Embed Size (px)
Citation preview
How to work with the BitDefender Rescue CD
RESCUE CD
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
How to work with the BitDefender Rescue CD ................................................................................... 1
1. Introduction .................................................................................................................................. 3
2. Start BitDefender Rescue CD ........................................................................................................ 3
3. Antivirus Scan ............................................................................................................................... 4
3.1. Scanning using the on-screen wizard ........................................................................................ 4
3.2. Scanning only specific folders ............................................................................................... 8
3.3. Scanning from command line................................................................................................ 8
3.4. Reading the scan report ...................................................................................................... 11
4. Saving files on a memory stick .................................................................................................... 12
5. Update using cumulative.zip ...................................................................................................... 13
6. Update BitDefender over a proxy server .................................................................................... 14
6.1. Proxy configurations using the product interface ................................................................... 14
6.2. Proxy configurations using the terminal window .................................................................... 15
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
1. Introduction
The BitDefender Rescue CD is capable of scanning and disinfecting all existing hard drives before Windows starts.
The Rescue CD should be used every time the Operating System is not booting / working properly because of malware infections. This can happen if no Antivirus solution has been used on that computer.
The update of the virus signatures is made automatically, without user intervention, each time you start the BitDefender Rescue CD.
BitDefender Rescue CD can be downloaded from the following location:
http://download.bitdefender.com/rescue_cd/
2. Start BitDefender Rescue CD
Before starting the CD you will have to make sure that your computer BIOS is set up to boot off the CD.
Start your PC and place your BitDefender Rescue CD in your CD/DVD-ROM drive. Your PC should automatically detect the CD and you will get a message saying "Press any key to boot from CD". Soon as the computer starts booting from the CD your will get the following screen:
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
Boot Screen
Press Enter to boot the BitDefender Rescue CD interface in English.
The boot process might take a few minutes due to the fact that BitDefender has to download its latest virus signatures updates.
3. Antivirus Scan
3.1. Scanning using the on-screen wizard
A scan process, configured to scan all available hard-drive partitions will start automatically once the boot process has finished:
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
BitDefender Antimalware Scan – Step 1
Depending on the size of the detected partitions, the scan process might last from several minutes to several hours. The scan process can be stopped at any time by clicking the Cancel button at the lower right corner of the product interface.
The Step 2 of the scanning process will let you fix all the detected issues. You can choose an overall action to be taken for each group of issues or you can select separate actions for each issue.
Step 3 will show you the results summary:
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
BitDefender Antimalware Scan – Step 2
To view the scan logs, you can click the Log viewer link at the bottom of the BitDefender Antivirus Scanner Interface.
Click Done to exit the Antimalware Scan wizard.
In some particular cases, the Antimalware Scan Process will not start automatically after the boot process has finished (for ex.: on computers with less than 512MB RAM). To open the BitDefender Antivirus Scanner for Unices product interface you can always use the Start Scanner icon located on the desktop. The following window will open:
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
BitDefender Antivirus Scanner for Unices
Click the Update button , to download the latest virus signatures.
Use the Settings button if you need to configure a proxy for the update process.
Under Settings you will also be able to configure scan exclusions and the location of scan logs.
To start scanning the entire computer or just specific folders, click the Scanner button .
A new window will open, that will allow you to choose the scan path. Choose File System (1.) folder media (2.) and click Open (3.), to scan all detected partitions / hard drives of your computer (by default, all partitions will be mounted in the folder media):
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
Select Scan Path / Directory
3.2. Scanning only specific folders
If you want to scan a certain directory or file only, follow the steps below:
1. Browse your folders right-click a file or directory
2. Select Dir ‘folder name’ or File ‘file name’ Send to.
3. Choose BitDefender Scanner click on Start in the wizard that will pop up.
3.3. Scanning from command line
To scan an entire hard drive from command line you will have to open first a terminal as root by right clicking on the desktop and selecting the option Terminal (as root):
1.
2.
3.
1.
2.
3.
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
Contextual Menu
In the terminal window type in the following command and press Enter:
bdscan /media/hda1
In this example [hda1] represents the Linux partition name for the hard-drive.
When working with BitDefender Rescue CD, you will deal with Linux-type partition names. So, [hda1] will probably correspond to the (C:) Windows-type partition, [sda1] to the memory stick.
Usually, for an IDE HDD the logical link should point to a block device node named hda (hdb, hdc, etc.) in /dev directory, depending on the controller and jumper settings (for example, an IDE HDD from the primary controller with jumper set to slave should be seen as /dev/hdb). A Serial ATA HDD should appear as /dev/sda (/dev/sdb, /dev/sdc, etc).
Mounted partitions may be viewed with the command:
mount
In case that, for some reasons, Windows partitions haven't been mounted, you may want to view and mount them:
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
fdisk -l
in a Terminal (as root) window will show you the available partitions
mount /dev/hda1 /media/hda1
in a Terminal (as root) window will mount the /dev/hda1 partition in /media/hda1
In the below presented example, the partition to be mounted is [sda1]:
Mount Partition
If you wish to scan the entire hard drive (partition) and also save the scan report, you will have to use the following scan command:
bdscan --log=/media/hda1/report.txt /media/hda1
In this case, the scan report named report.txt will be saved in the location /media/hda1 (Windows C:\ drive).
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
Manual Scan
3.4. Reading the scan report
In order to open the saved scan report and view just the infected files and their locations, you will have to use the following command in the terminal window and hit Enter:
grep “infected” /media/hda1/report.txt
Reading the scan report
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
4. Saving files on a memory stick
To save your data from the computer to a removable device, such as an USB memory stick, just follow these steps:
1. Put the BitDefender Rescue CD in the CD drive, the memory stick into the USB drive and then restart the computer.
2. Wait until BitDefender Rescue CD finishes booting. The memory stick will appear on the desktop as [sda1]:
Memory Stick
3. Open both the hard disk [hda1] and the memory stick [sda1]. 4. Browse on the hard disk for the file or folder that you wish to save drag and drop it into a
folder on the memory stick.
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
5. Update using cumulative.zip
Double click the Update Signatures shortcut on the Desktop. At first the application will try to download the updates directly from the internet and it will show you the following message:
Update Signatures
If an internet connection will be detected, the signatures will be downloaded automatically. If the internet connection will not be detected automatically after 1-2 minutes, you will get the message in the screenshot below. Alternatively, if you know there is no internet connection available, you can press the Ctrl + C keys on your keyboard in order to stop trying to perform an automatic update and the message below will be displayed immediately:
Update Signatures - Fail
Press Enter and a new window will pop up:
Update Signatures – Load cumulative.zip
Select the 2nd option, Load cumulative.zip file from hard disk, click OK and browse for the signatures file on the hard-drive or on a memory stick, which has been connected to the computer before booting from the Rescue CD (otherwise it will not be recognized and mounted).
Once the signature update completed successfully, the message below will be displayed:
Update Successful
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
6. Update BitDefender over a proxy server
If there is a proxy server between your computer and the Internet, you will need to configure the proxy settings in BitDefender in order to be able to update the virus signatures.
You can configure the proxy settings either by using the BitDefender Antivirus for Unices product interface or from a Terminal window as root.
6.1. Proxy configurations using the product interface
To update BitDefender over a proxy just follow these steps:
1. Open BitDefender by clicking the Start Scanner icon on the desktop. 2. Click the Settings button. 3. Under the Update Settings category, check the Enable HTTP proxy box and type in the fields
below the required proxy settings:
Rescue CD
The content of this document is confidential and classified as BitDefender's Proprietary Information.
BitDefender Settings
6.2. Proxy configurations using the terminal window
To update BitDefender over a proxy just follow these steps:
4. Right -click the Desktop. The BitDefender Rescue CD contextual menu will appear. 5. Select Terminal (as root). 6. Type the command cd /ramdisk/BitDefender-scanner/etc. 7. Type the command mcedit bdscan.conf to edit this file by using GNU Midnight Commander
(mc). 8. Uncomment the following line: #HttpProxy = (just delete the # sign) and specify the domain,
username, password and server port of the proxy server. For example, the respective line must look like this:
HttpProxy = myuser:[email protected]:8080
9. Press F2 to save the current file, confirm saving, and then press F10 to close it. 10. Type the command: bdscan --update.
