VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
Safety rating:84
Behavior list
Basic Information
MD5:077eeed6efe0a459641762036c2d991c
file type:7z
Production company:Telerik AD
version:1.0.0.0---1.0.0.0
Shell or compiler information:COMPILER:Microsoft Visual C++ 6.0 [Overlay]
Subfile information:Telerik.CommonInstaller.InstallerUIBase.dll / 9ff32e4cf87832102fdd21f58d2fdd98 / DLL
System.Threading.xml / d091b8c698e5502c20ea6e0ae8d12907 / Unknown
TrialInstallerHelp.xps / 8834cb86f6d4ca0fcb7f51cdbccb22a1 / zip
TelerikWebInstaller.exe / ec59b184c2f7d9461b961a47daf338ba / EXE
setup.exe / 908e24e10fd719e2cd8c9a56b3244ee0 / EXE
Newtonsoft.Json.xml / f25400fd6745c3d15e49bfa01cd168c1 / Unknown
System.Threading.dll / f5ee17938d7c545bf62ad955803661c7 / DLL
Microsoft.Practices.Unity.xml / 502f588d93d8a6d34f92892852e442a1 / Unknown
Newtonsoft.Json.dll / 5b5143c9baf239c3830fd5332ed40c7b / DLL
Telerik.CommonInstaller.Application.dll / 5d39ad6709f60905bd407f050c071bf7 / DLL
EQATEC.Analytics.Monitor.dll / d2f93c66a04453c6a1f1f3616f66cd9e / DLL
Microsoft.Deployment.WindowsInstaller.dll / 34d4a23cab5f23c300e965aa56ad3843 / DLL
Microsoft.Win32.TaskScheduler.dll / a331add639b31e59bbc66cf5d999ac05 / DLL
EQATEC.Analytics.Monitor.xml / 14a8aead9dbc30bbd0e4b636eb16cdf3 / Unknown
InstallerInfoRepository.xml / c348a52326e4864f5de0377ab0ab6320 / Unknown
Telerik.CommonInstaller.DataAccess.dll / 92a1cf1b9a7658e52baa2bc87d9e0e5a / DLL
Microsoft.Practices.Unity.dll / 6cf12122d85e800592947c99811b3824 / DLL
Telerik.CommonInstaller.DataModels.dll / 0e3a9443a3fe26335c02d7eda7ec50da / DLL
Telerik.CommonInstaller.Operations.dll / 01baedc3cb514a4fed91016dc9d6f3c9 / DLL
Key behavior
Behavior description:写权限映射文件
details:CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MKM..JPFHH
MSCTF.MarshalInterface.FileMap.MKM.B.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.C.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.D.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.E.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.F.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.G.IAGHH
MSCTF.Shared.SFM.MKM
Process behavior
Behavior description:枚举进程
details:N/A
File behavior
Behavior description:写权限映射文件
details:CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MKM..JPFHH
MSCTF.MarshalInterface.FileMap.MKM.B.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.C.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.D.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.E.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.F.JPFHH
MSCTF.MarshalInterface.FileMap.MKM.G.IAGHH
MSCTF.Shared.SFM.MKM
Behavior description:修改文件内容
details:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\ALM_B1.jpg---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\ALM_B2.jpg---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\CMS_B1.jpg---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\CMS_B2.jpg---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\DevTools_B1.jpg---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\DevTools_B2.jpg---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\Generic.jpg---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ControlPanelValidationVersions.xml---> Offset = 0
Behavior description:查找文件
details:FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\1446103145.600459.exe
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\ALM_B1.jpg
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\ALM_B2.jpg
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\CMS_B1.jpg
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\CMS_B2.jpg
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\DevTools_B1.jpg
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\DevTools_B2.jpg
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\Generic.jpg
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ControlPanelValidationVersions.xml
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\EQATEC.Analytics.Monitor.xml
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\*
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\*
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\*
Other behavior
Behavior description:创建互斥体
details:CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
MSCTF.Shared.MUTEX.MKM
Behavior description:查找指定窗口
details:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
Behavior description:窗口信息
details:Pid = 3240, Hwnd=0x302a6, Text = 确定, ClassName = Button.
Pid = 3240, Hwnd=0x302cc, Text = Can not open output file, ClassName = Static.
Pid = 3240, Hwnd=0x302a2, Text = Extraction Failed, ClassName = #32770.
Behavior description:打开图片文件
details:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\ALM_B1.jpg
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\ALM_B2.jpg
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\CMS_B1.jpg
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\CMS_B2.jpg
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\DevTools_B1.jpg
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\DevTools_B2.jpg
\DOCUME~1\ADMINI~1\LOCALS~1\Temp\7zS8ACD8747\Resources\ProductBanners\Generic.jpg
Run screenshot
VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
中国反网络病毒联盟
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号