VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2017-07-07 15:17:24 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 2.0 1970-01-01 Found nothing 5
asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 1
avast 170303-1 4.7.4 2017-03-03 Found nothing 60
avg 2109/14149 10.0.1405 2017-07-04 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2017-03-22 Found nothing 1
bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
clamav 23536 0.97.5 2017-07-05 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2017-06-18 Found nothing 60
fortinet 49.995, 49.961, 49.970 5.4.247 2017-07-07 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
gdata 25.13252 25.13252 2017-07-06 Found nothing 11
ikarus 1.06.01 V1.32.31.0 2016-11-28 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2017-07-05 Found nothing 2
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2017-07-06 Found nothing 4
mcafee 8261 5400.1158 2016-08-18 Found nothing 60
nod32 1777 3.0.21 2015-06-12 Found nothing 60
panda 9.05.01 9.05.01 2017-07-06 Found nothing 3
pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 7
qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
quickheal 14.00 14.00 2017-07-06 Found nothing 2
rising 26.28.00.01 26.28.00.01 2016-07-18 Found nothing 1
sophos 5.32 3.65.2 2016-10-10 Found nothing 60
symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
thehacker 6.8.0.5 6.8.0.5 2017-07-04 Found nothing 1
tws 17.47.17308 1.0.2.2108 2017-07-06 Found nothing 13
vba 3.12.29.5 beta 3.12.29.5 beta 2017-07-04 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.READ_EXTERNAL_STORAGE 读外部存储器(如:SD卡)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_FIND_LOCATION
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS 访问额外的定位指令
android.permission.BLUETOOTH 连接蓝牙设备
android.permission.BLUETOOTH_ADMIN 搜寻蓝牙设备
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.WRITE_APN_SETTINGS 改写APN设置(如:cmwap)
android.permission.WRITE_SECURE_SETTINGS 读写系统敏感设置
android.permission.MODIFY_PHONE_STATE 修改电话状态
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.KILL_BACKGROUND_PROCESSES 关闭后台进程
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.DISABLE_KEYGUARD 禁用键盘锁
android.permission.VIBRATE 允许设备震动
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
com.android.launcher.permission.UNINSTALL_SHORTCUT 删除快捷方式
com.android.alarm.permission.SET_ALARM 设置闹铃提醒
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
com.lenovo.launcher.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
android.permission.BROADCAST_STICKY 发送持久广播
android.permission.REAL_GET_TASKS
android.permission.INSTALL_PACKAGES 安装应用
android.permission.DELETE_PACKAGES 删除应用
android.permission.WRITE_MEDIA_STORAGE
android.permission.READ_FRAME_BUFFER 屏幕截图
android.permission.DEVICE_POWER 电源管理
android.permission.PACKAGE_USAGE_STATS
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:3307394be3b6c21edfa854314f877899
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.kjezt.inbb.vb
最低运行环境:Android 4.2, 4.2.2
版权:"Shinecore Technology Co.
进程行为
VirSCANVirSCAN
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\~DFABB5.tmp
行为描述: 删除文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\~DFABB5.tmp
行为描述: 查找文件
详情信息: FileName = C:\Program Files
FileName = C:\Program Files\Microsoft Office
FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Excel\XLSTART\*.*
FileName = C:\Program Files\Microsoft Office\OFFICE11\xlstart\*.*
FileName = C:/Documents and Settings/Administrator/Local Settings/Temp/EB93A6/%temp%\****.xls
FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\桌面
FileName = C:\Documents and Settings\Administrator\Local Settings
FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.xls
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\StartupItems\G
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTT
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTF
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTA
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\DocumentRecovery\34DD4\34DD4
行为描述: 删除注册表键
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\StartupItems\
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\
行为描述: 删除注册表键值
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\MTTT
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Excel\Resiliency\StartupItems\G
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: Local\Mutex_MSOSharedMem
CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
Local\Mso97SharedDg19211108221Mutex
Local\Mso97SharedDg20321108221Mutex
Local\Mso97SharedDg19521108221Mutex
Local\Mso97SharedDg19531108221Mutex
MSCTF.Shared.MUTEX.IOH
MSCTF.Shared.MUTEX.EJJ
行为描述: 创建事件对象
详情信息: EventName = Local\MsoTestEvent_dd9a5010-2abc-4b3b-bd39-1c2b9136482b
EventName = MSCTF.SendReceive.Event.EJJ.IC
EventName = MSCTF.SendReceiveConection.Event.EJJ.IC
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
NtUserFindWindowEx: [Class,Window] = [MsoHelp11,]
行为描述: 窗口信息
详情信息: Pid = 2448, Hwnd=0x2036e, Text = 密码, ClassName = bosa_sdm_XL9.
Pid = 2448, Hwnd=0x10368, Text = 格式, ClassName = MsoCommandBar.
Pid = 2448, Hwnd=0x10366, Text = 常用, ClassName = MsoCommandBar.
Pid = 2448, Hwnd=0x10364, Text = 工作表菜单栏, ClassName = MsoCommandBar.
Pid = 2448, Hwnd=0x1033e, Text = Microsoft Excel, ClassName = XLMAIN.
Pid = 2448, Hwnd=0x1035c, Text = 123456, ClassName = ComboBox.
Pid = 2448, Hwnd=0x10360, Text = 123456, ClassName = Edit.
Pid = 2448, Hwnd=0x1035c, Text = 6, ClassName = ComboBox.
Pid = 2448, Hwnd=0x10360, Text = 6, ClassName = Edit.
Pid = 2448, Hwnd=0x1035c, Text = 3456, ClassName = ComboBox.
Pid = 2448, Hwnd=0x10360, Text = 3456, ClassName = Edit.
行为描述: 调整进程token权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 打开事件
详情信息: Global\MsoTestEvent_dd9a5010-2abc-4b3b-bd39-1c2b9136482b
\SECURITY\LSA_AUTHENTICATION_INITIALIZED
MSFT.VSA.COM.DISABLE.2448
MSFT.VSA.IEC.STATUS.6c736db0
_fCanRegisterWithShellService
CTF.ThreadMIConnectionEvent.000007E8.00000000.0000000F
CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.0000000F
MSCTF.SendReceiveConection.Event.IOH.IC
MSCTF.SendReceive.Event.IOH.IC
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
行为描述: 打开互斥体
详情信息: ShimCacheMutex
Local\Mutex_MSOSharedMem
Local\Mso97SharedDg19211108221Mutex
CtfmonInstMutexDefaultS-*
Local\Mso97SharedDg20321108221Mutex
Local\MU_ACBPIDS08
Local\Mso97SharedDg19521108221Mutex
Local\Mso97SharedDg19531108221Mutex
Activities
VirSCANVirSCAN
活动名 类型
com.crypte.app.MainActivity android.intent.action.MAIN
com.crypte.app.MainActivity android.intent.category.LAUNCHER
com.cpkg.push.kernel.activities.StubActivity com.ryg.dynamicload.proxy.activity.VIEW
com.cpkg.push.kernel.activities.StubActivity android.intent.category.DEFAULT
启动方式
VirSCANVirSCAN
名称 信息
com.csharp.core.shell.receiver.BootReceiver 开机启动服务
com.csharp.core.shell.receiver.SecretCodeReceiver
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.READ_EXTERNAL_STORAGE 读外部存储器(如:SD卡)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_FIND_LOCATION
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS 访问额外的定位指令
android.permission.BLUETOOTH 连接蓝牙设备
android.permission.BLUETOOTH_ADMIN 搜寻蓝牙设备
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.WRITE_APN_SETTINGS 改写APN设置(如:cmwap)
android.permission.WRITE_SECURE_SETTINGS 读写系统敏感设置
android.permission.MODIFY_PHONE_STATE 修改电话状态
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.KILL_BACKGROUND_PROCESSES 关闭后台进程
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.DISABLE_KEYGUARD 禁用键盘锁
android.permission.VIBRATE 允许设备震动
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
com.android.launcher.permission.UNINSTALL_SHORTCUT 删除快捷方式
com.android.alarm.permission.SET_ALARM 设置闹铃提醒
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
com.lenovo.launcher.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
android.permission.BROADCAST_STICKY 发送持久广播
android.permission.REAL_GET_TASKS
android.permission.INSTALL_PACKAGES 安装应用
android.permission.DELETE_PACKAGES 删除应用
android.permission.WRITE_MEDIA_STORAGE
android.permission.READ_FRAME_BUFFER 屏幕截图
android.permission.DEVICE_POWER 电源管理
android.permission.PACKAGE_USAGE_STATS
服务列表
VirSCANVirSCAN
名称
com.csharp.core.shell.service.ShellService
com.cpkg.push.kernel.service.StubService
com.cpkg.push.kernel.service.CoreService
com.crypte.app.ShellService
文件列表
VirSCANVirSCAN
文件名 校验码
AndroidManifest.xml 0xf131a428
META-INF/CERT.RSA 0x5a7f577d
META-INF/CERT.SF 0xabb00d7c
META-INF/MANIFEST.MF 0x26d22cad
assets/font.ttf 0x54ba40da
assets/lazy.so 0x4087f441
classes.dex 0xe27d6835
res/mipmap-hdpi-v4/ic_launcher.png 0xa2837e35
res/mipmap-hdpi-v4/ic_launcher_round.png 0x80ea5901
res/mipmap-mdpi-v4/ic_launcher.png 0x3ce32aa9
res/mipmap-mdpi-v4/ic_launcher_round.png 0xe1e304be
res/mipmap-xhdpi-v4/ic_launcher.png 0xa9b28428
res/mipmap-xhdpi-v4/ic_launcher_round.png 0x8ea2b44c
res/mipmap-xxhdpi-v4/ic_launcher.png 0xc137cca8
res/mipmap-xxhdpi-v4/ic_launcher_round.png 0x8933d773
res/mipmap-xxxhdpi-v4/ic_launcher.png 0xd28c71b
res/mipmap-xxxhdpi-v4/ic_launcher_round.png 0x9230ad51
resources.arsc 0x557e99ae
运行截图
VirSCANVirSCAN
VirSCAN