VirSCAN VirSCAN

1, Podés SUBIR cualquier archivo de hasta 20MB.
2, VirSCAN soporta descompresión Rar/Zip de hasta 20 archivos.
3, VirSCAN puede escanear archivos comprimidos con la contraseña 'infected' o 'virus'.

Idioma
Carga del Servidor
Server Load
文件信息
安全评分 :85
基本信息
MD5:937ed9241db7828c8ecec69f08b0750c
文件类型:EXE
出品公司:洋白菜
版本:1.3.0.0---1.3.0.0
壳或编译器信息:COMPILER:Microsoft Visual Studio .NET 2005 -- 2008 -> Microsoft Corporation *
关键行为
行为描述:写权限映射文件
详情信息:CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.IHC..IBJGH
MSCTF.MarshalInterface.FileMap.IHC.B.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.C.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.D.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.E.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.F.HCJGH
MSCTF.MarshalInterface.FileMap.IHC.G.HCJGH
MSCTF.Shared.SFM.IHC
行为描述:屏蔽窗口关闭消息
详情信息:hWnd = 0x000202a2, Text = Keyinsect, ClassName = #32770.
行为描述:隐藏指定窗口
详情信息:[Window,Class] = [,ComboLBox]
文件行为
行为描述:写权限映射文件
详情信息:CiceroSharedMemDefaultS-*
MSCTF.MarshalInterface.FileMap.IHC..IBJGH
MSCTF.MarshalInterface.FileMap.IHC.B.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.C.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.D.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.E.IBJGH
MSCTF.MarshalInterface.FileMap.IHC.F.HCJGH
MSCTF.MarshalInterface.FileMap.IHC.G.HCJGH
MSCTF.Shared.SFM.IHC
其他行为
行为描述:创建互斥体
详情信息:CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
MSCTF.Shared.MUTEX.IHC
行为描述:屏蔽窗口关闭消息
详情信息:hWnd = 0x000202a2, Text = Keyinsect, ClassName = #32770.
行为描述:查找指定窗口
详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述:隐藏指定窗口
详情信息:[Window,Class] = [,ComboLBox]
行为描述:窗口信息
详情信息:Pid = 1180, Hwnd=0x202a6, Text = 1000, ClassName = Edit.
Pid = 1180, Hwnd=0x202cc, Text = 应用(&A), ClassName = Button.
Pid = 1180, Hwnd=0x202b4, Text = 退出(&E), ClassName = Button.
Pid = 1180, Hwnd=0x202b2, Text = 鼠标设置, ClassName = Button(GroupBox).
Pid = 1180, Hwnd=0x302ba, Text = 左键间隔/毫秒, ClassName = Button(CheckBox).
Pid = 1180, Hwnd=0x302bc, Text = 1000, ClassName = Edit.
Pid = 1180, Hwnd=0x302dc, Text = 右键间隔/毫秒, ClassName = Button(CheckBox).
Pid = 1180, Hwnd=0x202d6, Text = 1000, ClassName = Edit.
Pid = 1180, Hwnd=0x202c2, Text = 键盘设置, ClassName = Button(GroupBox).
Pid = 1180, Hwnd=0x202ca, Text = 增加, ClassName = Button.
Pid = 1180, Hwnd=0x202c6, Text = 按键设置, ClassName = Static.
Pid = 1180, Hwnd=0x302da, Text = 间隔时间/毫秒:, ClassName = Static.
Pid = 1180, Hwnd=0x302b8, Text = 系统设置, ClassName = Button(GroupBox).
Pid = 1180, Hwnd=0x202ae, Text = 启动/停止:, ClassName = Static.
Pid = 1180, Hwnd=0x202aa, Text = 上移, ClassName = Button.
运行截图
VirSCAN

Acerca de VirSCAN | Política de Privacidad | Contactanos | 友情链接 | Ayudá a VirSCAN
Traducido por Marcelo Ois Lagarde, Argentina
Powered By CentOSpol

京ICP备11007605号-12

京公网安备 11010802020746号