RPCATCH - ROSE POLYVIR CATCHER - HEURISTIC VIRUS SCANNER
    ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ
                  Written and (C)opyright 1993-96 by ROSE
                 Ralph Roth, Finkenweg 24, D 78658 Zimmern


    SYNOPSIS

      I am the author of a German virus scanner called VirScan Plus, which
      is able to detect more than 4800 viruses. The most time I am spending
      to add detection of polymorph viruses to VirScan Plus.

      For this reason I have written RPCatch, a generic heuristic scanner
      for encrypted viruses. Later, when RPCatch is stable, the routines
      will be incorporated into VirScan Plus. RPCatch has a buildin 80386
      dissassembler as well as an code emulator and a heuristic detection
      engine to catch all those polymorph encrypted viruses.


    USAGE

      Invoking RPCatch with no parameters will result in a recursivly scan
      of the current directory. You can invoke RPCatch additionally with a
      drive statement with will result in a recursive scan from the root
      directory of the specific drive.


    PARAMETERS

        /? -?           a short help
        drive:          drive to be scanned

    E.g.:       rpcatch c:


    DETECTION RATIO

      RPCatch detects about 100% of all Tremor, TPE, MtE and DSME encrypted
      viruses.  Furthermore RPCatch detects allmost all simple encrypted
      viruses such as VCL, PS_MPC, IVP, BW or G2.

      In generally spoken, RPCatch detects about 90% of all encrypted
      viruses I have in my collection (and that's a big amount :).

      To be honest, RPCatch will also detect all encryted programs with are
      protected by programs like CryptCom, Scramble or Protect.


    REGISTRATION

      RPCatch is FREEWARE. You can support me in sending suggestions, bugs,
      money )-;, letter bombs or viruses with can not be found by RPCatch.


    REQUIREMENTS

      An 80386-SX processor and DOS 3.3 is enough...



      Greetings (and virus free time)

           Ralph Roth



      You can obtain the newest RPCATCH, DECOM & RVK version from:


            ÚÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ¿
            ³ ROSE Softwareentwicklung       ³Û
            ³ Dipl.-Ing. (FH) Ralph Roth     ³Û
            ³ Finkenweg 24                   ³Û
            ³                                ³Û
            ³ D 78658 Zimmern o. R.          ³Û
            ³                                ³Û
            ³ FAX/AB:  +49.741-32647         ³Û
            ÀÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÙÛ
              ßßßßßßßßßßßßßßßßßßßßßßßßßßßßßßßßß

    EMail: rar@fh-albsig.de
    EMail: Ralph_Roth@p2.f2101.n246.z2.fidonet.org
    Fido:  2:246/2101.2


-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: 2.6.2

mQBNAi847YIAAAECANEe8vGPyKnR0bVoMO9vEu0hD+pMItDzLSvxqWF8W8YWzZ3U
AdhzfNDKL9uEo6BY/jHAF3m8vi5T//pgOsw3QqUABRG0HVJhbHBoIFJvdGggPHJh
ckBmaC1hbGJzaWcuZGU+
=048D
-----END PGP PUBLIC KEY BLOCK-----