VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load
文件信息
安全评分 :93
基本信息
MD5:f41fedbf43552fc0e35b603bf10bed59
文件类型:EXE
出品公司:
版本:
壳或编译器信息:COMPILER:Microsoft Visual Studio .NET 2005 -- 2008 -> Microsoft Corporation [Overlay] *
子文件信息:BkgNormal.png / b50d28d86d56a2e97dc9aabbc964ff64 / Unknown
QQProtectBtn.png / 894e540f301cbb040ceec35f03c7c31c / Unknown
def_style.xml / fe1af994399fadd3495c803f92bc9731 / Unknown
BkgNormal0.png / cf2f5fad7bf6b960a93118846f4b09b5 / Unknown
def_skin.xml / b4be949f5ec0fa19cf30af84da55f0b4 / Unknown
shadow.png / 2f2aabb078549aba4f292b1247dcd563 / Unknown
urlword.png / ab5cb8f68599a2eb6ea9d4ef289a3055 / Unknown
closebtn.png / 7cb3443778e12ac0bfa9e75e87a175af / Unknown
images.xml / dbd593e91145e6c8668671ddf1816771 / Unknown
BtnCancle.png / ba0e820d312854897639072702187795 / Unknown
dlg_main.xml / 6365dc61deee404c13e9260b365e3b85 / Unknown
xmls.xml / 1ef7ee94ef61e8ad35fd43bc33218d21 / Unknown
strings.xml / 4ae388439bd6f2c83f657a6a85c7996a / Unknown
关键行为
行为描述:获取TickCount值
详情信息:TickCount = 5434828, SleepMilliseconds = 3000.
TickCount = 5435093, SleepMilliseconds = 3000.
进程行为
行为描述:创建本地线程
详情信息:TargetProcess: %temp%\****.exe, InheritedFromPID = 1944, ProcessID = 2460, ThreadID = 2528, StartAddress = 0042D410, Parameter = 00B04C98
行为描述:枚举进程
详情信息:N/A
文件行为
行为描述:查找文件
详情信息:FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\Local Settings
网络行为
行为描述:建立到一个指定的套接字连接
详情信息:URL: ma****om, IP: **.133.40.**:443, SOCKET = 0x000000b0
行为描述:按名称获取主机地址
详情信息:gethostbyname: ma****om
注册表行为
行为描述:修改注册表
详情信息:\REGISTRY\MACHINE\SOFTWARE\Tencent\TPS\20170526\FST
其他行为
行为描述:调用Sleep函数
详情信息:[1]: MilliSeconds = 3000.
行为描述:打开事件
详情信息:HookSwitchHookEnabledEvent
\INSTALLATION_SECURITY_HOLD
行为描述:创建事件对象
详情信息:EventName = Global\userenv: User Profile setup event
行为描述:直接操作物理设备
详情信息:\??\PhysicalDrive0
行为描述:获取TickCount值
详情信息:TickCount = 5434828, SleepMilliseconds = 3000.
TickCount = 5435093, SleepMilliseconds = 3000.
运行截图
VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

京公网安备 11010802020746号