VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2015-03-04 12:53:38 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 60
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 60
avast 141231-0 4.7.4 2014-12-31 Found nothing 34
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 6
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 60
baidusd 1.0 1.0 2014-04-02 Found nothing 60
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 1
clamav 19745 0.97.5 2014-12-07 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 49
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 1
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 5
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 13
gdata 25.473 25.473 2015-03-01 Found nothing 60
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 7
jiangmin 16.0.100 1.0.0.0 2014-08-20 Found nothing 60
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 35
kingsoft 2.1 2.1 2013-09-22 Found nothing 60
mcafee 7638 5400.1158 2014-11-30 Found nothing 32
nod32 0920 3.0.21 2014-12-23 Found nothing 4
panda 9.05.01 9.05.01 2014-12-31 Found nothing 60
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 4
qh360 1.0.1 1.0.1 1.0.1 Found nothing 60
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 1
quickheal 14.00 14.00 2014-12-31 Found nothing 60
rising 25.46.06.04 25.46.06.04 2014-12-28 Found nothing 60
sophos 5.08 3.55.0 2014-12-01 Found nothing 10
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 1
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 60
thehacker 6.8.0.5 6.8.0.5 2014-12-29 Found nothing 60
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 60
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 13
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 31
权限列表
许可名称 信息
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
文件信息
VirSCANVirSCAN
安全评分 :75
基本信息
VirSCANVirSCAN
MD5:8b7d9252c35e9c6652ed78255961328b
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.lidroid.supermount
最低运行环境:Android 2.2.x
版权:lidroid
关键行为
VirSCANVirSCAN
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [帮助(&H),Button]
[Window,Class] = [,Auto-Suggest Dropdown]
文件行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-1-5-21-1482476501-1645522239-1417001333-500
MSCTF.MarshalInterface.FileMap.AOJ..IHIFF
MSCTF.MarshalInterface.FileMap.AOJ.B.IHIFF
MSCTF.MarshalInterface.FileMap.AOJ.C.IHIFF
MSCTF.MarshalInterface.FileMap.AOJ.D.IHIFF
MSCTF.MarshalInterface.FileMap.AOJ.E.IHIFF
MSCTF.MarshalInterface.FileMap.AOJ.F.HIIFF
MSCTF.MarshalInterface.FileMap.AOJ.G.HIIFF
MSCTF.Shared.SFM.AOJ
网络行为
VirSCANVirSCAN
行为描述: 枚举网络共享资源
详情信息: N/A
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\ShellNoRoam\MUICache\@shell32.dll,-12691
\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\ShellNoRoam\BagMRU\MRUListEx
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Compart.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Asm.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.Layouts.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TMD.MutexDefaultS-1-5-21-1482476501-1645522239-1417001333-500
CTF.TimListCache.FMPDefaultS-1-5-21-1482476501-1645522239-1417001333-500MUTEX.DefaultS-1-5-21-1482476501-1645522239-1417001333-500
Shell.CMruPidlList
MSCTF.Shared.MUTEX.AEH
Global\winlogon: Logon UserProfileMapping Mutex
MSCTF.Shared.MUTEX.AOJ
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [帮助(&H),Button]
[Window,Class] = [,Auto-Suggest Dropdown]
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [,GINA Logon]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述: 窗口信息
详情信息: Pid = 2524, Hwnd=0x10350, Text = 查找范围(&I):, ClassName = Static.
Pid = 2524, Hwnd=0x10352, Text = 我的文档, ClassName = ComboBox.
Pid = 2524, Hwnd=0x1038a, Text = FolderView, ClassName = SysListView32.
Pid = 2524, Hwnd=0x1035c, Text = 文件名(&N):, ClassName = Static.
Pid = 2524, Hwnd=0x10368, Text = 文件类型(&T):, ClassName = Static.
Pid = 2524, Hwnd=0x1036a, Text = ZBrush, ClassName = ComboBox.
Pid = 2524, Hwnd=0x1036e, Text = 以只读方式打开(&R), ClassName = Button(CheckBox).
Pid = 2524, Hwnd=0x10370, Text = 打开(&O), ClassName = Button.
Pid = 2524, Hwnd=0x10372, Text = 取消, ClassName = Button.
Pid = 2524, Hwnd=0x10374, Text = 帮助(&H), ClassName = Button.
Pid = 2524, Hwnd=0x1034c, Text = 打开, ClassName = #32770.
Pid = 2524, Hwnd=0x10360, Text = 123456, ClassName = ComboBoxEx32.
行为描述: 获取系统权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 枚举窗口
详情信息: N/A
危险行为
VirSCANVirSCAN
行为描述: 执行系统命令
详情信息: mount
动态列表行为
VirSCANVirSCAN
行为描述: 调用哈希算法
详情信息: MD5
行为描述: 读取文件
详情信息: path:pipe:[3455] length:105
path:/proc/meminfo length:105
path:/proc/761/cmdline length:105
path:/proc/777/cmdline length:105
path:/proc/789/cmdline length:105
path:/proc/819/cmdline length:105
path:/proc/831/cmdline length:105
行为描述: 对指定数据计算哈希
详情信息: emulator
d3894529ac5a14ec
行为描述: 类加载
详情信息: path:/system/app/PicoTts.apk
path:/system/app/MusicFX.apk
path:/system/framework/am.jar
path:/data/app/com.lidroid.supermount-1.apk
行为描述: 缓冲区读取一行数据
详情信息: ## Vold 2.0 Generic fstab
## - San Mehat
##
#######################
## Regular device mount
##
## Format: dev_mount <label> <mount_point> <part> <sysfs_path1...>
## label - Label for the volume
## mount_point - Where the volume will be mounted
## part - Partition # (1
## <sysfs_path> - List of sysfs paths to source devices
######################
## Example of a standard sdcard mount for the emulator / Dream
# Mounts the first usable partition of the specified device
dev_mount sdcard /mnt/sdcard auto /devices/platform/goldfish_mmc.0 /devices/platform/msm_sdcc.2/mmc_host/mmc1
## Example of a dual card setup
# dev_mount left_sdcard /sdcard1 auto /devices/platform/goldfish_mmc.0 /devices/platform/msm_sdcc.2/mmc_host/mmc1
# dev_mount right_sdcard /sdcard2 auto /devices/platform/goldfish_mmc.1 /devices/platform/msm_sdcc.3/mmc_host/mmc1
## Example of specifying a specific partition for mounts
# dev_mount sdcard /sdcard 2 /devices/platform/goldfish_mmc.0 /devices/platform/msm_sdcc.2/mmc_host/mmc1
null
rootfs / rootfs ro 0 0
tmpfs /dev tmpfs rw,nosuid,mode=755 0 0
devpts /dev/pts devpts rw,mode=600 0 0
proc /proc proc rw 0 0
sysfs /sys sysfs rw 0 0
none /acct cgroup rw,cpuacct 0 0
tmpfs /mnt/asec tmpfs rw,mode=755,gid=1000 0 0
tmpfs /mnt/obb tmpfs rw,mode=755,gid=1000 0 0
none /dev/cpuctl cgroup rw,cpu 0 0
/dev/block/mtdblock0 /system yaffs2 ro 0 0
/dev/block/mtdblock1 /data yaffs2 rw,nosuid,nodev 0 0
/dev/block/mtdblock2 /cache yaffs2 rw,nosuid,nodev 0 0
行为描述: 执行系统命令
详情信息: mount
行为描述: 启动服务
详情信息: com.android.musicfx.Compatibility$Service
行为描述: 初始化Intent
详情信息: Landroid/content/Context;=com.lidroid.supermount.MainActivity@41538ee8 | Ljava/lang/Class;=class com.google.ads.AdActivity
Ljava/lang/String;=android.intent.action.VIEW | Landroid/net/Uri;=market://details?id=com.google.ads
行为描述: 写入文件
详情信息: path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
Activities
VirSCANVirSCAN
活动名 类型
MainActivity android.intent.action.MAIN
MainActivity android.intent.category.LAUNCHER
危险函数
VirSCANVirSCAN
函数名称 信息
java/net/HttpURLConnection;->connect 连接URL
java/net/URL;->openConnection 连接URL
ContentResolver;->query 读取联系人、短信等数据库
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
android/app/NotificationManager;->notify 信息通知栏
广告信息
VirSCANVirSCAN
名称 信息
com.google.ads AdMob
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.RECEIVE_BOOT_COMPLETED 接收开机启动广播
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0x6ed43c02
META-INF/LIDROID.SF 0xbf2cbe21
META-INF/LIDROID.RSA 0x16f68cc6
res/layout/main.xml 0xebe280ad
res/xml/settings.xml 0xa3401a99
AndroidManifest.xml 0x662a839
resources.arsc 0x66f69973
res/drawable-hdpi/android_sd.png 0x2a935c5
res/drawable-hdpi/ic_settings.png 0x2f2b5652
res/drawable-hdpi/icon.png 0xe38047a6
res/drawable-hdpi/mounted_icon.png 0x2196073a
res/drawable-hdpi/no_dir.png 0x84d7b5c4
res/drawable-hdpi/no_sd.png 0x84d7b5c4
res/drawable-hdpi/sd_mounted.png 0xc24a638e
res/drawable-hdpi/sd_unmounted.png 0x2a935c5
res/layout-land/main.xml 0x8492052b
classes.dex 0xfc8e0570
运行截图
VirSCANVirSCAN
VirSCAN