VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
Safety rating:
Behavior list
Basic Information
MD5:29705762fd015945e6ce4a2f57f43484
Package names:com.aa.generaladaptiveapps
Minimum operating environment:Android 4.0, 4.0.1, 4.0.2
copyright:Android
Key behavior
Behavior description:写权限映射文件
details:CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MBB..IBJGH
MSCTF.MarshalInterface.FileMap.MBB.B.IBJGH
MSCTF.MarshalInterface.FileMap.MBB.C.IBJGH
MSCTF.MarshalInterface.FileMap.MBB.D.IBJGH
MSCTF.MarshalInterface.FileMap.MBB.E.HCJGH
MSCTF.MarshalInterface.FileMap.MBB.F.HCJGH
MSCTF.MarshalInterface.FileMap.MBB.G.HCJGH
MSCTF.Shared.SFM.MBB
Behavior description:设置特殊文件夹属性
details:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
Behavior description:隐藏指定窗口
details:[Window,Class] = [,Afx:400000:8:10011:1900015:0]
Process behavior
Behavior description:枚举进程
details:N/A
File behavior
Behavior description:写权限映射文件
details:CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.MBB..IBJGH
MSCTF.MarshalInterface.FileMap.MBB.B.IBJGH
MSCTF.MarshalInterface.FileMap.MBB.C.IBJGH
MSCTF.MarshalInterface.FileMap.MBB.D.IBJGH
MSCTF.MarshalInterface.FileMap.MBB.E.HCJGH
MSCTF.MarshalInterface.FileMap.MBB.F.HCJGH
MSCTF.MarshalInterface.FileMap.MBB.G.HCJGH
MSCTF.Shared.SFM.MBB
Behavior description:设置特殊文件夹属性
details:C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
Behavior description:查找文件
details:FileName = C:\Documents and Settings\Administrator\Local Settings\History\History.IE5\MSHist012015082520150826\*.*
Network behavior
Behavior description:连接指定站点
details:InternetConnectA: ServerName = nrop19.com, PORT = 80
Behavior description:读取网络文件
details:hFile = 0x00000694, BytesToRead =1024, BytesRead = 1024.
Behavior description:打开HTTP请求
details:HttpOpenRequestA: nrop19.com:80/get.php?page=0&type=normal, hConnect = 0x00000690
Registry behavior
Behavior description:修改注册表
details:\REGISTRY\MACHINE\SOFTWARE\Classes\yeguang\
\REGISTRY\MACHINE\SOFTWARE\Classes\yeguang\DefaultIcon\
\REGISTRY\MACHINE\SOFTWARE\Classes\yeguang\shell\open\command\
Behavior description:修改注册表_URL协议关联
details:\REGISTRY\MACHINE\SOFTWARE\Classes\yeguang\URL Protocol
Other behavior
Behavior description:查找指定窗口
details:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
Behavior description:窗口信息
details:Pid = 784, Hwnd=0x202c2, Text = 确定, ClassName = Button.
Pid = 784, Hwnd=0x202c4, Text = 安装成功!, ClassName = Static.
Pid = 784, Hwnd=0x202d8, Text = 成功, ClassName = #32770.
Pid = 784, Hwnd=0x202d6, Text = 文件大小, ClassName = Afx:400000:b:10011:1900015:0.
Pid = 784, Hwnd=0x302dc, Text = 下载速度:0Kb/s, ClassName = Afx:400000:b:10011:1900015:0.
Pid = 784, Hwnd=0x302bc, Text = 等候下载……, ClassName = Afx:400000:b:10011:1900015:0.
Pid = 784, Hwnd=0x202a8, Text = nrop19 小高教学网宅男福利, ClassName = WTWindow.
Behavior description:隐藏指定窗口
details:[Window,Class] = [,Afx:400000:8:10011:1900015:0]
Behavior description:创建互斥体
details:CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
MSCTF.Shared.MUTEX.MBB
Behavior description:获取TickCount值
details:TickCount = 506796, SleepMilliseconds = 250.
TickCount = 506812, SleepMilliseconds = 250.
TickCount = 506890, SleepMilliseconds = 250.
TickCount = 506984, SleepMilliseconds = 250.
TickCount = 507046, SleepMilliseconds = 250.
TickCount = 507109, SleepMilliseconds = 250.
TickCount = 507125, SleepMilliseconds = 250.
TickCount = 507187, SleepMilliseconds = 250.
TickCount = 507203, SleepMilliseconds = 250.
Dynamic list behavior
Behavior description:添加View
details:[u'com.android.internal.policy.impl.PhoneWindow$DecorView@41536478', u'WM.LayoutParams{(0,0)(fillxfill) sim=#100 ty=1 fl=#1810580 pfl=0x8 wanim=0x1030001}', u'android.view.CompatibilityInfoHolder@414afa80']
Behavior description:Android运行时错误
details:E/AndroidRuntime( 1540): FATAL EXCEPTION: GLThread 83
E/AndroidRuntime( 1540): java.lang.IllegalArgumentException: No EGLConfig found!
E/AndroidRuntime( 1540): at org.andengine.opengl.view.ConfigChooser.chooseConfig(ConfigChooser.java:183)
E/AndroidRuntime( 1540): at org.andengine.opengl.view.ConfigChooser.chooseConfig(ConfigChooser.java:157)
E/AndroidRuntime( 1540): at android.opengl.GLSurfaceView$EglHelper.start(GLSurfaceView.java:1024)
E/AndroidRuntime( 1540): at android.opengl.GLSurfaceView$GLThread.guardedRun(GLSurfaceView.java:1401)
E/AndroidRuntime( 1540): at android.opengl.GLSurfaceView$GLThread.run(GLSurfaceView.java:1240)
Behavior description:读取文件
details:path:unknown length:24
Behavior description:写入文件
details:path:/data/data/com.aa.generaladaptiveapps/app_Parse/applicationId length:45
path:/data/data/com.aa.generaladaptiveapps/app_Parse/installationId length:41
path:/data/data/com.aa.generaladaptiveapps/shared_prefs/com.aa.generaladaptiveapps_preferences.xml length:113
path:/data/data/com.aa.generaladaptiveapps/shared_prefs/com.aa.generaladaptiveapps_preferences.xml length:154
path:/data/data/com.aa.generaladaptiveapps/app_Parse/currentInstallation length:44
Behavior description:初始化Intent
details:[u'com.parse.push.intent.RECEIVE']
[u'com.parse.push.intent.DELETE']
[u'com.parse.push.intent.OPEN']
[u'com.parse.push.intent.RECEIVE']
[u'com.parse.push.intent.OPEN']
[u'com.parse.push.intent.DELETE']
[u'com.android.vending.billing.InAppBillingService.BIND']
Activities
Activity nameTypes of
com.aa.generaladaptiveapps.BaseActivityandroid.intent.action.MAIN
com.aa.generaladaptiveapps.BaseActivityandroid.intent.category.LAUNCHER
Dangerous function
Function nameinformation
android/app/NotificationManager;->notify信息通知栏
ContentResolver;->query读取联系人、短信等数据库
getRuntime获取命令行环境
java/net/URL;->openConnection连接URL
java/net/URLConnection;->connect连接URL
java/net/HttpURLConnection;->connect连接URL
HttpClient;->execute请求远程服务器
Camera;->open开启相机
LocationManager;->getLastKnownLocation获取地址位置
Permission list
License nameinformation
com.android.vending.BILLING
android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
android.permission.VIBRATE允许设备震动
File List
file name Check code
META-INF/MANIFEST.MF 0x671503cf
META-INF/CERT.SF 0xf1a9164c
META-INF/CERT.RSA 0x2876bcf0
assets/gfx/medal_bronze_normal.png 0x3037abb
res/raw/gtm_analytics 0xe923cb20
assets/gfx/play_button_extralarge.png 0x4ce42371
assets/gfx/play_button_large.png 0x5d8a5651
assets/gfx/main_logo_small.png 0x26e9567b
assets/gfx/medal_blank_extraextralarge.png 0xbb71fea1
assets/gfx/medal_blank_large.png 0x3db88f4d
assets/gfx/speaker_extralarge.png 0x1eb165cd
assets/gfx/rate_button_small.png 0x3118e21f
assets/gfx/splash_screen_brand_extralarge.png 0x5ad483ae
assets/gfx/rate_button_normal.png 0xe07d86bb
assets/gfx/summary_back_small.png 0xfa6c1bfc
assets/gfx/black_circle_large.png 0x7fe7e996
res/raw/play_menu_sound.mp3 0x622bc1f
assets/gfx/medal_blank_normal.png 0x14cd64a9
res/drawable-xxxhdpi-v4/ic_launcher.png 0x303d2cee
assets/gfx/rate_button_extralarge.png 0x40377e7e
assets/gfx/speaker_extraextralarge.png 0x5c96aa12
res/raw/background_music.mp3 0x4e57b232
assets/gfx/scores_button_extralarge.png 0x96cf33b3
res/color/wallet_secondary_text_holo_dark.xml 0xa2bbaf26
assets/gfx/summary_back_large.png 0x76853d45
assets/gfx/background_circle_large.png 0x46940b27
resources.arsc 0x6c04caac
assets/gfx/share_button_extraextralarge.png 0xf7cba97e
assets/gfx/speaker_off_large.png 0xf34ed2d
assets/gfx/medal_bronze_extraextralarge.png 0x72c56525
res/drawable-ldpi-v4/svprogresshud_bg.xml 0xe3242a6
assets/gfx/medal_silver_extraextralarge.png 0x94fe8ea7
AndroidManifest.xml 0xbdb36ef1
assets/gfx/speaker_large.png 0x6b485354
res/color/common_signin_btn_text_light.xml 0x332b29e2
assets/gfx/background_circle_normal.png 0x408dda05
assets/gfx/scores_button_extraextralarge.png 0xd5d3b3a7
assets/gfx/main_logo_extraextralarge.png 0x16e19ccd
assets/gfx/main_logo_normal.png 0xc743a9bc
assets/gfx/medal_blank_small.png 0xff7cadf2
assets/gfx/main_logo_fail_extralarge.png 0xe64e0837
assets/gfx/summary_back_normal.png 0xefb0a576
assets/gfx/rate_button_extraextralarge.png 0xcd90424e
assets/gfx/black_circle_extralarge.png 0x57b67e27
assets/gfx/medal_bronze_extralarge.png 0xf2e370cd
assets/gfx/speaker_off_extraextralarge.png 0xb000b27e
assets/gfx/main_logo_success_extraextralarge.png 0x6c435c36
assets/gfx/medal_silver_normal.png 0xf39c31b1
res/layout/svprogresshud.xml 0x40b1a414
assets/gfx/main_logo_fail_small.png 0xfaba92cf
assets/gfx/play_button_extraextralarge.png 0xe56103fe
assets/gfx/speaker_off_normal.png 0x39759194
assets/gfx/main_logo_fail_normal.png 0xfaba92cf
assets/gfx/splash_screen_brand_small.png 0x7d5d4e8b
assets/gfx/medal_gold_small.png 0x9d0ba2f4
assets/gfx/scores_button_normal.png 0xd19f7112
assets/gfx/main_logo_success_extralarge.png 0x8cc701d5
assets/gfx/share_button_normal.png 0x5b619304
assets/gfx/summary_back_extralarge.png 0x677cf3e2
assets/gfx/medal_gold_normal.png 0x8c87611f
res/drawable-mdpi-v4/ic_launcher.png 0x903b19e2
res/raw/play_dot_sound.mp3 0x871ee6de
assets/gfx/main_logo_success_normal.png 0x736c190b
assets/gfx/scores_button_large.png 0x1cd41ba2
assets/gfx/main_logo_success_large.png 0x4b151768
assets/gfx/background_circle_extralarge.png 0x513bd20c
assets/gfx/speaker_off_small.png 0xcd3a9986
res/drawable-ldpi-v4/ic_launcher.png 0xd26ff185
assets/gfx/medal_bronze_small.png 0x60b32d84
assets/gfx/medal_silver_small.png 0x8271a0d0
assets/gfx/black_circle_extraextralarge.png 0x6e559007
assets/gfx/medal_gold_large.png 0xfb8a3669
assets/gfx/main_logo_fail_large.png 0x5fd48d03
assets/gfx/medal_gold_extralarge.png 0x9080acf1
assets/gfx/share_button_extralarge.png 0xdaba32b3
assets/gfx/share_button_large.png 0xc7aa97b1
assets/gfx/speaker_normal.png 0x103fc658
assets/gfx/splash_screen_brand_large.png 0x21d8b2db
res/drawable-xhdpi-v4/ic_launcher.png 0x282cc27b
assets/gfx/medal_bronze_large.png 0x54234321
assets/gfx/black_circle_small.png 0x668828b7
assets/gfx/splash_screen_brand_normal.png 0x8f7c3d38
assets/gfx/play_button_small.png 0xc7badc95
assets/gfx/black_circle_normal.png 0x62fc95f5
res/raw/play_success_sound.mp3 0x19a5039
assets/gfx/play_button_normal.png 0x48cab5d5
assets/gfx/rate_button_large.png 0x170739c
assets/gfx/speaker_small.png 0x103fc658
assets/gfx/medal_blank_extralarge.png 0xc47dfff6
assets/gfx/speaker_off_extralarge.png 0x30545a8a
res/drawable-hdpi-v4/ic_launcher.png 0x9d163d79
assets/gfx/medal_silver_extralarge.png 0xdd48411
assets/gfx/summary_back_extraextralarge.png 0xc5c197d8
assets/gfx/splash_screen_brand_extraextralarge.png 0x472ed962
assets/gfx/main_logo_large.png 0xaa0107a5
assets/gfx/scores_button_small.png 0xc2312259
assets/gfx/background_circle_extraextralarge.png 0x3241d353
res/drawable-xxhdpi-v4/ic_launcher.png 0x1c5c9fac
assets/gfx/background_circle_small.png 0x443997e0
assets/gfx/share_button_small.png 0x4e3fe871
assets/gfx/medal_silver_large.png 0x47293659
res/layout/main.xml 0xcf44cafa
assets/gfx/main_logo_fail_extraextralarge.png 0x1442140d
res/color/common_signin_btn_text_dark.xml 0x2fab4b08
assets/gfx/main_logo_extralarge.png 0x2f257ec4
res/color/wallet_primary_text_holo_light.xml 0x3079e1fe
assets/gfx/main_logo_success_small.png 0xfdd308ed
classes.dex 0xb0d00aa4
assets/gfx/medal_gold_extraextralarge.png 0xdb006041
res/raw/play_fail_sound.mp3 0xff230400
Run screenshot
VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号