VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
Safety rating:76
Behavior list
Basic Information
MD5:8ea82ff4915aaf8d4d7ad3ef481354e9
file type:Rar
Production company:
version:
Shell or compiler information:COMPILER:Borland C++ 1999
Subfile information:HexCmp.exe / 7f162c436506f5d18336401ef15a62ce / EXE
HexCmp.chm / 80f3892627b7c689e347042abb5e0773 / Chm
Russian.lng / c4d7225ab43cfe214780f0c9f9e885c4 / Unknown
French.lng / 5cca9766e6485c2e180ebe98bf77f18e / Unknown
Italian.lng / 2ab061715042d5f88bcd2e7c020c23f2 / Unknown
German.lng / e9ca96c27acf06c53d3f9c8dc13aa3b0 / Unknown
Greek.lng / 693e99dcc6520b4f1c5d206158cda0a8 / Unknown
Polish.lng / 50332ea375ca0f5e59a4fa92c54b90f9 / Unknown
English.lng / b37b70a49d24b5bc803b350612e144a4 / Unknown
Czech.lng / c7738ac4685b2ef4ca54843422125839 / Unknown
Portuguese.lng / 66aa9e114a32fb90027e12b717347231 / Unknown
Dutch.lng / c47515698d54b60e7b8c476cfad7cd73 / Unknown
Estonian.lng / df6eda0c2c69bcb618d8f4f1df3a1973 / Unknown
Slovak.lng / 01699da7d0b504715eff9323e2d0ffee / Unknown
Koean.lng / aafcfff31ef397b4a002d44df63b22ed / Unknown
Chinese.lng / ca20f7eb9d5e5318cc2d5d0f05e5135a / Unknown
jb51.net.txt / 1a84430e677616c4c4af9d8c52a70e8a / Unknown
History.txt / dee7691870666222f6ba0f0c0ecab76f / Unknown
License.txt / 32cdac5b8962b59d800ff9dfb92cba49 / Unknown
File behavior
Behavior description:查找文件
details:FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe_7zdump\ejzbjq_jb51\fairdellhexcmp\Language\*.lng
Registry behavior
Behavior description:修改注册表
details:\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\FormLeft
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\FormTop
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarMainLeft
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarMainTop
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarDifferentLeft
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarDifferentTop
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarEqualLeft
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarEqualTop
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarSearchLeft
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarSearchTop
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarGoToLeft
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarGoToTop
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarShiftLeft
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarShiftTop
\REGISTRY\USER\S-*\Software\Fairdell\HexCmp\ToolBarHelpLeft
Other behavior
Behavior description:创建互斥体
details:CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.IOH
MSCTF.Shared.MUTEX.MJK
Behavior description:创建事件对象
details:EventName = MSCTF.SendReceive.Event.MJK.IC
EventName = MSCTF.SendReceiveConection.Event.MJK.IC
Behavior description:查找指定窗口
details:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
NtUserFindWindowEx: [Class,Window] = [MS_WINHELP,]
Behavior description:窗口信息
details:Pid = 2712, Hwnd=0x1039e, Text = Go To Equal Toolbar, ClassName = TToolBar.
Pid = 2712, Hwnd=0x1039c, Text = Go To Different Toolbar, ClassName = TToolBar.
Pid = 2712, Hwnd=0x1039a, Text = Navigation Toolbar, ClassName = TToolBar.
Pid = 2712, Hwnd=0x10398, Text = Actions Toolbar, ClassName = TToolBar.
Pid = 2712, Hwnd=0x10396, Text = Help Toolbar, ClassName = TToolBar.
Pid = 2712, Hwnd=0x10394, Text = ToolBarMenu, ClassName = TToolBar.
Pid = 2712, Hwnd=0x10392, Text = Shift Toolbar, ClassName = TToolBar.
Pid = 2712, Hwnd=0x10390, Text = Main Toolbar, ClassName = TToolBar.
Pid = 2712, Hwnd=0x30370, Text = Shift, ClassName = TStatusBar.
Pid = 2712, Hwnd=0x2037e, Text = Fairdell HexCmp2, ClassName = TMainForm.
Behavior description:打开事件
details:HookSwitchHookEnabledEvent
CTF.ThreadMIConnectionEvent.000007E8.00000000.0000000F
CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.0000000F
MSCTF.SendReceiveConection.Event.IOH.IC
MSCTF.SendReceive.Event.IOH.IC
Behavior description:枚举窗口
details:N/A
Behavior description:隐藏指定窗口
details:[Window,Class] = [,ComboLBox]
[Window,Class] = [Fairdell HexCmp2,TMainForm]
Behavior description:打开互斥体
details:ShimCacheMutex
Run screenshot
VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号