VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2015-10-26 17:38:10 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 10
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
avast 150725-1 4.7.4 2015-07-25 Found nothing 0
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 4
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
clamav 19861 0.97.5 2014-12-31 Found nothing 0
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
gdata 25.4043 25.4043 2015-10-25 Found nothing 13
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 44
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
kingsoft 2.1 2.1 2013-09-22 Found nothing 34
mcafee 7638 5400.1158 2014-11-30 Found nothing 0
nod32 0920 3.0.21 2014-12-23 Found nothing 0
panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
qh360 1.0.1 1.0.1 1.0.1 Found nothing 7
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
quickheal 14.00 14.00 2015-07-25 Found nothing 2
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 1
sophos 5.08 3.55.0 2014-12-01 Found nothing 0
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 5
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 2
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 16
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0

没有相关的权限信息

文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:8065fd1082e923949182815d17233f31
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.monotype.android.font.AiFont6056
最低运行环境:Android 2.2.x
版权:Android
关键行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-*
Local\Mso97SharedDg19211108221
PrimaryWord11SharedMemoryArea
Local\Mso97SharedDg20321108221
MSCTF.GCompartListSFM.DefaultS-*
DfSharedHeap3D4EA1
DFMap0-4017836
DfRoot0003D4EA1
DFMap0-4017860
Local\MSO_Formal11108221_S-*
Local\MSO_AdHoc11108221_S-*
Local\Mso97SharedDg19521108221
MSCTF.MarshalInterface.FileMap.IK..MOPHH
Local\Mso97SharedDg19531108221
MSCTF.MarshalInterface.FileMap.IK.B.LAAIH
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ThunderRT6Main]
进程行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-*
Local\Mso97SharedDg19211108221
PrimaryWord11SharedMemoryArea
Local\Mso97SharedDg20321108221
MSCTF.GCompartListSFM.DefaultS-*
DfSharedHeap3D4EA1
DFMap0-4017836
DfRoot0003D4EA1
DFMap0-4017860
Local\MSO_Formal11108221_S-*
Local\MSO_AdHoc11108221_S-*
Local\Mso97SharedDg19521108221
MSCTF.MarshalInterface.FileMap.IK..MOPHH
Local\Mso97SharedDg19531108221
MSCTF.MarshalInterface.FileMap.IK.B.LAAIH
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ThunderRT6Main]
文件行为
VirSCANVirSCAN
行为描述: 写权限映射文件
详情信息: CiceroSharedMemDefaultS-*
Local\Mso97SharedDg19211108221
PrimaryWord11SharedMemoryArea
Local\Mso97SharedDg20321108221
MSCTF.GCompartListSFM.DefaultS-*
DfSharedHeap3D4EA1
DFMap0-4017836
DfRoot0003D4EA1
DFMap0-4017860
Local\MSO_Formal11108221_S-*
Local\MSO_AdHoc11108221_S-*
Local\Mso97SharedDg19521108221
MSCTF.MarshalInterface.FileMap.IK..MOPHH
Local\Mso97SharedDg19531108221
MSCTF.MarshalInterface.FileMap.IK.B.LAAIH
行为描述: 重命名文件
详情信息: C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\~WRI0001 ---> C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\CUSTOM.DIC
C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\~WRI0000 ---> C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\CUSTOM.DIC
行为描述: 创建可执行文件
详情信息: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MSI3.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MSI4.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MSI5.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MSI6.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MSI7.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MSI8.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MSI9.tmp
行为描述: 修改文件内容
详情信息: C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\~$996E.doc---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Office\Recent\996E.doc.LNK---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Office\Recent\index.dat---> Offset = 28
C:\Documents and Settings\Administrator\Application Data\Microsoft\Office\Recent\EB93A6.LNK---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\CUSTOM.DIC---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\~$CUSTOM.DIC---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\~WRI0001---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Templates\~$Normal.dot---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Office\Recent\996E.LNK---> Offset = 0
C:\Documents and Settings\Administrator\Application Data\Microsoft\Proof\~WRI0000---> Offset = 0
行为描述: 查找文件
详情信息: FileName = C:\Program Files
FileName = C:\Program Files\Microsoft Office
FileName = C:\Program Files\Microsoft Office\OFFICE11\Normal.dot
FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Templates\Normal.dot
FileName = C:\WINDOWS\system32\Normal.dot
FileName = C:\WINDOWS
FileName = C:\WINDOWS\WinSxS
FileName = C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\996E.doc
FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\桌面
FileName = C:\DOCUME~1
FileName = C:\Documents and Settings\ADMINI~1
FileName = C:\Documents and Settings\Administrator\LOCALS~1
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\ey
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\{
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\MTTT
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\u{
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\|
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\C|
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\a|
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\M}
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Common\ReviewCycle\ReviewToken
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\DocumentRecovery\77FAE\77FAE
\REGISTRY\USER\S-*\Software\Microsoft\Office\Common\Assistant\CurrAsstState
\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4080110900063D11C8EF10054038389C\Usage\SpellingAndGrammarFiles_1033
\REGISTRY\USER\S-*\Software\Microsoft\Shared Tools\Proofing Tools\Custom Dictionaries\1
\REGISTRY\USER\S-1-5-21-117609710-688789844-839522115-500\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\A 
\REGISTRY\USER\S-1-5-21-117609710-688789844-839522115-500\Software\Microsoft\Office\11.0\Word\MTTT
行为描述: 删除注册表键
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems
\REGISTRY\USER\S-1-5-21-117609710-688789844-839522115-500\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems
行为描述: 删除注册表键值
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\{
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\u{
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\|
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\C|
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\a|
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\M}
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\ey
\REGISTRY\USER\S-*\Software\Microsoft\Office\11.0\Word\WordName
\REGISTRY\USER\S-1-5-21-117609710-688789844-839522115-500\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\a"
\REGISTRY\USER\S-1-5-21-117609710-688789844-839522115-500\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\#
\REGISTRY\USER\S-1-5-21-117609710-688789844-839522115-500\Software\Microsoft\Office\11.0\Word\Resiliency\StartupItems\A 
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: Local\Mutex_MSOSharedMem
CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
Local\Mso97SharedDg19211108221Mutex
Local\Mso97SharedDg20321108221Mutex
MSCTF.GCompartListMUTEX.DefaultS-*
Global\MTX_MSO_Formal1_S-*
Global\MTX_MSO_AdHoc1_S-*
Local\Mso97SharedDg19521108221Mutex
Local\Mso97SharedDg19531108221Mutex
MSCTF.Shared.MUTEX.ELH
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ThunderRT6Main]
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [MSOBALLOON,]
NtUserFindWindowEx: [Class,Window] = [MsoHelp10,]
NtUserFindWindowEx: [Class,Window] = [AgentAnim,]
NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
NtUserFindWindowEx: [Class,Window] = [MsoHelp11,]
行为描述: 获取系统权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
SE_SHUTDOWN_PRIVILEGE
SE_INCREASE_QUOTA_PRIVILEGE
SE_CREATE_TOKEN_PRIVILEGE
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0xa2d23161
META-INF/CERT.SF 0x411891c1
META-INF/CERT.RSA 0xda9d43b1
AndroidManifest.xml 0xf727c675
res/drawable/icon.png 0xc6000e88
assets/xml/AiFont6056.xml 0xd10e546e
resources.arsc 0x9d4558a5
assets/fonts/AiFont6056.ttf 0xfcd48769
classes.dex 0x8f388558
运行截图
VirSCANVirSCAN
VirSCAN