Skip to content
TinyAntivirus is an open source antivirus engine designed for detecting polymorphic virus and disinfecting it.
Branch: master
Clone or download
quangnh89 Merge pull request #2 from bryant1410/master
Merged!. Thanks for your help.
Latest commit faea5b3 Apr 17, 2017
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
SalityKiller
TinyAvConsole
TinyAvCore Compile with /MTd instead of /MDd in Debug Configuration. Aug 19, 2016
ci/windows Compile with /MTd instead of /MDd in Debug Configuration. Aug 19, 2016
include Add AppVeyor build Jul 14, 2016
libs register zlib submodule Jul 21, 2016
tests
.gitattributes
.gitignore
.gitmodules
LICENSE update LICENSE Sep 27, 2016
README.md Fix broken Markdown headings Apr 18, 2017
TinyAntivirus.sln
appveyor.yml Build both x86 and x64 platform Jul 22, 2016

README.md

TinyAntivirus

Build status License Platform

TinyAntivirus (TinyAv) is an open source antivirus engine designed for detecting polymorphic virus and disinfecting it. Now, TinyAv can detect and disinfect Sality polymorphic virus. In the future, I will deveplop some modules for removing other polymorphic viruses, such as Virut or Polip.

License

This project is released under the GPL2 license.

Requirements

Quick start

  • Clone the repository: git clone https://github.com/develbranch/TinyAntivirus.git.
  • Build: Core engine, Console and scan module.
  • You can see Release Directory. Change the Release directory and run TinyAvConsole.exe.

Usage

TinyAvConsole.exe [options]

Option Meaning Default value
-e plug-in directory current directory
-A Archive scan depth -1 : any depth
-D scan depth -1 : any depth
-d path to scan
-p file pattern *.*
-s max file size in bytes 10 * 1024 * 1024 (10 MB)
-m Scan mode: Kill-virus (k) or Scan-only(s) Kill-virus (k)
-h Show usage

You may scan all directories and files by using default values.

Example: Scan for all files (include ZIP files) to detect and disinfect virus. ZIP files which contain virus will be deleted.

C:\build>TinyAvConsole.exe -d C:\sample
------------------------------------------------------
TinyAntivirus version 0.1
Copyright (C) 2016, Quang Nguyen. All rights reserved.
Website: http://develbranch.com
------------------------------------------------------
Scanning ...
C:\sample\calc.EXE
        W32.Sality.PE Disinfected
C:\sample\container.zip                                                 OK
C:\sample\container.zip>DiskView.exe                                    OK
C:\sample\container.zip>DMON.SYS                                        OK
C:\sample\container.zip>sub_container.zip                               OK
C:\sample\container.zip>sub_container.zip>NOTEPAD.EXE
        W32.Sality.PE Deleted
C:\sample\dbgview.chm                                                   OK
C:\sample\sub\gmer.EXE
        W32.Sality.PE Disinfected

=============================================
Scanned       : 4 file(s) (10 object(s))
Detected      : 3 file(s)
Removed       : 3 file(s)
Access denied : 0 file(s)

C:\build>

Contribute

If you want to contribute, please pick up something from our Github issues.

I also maintain a list of more problems in a TODO list.

I have only one Sality sample to develop Sality killer module. I think there are many variant types of this file infector. Please send me samples which TinyAv can not detect or other kinds of polymorphic viruses. Thank you.

Author

Quang Nguyễn

Blog: develbranch.com

You can’t perform that action at this time.