home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Shareware Overload
/
ShartewareOverload.cdr
/
windows
/
tbscan22.zip
/
TBSCAN.NEW
< prev
Wrap
Text File
|
1991-03-14
|
10KB
|
259 lines
Update report of TBSCAN.
2.2
---
Added the possibility to use response files. Response files are files
that contain a list of paths and/or filenames to be scanned. Prefix
a filename with the character '@' and TbScan will consider it being a
response file.
Added the -e option. This option makes it possible to scan memory above
the 640Kb barrier. Nice for detecting video-viruses or upper-memory-
viruses.
Added a processor type detector to the 386-version of TbScan.
The -d option now detects upper RAM and will no longer consider it as
being a DOS-ROM or Thunderbyte ROM. TbScan should now be able to
determine the corrct DOS entry point in machines with upper memory.
The -d option now also works with DOS 5.00 and Dr-DOS.
2.1a
----
When using a .PRS file TbScan did not display the correct number of
signatures. Fixed.
2.1
---
Fixed a bug introduced in version 2.0 that caused the bootsector from
large DOS partitions not being scanned sometimes.
Corrected a bug introduced in version 2.0 that caused TbScan to assume
always that the number of screen rows is 25.
TbScan now supports pre-parsed datafiles. You can create pre-parsed
datafiles by using the -p [<filename>] switch.
Added the experimental -o (optimize) switch. It can be used to merge
signatures that are more than 75% equal. It was created as a test to
enhance TbScanX (it saves memory), but it also increases the scan speed
somewhat. I did not remove the option, so have fun with it!
TbScan now finally destroys its internal data structures before
terminating, so other scanners that will be invoked later on will not
find the signatures left in memory by TbScan.
2.0
---
This release is a performance and safety upgrade.
TbScan is now even 5% faster, due to branch optimization.
Improved memory scanning. Now it is much faster!
Enhanced the run-time debugger. TbScan now uses the slower analyzis
methode less! This causes a big speed inprovement, especially when
scanning compressed files (files compressed with PkLite or LzExe).
The package now also contains TbScan.386 which is the special 80386 version
of TbScan. If you have a 80386 processor in your PC, rename TbScan.386 to
TbScan.COM. It is somewhat faster...
TbScan now checks its memory image before scanning. If the internal
CRC does not match it will not continue. Note that this safety check
is not 100% proof. That is not possible. TbScan will also check some
parts of the disk image to increase the safety.
TbScan is now more difficult to hack. Some bad guys were making money from
this free-ware scanner... The first one who succeeds to change the copyright
notice of TbScan v2.0 will get a registration key for TbScanX for free!
Added the signature file authorization check. Future signature files will
be checksummed to make sure you have an unmodified copy of it. Signatures
can still be added to the list manually if you want to. You can also
override the authorization check with the new -U option...
Added support for environment variable TBSCAN. You can use this variable to
specify default options for TbScan (like a default signature file!).
Corrected a small bug in the command line parser. The -f option now always
works as expected.
Corrected the bug that caused the machine to lock up after aborting TbScan
with Ctrl-C or Escape.
1.9
---
Fixed a minor internal bug.
1.8
---
Fixed a bug introduced in v1.7 that caused the bootsector on the default
disk to be scanned instead of the specified one. When scanning multiple
paths the bootsector of each specified path will be scanned too.
Added new commandline option -V (verbose). Use this option if you want to
see the scan offset of all files. The number specified is the offset of
the location in the file where the startup code of the executable file
has been found.
TBSCAN now also searches for hidden- and system files. Also hidden
directories will be processed.
Implemented the ** wildcard (skip an unlimited amount of garbage bytes).
Added language file support, to be used with future versions of the
Thunderbyte add-on card.
1.7
---
TBSCAN is now even 5% faster, due to an internal optimalization of
register usage!
Revision of commandline interface. New options added! Added the
possibility to specify the name of the log file, log file append-mode,
etc. It is now also possible to specify multiple scan paths like:
TBSCAN c:\ d:\test c:\utils
Look in the manual for more details, or type TBSCAN /H. The commandline
interface is backwards compatible, the old syntax is still valid.
1.6
---
Minor upgrade. Removed some little bugs and optimized some code. This
version is a little bit faster. Scanning all files for all viruses now
also uses the fast string search algorithm.
Added the announcement-sign. Lines beginning with a semi-colon followed
by a percent sign are printed on the screen. A maximum of 15 lines of
hot news in the signature file can be printed on the users screen.
Changed the *-wildcard format. The hex character following the asterisk
determines the EXACT number of bytes to be skipped, not the MAXIMUM
number of bytes to be skipped. To skip a variable amount of garbage
bytes specify also an asterisk instead of the length mark. See the
manual for more details.
TBSCAN processes now also overlay files. Overlay files are files with the
extension OV?. Since overlay files can be infected by some EXE viruses,
TBSCAN scans the overlay files for all signatures which have the EXE
flag set.
NEW!!! There is a shareware memory resident version of TBSCAN available.
It is now one time supplied with this TBSCAN release. Future versions
will be supplied seperately.
File request TBSCANX, or download the file TBSCN10.ZIP manually from our
BBS (31-85-212395), or register TBSCANX to get a fully functional
version!
NOTE: TBSCAN is still free-ware, if you sent us a register form, you
register for TBSCANX, the memory resident version.
1.5
---
TBSCAN is faster than ever! By using a faster string search algorithm
"scanning" and "tracing" are now more than twice as fast, and
"analyzing" is four (!) times faster than ever!!! Amazing...
TBSCAN now also bypasses all resident programs while reading the
bootsector and partition table with the /D option enabled. This means
that a virus can no longer fool TBSCAN by providing an unaltered copy of
the bootsector / partition table. With other words, TBSCAN searches the
BIOS entry point of the int 13h handler, and calls the BIOS directly,
just as some nasty viruses do.
For reasons of compatibility with another virus scanner, the *-wildcard
is now also supported. The signature can now contain a variable amount
of garbage bytes. See the manual for more details.
The maximum number of signatures has been increased. Now up to 500
signatures can be processed. The maxmium size of the TBSCAN.DAT file has
been increased and is now 64Kb. However, you can not increase limits
without creating other ones: TBSCAN now needs 128Kb of free memory to
operate properly. Still not a limitation at all...
This release also contains many other small improvements and little bug
fixes.
TBSCAN.DAT is no longer supplied with the program files. Download
VIRUSSIG.ZIP or TBVIRSIG.ZIP to get the most updated TBSCAN.DAT file.
1.4
---
Important upgrade!
Modified the tracing mechanism so that also viruses that have their
entry point at the end of the code are detected very well!!! Previous
versions of TBSCAN where not able to detect some viruses like the Fish
and Vacsina, except when the /A option was used.
TBSCAN now supports filenames (or wildcards) in the search path. Now it
is possible to inspect one specified file, or to inspect non-executable
files. See the manual for detailed information.
Fixed a bug that caused the results of the bootsector, partitiontable
and memory scan to be recorded incorrect in the log file (only the name
of the virus appeared).
1.3
---
TBSCAN now also checks the partition table for viruses. Previous
versions did not, because there was no reliable way to determine
whether the specified drive has a partition table. Now TBSCAN intercepts
int 13 while reading the bootsector, and determines if the sector read
by DOS is read from the first fixed disk in the system. If this is the
case TBSCAN will also read the partition table. This ensures that TBSCAN
will not screw up LAN's and other non-standard systems.
By populair demand, the /V (verbose) option has been removed. Now
TBSCAN will always print the scanned file on the screen, except when the
/Q (Quiet) option has been specified. The /Q option has been added for
those that don't want to see al their files scrolling over the screen.
For backward compatibility, the /V option will be ignored and will not
cause an error message.
The log file has been improved. Now the date of the scan, the command
line parameters, and the results are always inserted in the log file.
1.2
---
TBSCAN 1.1 was unable to read the bootsector if you use a dos 4 large
disk partition (> 32Mb). It also failed to display the error message if
it couldn't scan the bootsector. Both problems are solved.
The /M option has been reversed. If you specify this parameter, you will
get a more prompt. If you ommit the parameter, you will not.
The usage of TBSCAN by numerous people learned us that the
interpreter-mechanism is very reliable. So we removed the check of
the last part of the executable file. This caused TBSCAN to be a lot
faster, without loss of reliability.
The scan process of TBSCAN can now be aborted by the user by pressing
escape or Ctrl-C.
1.1
---
In version 1.0 the TBSCAN.DAT file will not be found if it is not in the
current directory. Now the file will be searched in the home directory
of TBSCAN.COM (Dos 3.0+).
1.0
---
Initial release of TBSCAN.