VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Scanner(s) (0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2017-07-07 15:17:24 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 2.0 1970-01-01 Found nothing 5
asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 1
avast 170303-1 4.7.4 2017-03-03 Found nothing 60
avg 2109/14149 10.0.1405 2017-07-04 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2017-03-22 Found nothing 1
bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
clamav 23536 0.97.5 2017-07-05 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2017-06-18 Found nothing 60
fortinet 49.995, 49.961, 49.970 5.4.247 2017-07-07 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
gdata 25.13252 25.13252 2017-07-06 Found nothing 11
ikarus 1.06.01 V1.32.31.0 2016-11-28 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2017-07-05 Found nothing 2
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2017-07-06 Found nothing 4
mcafee 8261 5400.1158 2016-08-18 Found nothing 60
nod32 1777 3.0.21 2015-06-12 Found nothing 60
panda 9.05.01 9.05.01 2017-07-06 Found nothing 3
pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 7
qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
quickheal 14.00 14.00 2017-07-06 Found nothing 2
rising 26.28.00.01 26.28.00.01 2016-07-18 Found nothing 1
sophos 5.32 3.65.2 2016-10-10 Found nothing 60
symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
thehacker 6.8.0.5 6.8.0.5 2017-07-04 Found nothing 1
tws 17.47.17308 1.0.2.2108 2017-07-06 Found nothing 13
vba 3.12.29.5 beta 3.12.29.5 beta 2017-07-04 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.READ_EXTERNAL_STORAGE 读外部存储器(如:SD卡)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_FIND_LOCATION
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS 访问额外的定位指令
android.permission.BLUETOOTH 连接蓝牙设备
android.permission.BLUETOOTH_ADMIN 搜寻蓝牙设备
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.WRITE_APN_SETTINGS 改写APN设置(如:cmwap)
android.permission.WRITE_SECURE_SETTINGS 读写系统敏感设置
android.permission.MODIFY_PHONE_STATE 修改电话状态
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.KILL_BACKGROUND_PROCESSES 关闭后台进程
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.DISABLE_KEYGUARD 禁用键盘锁
android.permission.VIBRATE 允许设备震动
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
com.android.launcher.permission.UNINSTALL_SHORTCUT 删除快捷方式
com.android.alarm.permission.SET_ALARM 设置闹铃提醒
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
com.lenovo.launcher.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
android.permission.BROADCAST_STICKY 发送持久广播
android.permission.REAL_GET_TASKS
android.permission.INSTALL_PACKAGES 安装应用
android.permission.DELETE_PACKAGES 删除应用
android.permission.WRITE_MEDIA_STORAGE
android.permission.READ_FRAME_BUFFER 屏幕截图
android.permission.DEVICE_POWER 电源管理
android.permission.PACKAGE_USAGE_STATS
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:3307394be3b6c21edfa854314f877899
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.kjezt.inbb.vb
最低运行环境:Android 4.2, 4.2.2
版权:"Shinecore Technology Co.
进程行为
VirSCANVirSCAN
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\~DFABB5.tmp
行为描述: 删除文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\~DFABB5.tmp
行为描述: 查找文件
详情信息: FileName = C:\Program Files
FileName = C:\Program Files\Microsoft Office
FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Excel\XLSTART\*.*
FileName = C:\Program Files\Microsoft Office\OFFICE11\xlstart\*.*
FileName = C:/Documents and Settings/Administrator/Local Settings/Temp/EB93A6/%temp%\****.xls
FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\桌面
FileName = C:\Documents and Settings\Administrator\Local Settings
FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.xls
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\StartupItems\G
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTT
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTF
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTA
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\DocumentRecovery\34DD4\34DD4
行为描述: 删除注册表键
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\StartupItems\
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\
行为描述: 删除注册表键值
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTT
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\StartupItems\G
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: Local\Mutex_MSOSharedMem
CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
Local\Mso97SharedDg19211108221Mutex
Local\Mso97SharedDg20321108221Mutex
Local\Mso97SharedDg19521108221Mutex
Local\Mso97SharedDg19531108221Mutex
MSCTF.Shared.MUTEX.IOH
MSCTF.Shared.MUTEX.EJJ
行为描述: 创建事件对象
详情信息: EventName = Local\MsoTestEvent_dd9a5010-2abc-4b3b-bd39-1c2b9136482b
EventName = MSCTF.SendReceive.Event.EJJ.IC
EventName = MSCTF.SendReceiveConection.Event.EJJ.IC
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
NtUserFindWindowEx: [Class,Window] = [MsoHelp11,]
行为描述: 窗口信息
详情信息: Pid = 2448, Hwnd=0x2036e, Text = 密码, ClassName = bosa_sdm_XL9.
Pid = 2448, Hwnd=0x10368, Text = 格式, ClassName = MsoCommandBar.
Pid = 2448, Hwnd=0x10366, Text = 常用, ClassName = MsoCommandBar.
Pid = 2448, Hwnd=0x10364, Text = 工作表菜单栏, ClassName = MsoCommandBar.
Pid = 2448, Hwnd=0x1033e, Text = Microsoft Excel, ClassName = XLMAIN.
Pid = 2448, Hwnd=0x1035c, Text = 123456, ClassName = ComboBox.
Pid = 2448, Hwnd=0x10360, Text = 123456, ClassName = Edit.
Pid = 2448, Hwnd=0x1035c, Text = 6, ClassName = ComboBox.
Pid = 2448, Hwnd=0x10360, Text = 6, ClassName = Edit.
Pid = 2448, Hwnd=0x1035c, Text = 3456, ClassName = ComboBox.
Pid = 2448, Hwnd=0x10360, Text = 3456, ClassName = Edit.
行为描述: 调整进程token权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 打开事件
详情信息: Global\MsoTestEvent_dd9a5010-2abc-4b3b-bd39-1c2b9136482b
\SECURITY\LSA_AUTHENTICATION_INITIALIZED
MSFT.VSA.COM.DISABLE.2448
MSFT.VSA.IEC.STATUS.6c736db0
_fCanRegisterWithShellService
CTF.ThreadMIConnectionEvent.000007E8.00000000.0000000F
CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.0000000F
MSCTF.SendReceiveConection.Event.IOH.IC
MSCTF.SendReceive.Event.IOH.IC
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
行为描述: 打开互斥体
详情信息: ShimCacheMutex
Local\Mutex_MSOSharedMem
Local\Mso97SharedDg19211108221Mutex
CtfmonInstMutexDefaultS-*
Local\Mso97SharedDg20321108221Mutex
Local\MU_ACBPIDS08
Local\Mso97SharedDg19521108221Mutex
Local\Mso97SharedDg19531108221Mutex
Activities
VirSCANVirSCAN
活动名 类型
com.crypte.app.MainActivity android.intent.action.MAIN
com.crypte.app.MainActivity android.intent.category.LAUNCHER
com.cpkg.push.kernel.activities.StubActivity com.ryg.dynamicload.proxy.activity.VIEW
com.cpkg.push.kernel.activities.StubActivity android.intent.category.DEFAULT
启动方式
VirSCANVirSCAN
名称 信息
com.csharp.core.shell.receiver.BootReceiver 开机启动服务
com.csharp.core.shell.receiver.SecretCodeReceiver
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.READ_EXTERNAL_STORAGE 读外部存储器(如:SD卡)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_FIND_LOCATION
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS 访问额外的定位指令
android.permission.BLUETOOTH 连接蓝牙设备
android.permission.BLUETOOTH_ADMIN 搜寻蓝牙设备
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.WRITE_APN_SETTINGS 改写APN设置(如:cmwap)
android.permission.WRITE_SECURE_SETTINGS 读写系统敏感设置
android.permission.MODIFY_PHONE_STATE 修改电话状态
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.KILL_BACKGROUND_PROCESSES 关闭后台进程
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.DISABLE_KEYGUARD 禁用键盘锁
android.permission.VIBRATE 允许设备震动
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
com.android.launcher.permission.UNINSTALL_SHORTCUT 删除快捷方式
com.android.alarm.permission.SET_ALARM 设置闹铃提醒
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
com.lenovo.launcher.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
android.permission.BROADCAST_STICKY 发送持久广播
android.permission.REAL_GET_TASKS
android.permission.INSTALL_PACKAGES 安装应用
android.permission.DELETE_PACKAGES 删除应用
android.permission.WRITE_MEDIA_STORAGE
android.permission.READ_FRAME_BUFFER 屏幕截图
android.permission.DEVICE_POWER 电源管理
android.permission.PACKAGE_USAGE_STATS
服务列表
VirSCANVirSCAN
名称
com.csharp.core.shell.service.ShellService
com.cpkg.push.kernel.service.StubService
com.cpkg.push.kernel.service.CoreService
com.crypte.app.ShellService
文件列表
VirSCANVirSCAN
文件名 校验码
AndroidManifest.xml 0xf131a428
META-INF/CERT.RSA 0x5a7f577d
META-INF/CERT.SF 0xabb00d7c
META-INF/MANIFEST.MF 0x26d22cad
assets/font.ttf 0x54ba40da
assets/lazy.so 0x4087f441
classes.dex 0xe27d6835
res/mipmap-hdpi-v4/ic_launcher.png 0xa2837e35
res/mipmap-hdpi-v4/ic_launcher_round.png 0x80ea5901
res/mipmap-mdpi-v4/ic_launcher.png 0x3ce32aa9
res/mipmap-mdpi-v4/ic_launcher_round.png 0xe1e304be
res/mipmap-xhdpi-v4/ic_launcher.png 0xa9b28428
res/mipmap-xhdpi-v4/ic_launcher_round.png 0x8ea2b44c
res/mipmap-xxhdpi-v4/ic_launcher.png 0xc137cca8
res/mipmap-xxhdpi-v4/ic_launcher_round.png 0x8933d773
res/mipmap-xxxhdpi-v4/ic_launcher.png 0xd28c71b
res/mipmap-xxxhdpi-v4/ic_launcher_round.png 0x9230ad51
resources.arsc 0x557e99ae
运行截图
VirSCANVirSCAN
VirSCAN