VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2016-05-14 17:27:37 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 5
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
avast 150725-1 4.7.4 2015-07-25 Found nothing 60
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 7
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 60
clamav 19861 0.97.5 2014-12-31 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 60
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 60
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 60
gdata 25.6574 25.6574 2016-05-13 Found nothing 10
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 60
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2013-09-22 Found nothing 6
mcafee 7638 5400.1158 2014-11-30 Found nothing 60
nod32 0920 3.0.21 2014-12-23 Found nothing 60
panda 9.05.01 9.05.01 2015-07-26 Found nothing 11
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 2
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 60
quickheal 14.00 14.00 2015-07-25 Found nothing 5
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 14
sophos 5.08 3.55.0 2014-12-01 Found nothing 60
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 11
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 2
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 14
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
权限列表
许可名称 信息
android.permission.READ_LOGS 读取系统日志
android.permission.READ_PHONE_STATE 读取电话状态
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:d34fecf7166808e5056a5e13594866b1
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.sanlouyijianqiandao
最低运行环境:Android 2.2.x
版权:Administrator
关键行为
VirSCANVirSCAN
行为描述: 获取TickCount值
详情信息: TickCount = 519000, SleepMilliseconds = 250.
TickCount = 519015, SleepMilliseconds = 250.
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\Setup Log 2016-05-14 #001.txt
行为描述: 创建可执行文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp
行为描述: 修改文件内容
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp ---> Offset = 65536
C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp ---> Offset = 131072
C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp ---> Offset = 196608
C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp ---> Offset = 262144
C:\Documents and Settings\Administrator\Local Settings\Temp\Setup Log 2016-05-14 #001.txt ---> Offset = 0
C:\Documents and Settings\Administrator\Local Settings\Temp\Setup Log 2016-05-14 #001.txt ---> Offset = 3
C:\Documents and Settings\Administrator\Local Settings\Temp\Setup Log 2016-05-14 #001.txt ---> Offset = 29
C:\Documents and Settings\Administrator\Local Settings\Temp\Setup Log 2016-05-14 #001.txt ---> Offset = 63
C:\Documents and Settings\Administrator\Local Settings\Temp\Setup Log 2016-05-14 #001.txt ---> Offset = 65
行为描述: 查找文件
详情信息: FileName = C:\DOCUME~1
FileName = C:\DOCUME~1\ADMINI~1
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-G89P2.tmp
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
MSCTF.Shared.MUTEX.IGE
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述: 枚举窗口
详情信息: N/A
行为描述: 获取TickCount值
详情信息: TickCount = 519000, SleepMilliseconds = 250.
TickCount = 519015, SleepMilliseconds = 250.
行为描述: 窗口信息
详情信息: Pid = 1160, Hwnd=0x202ae, Text = 选择安装期间要使用的语言:, ClassName = TNewStaticText.
Pid = 1160, Hwnd=0x202c6, Text = 中文 (简体), ClassName = TNewComboBox.
Pid = 1160, Hwnd=0x202b0, Text = 确定, ClassName = TNewButton.
Pid = 1160, Hwnd=0x302b8, Text = 取消, ClassName = TNewButton.
Pid = 1160, Hwnd=0x302ca, Text = 选择安装语言, ClassName = TSelectLanguageForm.
行为描述: 可执行文件签名信息
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp(签名验证: 未通过)
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = 250.
[2]: MilliSeconds = 250.
[3]: MilliSeconds = 250.
[4]: MilliSeconds = 250.
[5]: MilliSeconds = 250.
[6]: MilliSeconds = 250.
[7]: MilliSeconds = 250.
[8]: MilliSeconds = 250.
[9]: MilliSeconds = 250.
[10]: MilliSeconds = 250.
行为描述: 创建事件对象
详情信息: EventName = MSCTF.SendReceive.Event.IGE.IC
EventName = MSCTF.SendReceiveConection.Event.IGE.IC
行为描述: 可执行文件MD5
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\is-G89P2.tmp\FreeVideoFlipAndRotate.tmp ---> 394289faec0a43faea574588cb367018
Activities
VirSCANVirSCAN
活动名 类型
com.e4a.runtime.android.StartActivity android.intent.action.MAIN
com.e4a.runtime.android.StartActivity android.intent.category.DEFAULT
com.e4a.runtime.android.StartActivity android.intent.category.LAUNCHER
com.e4a.runtime.android.mainActivity android.intent.action.MAIN
com.e4a.runtime.android.mainActivity android.intent.category.DEFAULT
危险函数
VirSCANVirSCAN
函数名称 信息
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.READ_LOGS 读取系统日志
android.permission.READ_PHONE_STATE 读取电话状态
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.MOUNT_UNMOUNT_FILESYSTEMS 挂载、反挂载外部文件系统
android.permission.SYSTEM_ALERT_WINDOW 显示系统窗口
android.permission.GET_TASKS 获取有关当前或最近运行的任务信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
com.android.launcher.permission.READ_SETTINGS 读取快捷方式信息
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.CHANGE_CONFIGURATION 修改当前设置(如:本地化)
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0x967cb87c
META-INF/ADMINIST.SF 0xd05a2e80
META-INF/ADMINIST.RSA 0x88a506c2
AndroidManifest.xml 0xd45a5904
assets/20160513135705.png 0xccd7124
assets/bg_profile.png 0xfb766279
assets/HASH.LEGU 0x637c00
assets/icon_arrow_left.png 0xabd7748
assets/ic_green_long.png 0x3ad94f43
assets/ic_green_long_press.png 0x172893b7
assets/img_submit_succ.png 0x4c5cc770
classes.dex 0xfb21af56
lib/armeabi/libBugly.so 0x1ddd8547
lib/armeabi/libshella-2.2.9.so 0xc4f0a55c
lib/armeabi/libshellx-2.2.9.so 0x79f4eb05
lib/armeabi/mix.dex 0xa3517ce0
lib/armeabi/mixz.dex 0xa67045c7
resources.arsc 0x881083b3
res/drawable/e4alistview_new_message.png 0x1cdc5409
res/drawable/icon.png 0x5c21f417
运行截图
VirSCANVirSCAN
VirSCAN