VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load

文件信息
安全评分 :86
基本信息
MD5:802b255aaab5169cc95a82f86ad2a614
文件类型:Nsis
出品公司:Aplin Software
版本:3.1.4.0---3.1.4.0
壳或编译器信息:
子文件信息:mscomctl.ocxdumpFile / 714cf24fc19a20ae0dc701b48ded2cf6 / DLL
mscomctl.ocx / 714cf24fc19a20ae0dc701b48ded2cf6 / DLL
Neo's SafeKeys v3.exedumpFile / a55addf1804cf94cf44e4b12868a4eed / EXE
Neo's SafeKeys v3.exe / a55addf1804cf94cf44e4b12868a4eed / EXE
modern-wizard.bmpdumpFile / cbe40fd2b1ec96daedc65da172d90022 / Unknown
modern-wizard.bmp / cbe40fd2b1ec96daedc65da172d90022 / Unknown
InstallOptions.dlldumpFile / 325b008aec81e5aaa57096f05d4212b5 / DLL
InstallOptions.dll / 325b008aec81e5aaa57096f05d4212b5 / DLL
[NSIS].nsidumpFile / 82b5000e431c134ec563ade8d3a6d68e / Unknown
[NSIS].nsi / 27f68bbfe1bba781e46083f751cc369f / Unknown
beep.wavdumpFile / 6bb58878bf0578b2d5d22e4ba83ff49c / Unknown
beep.wav / 6bb58878bf0578b2d5d22e4ba83ff49c / Unknown
StartMenu.dlldumpFile / a4173b381625f9f12aadb4e1cdaefdb8 / DLL
StartMenu.dll / a4173b381625f9f12aadb4e1cdaefdb8 / DLL
License.txtdumpFile / aab61fcc1f5a0f21e303fe31daa70cc3 / Unknown
License.txt / aab61fcc1f5a0f21e303fe31daa70cc3 / Unknown
ioSpecial.inidumpFile / e2d5070bc28db1ac745613689ff86067 / Unknown
ioSpecial.ini / e2d5070bc28db1ac745613689ff86067 / Unknown
关键行为
行为描述:隐藏指定窗口
详情信息:[Window,Class] = [,Button]
[Window,Class] = [Neo"s SafeKeys v3,Static]
[Window,Class] = [Neo"s SafeKeys v3 ,Static]
[Window,Class] = [,Static]
文件行为
行为描述:创建可执行文件
详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\InstallOptions.dll
行为描述:修改文件内容
详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 36
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\modern-wizard.bmp---> Offset = 0
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 124
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 33
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 43
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 60
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 277
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 329
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 384
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 392
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 404
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 225
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 353
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\ioSpecial.ini---> Offset = 726
注册表行为
行为描述:修改注册表
详情信息:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X\BaseClass
其他行为
行为描述:窗口信息
详情信息:Pid = 1252, Hwnd=0xb01de, Text = &Next >, ClassName = Button.
Pid = 1252, Hwnd=0xc01d6, Text = Cancel, ClassName = Button.
Pid = 1252, Hwnd=0xb01b0, Text = Neo"s SafeKeys v3 , ClassName = Static.
Pid = 1252, Hwnd=0xa018c, Text = Neo"s SafeKeys v3, ClassName = Static.
Pid = 1252, Hwnd=0xb0170, Text = Welcome to the Neo"s SafeKeys v3 Setup Wizard, ClassName = Static.
Pid = 1252, Hwnd=0xb01ce, Text = This wizard will guide you through the installation of Neo"s SafeKeys v3. It is recommended that you close all other applicati, ClassName = Static.
Pid = 1252, Hwnd=0xd0180, Text = Neo"s SafeKeys v3, ClassName = #32770.
行为描述:隐藏指定窗口
详情信息:[Window,Class] = [,Button]
[Window,Class] = [Neo"s SafeKeys v3,Static]
[Window,Class] = [Neo"s SafeKeys v3 ,Static]
[Window,Class] = [,Static]
行为描述:打开图片文件
详情信息:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg4.tmp\modern-wizard.bmp
行为描述:获取系统权限
详情信息:SE_LOAD_DRIVER_PRIVILEGE
运行截图
VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号