VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

File Name :234.apk (File not down)
File Size :524349 byte
File Type : application/zip
MD5:51719e1ed57e7c9fdae5bd6d823d28d1
SHA1:019e8259cd27be7f8526c8cd4bb8594b57179766
Scanner results
Scanner results:3%Antivirus software(1/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2016-05-11 07:17:26 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 5
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
avast 150725-1 4.7.4 2015-07-25 Found nothing 23
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 6
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 7
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 1
clamav 19861 0.97.5 2014-12-31 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 46
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 1
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 4
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 30
gdata 25.6534 25.6534 2016-05-09 Found nothing 9
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 8
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 44
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 36
kingsoft 2.1 2.1 2013-09-22 android.troj.regdev.fy.(kcloud) 4
mcafee 7638 5400.1158 2014-11-30 Found nothing 30
nod32 0920 3.0.21 2014-12-23 Found nothing 1
panda 9.05.01 9.05.01 2015-07-26 Found nothing 5
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 2
qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 1
quickheal 14.00 14.00 2015-07-25 Found nothing 2
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 1
sophos 5.08 3.55.0 2014-12-01 Found nothing 5
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 1
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 1
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 13
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 8
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 6
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.SEND_SMS 发送短信
android.permission.READ_SMS 读取短信
android.permission.RECEIVE_SMS 监控接收短信
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.READ_CONTACTS 读取联系人信息
android.permission.CALL_PHONE 拨打电话
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.VIBRATE 允许设备震动
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:51719e1ed57e7c9fdae5bd6d823d28d1
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.qayulido.vhourom
最低运行环境:Android 2.2.x
版权:Xqfs
关键行为
VirSCANVirSCAN
行为描述: 获取TickCount值
详情信息: TickCount = 547046, SleepMilliseconds = 60000.
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\PMC3.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\~DF5056.tmp
行为描述: 覆盖已有文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
行为描述: 删除文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temp\PMC3.tmp
C:\Documents and Settings\Administrator\Local Settings\Temp\~DF5056.tmp
行为描述: 修改文件内容
详情信息: C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT ---> Offset = 0
行为描述: 查找文件
详情信息: FileName = C:\*.*
FileName = C:\Documents and Settings\Administrator\My Documents\*.*
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\Profiles\*.*
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\PMC3.tmp
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-*\Software\Poseidon\SplitIt\Settings\LastOpenFileFolder
\REGISTRY\USER\S-*\Software\Poseidon\SplitIt\Settings\SystemFontName
\REGISTRY\USER\S-*\Software\Poseidon\SplitIt\Settings\Build
\REGISTRY\USER\S-*\Software\Poseidon\SplitIt\Settings\LastOpenFileSuffix
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
MSCTF.Shared.MUTEX.AKB
行为描述: 创建事件对象
详情信息: EventName = DINPUTWINMM
EventName = MSCTF.SendReceive.Event.AKB.IC
EventName = MSCTF.SendReceiveConection.Event.AKB.IC
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述: 枚举窗口
详情信息: N/A
行为描述: 获取TickCount值
详情信息: TickCount = 547046, SleepMilliseconds = 60000.
行为描述: 调整进程token权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 窗口信息
详情信息: Pid = 412, Hwnd=0x1033c, Text = Idle, ClassName = ThunderRT6ComboBox.
Pid = 412, Hwnd=0x10340, Text = Idle, ClassName = Edit.
Pid = 412, Hwnd=0x1034e, Text = Idle, ClassName = ThunderRT6ComboBox.
Pid = 412, Hwnd=0x10352, Text = Idle, ClassName = Edit.
Pid = 412, Hwnd=0x1036a, Text = Idle, ClassName = ThunderRT6ComboBox.
Pid = 412, Hwnd=0x1036e, Text = Idle, ClassName = Edit.
Pid = 412, Hwnd=0x10382, Text = Idle, ClassName = ThunderRT6ComboBox.
Pid = 412, Hwnd=0x10386, Text = Idle, ClassName = Edit.
Pid = 412, Hwnd=0x702c0, Text = Idle, ClassName = ThunderRT6ComboBox.
Pid = 412, Hwnd=0x302b6, Text = Idle, ClassName = Edit.
Pid = 412, Hwnd=0x102f8, Text = Idle, ClassName = ThunderRT6ComboBox.
Pid = 412, Hwnd=0x102fc, Text = Idle, ClassName = Edit.
Pid = 412, Hwnd=0x10308, Text = Idle, ClassName = ThunderRT6ComboBox.
Pid = 412, Hwnd=0x1030c, Text = Idle, ClassName = Edit.
Pid = 412, Hwnd=0x202c2, Text = SplitIt 5.8 免费版本, ClassName = ThunderRT6FormDC.
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = 60000.
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [,ThunderRT6ComboBox]
[Window,Class] = [,ThunderRT6TextBox]
[Window,Class] = [,ThunderRT6VScrollBar]
[Window,Class] = [,ThunderRT6UserControlDC]
[Window,Class] = [,msctls_progress32]
[Window,Class] = [,ThunderRT6PictureBoxDC]
[Window,Class] = [SplitIt 5.8 免费版本,ThunderRT6FormDC]
Activities
VirSCANVirSCAN
活动名 类型
com.qayulido.vhourom.MainActivity android.intent.action.MAIN
com.qayulido.vhourom.MainActivity android.intent.category.LAUNCHER
启动方式
VirSCANVirSCAN
名称 信息
com.qayulido.vhourom.dezwyg 屏幕解锁启动服务
com.qayulido.vhourom.ezkuw
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.SEND_SMS 发送短信
android.permission.READ_SMS 读取短信
android.permission.RECEIVE_SMS 监控接收短信
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.READ_CONTACTS 读取联系人信息
android.permission.CALL_PHONE 拨打电话
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.VIBRATE 允许设备震动
android.permission.PROCESS_OUTGOING_CALLS 监视、修改有关拨出电话
服务列表
VirSCANVirSCAN
名称
com.qayulido.vhourom.nkmbyun
com.qayulido.vhourom.tftql
com.qayulido.vhourom.uvwivulbv
com.qayulido.vhourom.ixzbjcy
com.qayulido.vhourom.lkcjgya
com.qayulido.vhourom.tilse
com.qayulido.vhourom.gytrormv
com.qayulido.vhourom.pedeyzmka
com.qayulido.vhourom.ogwux
com.qayulido.vhourom.bgzog
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0x117ae32f
META-INF/CERT.SF 0xd917d76c
META-INF/CERT.RSA 0xd34a4832
AndroidManifest.xml 0xcc236b1
assets/avqjogfgni.dat 0xd2b1cf99
res/drawable-hdpi-v4/ic_launcher.png 0x5f8a1eb4
res/drawable-mdpi-v4/ic_launcher.png 0xa5bfa0ca
res/drawable-xhdpi-v4/ic_launcher.png 0xc9c090e8
res/drawable/a.png 0xc0a54514
res/drawable/android.png 0xb16b49d4
res/drawable/btn.png 0xd3e9668a
res/drawable/btn_alpa.png 0x3b7d98f5
res/drawable/cvc_visa.gif 0x39e773d1
res/drawable/discovery.jpg 0xb97e2b6b
res/drawable/dojki.jpg 0x20f03352
res/drawable/golden.jpg 0x7fb0036f
res/drawable/icon.png 0x5f8a1eb4
res/drawable/image.png 0xa8e70b3a
res/drawable/kaspersky_png.png 0xc1a01992
res/drawable/logo_maestro.png 0xe637d5c8
res/drawable/m.png 0xf17c5fc9
res/drawable/market_icon.png 0x1b1d04a2
res/drawable/mastercard.gif 0x95f58fc3
res/drawable/nod.png 0x71b6e441
res/drawable/notify_icon.png 0xc1a01992
res/drawable/top.png 0xb09880f4
res/drawable/visa.gif 0xbb7bd921
res/drawable/win_zip.png 0x95b8ce6c
res/layout/activity_adm.xml 0x64e18d87
res/layout/activity_main.xml 0x64e18d87
res/layout/card.xml 0x75cb3512
res/layout/main.xml 0xccca8c86
res/menu-v11/main.xml 0x919d21a5
res/menu/main.xml 0x8d789d1e
res/xml/policies.xml 0xc2b11ad4
resources.arsc 0x9f60cc60
classes.dex 0xa29789e7
运行截图
VirSCANVirSCAN
VirSCAN