VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2016-07-17 17:26:52 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 14
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 11
avast 150725-1 4.7.4 2015-07-25 Found nothing 60
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2014-04-02 Found nothing 6
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 60
clamav 19861 0.97.5 2014-12-31 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 60
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 60
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 60
gdata 25.7406 25.7406 2016-07-17 Found nothing 23
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 60
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2013-09-22 Found nothing 17
mcafee 7638 5400.1158 2014-11-30 Found nothing 60
nod32 0920 3.0.21 2014-12-23 Found nothing 60
panda 9.05.01 9.05.01 2015-07-26 Found nothing 7
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 6
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 60
quickheal 14.00 14.00 2015-07-25 Found nothing 13
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 48
sophos 5.08 3.55.0 2014-12-01 Found nothing 60
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 50
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 18
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 42
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60

没有相关的权限信息

文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:9a2f976f09e5acbaac0db52d79087376
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:
最低运行环境:
版权:
关键行为
VirSCANVirSCAN
行为描述: 获取硬件属性检测虚拟机
详情信息: 检测VirtualBox: 调用WMI接口获取硬件信息
行为描述: 获取TickCount值
详情信息: TickCount = 5362234, SleepMilliseconds = 250.
TickCount = 5362281, SleepMilliseconds = 250.
TickCount = 5362296, SleepMilliseconds = 250.
TickCount = 5362312, SleepMilliseconds = 250.
TickCount = 5362328, SleepMilliseconds = 250.
TickCount = 5362453, SleepMilliseconds = 250.
TickCount = 5362468, SleepMilliseconds = 250.
TickCount = 5362500, SleepMilliseconds = 250.
TickCount = 5362531, SleepMilliseconds = 250.
TickCount = 5362640, SleepMilliseconds = 250.
TickCount = 5362671, SleepMilliseconds = 250.
TickCount = 5362687, SleepMilliseconds = 250.
TickCount = 5362703, SleepMilliseconds = 250.
TickCount = 5422468, SleepMilliseconds = 60000.
TickCount = 5422578, SleepMilliseconds = 60000.
进程行为
VirSCANVirSCAN
行为描述: 获取硬件属性检测虚拟机
详情信息: 检测VirtualBox: 调用WMI接口获取硬件信息
行为描述: 获取TickCount值
详情信息: TickCount = 5362234, SleepMilliseconds = 250.
TickCount = 5362281, SleepMilliseconds = 250.
TickCount = 5362296, SleepMilliseconds = 250.
TickCount = 5362312, SleepMilliseconds = 250.
TickCount = 5362328, SleepMilliseconds = 250.
TickCount = 5362453, SleepMilliseconds = 250.
TickCount = 5362468, SleepMilliseconds = 250.
TickCount = 5362500, SleepMilliseconds = 250.
TickCount = 5362531, SleepMilliseconds = 250.
TickCount = 5362640, SleepMilliseconds = 250.
TickCount = 5362671, SleepMilliseconds = 250.
TickCount = 5362687, SleepMilliseconds = 250.
TickCount = 5362703, SleepMilliseconds = 250.
TickCount = 5422468, SleepMilliseconds = 60000.
TickCount = 5422578, SleepMilliseconds = 60000.
文件行为
VirSCANVirSCAN
行为描述: 查找文件
详情信息: FileName = , write\*.*
FileName = C:\WINDOWS
FileName = C:\WINDOWS\system32
FileName = C:\WINDOWS\system32\cmd.exe
FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\Local Settings
FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\sc.*
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\sc
FileName = C:\Python27\sc.*
FileName = C:\Python27\sc
FileName = C:\Python27\Scripts\sc.*
FileName = C:\Python27\Scripts\sc
注册表行为
VirSCANVirSCAN
行为描述: 删除注册表键
详情信息: \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\Windows Error Reporting\RuntimeExceptionHelperModules\
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\Windows Error Reporting\
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
Local\ZonesCounterMutex
Local\ZoneAttributeCacheCounterMutex
Local\ZonesCacheCounterMutex
Local\ZonesLockedCacheCounterMutex
行为描述: 枚举网络共享资源
详情信息: N/A
行为描述: 获取TickCount值
详情信息: TickCount = 5362234, SleepMilliseconds = 250.
TickCount = 5362281, SleepMilliseconds = 250.
TickCount = 5362296, SleepMilliseconds = 250.
TickCount = 5362312, SleepMilliseconds = 250.
TickCount = 5362328, SleepMilliseconds = 250.
TickCount = 5362453, SleepMilliseconds = 250.
TickCount = 5362468, SleepMilliseconds = 250.
TickCount = 5362500, SleepMilliseconds = 250.
TickCount = 5362531, SleepMilliseconds = 250.
TickCount = 5362640, SleepMilliseconds = 250.
TickCount = 5362671, SleepMilliseconds = 250.
TickCount = 5362687, SleepMilliseconds = 250.
TickCount = 5362703, SleepMilliseconds = 250.
TickCount = 5422468, SleepMilliseconds = 60000.
TickCount = 5422578, SleepMilliseconds = 60000.
行为描述: 调整进程token权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 打开事件
详情信息: HookSwitchHookEnabledEvent
Global\SvcctrlStartEvent_A3752DX
_fCanRegisterWithShellService
\SECURITY\LSA_AUTHENTICATION_INITIALIZED
MSFT.VSA.COM.DISABLE.1676
MSFT.VSA.IEC.STATUS.6c736db0
行为描述: 获取硬件属性检测虚拟机
详情信息: 检测VirtualBox: 调用WMI接口获取硬件信息
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = 250.
[2]: MilliSeconds = 250.
[3]: MilliSeconds = 60000.
[4]: MilliSeconds = 60000.
[5]: MilliSeconds = 60000.
行为描述: 打开互斥体
详情信息: ShimCacheMutex
Local\!IETld!Mutex
运行截图
VirSCANVirSCAN
VirSCAN