VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2015-10-04 11:01:20 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 5
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
avast 150725-1 4.7.4 2015-07-25 Found nothing 0
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
clamav 19861 0.97.5 2014-12-31 Found nothing 0
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
gdata 25.3720 25.3720 2015-10-03 Found nothing 10
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 42
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
kingsoft 2.1 2.1 2013-09-22 Found nothing 3
mcafee 7638 5400.1158 2014-11-30 Found nothing 0
nod32 0920 3.0.21 2014-12-23 Found nothing 0
panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
qh360 1.0.1 1.0.1 1.0.1 Found nothing 2
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
quickheal 14.00 14.00 2015-07-25 Found nothing 3
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 1
sophos 5.08 3.55.0 2014-12-01 Found nothing 0
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 5
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 2
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 13
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0
权限列表
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:d88f697b1428f8739c53b4b0d5770ffe
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.et.book.dingshigengxin.xiangdaiqingsexiaoshuo
最低运行环境:Android 2.1.x
版权:Android
关键行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MAI..OAIGH
MSCTF.MarshalInterface.FileMap.MAI.B.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.C.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.D.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.E.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.F.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.G.OBIGH
行为描述: 设置特殊文件属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\revLoader.exe
进程行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MAI..OAIGH
MSCTF.MarshalInterface.FileMap.MAI.B.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.C.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.D.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.E.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.F.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.G.OBIGH
行为描述: 设置特殊文件属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\revLoader.exe
文件行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MAI..OAIGH
MSCTF.MarshalInterface.FileMap.MAI.B.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.C.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.D.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.E.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.F.OBIGH
MSCTF.MarshalInterface.FileMap.MAI.G.OBIGH
行为描述: 设置特殊文件属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\revLoader.exe
行为描述: 创建可执行文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\%temp%\revLoader.exe
行为描述: 查找文件
详情信息: FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
其他行为
VirSCANVirSCAN
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
行为描述: 窗口信息
详情信息: Pid = 2056, Hwnd=0x202a6, Text = 确定, ClassName = Button.
Pid = 2056, Hwnd=0x202cc, Text = Can"t find steam.dll relative to executable path C:\Documents and Settings\Administrator\Local Settings\%temp%\, ClassName = Static.
Pid = 2056, Hwnd=0x202a2, Text = Error, ClassName = #32770.
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
动态列表行为
VirSCANVirSCAN
行为描述: 窗口信息
详情信息: {"text": "情色小说", "class": "android.widget.TextView"}
{"text": "不幸的探監", "class": "android.widget.TextView"}
{"text": "公園裏玩的悶騷熟婦", "class": "android.widget.TextView"}
{"text": "軍營綠花", "class": "android.widget.TextView"}
{"text": "步入深淵的女人", "class": "android.widget.TextView"}
{"text": "車上的絲襪美婦", "class": "android.widget.TextView"}
{"text": "返鄉記事", "class": "android.widget.TextView"}
{"text": "處女三姐妹", "class": "android.widget.TextView"}
{"text": "多情的妻妹", "class": "android.widget.TextView"}
{"text": "大嫂學電腦學到了賓館", "class": "android.widget.TextView"}
{"text": "愛女的穴", "class": "android.widget.TextView"}
{"text": "转为简体", "class": "android.widget.Button"}
行为描述: 添加View
详情信息: [u'com.android.internal.policy.impl.PhoneWindow$DecorView@41528370', u'WM.LayoutParams{(0,0)(wrapxwrap) gr=#11 sim=#120 ty=2 fl=#8020002 pfl=0x8 fmt=-2 wanim=0x1030002}', u'android.view.CompatibilityInfoHolder@414afe58']
[u'com.android.internal.policy.impl.PhoneWindow$DecorView@4152f778', u'WM.LayoutParams{(0,0)(fillxfill) sim=#100 ty=1 fl=#8010100 pfl=0x8 wanim=0x1030001}', u'android.view.CompatibilityInfoHolder@414afe58']
行为描述: 写入文件
详情信息: path:/data/data/com.et.book.dingshigengxin.xiangdaiqingsexiaoshuo/shared_prefs/SHARED_FILE_NAME_DEFAULT.xml length:115
path:/data/data/com.et.book.dingshigengxin.xiangdaiqingsexiaoshuo/shared_prefs/enableAdPref.xml length:156
path:/data/data/com.et.book.dingshigengxin.xiangdaiqingsexiaoshuo/shared_prefs/enableAdPref.xml length:193
行为描述: 初始化Intent
详情信息: [u'android.os.Parcel@414ad288']
[u'android.os.Parcel@414ad2c8']
Activities
VirSCANVirSCAN
活动名 类型
com.et.book.BookListActivity android.intent.action.MAIN
com.et.book.BookListActivity android.intent.category.LAUNCHER
危险函数
VirSCANVirSCAN
函数名称 信息
HttpClient;->execute 请求远程服务器
DefaultHttpClient;->execute 发送HTTP请求
android/app/NotificationManager;->notify 信息通知栏
ContentResolver;->query 读取联系人、短信等数据库
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL
TelephonyManager;->getLine1Number 获取手机号
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
LocationManager;->getLastKnownLocation 获取地址位置
启动方式
VirSCANVirSCAN
名称 信息
com.UWxsUogw.PNOaQXAr36045.BootReceiver 开机启动服务
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
服务列表
VirSCANVirSCAN
名称
com.UWxsUogw.PNOaQXAr36045.PushService
文件列表
VirSCANVirSCAN
文件名 校验码
resources.arsc 0xd9d90880
AndroidManifest.xml 0xff662846
classes.dex 0xc0b08c3a
res/drawable/book_bg.png 0x7db359f5
res/drawable/cover_bg.xml 0x60987ad7
res/drawable/dock_bg.9.png 0xfc33ee1c
res/drawable/dock_bg_pressed.9.png 0x9db39ac8
res/drawable/dock_bt_bg.xml 0x3f503bd9
res/drawable/push_icon.png 0x3f672a76
res/layout/airpush_notify.xml 0x387ea2b9
res/layout/book_item_view.xml 0xe9a32623
res/layout/booklist.xml 0xed2130fe
res/layout/main.xml 0x81142d4b
res/raw/books.xml 0xfde74ffd
res/raw/files.zip 0x2da5ca27
res/drawable-hdpi/ic_launcher.png 0x5f8a1eb4
res/drawable-mdpi/ic_launcher.png 0xa5bfa0ca
res/drawable-xhdpi/ic_launcher.png 0xc9c090e8
META-INF/MANIFEST.MF 0x29be0bf
META-INF/CERT.SF 0x20b85ae7
META-INF/CERT.RSA 0xdd8cd29d
运行截图
VirSCANVirSCAN
VirSCAN