VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:2%Scanner(s) (1/39)found malware!
Behavior analysis report:         Habo file analysis
Time: 2014-11-19 12:11:03 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
ahnlab 9.9.9 9.9.9 2013-05-28 Found nothing 4
antivir 1.9.2.0 1.9.159.0 7.11.187.4 Found nothing 13
antiy 112916 AVL141117 2014-11-18 Found nothing 5
arcavir 1.0 2011 2014-05-30 Found nothing 8
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
avast 141118-2 4.7.4 2014-11-18 Found nothing 29
avg 2109/8091 10.0.1405 2014-11-18 Found nothing 3
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 6
baidusd 1.0 1.0 2014-04-02 Found nothing 2
bitdefender 7.57701 7.90123 2014-11-13 Found nothing 6
clamav 19641 0.97.5 2014-11-18 Found nothing 1
comodo 15023 5.1 2014-11-18 Found nothing 3
ctch 4.6.5 5.3.14 2013-12-01 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-10-31 Found nothing 58
fortinet 23.201, 23.201 5.1.158 2014-11-19 Found nothing 1
fprot 4.6.2.117 6.5.1.5418 2014-11-18 Found nothing 1
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 4
gdata 24.5051 24.5051 2014-11-19 Found nothing 9
hauri 2.73 2.73 2014-11-18 Found nothing 1
ikarus 1.06.01 V1.32.31.0 2014-11-18 Found nothing 15
jiangmin 16.0.100 1.0.0.0 2014-08-20 Found nothing 34
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 22
kingsoft 2.1 2.1 2013-09-22 Found nothing 4
mcafee 7520 5400.1158 2014-08-04 Found nothing 12
nod32 0436 3.0.21 2014-09-18 Found nothing 1
panda 9.05.01 9.05.01 2014-11-18 Found nothing 5
pcc 11.284.07 9.500-1005 2014-11-18 Found nothing 2
qh360 1.0.1 1.0.1 1.0.1 Found nothing 13
qqphone 1.0.0.0 1.0.0.0 2014-11-19 盟徳(a.banner.admob.a) 1
quickheal 14.00 14.00 2014-11-18 Found nothing 3
rising 25.40.04.01 25.40.04.01 2014-11-14 Found nothing 6
sophos 5.04 3.51.0 2014-08-05 Found nothing 8
sunbelt 3.9.2595.2 3.9.2595.2 2014-11-13 Found nothing 4
symantec 20141117.001 1.3.0.24 2014-11-17 Found nothing 5
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 7
thehacker 6.8.0.5 6.8.0.5 2014-11-17 Found nothing 3
tws 17.47.17308 1.0.2.2108 2014-11-18 Found nothing 8
vba 3.12.26.3 3.12.26.3 2014-11-18 Found nothing 4
virusbuster 15.0.972.0 5.5.2.13 2014-11-18 Found nothing 15
权限列表
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.READ_LOGS 读取系统日志
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
文件信息
VirSCANVirSCAN
安全评分 :85
基本信息
VirSCANVirSCAN
MD5:20ef6ac30b169fbe96238c0bbd83d340
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:cn.skyone.dict
最低运行环境:Android 2.2.x
版权:sky-one
动态列表行为
VirSCANVirSCAN
行为描述: 传递附加信息
详情信息: Ljava/lang/String;=android.intent.extra.shortcut.NAME | Ljava/lang/String;=
Ljava/lang/String;=android.intent.extra.shortcut.ICON_RESOURCE | Landroid/os/Parcelable;=cn.skyone.dict:drawable/ic_launcher
Ljava/lang/String;=android.intent.extra.shortcut.INTENT | Landroid/os/Parcelable;=Intent { cmp=cn.skyone.dict/.ActivityMain }
Ljava/lang/String;=duplicate | Z=false
行为描述: 数据加密
详情信息: {u'operation': u'keyalgo', u'algorithm': u'AES', u'key': u'26, -93, 67, 75, -71, -87, -56, 40, 74, 119, -58, 102, -27, 48, 51, -108'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.a', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.d', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.c', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.e', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'com.google.android.ads.zxxz.b', u'algorithm': u'AES/CBC/PKCS5Padding'}
{u'operation': u'decryption', u'data': u'a', u'algorithm': u'AES/CBC/PKCS5Padding'}
行为描述: 调用哈希算法
详情信息: MD5
行为描述: 读取文件
详情信息: path:/proc/cpuinfo length:105
path:/proc/783/cmdline length:105
path:/proc/798/cmdline length:105
path:/proc/810/cmdline length:105
path:/proc/841/cmdline length:105
path:/proc/848/cmdline length:105
path:/proc/meminfo length:105
path:/data/data/cn.skyone.dict/cache/ads-563730749.jar length:9
path:/data/data/cn.skyone.dict/cache/ads-563730749.jar length:22
path:/data/data/cn.skyone.dict/cache/ads-563730749.jar length:99
path:/dev/urandom length:13
path:/dev/urandom length:12
行为描述: 对指定数据计算哈希
详情信息: emulator
d3894529ac5a14ec
357242043237511
13988510765975125694e5270153ac6000002e6ad39748d6749b188a7b347d520bd15
00 44 00 0a 00 05 00 34 00 2e 00 31 00 2e 00 31 00 12 00 11 00 61 00 66 00 6d 00 61 00 2d 00 73 00 64 00 6b 00 2d 00 61 00 2d 00 76 00 36 00 2e 00 34 00 2e 00 31 ff ff ff c8 00 01 ff ff ff 89 ff ff ff 8c ff ff ff 83 ff ff ff 9b 00 05 ff ff ff c2 00 01 00 20 00 42 00 35 00 38 00 41 00 36 00 45 00 43 00 46 00 34 00 34 00 45 00 45 00 33 00 38 00 38 00 37 00 35 00 37 00 36 00 46 00 31 00 44 00 41 00 33 00 39 00 32 00 42 00 36 00 41 00 42 00 39 00 42 ff ff ff e4 ff ff ff 8d ff ff ff ff ff ff ff e8 00 1e ff ff ff 85 ff ff ff a6 ff ff ff ad ff ff ff da ff ff ff c8 00 17 00 12 00 4f ff ff ff e5 00 34 00 40 00 22 ff ff ff c0 00 07 ff ff ff f1 00 55 00 61 ff ff ff f9 00 30 00 6d ff ff ff d0 00 20 00 23 ff ff ff cf ff ff ff a3 00 65 00 4e ff ff ff 9b ff ff ff a4 ff ff ff e7 00 74 ff ff ff f5 00 00 ff ff ff 80 00 37 ff ff ff bc 00 5b ff ff ff f7 ff ff ff 87 00 52 00 54 ff ff ff d9 ff ff ff 90 00 43 00 5e ff ff ff 8f ff ff ff e6 00 3d 00 22 00 41 ff ff ff 91 ff ff ff ad 00 7a 00 09 00 66 00 4f 00 41 ff ff ff ba ff ff ff 86 ff ff ff c8 00 23 ff ff ff f9 00 4c ff ff ff d9 00 44 00 71 00 6e ff ff ff c4 ff ff ff bd 00 03 00 5b 00 1a 00 58 ff ff ff ee 00 0c ff ff ff d8 00 34 00 67 00 46 00 23 ff ff ff a4 00 60 00 17 00 79 00 2e ff ff ff d3 00 50 ff ff ff 8e 00 6a 00 17 00 2c 00 1d 00 2a 00 7c ff ff ff 96 00 4d ff ff ff f8 ff ff ff de ff ff ff a1 ff ff ff a1 00 19 00 02 ff ff ff df ff ff ff d0 ff ff ff aa ff ff ff e0 ff ff ff d9 ff ff ff bd ff ff ff 9f 00 6e ff ff ff ba 00 01 00 46 00 16 ff ff ff 97 00 64 ff ff ff f4 ff ff ff 96 00 41 ff ff ff d1 ff ff ff 9b 00 48 ff ff ff dc 00 49 00 2a ff ff ff e5 ff ff ff d8 00 32 00 0c ff ff ff ab ff ff ff 91 00 64 ff ff ff aa ff ff ff a7 00 0e ff ff ff f0 00 0b ff ff ff b1 ff ff ff c6 00 03 00 77 ff ff ff 8b ff ff ff c5 00 79 00 01 ff ff ff e5 ff ff ff 97 ff ff ff dc 00 6c 00 38 ff ff ff e1 ff ff ff bf 00 1a ff ff ff b5 00 1f ff ff ff c4 00 40 ff ff ff 9c 00 6f 00 2f ff ff ff 89 ff ff ff a9 ff ff ff 98 ff ff ff 8b ff ff ff bb ff ff ff eb
ff ff ff bb 00 35 ff ff ff b2 ff ff ff ef 00 0c 00 45 00 56 ff ff ff 8d
00 32 ff ff ff dc 00 47 00 0a ff ff ff b7 ff ff ff c8 00 43 00 7a
行为描述: 数据泄露
详情信息: sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="appkey">5125694e5270153
sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="header">{&quot;os&quot;
sink:File operation:write data:data:{"launch":[{"date":"2014-04-30","time":"09:44:36","session_id":"905AC90F6E1F26A69BA40073BA11A7C9"}],
行为描述: 类加载
详情信息: path:/system/app/PicoTts.apk
path:/system/app/MusicFX.apk
path:/system/framework/am.jar
path:/data/app/cn.skyone.dict-1.apk
path:/data/data/cn.skyone.dict/cache/ads-563730749.jar
行为描述: 缓冲区读取一行数据
详情信息: Processor : ARMv7 Processor rev 0
行为描述: 启动服务
详情信息: com.android.musicfx.Compatibility$Service
com.android.mms.transaction.SmsReceiverService
行为描述: 初始化Intent
详情信息: Landroid/content/Context;=cn.skyone.dict.ActivityMain@41544710 | Ljava/lang/Class;=class cn.skyone.dict.ActivityMain
Ljava/lang/String;=com.android.launcher.action.INSTALL_SHORTCUT
Landroid/content/Context;=android.app.Application@41543e50 | Ljava/lang/Class;=class com.google.ads.AdActivity
Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=market://details?id=com.google.ads
Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=geo:0,0?q=donuts
Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=market://search?q=pname:com.google
行为描述: 获取设备ID
详情信息: 357242043237511
行为描述: 写入文件
详情信息: path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
path:/data/data/cn.skyone.dict/shared_prefs/setting.xml length:105
path:/data/data/cn.skyone.dict/shared_prefs/cn.skyone.dict_preferences.xml length:105
path:/data/data/cn.skyone.dict/cache/ads-563730749.jar length:101
path:/data/data/com.android.launcher/shared_prefs/com.android.launcher2.prefs.xml length:105
path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
Activities
VirSCANVirSCAN
活动名 类型
.ActivityMain android.intent.action.MAIN
.ActivityMain android.intent.category.LAUNCHER
危险函数
VirSCANVirSCAN
函数名称 信息
java/net/URL;->openConnection 连接URL
ContentResolver;->query 读取联系人、短信等数据库
java/net/HttpURLConnection;->connect 连接URL
HttpClient;->execute 请求远程服务器
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
LocationManager;->getLastKnownLocation 获取地址位置
android/app/NotificationManager;->notify 信息通知栏
广告信息
VirSCANVirSCAN
名称 信息
com.google.ads AdMob
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.READ_LOGS 读取系统日志
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
文件列表
VirSCANVirSCAN
文件名 校验码
res/anim/anim_loading.xml 0xf4f2c882
res/drawable/radiobutton.xml 0xb8f6edde
res/drawable/seek_style.xml 0x5a9b9224
res/drawable/seek_thumb.xml 0x88851a6c
res/drawable/spinner.xml 0x9cc48ab
res/layout/about.xml 0xeb16945a
res/layout/activity_main.xml 0x2af2cce9
res/layout/download_activity.xml 0x43de6c3e
res/layout/expression_catalog.xml 0xad05562d
res/layout/expression_details.xml 0xe5e653bf
res/layout/feedback.xml 0xa978dcbd
res/layout/idiom_catalog.xml 0x307ec823
res/layout/idiom_details.xml 0x6fd4502f
res/layout/list_adapter.xml 0xeca88d39
res/layout/main_gridview.xml 0xdabad49a
res/layout/moreapps.xml 0x8e6f6341
res/layout/moreapps_adapter.xml 0x200f2fb9
res/layout/notebook.xml 0x99786e7c
res/layout/notebook_adapter.xml 0xb8032de8
res/layout/spinner_item.xml 0x69cd4c7e
res/layout/story_catalog.xml 0x19a47ef9
res/layout/story_details.xml 0x7c9208ce
res/layout/view_foot_more.xml 0x49ef47a9
res/layout/word_catalog.xml 0x5a4af74f
res/layout/word_catalog_adapter.xml 0xaa2e9946
res/layout/word_details.xml 0xd9db8cd3
res/layout/word_radica_item.xml 0x25e00857
res/layout/word_radical_catalog.xml 0xa6671cf
res/layout/word_radical_catalog_adapter.xml 0x7b240c9e
res/layout/word_radical_item_adapter.xml 0x19357af2
res/layout/word_voice_adapter_gv.xml 0xe4a9a201
res/layout/word_voice_adapter_list.xml 0xaa43a2f6
res/layout/word_voice_catalog.xml 0xbd598e77
res/xml/radical_item.xml 0x8eb86ba8
AndroidManifest.xml 0x1143c2a0
resources.arsc 0xee707d46
res/drawable-hdpi/arrow_down.png 0xd38b49ca
res/drawable-hdpi/bg_banner.9.png 0x10b5e10c
res/drawable-hdpi/bg_banner_big5.9.png 0xbf182d61
res/drawable-hdpi/bg_gv_radical.9.png 0x7b364a77
res/drawable-hdpi/bg_linear_gray.9.png 0x3c50e9bd
res/drawable-hdpi/bg_linear_gray_alternate.9.png 0x646b39ec
res/drawable-hdpi/bg_linear_progress.9.png 0x80f7551b
res/drawable-hdpi/btn_blue_undertint.9.png 0xf697997d
res/drawable-hdpi/btn_blune.9.png 0x21e05188
res/drawable-hdpi/btn_gray.9.png 0x9edcbd8e
res/drawable-hdpi/calenadar_icon.png 0xaaac2504
res/drawable-hdpi/calendar_icon_big5.png 0x309f6a03
res/drawable-hdpi/home_icon_bound_shadow.png 0x5b2531e
res/drawable-hdpi/home_icon_expression.png 0xe2df47fc
res/drawable-hdpi/home_icon_expression_big5.png 0x52bd40b7
res/drawable-hdpi/home_icon_guestbook.png 0xd2d672cd
res/drawable-hdpi/home_icon_idiom.png 0x4b65a582
res/drawable-hdpi/home_icon_idiom_big5.png 0xe9e9bb15
res/drawable-hdpi/home_icon_moresoft.png 0x66831707
res/drawable-hdpi/home_icon_rawword.png 0x4d30111b
res/drawable-hdpi/home_icon_setting.png 0x70879e26
res/drawable-hdpi/home_icon_story.png 0x1c1986d0
res/drawable-hdpi/home_icon_word.png 0x97872921
res/drawable-hdpi/ic_action_search.png 0x64275be8
res/drawable-hdpi/ic_launcher.png 0xf2a840b5
res/drawable-hdpi/icon_del.png 0x15fa73e5
res/drawable-hdpi/icon_exit.png 0x3691be4b
res/drawable-hdpi/icon_home.png 0x37fa418a
res/drawable-hdpi/icon_setting.png 0xe112ac7c
res/drawable-hdpi/input_bg.9.png 0x910a2115
res/drawable-hdpi/iv_voice.9.png 0xc128a954
res/drawable-hdpi/letter_shadow.png 0xd4591295
res/drawable-hdpi/line_fullscreen.9.png 0xa532fc3e
res/drawable-hdpi/loading_1.png 0x9f9bbf34
res/drawable-hdpi/loading_2.png 0xf39a32ef
res/drawable-hdpi/loading_3.png 0x9f3bbc8e
res/drawable-hdpi/loading_4.png 0x1ac9d73d
res/drawable-hdpi/loading_5.png 0xdb93b4dc
res/drawable-hdpi/loading_6.png 0xcec14956
res/drawable-hdpi/next_next.9.png 0xf94b9376
res/drawable-hdpi/next_pre.9.png 0x86b1d786
res/drawable-hdpi/pagetitlebtn.9.png 0x6698fec2
res/drawable-hdpi/pagetitlebtn_hover.9.png 0x5a09b007
res/drawable-hdpi/radiobtn_off.png 0xdbb4ba2d
res/drawable-hdpi/radiobtn_on.png 0xb4176f9b
res/drawable-hdpi/search_box.9.png 0x61535d0
res/drawable-hdpi/searchbox_btn.png 0xda81b758
res/drawable-hdpi/searches.9.png 0x4ed99b77
res/drawable-hdpi/searches_hover.9.png 0xedda29da
res/drawable-hdpi/seek_background.9.png 0x9a67c4a5
res/drawable-hdpi/seek_front.9.png 0xcfc3a180
res/drawable-hdpi/seek_thumb_img.png 0x34863a9d
res/drawable-hdpi/spinner_blue.9.png 0xf99325aa
res/drawable-hdpi/title_back.png 0xf0df17ab
res/drawable-hdpi/title_backhome.png 0xa9c42235
res/drawable-hdpi/title_img.png 0xc0027053
res/drawable-hdpi/word_big_shadow.png 0xa5d667b4
res/drawable-hdpi/word_details_tv_add.9.png 0x407c9042
res/drawable-hdpi/word_details_tv_copy.9.png 0x11b1bc1b
res/drawable-hdpi/word_details_void_bg.9.png 0x48232208
res/drawable-hdpi/word_shadow.png 0xc0cce986
res/drawable-mdpi/iv_voice.9.png 0x9bd09620
res/drawable-mdpi/word_details_tv_add.9.png 0xead911e9
res/drawable-mdpi/word_details_tv_copy.9.png 0x3c5c18b2
classes.dex 0xa604b74d
GoogleAdMobAdsSdk-6.4.1.jar 0x304ecb77
umeng_sdk.jar 0x4e13e1c2
jsr305_annotations/Jsr305_annotations.gwt.xml 0x8d4f3e59
jsr305_annotations/v0_r47/V0_r47.gwt.xml 0x8b4479b0
META-INF/MANIFEST.MF 0xdd3b471a
META-INF/CERT.SF 0xaa7421fb
META-INF/CERT.RSA 0x5dee310e
运行截图
VirSCANVirSCAN
VirSCAN