VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
硬盘修复文件DiskGenius 4.0.1简体中文版.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Basic Information
file name:硬盘修复文件DiskGenius 4.0.1简体中文版.exe
file type:EXEx86
Submission time:2019-05-16 00:04:41
Threat level:clean
MD5:f1240580ad3faba4fc2b0c6c7a6a4214
sha256:e1124775ce518f8452ab60f0d5d646a8a6068438873d3e932a0dc5cca6f1d42c
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains
ip:120.27.53.36
domain:www.diskgenius.cn
dns
type:A
request:www.diskgenius.cn
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
file name:langchs.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:1133248
MD5:5904dd6637a8dad1c3cf472f51e9ddc5
file name:hdrwvm.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:105664
MD5:58f7bcc716ec4e0375f603bf9ade4509
file name:Barray.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:64192
MD5:d2611526cd14c364ed69835a945c5e58
file name:hdrwvdi.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:72384
MD5:9ffe6a424a0a6debeaa9a5894d1774f3
file name:options.ini
file type:ISO-8859 text, with CRLF line terminators
file size:125
MD5:ec79fa39ff9f85abfeb76a6aa7f15ebf
file name:inicfg.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:89280
MD5:29aefddff74ba5adc97753d8b886c68e
file name:hdrwvhd.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:83648
MD5:75635341cedbf8bb07bf0fc5d12466ed
file name:hdrwldm.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:90304
MD5:a7083b7d3fadac28ae21b24ebe7e9f8a
file name:diskgenius.exe
file type:PE32 executable (GUI) Intel 80386, for MS Windows
file size:5211840
MD5:835f45dab7a0c43a1fcacc05f59adc8a
file name:offlinereg.exe
file type:PE32 executable (GUI) Intel 80386, for MS Windows
file size:1741976
MD5:97e6c232393a923616959240a2795d3f
file name:filetype.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:269504
MD5:51512e8cead1fa4579cbbd817a445072
file name:dgbcdx64.exe
file type:PE32+ executable (GUI) x86-64, for MS Windows
file size:96448
MD5:26feda1f01df88a22ce117f3f7f95552
file name:hdrwrd.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:71872
MD5:7568a266d8545d7fa97d857fff798056
file name:hdrwimg.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:65216
MD5:e4ab70674062dd289169dee9ba241142
file name:hdrwnt.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:104128
MD5:9ad41f9cf35789e476b768037eea2ef9
file name:dsoframer.ocx
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:236736
MD5:517f156798c8cf10b6e1e82864e33d89
file name:charset.dll
file type:PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
file size:54976
MD5:5ace08ed3d5de779680e4a5eda94f177
File process number report
Process details:共分析了2个进程
Document behavior signature report
No file behavior report detected
Static information
Section name:.text
Virtual address:0x00001000
Physical address:0x00000400
Physical size:0x00005c00
Section permissions:R-E
Section name:.rdata
Virtual address:0x00007000
Physical address:0x00006000
Physical size:0x00001200
Section permissions:R--
Section name:.data
Virtual address:0x00009000
Physical address:0x00007200
Physical size:0x00000400
Section permissions:RW-
Section name:.ndata
Virtual address:0x00024000
Physical address:0x00000000
Physical size:0x00000000
Section permissions:RW-
Section name:.rsrc
Virtual address:0x0002d000
Physical address:0x00007600
Physical size:0x00005000
Section permissions:R--
import_hash:099c0646ea7282d232219f8807883be0
time_stamp:2009-06-19 05:33:27
entry_point_section:.text
entry_point_section:.text
image_base:0x400000
entry_point:0x3291
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002d2f8
size:0x00001ca8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002efa0
size:0x00000ea8
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002fe48
size:0x000008a8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000306f0
size:0x00000568
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x00030c58
size:0x00000468
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000310c0
size:0x000002e8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000313a8
size:0x00000128
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000314d0
size:0x000001ee
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000316c0
size:0x000000e4
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000317a8
size:0x000000da
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 3 icons, 16x16, 256-colors
sublanguage:SUBLANG_ENGLISH_US
offset:0x00031888
size:0x00000068
name:RT_VERSION
language:LANG_CHINESE
filetype:DOS executable (COM)
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000318f0
size:0x0000028c
name:RT_MANIFEST
language:LANG_ENGLISH
filetype:XML document text
sublanguage:SUBLANG_ENGLISH_US
offset:0x00031b80
size:0x000003be

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号