VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

   File information

Virscan.org multi-engine scan report
Behavior analysis report:         Habo file analysis

Basic Information

MD5:dcf58242fc4db88e738314df0945e4b1
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
Package names:com.miui.klo.bugreport
Minimum operating environment:Android 4.4
copyright:Xiaomi

Key behavior

Behavior description: 写权限映射文件
details: CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MFF..CHHGH
MSCTF.MarshalInterface.FileMap.MFF.B.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.C.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.D.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.E.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.F.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.G.BJHGH
MSCTF.Shared.SFM.MFF
Behavior description: 屏蔽窗口关闭消息
details: hWnd = 0x000202a6, Text = Anthemion Jutoh 1.xx - *keygen*, ClassName = TForm1.
Behavior description: 隐藏指定窗口
details: [Window,Class] = [Anthemion Jutoh 1.xx - *keygen*,TForm1]

Process behavior

Behavior description: 枚举进程
details: N/A

File behavior

Behavior description: 写权限映射文件
details: CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MFF..CHHGH
MSCTF.MarshalInterface.FileMap.MFF.B.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.C.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.D.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.E.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.F.CIHGH
MSCTF.MarshalInterface.FileMap.MFF.G.BJHGH
MSCTF.Shared.SFM.MFF

Other behavior

Behavior description: 创建互斥体
details: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
MSCTF.Shared.MUTEX.MFF
Behavior description: 隐藏指定窗口
details: [Window,Class] = [Anthemion Jutoh 1.xx - *keygen*,TForm1]
Behavior description: 查找指定窗口
details: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
NtUserFindWindowEx: [Class,Window] = [MS_WINHELP,]
Behavior description: 窗口信息
details: Pid = 1044, Hwnd=0x202b4, Text = 6FE16EC7-D3BCE795-84AB9315, ClassName = TEdit.
Pid = 1044, Hwnd=0x202cc, Text = ~ generate ~, ClassName = TButton.
Pid = 1044, Hwnd=0x202a8, Text = TeaM Lz0!, ClassName = TEdit.
Pid = 1044, Hwnd=0x202a6, Text = Anthemion Jutoh 1.xx - *keygen*, ClassName = TForm1.
Behavior description: 屏蔽窗口关闭消息
details: hWnd = 0x000202a6, Text = Anthemion Jutoh 1.xx - *keygen*, ClassName = TForm1.
Behavior description: 枚举窗口
details: N/A

Dynamic list behavior

Behavior description: Android运行时错误
details: E/AndroidRuntime( 666): FATAL EXCEPTION: ContactsProviderWorker
E/AndroidRuntime( 666): Process: android.process.acore, PID: 666
E/AndroidRuntime( 666): android.database.sqlite.SQLiteConstraintException: column mimetype is not unique (code 19)
E/AndroidRuntime( 666): at android.database.sqlite.SQLiteConnection.nativeExecuteForLastInsertedRowId(Native Method)
E/AndroidRuntime( 666): at android.database.sqlite.SQLiteConnection.executeForLastInsertedRowId(SQLiteConnection.java:782)
E/AndroidRuntime( 666): at android.database.sqlite.SQLiteSession.executeForLastInsertedRowId(SQLiteSession.java:788)
E/AndroidRuntime( 666): at android.database.sqlite.SQLiteStatement.executeInsert(SQLiteStatement.java:86)
E/AndroidRuntime( 666): at com.android.providers.contacts.ContactsDatabaseHelper.lookupAndCacheId(ContactsDatabaseHelper.java:4350)
E/AndroidRuntime( 666): at com.android.providers.contacts.ContactsDatabaseHelper.lookupMimeTypeId(ContactsDatabaseHelper.java:4411)
E/AndroidRuntime( 666): at com.android.providers.contacts.ContactsDatabaseHelper.getMimeTypeId(ContactsDatabaseHelper.java:4396)
E/AndroidRuntime( 666): at com.android.providers.contacts.aggregation.ContactAggregator.<init>(ContactAggregator.java:375)
E/AndroidRuntime( 666): at com.android.providers.contacts.ContactsProvider2.initForDefaultLocale(ContactsProvider2.java:1509)
E/AndroidRuntime( 666): at com.android.providers.contacts.ContactsProvider2.performBackgroundTask(ContactsProvider2.java:1582)
E/AndroidRuntime( 666): at com.android.providers.contacts.ContactsProvider2$1.handleMessage(ContactsProvider2.java:1468)
E/AndroidRuntime( 666): at android.os.Handler.dispatchMessage(Handler.java:102)
E/AndroidRuntime( 666): at android.os.Looper.loop(Looper.java:136)
E/AndroidRuntime( 666): at android.os.HandlerThread.run(HandlerThread.java:61)

Dangerous function

android/app/NotificationManager;->notify 信息通知栏
ContentResolver;->query 读取联系人、短信等数据库
HttpClient;->execute 请求远程服务器
DefaultHttpClient;->execute 发送HTTP请求
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL

Startup mode

com.miui.klo.bugreport.receiver.KLOStartupReceiver 开机启动服务
com.miui.klo.bugreport.receiver.KLOStartupReceiver 网络连接改变时启动服务

Permission list

android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.READ_LOGS 读取系统日志
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.MANAGE_ACCOUNTS 管理账户
android.permission.USE_CREDENTIALS 获取认证令牌
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.miui.permission.SHELL
android.permission.AUTHENTICATE_ACCOUNTS 验证账户
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.DELETE_PACKAGES 删除应用
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播

Service list

com.miui.klo.bugreport.service.FeedbackBackgroundService
com.miui.klo.bugreport.service.MemoryCollectionService
com.miui.klo.bugreport.service.QueryServerService
com.miui.klo.bugreport.service.FileUploadService

File List

META-INF/MANIFEST.MF
META-INF/CERT.SF
META-INF/CERT.RSA
AndroidManifest.xml
classes.dex
lib/armeabi-v7a/libklobugreport_jni.so
org/apache/thrift/EncodingUtils.java
org/apache/thrift/ShortStack.java
org/apache/thrift/TApplicationException.java
org/apache/thrift/TBase.java
org/apache/thrift/TBaseHelper.java
org/apache/thrift/TByteArrayOutputStream.java
org/apache/thrift/TDeserializer.java
org/apache/thrift/TEnum.java
org/apache/thrift/TException.java
org/apache/thrift/TFieldIdEnum.java
org/apache/thrift/TFieldRequirementType.java
org/apache/thrift/TProcessor.java
org/apache/thrift/TProcessorFactory.java
org/apache/thrift/TSerializer.java
org/apache/thrift/TServiceClient.java
org/apache/thrift/TServiceClientFactory.java
org/apache/thrift/TUnion.java
org/apache/thrift/async/AsyncMethodCallback.java
org/apache/thrift/async/TAsyncClient.java
org/apache/thrift/async/TAsyncClientFactory.java
org/apache/thrift/async/TAsyncClientManager.java
org/apache/thrift/async/TAsyncMethodCall.java
org/apache/thrift/meta_data/EnumMetaData.java
org/apache/thrift/meta_data/FieldMetaData.java
org/apache/thrift/meta_data/FieldValueMetaData.java
org/apache/thrift/meta_data/ListMetaData.java
org/apache/thrift/meta_data/MapMetaData.java
org/apache/thrift/meta_data/SetMetaData.java
org/apache/thrift/meta_data/StructMetaData.java
org/apache/thrift/protocol/TBase64Utils.java
org/apache/thrift/protocol/TBinaryProtocol.java
org/apache/thrift/protocol/TCompactProtocol.java
org/apache/thrift/protocol/TField.java
org/apache/thrift/protocol/TJSONProtocol.java
org/apache/thrift/protocol/TList.java
org/apache/thrift/protocol/TMap.java
org/apache/thrift/protocol/TMessage.java
org/apache/thrift/protocol/TMessageType.java
org/apache/thrift/protocol/TProtocol.java
org/apache/thrift/protocol/TProtocolException.java
org/apache/thrift/protocol/TProtocolFactory.java
org/apache/thrift/protocol/TProtocolUtil.java
org/apache/thrift/protocol/TSet.java
org/apache/thrift/protocol/TSimpleJSONProtocol.java
org/apache/thrift/protocol/TStruct.java
org/apache/thrift/protocol/TType.java
org/apache/thrift/server/THsHaServer.java
org/apache/thrift/server/TNonblockingServer.java
org/apache/thrift/server/TServer.java
org/apache/thrift/server/TServlet.java
org/apache/thrift/server/TSimpleServer.java
org/apache/thrift/server/TThreadPoolServer.java
org/apache/thrift/transport/AutoExpandingBuffer.java
org/apache/thrift/transport/AutoExpandingBufferReadTransport.java
org/apache/thrift/transport/AutoExpandingBufferWriteTransport.java
org/apache/thrift/transport/TFastFramedTransport.java
org/apache/thrift/transport/TFramedTransport.java
org/apache/thrift/transport/THttpClient.java
org/apache/thrift/transport/TIOStreamTransport.java
org/apache/thrift/transport/TMemoryBuffer.java
org/apache/thrift/transport/TMemoryInputTransport.java
org/apache/thrift/transport/TNonblockingServerSocket.java
org/apache/thrift/transport/TNonblockingServerTransport.java
org/apache/thrift/transport/TNonblockingSocket.java
org/apache/thrift/transport/TNonblockingTransport.java
org/apache/thrift/transport/TSaslClientTransport.java
org/apache/thrift/transport/TSaslServerTransport.java
org/apache/thrift/transport/TSaslTransport.java
org/apache/thrift/transport/TServerSocket.java
org/apache/thrift/transport/TServerTransport.java
org/apache/thrift/transport/TSocket.java
org/apache/thrift/transport/TTransport.java
org/apache/thrift/transport/TTransportException.java
org/apache/thrift/transport/TTransportFactory.java
res/color/passport_button_text_light.xml
res/color/passport_hyperlink_text_color.xml
res/color/passport_normal_text_light.xml
res/drawable-hdpi-v4/ic_success.png
res/drawable-hdpi-v4/notification.png
res/drawable-hdpi-v4/passport_btn_transparent_bkg.9.png
res/drawable-xhdpi-v4/btn_bg_main_action_disabled_light.9.png
res/drawable-xhdpi-v4/btn_bg_main_action_disabled_pressed_light.9.png
res/drawable-xhdpi-v4/btn_bg_main_action_normal_light.9.png
res/drawable-xhdpi-v4/btn_bg_main_action_pressed_light.9.png
res/drawable-xhdpi-v4/icon.png
res/drawable-xhdpi-v4/passport_btn_bg_single_normal_light.9.png
res/drawable-xhdpi-v4/passport_btn_bg_single_pressed_light.9.png
res/drawable-xhdpi-v4/usb_notification_help_bg_n.9.png
res/drawable-xhdpi-v4/usb_notification_help_bg_p.9.png
res/drawable/action_button_upload_full_pkg_bg.xml
res/drawable/btn_bg_main_action_light.xml
res/drawable/ic_launcher.png
res/drawable/passport_btn_bg_light.xml
res/drawable/progress_bg_selector.xml
res/drawable/progress_btn_active.xml
res/drawable/progress_selector_active.xml
res/layout/main_action_button.xml
res/layout/memory_leak_collection_main.xml
res/layout/status_bar_download_full_pkg.xml
resources.arsc