VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:3%Antivirus software(1/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2017-07-22 09:33:02 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 2.0 1970-01-01 Found nothing 5
asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 1
avast 170303-1 4.7.4 2017-03-03 Found nothing 60
avg 2109/14149 10.0.1405 2017-07-04 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2017-03-22 Found nothing 1
bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
clamav 23583 0.97.5 2017-07-21 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2017-06-18 Found nothing 60
fortinet 50.353, 50.281, 50.305 5.4.247 2017-07-22 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
gdata 25.13484 25.13484 2017-07-21 Found nothing 12
ikarus 1.06.01 V1.32.31.0 2016-11-28 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2017-07-21 Found nothing 2
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2017-07-21 Found nothing 4
mcafee 8261 5400.1158 2016-08-18 Found nothing 60
nod32 1777 3.0.21 2015-06-12 Found nothing 60
panda 9.05.01 9.05.01 2017-07-21 Found nothing 4
pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
quickheal 14.00 14.00 2017-07-21 Android.Jiagu.A (PUP) 3
rising 26.28.00.01 26.28.00.01 2016-07-18 Found nothing 2
sophos 5.32 3.65.2 2016-10-10 Found nothing 60
symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
thehacker 6.8.0.5 6.8.0.5 2017-07-19 Found nothing 2
tws 17.47.17308 1.0.2.2108 2017-07-21 Found nothing 14
vba 3.12.29.5 beta 3.12.29.5 beta 2017-07-17 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
权限列表
许可名称 信息
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.KILL_BACKGROUND_PROCESSES 关闭后台进程
android.permission.REORDER_TASKS 系统任务排序
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.PACKAGE_USAGE_STATS
android.permission.READ_LOGS 读取系统日志
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.SET_DEBUG_APP 调试程序
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.USE_CREDENTIALS 获取认证令牌
android.permission.MANAGE_ACCOUNTS 管理账户
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.INTERNET 连接网络(2G或3G)
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:3f6378c3dfa152307092860a80eaf897
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.nwe.kk
最低运行环境:Android 2.2.x
版权:sd
关键行为
VirSCANVirSCAN
行为描述: 直接获取CPU时钟
详情信息: EAX = 0x277eaf8b, EDX = 0x000000b7
EAX = 0x277eafd7, EDX = 0x000000b7
EAX = 0x277eb023, EDX = 0x000000b7
EAX = 0x277eb06f, EDX = 0x000000b7
EAX = 0x277eb0bb, EDX = 0x000000b7
EAX = 0x277eb107, EDX = 0x000000b7
EAX = 0x277eb153, EDX = 0x000000b7
EAX = 0x277eb19f, EDX = 0x000000b7
EAX = 0x277eb1eb, EDX = 0x000000b7
EAX = 0x277eb237, EDX = 0x000000b7
行为描述: 获取窗口截图信息
详情信息: Foreground window Info: HWND = 0x00010378, DC = 0x01010669.
Foreground window Info: HWND = 0x0001034e, DC = 0x01010055.
Foreground window Info: HWND = 0x0001037c, DC = 0x01010055.
Foreground window Info: HWND = 0x00010376, DC = 0x0a010375.
Foreground window Info: HWND = 0x0001036e, DC = 0x01010669.
Foreground window Info: HWND = 0x0001036c, DC = 0x01010055.
行为描述: 获取TickCount值
详情信息: TickCount = 279296, SleepMilliseconds = 60000.
TickCount = 280078, SleepMilliseconds = 60000.
TickCount = 280546, SleepMilliseconds = 60000.
TickCount = 280796, SleepMilliseconds = 60000.
TickCount = 280812, SleepMilliseconds = 60000.
TickCount = 280875, SleepMilliseconds = 60000.
TickCount = 281062, SleepMilliseconds = 60000.
TickCount = 281125, SleepMilliseconds = 60000.
TickCount = 281140, SleepMilliseconds = 60000.
TickCount = 281156, SleepMilliseconds = 60000.
TickCount = 282750, SleepMilliseconds = 60000.
TickCount = 287687, SleepMilliseconds = 60000.
TickCount = 287703, SleepMilliseconds = 60000.
TickCount = 291843, SleepMilliseconds = 60000.
TickCount = 292140, SleepMilliseconds = 60000.
进程行为
VirSCANVirSCAN
行为描述: 直接获取CPU时钟
详情信息: EAX = 0x277eaf8b, EDX = 0x000000b7
EAX = 0x277eafd7, EDX = 0x000000b7
EAX = 0x277eb023, EDX = 0x000000b7
EAX = 0x277eb06f, EDX = 0x000000b7
EAX = 0x277eb0bb, EDX = 0x000000b7
EAX = 0x277eb107, EDX = 0x000000b7
EAX = 0x277eb153, EDX = 0x000000b7
EAX = 0x277eb19f, EDX = 0x000000b7
EAX = 0x277eb1eb, EDX = 0x000000b7
EAX = 0x277eb237, EDX = 0x000000b7
行为描述: 获取窗口截图信息
详情信息: Foreground window Info: HWND = 0x00010378, DC = 0x01010669.
Foreground window Info: HWND = 0x0001034e, DC = 0x01010055.
Foreground window Info: HWND = 0x0001037c, DC = 0x01010055.
Foreground window Info: HWND = 0x00010376, DC = 0x0a010375.
Foreground window Info: HWND = 0x0001036e, DC = 0x01010669.
Foreground window Info: HWND = 0x0001036c, DC = 0x01010055.
行为描述: 获取TickCount值
详情信息: TickCount = 279296, SleepMilliseconds = 60000.
TickCount = 280078, SleepMilliseconds = 60000.
TickCount = 280546, SleepMilliseconds = 60000.
TickCount = 280796, SleepMilliseconds = 60000.
TickCount = 280812, SleepMilliseconds = 60000.
TickCount = 280875, SleepMilliseconds = 60000.
TickCount = 281062, SleepMilliseconds = 60000.
TickCount = 281125, SleepMilliseconds = 60000.
TickCount = 281140, SleepMilliseconds = 60000.
TickCount = 281156, SleepMilliseconds = 60000.
TickCount = 282750, SleepMilliseconds = 60000.
TickCount = 287687, SleepMilliseconds = 60000.
TickCount = 287703, SleepMilliseconds = 60000.
TickCount = 291843, SleepMilliseconds = 60000.
TickCount = 292140, SleepMilliseconds = 60000.
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\krnln.fnr
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext.fnr
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext2.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\EThread.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\HtmlView.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\spec.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Comdlg32.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\IPHLPAPI.DLL
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\imm32.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shdocvw.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shlwapi.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Psapi.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\atl.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Powrprof.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\oleaut32.dll
行为描述: 创建可执行文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\krnln.fnr
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext.fnr
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext2.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\EThread.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\HtmlView.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\spec.fne
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Comdlg32.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\IPHLPAPI.DLL
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\imm32.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shdocvw.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shlwapi.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Psapi.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\atl.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Powrprof.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\oleaut32.dll
行为描述: 修改文件内容
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\krnln.fnr ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext.fnr ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext2.fne ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\EThread.fne ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\HtmlView.fne ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\spec.fne ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Comdlg32.dll ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\IPHLPAPI.DLL ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\imm32.dll ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shdocvw.dll ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shlwapi.dll ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Psapi.dll ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\atl.dll ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Powrprof.dll ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\oleaut32.dll ---> Offset = 0
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Multimedia\DrawDib\vga.drv 1920x973x32(BGR 0)
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.IOH
MSCTF.Shared.MUTEX.AFK
行为描述: 创建事件对象
详情信息: EventName = DINPUTWINMM
EventName = MSCTF.SendReceiveConection.Event.AFK.IC
EventName = MSCTF.SendReceive.Event.AFK.IC
行为描述: 打开互斥体
详情信息: ShimCacheMutex
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述: 打开事件
详情信息: HookSwitchHookEnabledEvent
MSFT.VSA.COM.DISABLE.2636
MSFT.VSA.IEC.STATUS.6c736db0
CTF.ThreadMIConnectionEvent.000007E8.00000000.00000010
CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.00000010
MSCTF.SendReceiveConection.Event.IOH.IC
MSCTF.SendReceive.Event.IOH.IC
行为描述: 获取TickCount值
详情信息: TickCount = 279296, SleepMilliseconds = 60000.
TickCount = 280078, SleepMilliseconds = 60000.
TickCount = 280546, SleepMilliseconds = 60000.
TickCount = 280796, SleepMilliseconds = 60000.
TickCount = 280812, SleepMilliseconds = 60000.
TickCount = 280875, SleepMilliseconds = 60000.
TickCount = 281062, SleepMilliseconds = 60000.
TickCount = 281125, SleepMilliseconds = 60000.
TickCount = 281140, SleepMilliseconds = 60000.
TickCount = 281156, SleepMilliseconds = 60000.
TickCount = 282750, SleepMilliseconds = 60000.
TickCount = 287687, SleepMilliseconds = 60000.
TickCount = 287703, SleepMilliseconds = 60000.
TickCount = 291843, SleepMilliseconds = 60000.
TickCount = 292140, SleepMilliseconds = 60000.
行为描述: 获取光标位置
详情信息: CursorPos = (80,18468), SleepMilliseconds = 60000.
CursorPos = (6373,26501), SleepMilliseconds = 60000.
行为描述: 窗口信息
详情信息: Pid = 2636, Hwnd=0x1037c, Text = 剧名:, ClassName = Afx:1f40000:b:10011:1900015:0.
Pid = 2636, Hwnd=0x10378, Text = 关于作者, ClassName = Button.
Pid = 2636, Hwnd=0x1036e, Text = 剧集:, ClassName = Afx:1f40000:b:10011:1900015:0.
Pid = 2636, Hwnd=0x1036c, Text = 选择播放源:, ClassName = Afx:1f40000:b:10011:1900015:0.
Pid = 2636, Hwnd=0x10362, Text = 视频简介:, ClassName = Edit.
Pid = 2636, Hwnd=0x1035c, Text = 搜索结果:, ClassName = Afx:1f40000:b:10011:1900015:0.
Pid = 2636, Hwnd=0x1034e, Text = 搜索一下, ClassName = Button.
Pid = 2636, Hwnd=0x20346, Text = Howe影视 - 破解vip视频免费观看 QQ949643229, ClassName = WTWindow.
Pid = 2636, Hwnd=0x1034c, Text = 123456, ClassName = Edit.
行为描述: 获取窗口截图信息
详情信息: Foreground window Info: HWND = 0x00010378, DC = 0x01010669.
Foreground window Info: HWND = 0x0001034e, DC = 0x01010055.
Foreground window Info: HWND = 0x0001037c, DC = 0x01010055.
Foreground window Info: HWND = 0x00010376, DC = 0x0a010375.
Foreground window Info: HWND = 0x0001036e, DC = 0x01010669.
Foreground window Info: HWND = 0x0001036c, DC = 0x01010055.
行为描述: 可执行文件签名信息
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\krnln.fnr(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext.fnr(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext2.fne(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\EThread.fne(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\HtmlView.fne(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\spec.fne(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Comdlg32.dll(签名验证: 通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\IPHLPAPI.DLL(签名验证: 通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\imm32.dll(签名验证: 通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shdocvw.dll(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shlwapi.dll(签名验证: 通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Psapi.dll(签名验证: 未通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\atl.dll(签名验证: 通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Powrprof.dll(签名验证: 通过)
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\oleaut32.dll(签名验证: 通过)
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = 60000.
[2]: MilliSeconds = 0.
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,_EL_DrawPanel]
行为描述: 可执行文件MD5
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\krnln.fnr ---> b3b09f4a3a6704000c3a0c6acc825e9d
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext.fnr ---> 856495a1605bfc7f62086d482b502c6f
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\iext2.fne ---> dba5fdbe7ec94463b3f6fdf2162c9f95
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\EThread.fne ---> 206396257b97bd275a90ce6c2c0c37fd
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\HtmlView.fne ---> f9a994df4d407bc79f7c84886fe7a654
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\spec.fne ---> bd6eef5ea9a52a412a8f57490d8bd8e4
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Comdlg32.dll ---> c7479e84869fd0ad3cc675bc82d359a8
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\IPHLPAPI.DLL ---> 12c0990ecf799eea874c260eb185d763
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\imm32.dll ---> 7645b57df463e4dfaa2c6e99420060da
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shdocvw.dll ---> ba6b9cd9b20780d17261defc1df2cebe
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\shlwapi.dll ---> c3a8d3a3f594d1d6da2017e996b7766f
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Psapi.dll ---> 00c607f43b7f986c51b22dd4cf0a3ae1
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\atl.dll ---> daf9a0e44128b79125cf9c69ca5254db
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\Powrprof.dll ---> 46b536fc727208f37f0e3fcd2e27183a
C:\Documents and Settings\Administrator\Local Settings\Temp\E_N60005\oleaut32.dll ---> 87073fc631c14d82c0b162118b3923aa
行为描述: 直接获取CPU时钟
详情信息: EAX = 0x277eaf8b, EDX = 0x000000b7
EAX = 0x277eafd7, EDX = 0x000000b7
EAX = 0x277eb023, EDX = 0x000000b7
EAX = 0x277eb06f, EDX = 0x000000b7
EAX = 0x277eb0bb, EDX = 0x000000b7
EAX = 0x277eb107, EDX = 0x000000b7
EAX = 0x277eb153, EDX = 0x000000b7
EAX = 0x277eb19f, EDX = 0x000000b7
EAX = 0x277eb1eb, EDX = 0x000000b7
EAX = 0x277eb237, EDX = 0x000000b7
行为描述: 加载新释放的文件
详情信息: Image: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\E_N60005\krnln.fnr.
Image: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\E_N60005\iext2.fne.
Image: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\E_N60005\iext.fnr.
Activities
VirSCANVirSCAN
活动名 类型
.activity.LoadingActivity android.intent.action.MAIN
.activity.LoadingActivity android.intent.category.LAUNCHER
com.tencent.tauth.AuthActivity android.intent.action.VIEW
com.tencent.tauth.AuthActivity android.intent.category.DEFAULT
com.tencent.tauth.AuthActivity android.intent.category.BROWSABLE
危险函数
VirSCANVirSCAN
函数名称 信息
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.KILL_BACKGROUND_PROCESSES 关闭后台进程
android.permission.REORDER_TASKS 系统任务排序
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.PACKAGE_USAGE_STATS
android.permission.READ_LOGS 读取系统日志
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.SET_DEBUG_APP 调试程序
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.USE_CREDENTIALS 获取认证令牌
android.permission.MANAGE_ACCOUNTS 管理账户
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.INTERNET 连接网络(2G或3G)
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
服务列表
VirSCANVirSCAN
名称
com.qihoo.util.QhJobService
com.qihoo.util.CommonService
com.qihoo.util.CommonService2
com.qihoo.ls.SoService
Providers
VirSCANVirSCAN
名称 信息
com.qihoo.util.QhJobService
com.qihoo.util.CommonService
com.qihoo.util.CommonService2
com.qihoo.ls.SoService
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0xffdb5b68
META-INF/TESTKEY.SF 0x2a70562c
META-INF/TESTKEY.RSA 0xd1dd1436
AndroidManifest.xml 0x722488e9
assets/.appkey 0xe3e8db29
assets/background.9.png 0x2b654113
assets/buttonNegt.png 0xbf8691b8
assets/buttonPost.png 0x6231c3b4
assets/button_green.9.png 0xab4b0557
assets/button_red.9.png 0xded221c2
assets/channel.txt 0xfae6813f
assets/com.tencent.open.config.json 0xb3d4a81a
assets/com.tencent.plus.bar.png 0x5fd36d43
assets/com.tencent.plus.blue_disable.png 0xf0e0db56
assets/com.tencent.plus.blue_down.png 0xb6bdc1b
assets/com.tencent.plus.blue_normal.png 0x18382c6e
assets/com.tencent.plus.gray_disable.png 0x9375206c
assets/com.tencent.plus.gray_down.png 0xcbe30e37
assets/com.tencent.plus.gray_normal.png 0xbf8cba3
assets/com.tencent.plus.ic_error.png 0xed6b2186
assets/com.tencent.plus.ic_success.png 0x20ea665b
assets/com.tencent.plus.logo.png 0x91dff5be
assets/libjiagu.so 0xf540e7d2
assets/libjiagu_ls.so 0x7d730017
assets/libwbsafeedit 0xb05a63a9
assets/libwbsafeedit_64 0xb6ff8ab6
assets/libwbsafeedit_x86 0xfc7f4f0b
assets/libwbsafeedit_x86_64 0xf630540c
assets/yyb_appdetail_bg_floatingwindow.9.png 0x2e9abd8b
assets/yyb_appdetail_showmore.png 0xcfd41321
assets/yyb_friends.png 0xf969c41e
assets/yyb_icon_back.png 0x58d07682
assets/yyb_qq.png 0xa289050d
assets/yyb_qzone.png 0x20e15be3
assets/yyb_topbar.9.png 0x410133f6
assets/yyb_weixin.png 0x3402b818
classes.dex 0xa83400de
lib/armeabi/ 0x0
lib/armeabi/libjiagu_art.so 0x0
org/apache/http/entity/mime/version.properties 0x53e10a06
res/anim/dialog_enter_anim.xml 0x8b75d638
res/anim/dialog_exit_anim.xml 0x97be3a30
res/anim/umeng_socialize_fade_in.xml 0xf2e7bdac
res/anim/umeng_socialize_fade_out.xml 0x19682b1d
res/anim/umeng_socialize_shareboard_animation_in.xml 0x5b62eaa8
res/anim/umeng_socialize_shareboard_animation_out.xml 0x100d0f13
res/anim/umeng_socialize_slide_in_from_bottom.xml 0x72fa759c
res/anim/umeng_socialize_slide_out_from_bottom.xml 0x62fd58e7
res/anim/x_loading_anim.xml 0xbe5b2f7f
res/anim/x_toast_in_anim.xml 0xadcf0c73
res/anim/x_toast_out_anim.xml 0x3bbd9331
res/drawable-hdpi/btn_close_normal.png 0x568091d8
res/drawable-hdpi/btn_close_pressed.png 0xb28ab75d
res/drawable-hdpi/circle.png 0x15c910fc
res/drawable-hdpi/db.png 0x9123a2ad
res/drawable-hdpi/down_arrow.png 0x29228e5
res/drawable-hdpi/fb_rotation.png 0xcdc3c96
res/drawable-hdpi/gonggao.png 0x5eb37b73
res/drawable-hdpi/ic_launcher.png 0x607d912e
res/drawable-hdpi/ic_loading.png 0xe472126d
res/drawable-hdpi/ic_loading_anim.png 0xc923ce53
res/drawable-hdpi/ic_lv_divider_line_h.png 0x98049467
res/drawable-hdpi/ic_process_loading.png 0x3205e1b5
res/drawable-hdpi/ic_share_copy.png 0x78461ed0
res/drawable-hdpi/ic_share_pyq.png 0xc2332b2
res/drawable-hdpi/ic_share_qq.png 0x4bd5777c
res/drawable-hdpi/ic_share_qzone.png 0x43590ec0
res/drawable-hdpi/ic_share_sms.png 0x3dad0cef
res/drawable-hdpi/ic_share_wx.png 0x7f3ff459
res/drawable-hdpi/ic_toast_money.png 0x63f1c873
res/drawable-hdpi/icon_home.jpg 0x27dc715f
res/drawable-hdpi/loadbg.jpg 0xbd490b0e
res/drawable-hdpi/m_loading.png 0xb516d40b
res/drawable-hdpi/moudle_loading.png 0x32539271
res/drawable-hdpi/queding.png 0xaa9b0be6
res/drawable-hdpi/scbg.jpg 0x40285e64
res/drawable-hdpi/state_error.png 0x62155acf
res/drawable-hdpi/state_ok.png 0xfe509cc3
res/drawable-hdpi/suibian.png 0xfceef6be
res/drawable-hdpi/x_dot_blur.png 0x655d5266
res/drawable-hdpi/x_dot_focus.png 0x6232da47
res/drawable-hdpi/xlistview_arrow.png 0x3c354b5e
res/drawable-ldpi/ic_launcher.png 0x607d912e
res/drawable-mdpi/ic_launcher.png 0x607d912e
res/drawable-xhdpi/ic_launcher.png 0x607d912e
res/drawable-xxhdpi/ic_launcher.png 0x607d912e
res/drawable/bg_black.xml 0x1237fdda
res/drawable/bg_edittext_focused.xml 0xf256cb69
res/drawable/bg_edittext_normal.xml 0xefe2eaf0
res/drawable/bg_edittext_selector.xml 0x75a89ff6
res/drawable/btn_green_normal.xml 0xcf71aa7a
res/drawable/btn_green_pressed.xml 0xc0257f6d
res/drawable/btn_green_selector.xml 0x54cc59e3
res/drawable/btn_list_enable.xml 0xbce5643d
res/drawable/btn_list_normal.xml 0x424b53b2
res/drawable/btn_list_selector.xml 0xf4658496
res/drawable/dialog_circle_corner.xml 0x21e8c954
res/drawable/dialog_circle_corner_top.xml 0xc3c414e0
res/drawable/login_bg.xml 0x33af7a48
res/drawable/notitledialog_bg.xml 0x4fa5c7c3
res/drawable/share_tv_bg.xml 0x65a1b76e
res/drawable/x_close_dialog_selector.xml 0x1d4b6549
res/drawable/x_listview_selector.xml 0xafb0ead1
res/drawable/x_processdialog_bg.xml 0xb98a9c1b
res/drawable/x_progressbar_style.xml 0x6d0d6d6f
res/drawable/x_toast_style.xml 0xa05da571
res/layout/act_brush_gift_detail.xml 0xd2a62ee1
res/layout/act_loading.xml 0x7d4e8dd1
res/layout/act_moudle_item.xml 0xfd001d62
res/layout/brush_gift_anim.xml 0xf98c08c2
res/layout/brush_txx_info.xml 0xa869a886
res/layout/dlg_set_job.xml 0x91e25376
res/layout/login_activity.xml 0x1798fccb
res/layout/shareactivity_layout.xml 0xd9049604
res/layout/spiner_accounttype_item.xml 0x197370a
res/layout/spiner_window_layout.xml 0x7c1969be
res/layout/spinner_game_item.xml 0x2784af4a
res/layout/spinner_game_layout.xml 0x44c07f65
res/layout/x_alertdialog.xml 0xec0db1ab
res/layout/x_alertdialog_activity.xml 0xe95d96de
res/layout/x_alertdialog_lesspoint.xml 0x36d9b7e6
res/layout/x_alertdialog_query.xml 0xc4787332
res/layout/x_alertdialog_query2.xml 0x18476100
res/layout/x_alertdialog_share.xml 0xc4dbd7d7
res/layout/x_alertdialog_sharedesc.xml 0x54a5db1b
res/layout/x_base_dialog.xml 0x27368ee7
res/layout/x_desc_dialog.xml 0x44e71a9e
res/layout/x_dialog_header.xml 0x7dc8c9c
res/layout/x_image_loop.xml 0x256ff7eb
res/layout/x_list_dialog.xml 0x56619746
res/layout/x_list_dialog_item.xml 0xa77dbf5
res/layout/x_progressbar.xml 0x53577d48
res/layout/x_progressdialog.xml 0x4a76d339
res/layout/x_toast_view.xml 0xc9425d57
res/layout/xexlistview_footer.xml 0xdf44a4ad
res/layout/xexlistview_header.xml 0xe7f16582
res/layout/xlistview_footer.xml 0xd13a0644
res/layout/xlistview_header.xml 0xd0eaa4e1
res/menu/main.xml 0xcba9955d
resources.arsc 0xae47665a
运行截图
VirSCANVirSCAN
VirSCAN