VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Scanner(s) (0/39)found malware!
Behavior analysis report:         Habo file analysis
Time: 2014-11-14 17:39:53 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
ahnlab 9.9.9 9.9.9 2013-05-28 Found nothing 5
antivir 1.9.2.0 1.9.159.0 7.11.185.62 Found nothing 13
antiy 112918 AVL141111 2014-11-13 Found nothing 6
arcavir 1.0 2011 2014-05-30 Found nothing 9
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 4
avast 141113-0 4.7.4 2014-11-13 Found nothing 35
avg 2109/8019 10.0.1405 2014-11-06 Found nothing 9
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 1
baidusd 1.0 1.0 2014-04-02 Found nothing 3
bitdefender 7.57701 7.90123 2014-11-13 Found nothing 9
clamav 19618 0.97.5 2014-11-12 Found nothing 6
comodo 15023 5.1 2014-11-13 Found nothing 3
ctch 4.6.5 5.3.14 2013-12-01 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-10-31 Found nothing 58
fortinet 23.171, 23.171 5.1.158 2014-11-13 Found nothing 2
fprot 4.6.2.117 6.5.1.5418 2014-11-13 Found nothing 2
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 17
gdata 24.4948 24.4948 2014-11-13 Found nothing 11
hauri 2.73 2.73 2014-11-13 Found nothing 1
ikarus 1.06.01 V1.32.31.0 2014-11-13 Found nothing 21
jiangmin 16.0.100 1.0.0.0 2014-08-20 Found nothing 54
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 26
kingsoft 2.1 2.1 2013-09-22 Found nothing 22
mcafee 7520 5400.1158 2014-08-04 Found nothing 11
nod32 0436 3.0.21 2014-09-18 Found nothing 5
panda 9.05.01 9.05.01 2014-11-12 Found nothing 6
pcc 11.274.04 9.500-1005 2014-11-13 Found nothing 3
qh360 1.0.1 1.0.1 1.0.1 Found nothing 19
qqphone 1.0.0.0 1.0.0.0 2014-11-14 Found nothing 1
quickheal 14.00 14.00 2014-11-10 Found nothing 25
rising 25.40.00.04 25.40.00.04 2014-11-10 Found nothing 23
sophos 5.04 3.51.0 2014-08-05 Found nothing 9
sunbelt 3.9.2595.2 3.9.2595.2 2014-11-13 Found nothing 20
symantec 20141111.002 1.3.0.24 2014-11-11 Found nothing 3
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 21
thehacker 6.8.0.5 6.8.0.5 2014-11-10 Found nothing 14
tws 17.47.17308 1.0.2.2108 2014-11-13 Found nothing 17
vba 3.12.26.3 3.12.26.3 2014-11-13 Found nothing 8
virusbuster 15.0.967.0 5.5.2.13 2014-11-13 Found nothing 18
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.READ_LOGS 读取系统日志
android.permission.VIBRATE 允许设备震动
android.permission.WRITE_SETTINGS 读写系统设置项
android.permission.CAMERA 访问照相机设备
android.permission.SEND_SMS 发送短信
android.permission.FLASHLIGHT 访问闪光灯
android.permission.READ_CONTACTS 读取联系人信息
android.permission.CALL_PHONE 拨打电话
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.EXPAND_STATUS_BAR 操控状态栏
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.MANAGE_ACCOUNTS 管理账户
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
com.android.launcher.permission.UNINSTALL_SHORTCUT 删除快捷方式
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
com.android.launcher.permission.WRITE_SETTINGS
android.permission.BLUETOOTH 连接蓝牙设备
android.permission.BLUETOOTH_ADMIN 搜寻蓝牙设备
文件信息
VirSCANVirSCAN
安全评分 :83
基本信息
VirSCANVirSCAN
MD5:5d2421863f796654638a10ff3d5d7c06
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.qihoo360.antilostwatch
最低运行环境:Android 2.2.x
版权:qihoo
关键行为
VirSCANVirSCAN
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [星期一,Button]
[Window,Class] = [星期二,Button]
[Window,Class] = [星期三,Button]
[Window,Class] = [星期四,Button]
[Window,Class] = [星期五,Button]
[Window,Class] = [星期六,Button]
[Window,Class] = [星期日,Button]
[Window,Class] = [每,Static]
[Window,Class] = [天,Static]
[Window,Class] = [0,Edit]
[Window,Class] = [Spin1,msctls_updown32]
[Window,Class] = [每个月的,Button]
[Window,Class] = [Spin2,msctls_updown32]
[Window,Class] = [号,Static]
行为描述: 修改注册表_启动项
详情信息: \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Run\AutoShutDown
文件行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: \WINDOWS\system32\zh-cn\ieframe.dll.mui
Local\UrlZonesSM_Administrator
Local\!PrivacIE!SharedMem!Counter
CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
\WINDOWS\system32\zh-cn\mshtml.dll.mui
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 修改文件内容
详情信息: C:\%temp%\1415954585.841113.exe_7zdump\MiniMemo\config.ini---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\navcancl[2]---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\ErrorPageTemplate[1]---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\errorPageStrings[1]---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6TLOMATB\httpErrorPagesScripts[1]---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\background_gradient[1]---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\IUKHR8T2\info_48[1]---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\C1OS62RY\bullet[1]---> Offset = 0
网络行为
VirSCANVirSCAN
行为描述: 连接指定站点
详情信息: InternetConnectA: ServerName = www.isoft168.com, PORT = 80
InternetConnectA: ServerName = xn--lzg5659a, PORT = 80
行为描述: 联网打开网址
详情信息: InternetOpenUrlA: http://www.isoft168.com/minimemover.txt hInternet = 0x000006d0
InternetOpenUrlA: http://www.isoft168.com/sinabloglist.asp?from=minimemo23 hInternet = 0x000006d8
InternetOpenUrlA: http://www.isoft168.com/urllisttxt.asp?from=minimemo23 hInternet = 0x00000608
InternetOpenUrlA: http://www.isoft168.com/urllist.asp?from=minimemo23 hInternet = 0x00000608
InternetOpenUrlA: http://www.isoft168.com/urllist.asp?from=minimemo23&method=post hInternet = 0x00000614
InternetOpenUrlA: http://www.isoft168.com/sinabloglist.asp?from=minimemo23 hInternet = 0x0000040c
InternetOpenUrlA: http://www.isoft168.com/urllisttxt.asp?from=minimemo23 hInternet = 0x0000040c
InternetOpenUrlA: http://www.isoft168.com/urllist.asp?from=minimemo23 hInternet = 0x0000040c
InternetOpenUrlA: http://www.isoft168.com/urllist.asp?from=minimemo23&method=post hInternet = 0x0000040c
InternetOpenUrlA: http://www.isoft168.com/getneedbrushqqvideo522.asp?from=minimemo23 hInternet = 0x0000040c
InternetOpenUrlA: http://www.isoft168.com/getneedbrushYouku505.asp?from=minimemo23 hInternet = 0x0000040c
InternetOpenUrlA: http://www.isoft168.com/setqqvideocount.aspx?id=讻€&r=1345296 hInternet = 0x00000480
InternetOpenUrlA: http://www.isoft168.com/getneedbrushqqvideo522.asp?from=minimemo23 hInternet = 0x00000754
InternetOpenUrlA: http://www.isoft168.com/setqqvideocount.aspx?id=讻€&r=1345296 hInternet = 0x00000754
InternetOpenUrlA: http://www.isoft168.com/setqqvideocount.aspx?id=讻€&r=1345312 hInternet = 0x00000754
行为描述: 建立到一个指定的套接字连接
详情信息: 127.0.0.1:1040