VirSCAN VirSCAN

1, Můžete zaslat více souborů, avšak limit velikosti jednoho souboru je 20Mb.
2, VirSCAN podporuje Rar/Zip dekompresi, ale maximum je 20 souborů v archivu.
3, VirSCAN otestuje komprimované soubory, které jsou chráněné heslem 'infected' nebo 'virus'.

Jazyk
Zatížení serveru
Server Load

文件信息
安全评分 :71
基本信息
MD5:88b56e54e1d3dee2b260e6dd51cbdda9
文件类型:EXE
出品公司:
版本:1.4.0.1---1, 4, 0, 1
壳或编译器信息:COMPILER:Microsoft Visual C++ 8.0 [Debug]
子文件信息:147dumpFile / 2403d30dd72a3dfabaf4e16e3ff697da / DLL
进程行为
行为描述:创建本地线程
详情信息:TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2772, ThreadID = 2808, StartAddress = 77DC845A, Parameter = 00000000
TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2772, ThreadID = 2812, StartAddress = 4AEA7456, Parameter = 00000000
TargetProcess: %temp%\****.exe, InheritedFromPID = 2000, ProcessID = 2772, ThreadID = 2832, StartAddress = 0065E60F, Parameter = 0175C078
文件行为
行为描述:覆盖已有文件
详情信息:C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
行为描述:查找文件
详情信息:FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\\*.*
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E\*.*
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe.dump\*.*
其他行为
行为描述:创建互斥体
详情信息:CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.IOH
MSCTF.Shared.MUTEX.INK
行为描述:创建事件对象
详情信息:EventName = MSCTF.SendReceive.Event.INK.IC
EventName = MSCTF.SendReceiveConection.Event.INK.IC
行为描述:查找指定窗口
详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述:打开事件
详情信息:HookSwitchHookEnabledEvent
AtlTraceModuleManager_ProcessAddedStatic3
CTF.ThreadMIConnectionEvent.000007E8.00000000.0000000F
CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.0000000F
MSCTF.SendReceiveConection.Event.IOH.IC
MSCTF.SendReceive.Event.IOH.IC
行为描述:窗口信息
详情信息:Pid = 2772, Hwnd=0x1034e, Text = D:\yxdown\, ClassName = Edit.
Pid = 2772, Hwnd=0x1033e, Text = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe, ClassName = Afx:00400000:b:00010011:00000010:00000000.
行为描述:隐藏指定窗口
详情信息:[Window,Class] = [C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe,Afx:00400000:b:00010011:00000010:00000000]
行为描述:打开互斥体
详情信息:ShimCacheMutex
DBWinMutex
运行截图
VirSCAN

O VirSCAN | Ochrana soukromí | Kontakt | 友情链接 | Pomozte VirSCAN
Překlad strongy
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号