VirSCAN VirSCAN

1, 你可以上传任何文件,但是文件的尺寸不能超过20兆。
2, 我们支持RAR或ZIP格式的自动解压缩,但压缩文件中不能包含超过20个文件。
3, 我们可以识别并检测密码为 'infected' 或 'virus' 的压缩文件包。

选择语言
服务器负载
Server Load

文件信息
安全评分:75
行为列表
基本信息
MD5:1bb8cf0edc0ced6426345b21d921234b
文件类型:JAR文件
出品公司:
版本:
壳或编译器信息:
子文件信息:ClassReader.class / 7de7f9ffebf9c7512152fcb2574c46f6 / Unknown
MethodWriter.class / 99cd70f208d928e97333133ebe141c92 / Unknown
Textifier.class / b0a19cdd9bf3ab1f9c1f9be4941ea334 / Unknown
ASMifier.class / f5d71dd265e373af6cdb73225a09aa01 / Unknown
CheckMethodAdapter.class / b6209cf1d1a0b783f7b5b0b8eeb0323d / Unknown
ClassWriter.class / 3a80b6f858a0555560c70ae32bf8d9ba / Unknown
GeneratorAdapter.class / 7df50c3a78315e514e3ea1bd1523ab0c / Unknown
InstructionAdapter.class / 2df8a4db577bed7362f94c1047433809 / Unknown
CheckClassAdapter.class / c6d56fbb1c01348639b5e1f20baa3b40 / Unknown
MethodNode.class / c8dcf98816c2d7cd99841b7ae0386cc0 / Unknown
ASMContentHandler.class / 2b742010dfad16b33e2744dd2e8a6f32 / Unknown
AnalyzerAdapter.class / 553583a6ebb52f0a85616fa29138ad06 / Unknown
SAXCodeAdapter.class / a428c42a53aadb3e22cfd87eef97b15a / Unknown
Processor.class / de0c1ceb512587d99631a5d5ad95dc99 / Unknown
Frame.class / 65e64e1eaccbfe93f5e190421a05f658 / Unknown
Analyzer.class / 141d3c61dea43006b76552427d9da9a6 / Unknown
Frame.class / 3d5b3ec78249fad409888a8fe39ef6a6 / Unknown
BasicVerifier.class / 029772522133aac9eb2e51405f151888 / Unknown
BasicInterpreter.class / bc7c037a61896cc643d9cdc68d6df4f7 / Unknown
进程行为
行为描述:创建本地线程
详细信息:TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2692, StartAddress = 0040A0D1, Parameter = 000366A0
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2696, StartAddress = 78AFC724, Parameter = 18C46650
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2700, StartAddress = 78AFC724, Parameter = 18C46650
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2704, StartAddress = 78AFC724, Parameter = 18C46650
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2708, StartAddress = 78AFC724, Parameter = 18C46650
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2712, StartAddress = 78AFC724, Parameter = 18D9E118
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2716, StartAddress = 78AFC724, Parameter = 18D9FBB8
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2720, StartAddress = 78AFC724, Parameter = 18C46650
TargetProcess: java.exe, InheritedFromPID = 2000, ProcessID = 2680, ThreadID = 2724, StartAddress = 78AFC724, Parameter = 18C46650
文件行为
行为描述:创建文件
详细信息:C:\Documents and Settings\Administrator\Local Settings\Temp\hsperfdata_Administrator\2680
行为描述:删除文件
详细信息:C:\Documents and Settings\Administrator\Local Settings\Temp\hsperfdata_Administrator\2680
行为描述:查找文件
详细信息:FileName = C:\Program Files\Java\jre7\bin\java.dll
FileName = C:\Program Files\Java\jre7\bin\client\jvm.dll
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\\hsperfdata_Administrator\*.*
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\\hsperfdata_Administrator\2680
FileName = C:\Program Files\Java\jre7\lib\resources.jar
FileName = C:\Program Files\Java\jre7\lib\rt.jar
FileName = C:\Program Files\Java\jre7\lib\sunrsasign.jar
FileName = C:\Program Files\Java\jre7\lib\jsse.jar
FileName = C:\Program Files\Java\jre7\lib\jce.jar
FileName = C:\Program Files\Java\jre7\lib\charsets.jar
FileName = C:\Program Files\Java\jre7\classes
FileName = C:\Program Files
FileName = C:\Program Files\Java
FileName = C:\Program Files\Java\jre7
FileName = C:\Program Files\Java\jre7\lib
其他行为
行为描述:创建事件对象
详细信息:EventName = DINPUTWINMM
行为描述:打开互斥体
详细信息:ShimCacheMutex
运行截图
VirSCAN

关于VirSCAN | 免责声明 | 联系我们 | 友情链接 | 帮助我们
计算机网络与信息安全技术研究中心
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号