B2ADD10-33B7-4506-9569-0A1E1DBBEBAE}
行为描述: 删除注册表键值
详情信息: \REGISTRY\MACHINE\SOFTWARE\Microsoft\PCHealth\ErrorReporting\DW\DWFileTreeRoot
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: DEFINED_LoadSDKDLL
CRemoteProcApiCalls::m_bShowLoadingScreen
CRemoteProcApiCalls::m_nMaxLoadingScreenOffers
Global\426F00E8-A1B3-4EB2-8FF8-0950920F5D6E
SHIMLIB_LOG_MUTEX
CSDKApi::m_bSkipAllOffersTriggered
CSDKApi::m_bDeclineOfferTriggered
CSDKApi::m_bShowSkipAllButton
CSDKApi::m_bShowDeclineButton
Global\223CEB62-A2BC-4E33-BA9B-FCAC6DAAB1BE
m_wndDummyAPIMsgWindow
CTrackingCalls::m_bIsRunningFromReboot
DEFINED_SetCmdLineValues
CSDKApi::GetTimeMSFromStartup
CSDKApi::DevModeMessage
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [,8E5E84D289E448A695B7A242103F72F5]
[Window,Class] = [,995D92B2-4ED9-43A7-9338-8CC7D1746F96]
[Window,Class] = [,Button]
[Window,Class] = [Dexpot 1.6 Setup,Static]
[Window,Class] = [Dexpot 1.6 Setup ,Static]
[Window,Class] = [,Static]
[Window,Class] = [,Auto-Suggest Dropdown]
[Window,Class] = [,#32770]
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [8E5E84D289E448A695B7A242103F72F5,]
NtUserFindWindowEx: [Class,Window] = [995D92B2-4ED9-43A7-9338-8CC7D1746F96,]
NtUserFindWindowEx: [Class,Window] = [#32770,]
NtUserFindWindowEx: [Class,Window] = [ThunderRT6FormDC,Dexpot - Main menu]
行为描述: 获取系统权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 窗口信息
详情信息: Pid = 1836, Hwnd=0xb016a, Text = Chinese (Simplified), ClassName = ComboBox.
Pid = 1836, Hwnd=0xc01d6, Text = OK, ClassName = Button.
Pid = 1836, Hwnd=0xd01c8, Text = Cancel, ClassName = Button.
Pid = 1836, Hwnd=0xc01c2, Text = Please select a language., ClassName = Static.
Pid = 1836, Hwnd=0xd0180, Text = Installer Language, ClassName = #32770.
Pid = 1836, Hwnd=0x9036e, Text = 下一步(&N) >, ClassName = Button.
Pid = 1836, Hwnd=0x903c0, Text = 取消(&C), ClassName = Button.
Pid = 1836, Hwnd=0x90370, Text = Dexpot 1.6 Setup , ClassName = Static.
Pid = 1836, Hwnd=0xa038c, Text = Dexpot 1.6 Setup, ClassName = Static.
Pid = 1836, Hwnd=0xb0368, Text = 欢迎使用“Dexpot 1.6”安装向导, ClassName = Static.
Pid = 1836, Hwnd=0x903ce, Text = 这个向导将指引你完成“Dexpot 1.6”的安装进程。 在开始安装之前,建议先关闭其他所有应用程序。这将允许“安装程序”更新指定的系统文, ClassName = Static.
Pid = 1836, Hwnd=0x903c4, Text = Dexpot 1.6 安装, ClassName = #32770.
Pid = 1836, Hwnd=0x90374, Text = < 上一步(&P), ClassName = Button.
Pid = 1836, Hwnd=0x9036e, Text = 我接受(&I), ClassName = Button.
Pid = 1836, Hwnd=0xc03f0, Text = 许可证协议, ClassName = Static.
行为描述: 打开图片文件
详情信息: \DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\modern-header.bmp
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\modern-wizard.bmp
异常崩溃
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: DEFINED_LoadSDKDLL
CRemoteProcApiCalls::m_bShowLoadingScreen
CRemoteProcApiCalls::m_nMaxLoadingScreenOffers
Global\426F00E8-A1B3-4EB2-8FF8-0950920F5D6E
SHIMLIB_LOG_MUTEX
CSDKApi::m_bSkipAllOffersTriggered
CSDKApi::m_bDeclineOfferTriggered
CSDKApi::m_bShowSkipAllButton
CSDKApi::m_bShowDeclineButton
Global\223CEB62-A2BC-4E33-BA9B-FCAC6DAAB1BE
m_wndDummyAPIMsgWindow
CTrackingCalls::m_bIsRunningFromReboot
DEFINED_SetCmdLineValues
CSDKApi::GetTimeMSFromStartup
CSDKApi::DevModeMessage
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [,8E5E84D289E448A695B7A242103F72F5]
[Window,Class] = [,995D92B2-4ED9-43A7-9338-8CC7D1746F96]
[Window,Class] = [,Button]
[Window,Class] = [Dexpot 1.6 Setup,Static]
[Window,Class] = [Dexpot 1.6 Setup ,Static]
[Window,Class] = [,Static]
[Window,Class] = [,Auto-Suggest Dropdown]
[Window,Class] = [,#32770]
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [8E5E84D289E448A695B7A242103F72F5,]
NtUserFindWindowEx: [Class,Window] = [995D92B2-4ED9-43A7-9338-8CC7D1746F96,]
NtUserFindWindowEx: [Class,Window] = [#32770,]
NtUserFindWindowEx: [Class,Window] = [ThunderRT6FormDC,Dexpot - Main menu]
行为描述: 获取系统权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 窗口信息
详情信息: Pid = 1836, Hwnd=0xb016a, Text = Chinese (Simplified), ClassName = ComboBox.
Pid = 1836, Hwnd=0xc01d6, Text = OK, ClassName = Button.
Pid = 1836, Hwnd=0xd01c8, Text = Cancel, ClassName = Button.
Pid = 1836, Hwnd=0xc01c2, Text = Please select a language., ClassName = Static.
Pid = 1836, Hwnd=0xd0180, Text = Installer Language, ClassName = #32770.
Pid = 1836, Hwnd=0x9036e, Text = 下一步(&N) >, ClassName = Button.
Pid = 1836, Hwnd=0x903c0, Text = 取消(&C), ClassName = Button.
Pid = 1836, Hwnd=0x90370, Text = Dexpot 1.6 Setup , ClassName = Static.
Pid = 1836, Hwnd=0xa038c, Text = Dexpot 1.6 Setup, ClassName = Static.
Pid = 1836, Hwnd=0xb0368, Text = 欢迎使用“Dexpot 1.6”安装向导, ClassName = Static.
Pid = 1836, Hwnd=0x903ce, Text = 这个向导将指引你完成“Dexpot 1.6”的安装进程。 在开始安装之前,建议先关闭其他所有应用程序。这将允许“安装程序”更新指定的系统文, ClassName = Static.
Pid = 1836, Hwnd=0x903c4, Text = Dexpot 1.6 安装, ClassName = #32770.
Pid = 1836, Hwnd=0x90374, Text = < 上一步(&P), ClassName = Button.
Pid = 1836, Hwnd=0x9036e, Text = 我接受(&I), ClassName = Button.
Pid = 1836, Hwnd=0xc03f0, Text = 许可证协议, ClassName = Static.
行为描述: 打开图片文件
详情信息: \DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\modern-header.bmp
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsx4.tmp\modern-wizard.bmp
危险行为
VirSCANVirSCAN
行为描述: 执行系统命令
详情信息: /data/data/cn.luomao.apkeditor/files/cmdline ls /mnt/sdcard/
动态列表行为
VirSCANVirSCAN
行为描述: 启动服务
详情信息: com.android.musicfx.Compatibility$Service
com.android.mms.transaction.SmsReceiverService
行为描述: 读取文件
详情信息: path:pipe:[3504] length:105
path:pipe:[3505] length:105
path:/proc/783/cmdline length:105
path:/proc/799/cmdline length:105
path:/proc/811/cmdline length:105
path:/proc/841/cmdline length:105
path:/proc/852/cmdline length:105
行为描述: 类加载
详情信息: path:/system/app/PicoTts.apk
path:/system/app/MusicFX.apk
path:/system/framework/am.jar
path:/data/app/cn.luomao.apkeditor-1.apk
行为描述: 执行系统命令
详情信息: /data/data/cn.luomao.apkeditor/files/cmdline ls /mnt/sdcard/
行为描述: 缓冲区读取一行数据
详情信息: FINISHED: cannot open the directory
行为描述: 写入文件
详情信息: path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
path:/data/data/cn.luomao.apkeditor/files/cmdline length:99
path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
行为描述: 初始化Intent
详情信息: Landroid/content/Context;=cn.luomao.apkeditor.ApkEditor@4154a688 | Ljava/lang/Class;=class com.google.ads.AdActivity
行为描述: 获取设备ID
详情信息: 357242043237511
Activities
VirSCANVirSCAN
活动名 类型
cn.luomao.apkeditor.ApkEditor android.intent.action.MAIN
cn.luomao.apkeditor.ApkEditor android.intent.category.LAUNCHER
危险函数
VirSCANVirSCAN
函数名称 信息
java/net/HttpURLConnection;->connect 连接URL
java/net/URL;->openConnection 连接URL
ContentResolver;->query 读取联系人、短信等数据库
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
广告信息
VirSCANVirSCAN
名称 信息
com.google.ads AdMob
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0x7c4af3aa
META-INF/CERT.SF 0xd724e2ef
META-INF/CERT.RSA 0x22639f69
res/drawable/ic_btn_bg_focused.png 0x36af0578
res/drawable-mdpi/ic_back.png 0xa179ce1c
res/drawable-xhdpi/ic_search.png 0x2415d9
res/drawable-mdpi/ic_next_page.png 0xecacc26e
res/drawable-hdpi/ic_one_column.png 0xef916a7b
res/layout/res_string_list.xml 0xeb613363
res/drawable-mdpi/ic_menu_save.png 0xdb3fbccc
res/drawable-xhdpi/ic_menu_dictionary.png 0x1da6931c
res/drawable-mdpi/ic_menu_help.png 0x2c63e4ff
res/drawable-ldpi/ic_one_column.png 0xe6f0c5ab
res/drawable-hdpi/ic_menu_save.png 0x71a8afcc
res/layout/res_string_item.xml 0x42dec1ee
res/layout/translate_progress.xml 0x80dbaaae
res/drawable-hdpi/ic_menu_help.png 0x9daabd89
res/drawable-xxhdpi/ic_menu_save.png 0x32f231e4
res/drawable-ldpi/ic_next_page.png 0x44f51bb8
res/drawable-xhdpi/ic_menu_save.png 0x4ac6c05b
res/drawable-hdpi/ic_file.png 0xd19a4e97
res/drawable-ldpi/list_selector_background_longpress.9.png 0x2e74416a
res/drawable-xhdpi/ic_menu_help.png 0x47ef33a1
res/drawable-mdpi/ic_search.png 0xf20e9bed
res/drawable-ldpi/ic_menu_dictionary.png 0xb1aa0fa9
res/drawable-hdpi/ic_main.png 0x85f67fd6
res/drawable-xhdpi/list_selector_background_focus.9.png 0x62160b0b
res/drawable-xxhdpi/ic_menu_help.png 0x7a1b7da0
res/layout/google_translate.xml 0x968c18fb
res/layout/res_string_item2.xml 0x14153efd
res/layout/dlg_hex_search.xml 0x67af952d
res/drawable-ldpi/ic_menu_home_page.png 0x7717d034
res/drawable-mdpi/ic_prev_page.png 0xd78659c
res/drawable-mdpi/ic_menu_google_translate.png 0xa0364f11
res/drawable-mdpi/ic_menu_search.png 0x46422e1a
res/drawable/ic_empty.png 0xc7ade417
res/drawable-ldpi/ic_two_columns.png 0x4af15716
res/drawable-xxhdpi/ic_menu_exit.png 0xa21aa4c0
res/drawable-xhdpi/ic_menu_back.png 0xac010e1e
res/drawable-xxhdpi/ic_delete.png 0x27ed4c1b
res/drawable-ldpi/ic_menu_settings.png 0x39a7b177
res/drawable-mdpi/ic_one_column.png 0x85023dca
res/drawable-hdpi/ic_menu_add.png 0xe14b3701
res/layout/apk_editor.xml 0x2230197
res/drawable-xhdpi/ic_menu_google_translate.png 0xde37dce6
res/drawable-xhdpi/ic_one_column.png 0x78929cfd
resources.arsc 0x194bc376
res/drawable-mdpi/ic_menu_exit.png 0x621bd7f0
res/drawable-xxhdpi/list_selector_background_pressed.9.png 0xa3b5cd90
AndroidManifest.xml 0xcfe587f2
res/drawable-ldpi/ic_menu_save.png 0xed50cdb4
res/drawable-xxhdpi/ic_one_column.png 0x59b3c8a7
res/drawable-xxhdpi/ic_menu_back.png 0x83e63673
res/drawable-hdpi/ic_folder.png 0xa3a900e5
res/drawable-mdpi/ic_folder.png 0x545c22e8
res/drawable-xhdpi/ic_menu_add.png 0xb7df5c9e
res/drawable-xxhdpi/ic_back.png 0x6817627
res/layout/dict_manager.xml 0x4cdbcc2f
res/layout/dlg_file_browser.xml 0x15bc19df
res/layout/dict_list_item_single_choice.xml 0xf2ea6384
res/layout/google_settings.xml 0xd2f8c73a
res/layout/progress.xml 0xe3e5e0e7
res/drawable-ldpi/ic_delete.png 0x7830f22a
res/drawable-xhdpi/ic_prev_page.png 0xda1743e
res/drawable-hdpi/list_selector_background_pressed.9.png 0x13c2569f
res/drawable-xxhdpi/ic_two_columns.png 0x2fde929c
res/drawable-ldpi/list_selector_background_pressed.9.png 0x669d1f25
res/drawable-ldpi/ic_menu_google_translate.png 0x9b36fb9a
classes.dex 0xa54884cd
res/drawable-mdpi/ic_menu_home_page.png 0x3c9490e1
res/drawable-xhdpi/list_selector_background_longpress.9.png 0xb4dc564a
res/drawable-mdpi/ic_delete.png 0x18a75e03
res/layout/dlg_dict_item.xml 0x925aa9ce
res/drawable-xxhdpi/ic_file.png 0x3ea07e31
res/drawable-mdpi/ic_menu_dictionary.png 0x48810fbf
res/drawable-mdpi/ic_two_columns.png 0x774f1d0c
res/drawable-xxhdpi/ic_menu_home_page.png 0xe3f999a8
res/layout/dict_editor.xml 0x57b97d49
res/drawable/divider_horizontal_dark_opaque.9.png 0xa90cfbd8
res/drawable/btn_bg_selector.xml 0xd5ebc7ca
res/drawable-xxhdpi/ic_prev_page.png 0x3554b40
res/layout/sys_file_list.xml 0xebfdf4ee
res/drawable/text_primary_color_selector.xml 0x6f421347
res/drawable-hdpi/ic_next_page.png 0x100f991d
res/drawable-xxhdpi/ic_folder.png 0x589532f2
res/drawable-hdpi/ic_menu_back.png 0xc0153fee
res/drawable-hdpi/ic_delete.png 0x427f0c45
res/drawable-xhdpi/ic_main.png 0xc3bc6a89
res/drawable-hdpi/ic_search.png 0xd4ee4c3f
res/drawable-ldpi/list_selector_background_focus.9.png 0xe74abf4a
res/drawable-hdpi/ic_menu_settings.png 0xd867aa8d
res/drawable-xhdpi/ic_file.png 0x1c10d72c
res/drawable-ldpi/ic_search.png 0x5a6c4dde
res/drawable-xxhdpi/ic_next_page.png 0xf927f0c2
res/drawable-mdpi/ic_menu_back.png 0x36d533e8
res/drawable-hdpi/ic_back.png 0x9bd251fd
res/drawable-xhdpi/ic_delete.png 0x45624095
res/drawable-xhdpi/ic_back.png 0x3335e9d7
res/drawable-mdpi/list_selector_background_pressed.9.png 0xf234dd94
res/drawable-ldpi/ic_menu_back.png 0x1e9e2d52
res/layout/dict_list_item.xml 0x6eeac31
res/drawable-hdpi/ic_menu_home_page.png 0xdf3f8ca
res/drawable-mdpi/ic_main.png 0x86cfb94b
res/drawable-xhdpi/ic_two_columns.png 0xd10a990
res/drawable-xhdpi/ic_menu_settings.png 0x4e7f6fa1
res/drawable/list_selector_background_transition.xml 0x2f467ccb
res/drawable-hdpi/list_selector_background_longpress.9.png 0x34434031
res/drawable-xxhdpi/ic_menu_google_translate.png 0xf06c625a
res/layout/dlg_query_text.xml 0x76621648
res/drawable-ldpi/ic_menu_exit.png 0xf2e92050
res/drawable-mdpi/ic_file.png 0x6ae69bfc
res/drawable-mdpi/ic_menu_add.png 0x4e9974c0
res/raw/cmdline 0x4a49fb76
res/layout/sys_file_item.xml 0xf13593e8
res/drawable-ldpi/ic_folder.png 0x3afb3530
res/drawable/list_selector_background.xml 0xc97a4ce0
crack.dex 0x825960c4
res/drawable-hdpi/ic_prev_page.png 0x8f01969d
res/drawable-mdpi/list_selector_background_focus.9.png 0x228b9183
res/drawable-xhdpi/ic_folder.png 0x7d91a076
res/drawable-hdpi/list_selector_background_focus.9.png 0xaf161b58
res/drawable-ldpi/ic_menu_search.png 0x97e42d1a
res/drawable-xxhdpi/list_selector_background_focus.9.png 0x4deebf9d
res/drawable-xxhdpi/ic_search.png 0x9c931c
res/drawable-hdpi/ic_menu_google_translate.png 0xc50027f4
res/layout/dict_list_item_multiple_choice.xml 0x48bf6793
res/drawable-xhdpi/ic_next_page.png 0x9c7c341
res/drawable-hdpi/ic_two_columns.png 0xeaec415
res/drawable-xhdpi/ic_menu_home_page.png 0x6ccf6754
lib/armeabi/libapkeditor.so 0x6112bb7e
res/drawable-mdpi/list_selector_background_longpress.9.png 0xabe1eb0
res/drawable-xxhdpi/ic_main.png 0x5da16b04
res/layout/dict_content_list_item.xml 0xc6eeba2a
res/drawable-hdpi/ic_menu_search.png 0x201d5f0f
res/drawable-xhdpi/ic_menu_search.png 0x8303c7de
res/layout/list_item_text_only.xml 0x9562fe8e
res/drawable-hdpi/ic_menu_dictionary.png 0xaee9da9e
res/drawable-xxhdpi/ic_menu_settings.png 0x71b2315e
res/drawable-xxhdpi/ic_menu_dictionary.png 0x71696615
res/drawable-xxhdpi/ic_menu_search.png 0x4d8b084a
res/drawable-xxhdpi/ic_menu_add.png 0x18059fc1
res/drawable-xxhdpi/list_selector_background_longpress.9.png 0x9a18d43b
res/drawable-mdpi/ic_menu_settings.png 0x36bc027a
res/drawable-ldpi/ic_file.png 0xd0b71ba8
res/drawable-ldpi/ic_menu_add.png 0x97c20398
res/drawable/list_highlight_active.xml 0x89fe3c4c
res/drawable-xhdpi/ic_menu_exit.png 0x7cf319d5
res/drawable-ldpi/ic_main.png 0x7c6d8cd1
res/drawable-ldpi/ic_back.png 0xb2cf5478
res/drawable-ldpi/ic_prev_page.png 0x1ab1a3bf
res/drawable-xhdpi/list_selector_background_pressed.9.png 0xaf0423c0
res/drawable-ldpi/ic_menu_help.png 0x6f6712df
res/drawable-hdpi/ic_menu_exit.png 0xdd032c2c
运行截图
VirSCANVirSCAN
VirSCAN