Skip to main content

Brighter Computer Solutions

Home & Business Computer Services

Home
About Us
Contact Us
Site Map
Member Login
Home Services
Business Services
Free Helpful Essentials
Virus Alerts
Product Reviews
Digital Concepts
Samsung SCHMX-10C
Avira Antivir Rescue CD
Kaspersky Rescue CD
Qwest DSL
xitel SOUNDaround
How To Articles
News and Events
Custom Utilities
Avira Antivir Rescue CD
 
The Avira Antivir Rescue CD is a free bootable Linux based rescue cd. It has a graphical user interface, a web update feature, and a command line option.

The image file is updated several times per day with fresh definition files, so the web update is not required in most circumstances.
Image size is relatively small compared to other packages.

Excellent heuristics and detection rate.


Cons:

Graphical user interface is unstable.
Command line interface uses German key mappings.
Refuses to work on some computers.
Less GUI configurable options than other rescue scanners.

Full Review:

I use Avira Antivir on my personal computers and recommend it to all my customers. When I heard that a bootable Linux version of their antivirus was available for free, I naturally wanted to try it out right away.
The quick scan times and great detection rates of the Windows version carry over, but the stability and usability of the environment is lacking.
*Updated 2011* Avira has changed the GUI on their rescue system. It is much more reliable than the previous version and works on many more systems.
I have found only a few computers that the graphical interface will run reliably with, and for some systems it refused to load completely, freezing the computer.
What I found is that the interface will do ok (if it proceeds past the loading process) if no options are changed. This wouldn't be a problem in my mind if the default action for detections was to rename the file rather than do nothing.
I also tried the command line scanner, using the CTRL-ALT-BACKSPACE shortcut since the 'Miscelaneous' menu would cause the GUI to crash. What I found was the German key mapping. After I solved this quick issue things seemed to work just fine, most of the time.
There are some systems that the scanner refuses to work on, even where other bootable Linux disks succeed.

Final Verdict:

A great scanner with a solid definitions base and excellent heuristics rendered unusable for the average user due to a poor environment.

This is a great rescue system that provides an uncompromised environment for virus detection and removal, especially for pesky variants of the FakeAV family.

If it works for your computer I would highly recommend it for emergency virus removal.


Practical Use:

German Keyboard Layout - Thanks WikiPedia!


Scanner Command Line Options - Press CTRL + ALT + Backspace to get the command line


Example:

antivir --scan-mode=smart --heur-macro --heur-level=3 -ren -lang=EN --alltypes [path]

Would scan with smart file extentions with maximum heuristics sensitivity for all types of unwanted software (games, dialers, etc) and display information in english.

Usageis:antivir[options][path[\*.ext]][*.ext]
where options are:
--help .......... display this help text (abbreviation: -h or -?)
--scan-mode=<mode> applies "extlist", "smart" or "all" scan methods:
extlist scans files according to their filename extension,
smart detects which files to scan from their name/content,
all scans all files regardless of their name or content
--allfiles ...... synonymous for --scan-mode=all
--version ....... show version information
--info .......... show list of recognized forms
--update ........ update antivir
--check ......... used with --update to check for updates
--temp=<dir> .... specify the directory for temporary files
--pid-dir=<dir> . specify the directory for PID files
--home-dir=<dir> location of executable, VDF and key files
-C <filename> ... name of configuration file
-s .............. scan subdirectories
--scan-in-archive files in archives will be extracted and scanned
-z .............. synonymous for --scan-in-archive (scan in archives, too)
--archive-max-size=N, --archive-max-recursion=N, --archive-max-ratio=N
anti DoS feature: do not scan archive content which would
exceed the given file size, nesting level or compression
factor limits on extraction (0 means unlimited)
--archive-max-count=N anti DoS feature: do not scan archive content which
has more than N files in a recursion level
--scan-in-mbox .. scan mailbox folders, too (might be time consuming!)
--heur-macro .... enable macro heuristics
--heur-nomacro .. disable macro heuristics
--heur-level=N .. setup heuristics level: 0=off, 1-3=low-high
-nolnk .......... do not follow symbolic links
-onefs .......... do not cross file systems while following links
-noboot ......... do not check any boot records
-nombr .......... do not check any master boot records
-nobreak ........ disable Ctl-C and Ctrl-Break
-nodef ......... do only check the given file types (eg. *.DOC)
-cf<filename> ... activate CRC check and name the database
-cv ............. calculate CRC over the whole file length (default 16k)
-cn ............. insert new files into the database
-cu ............. recalculate CRC values and update the database
-v .............. scan files completely (slower with possible false alerts)
-nopack ......... do not scan inside packed files
-e [-del | -ren] repair concerning files if possible
[-del] non-repairable files will be deleted
[-ren] non-repairable files will be renamed
-ren ............ rename concerning files (*.COM->*.XXX,...)
-del ............ delete concerning files
--moveto=<dir> .. quarantine concerning files
-dmdel .......... delete documents containing suspicious macros
-dmdas .......... delete all macros if one appears to be suspicious
-dmse ........... set exit code to 101 if any macro was found
-r1 ............. just log infections and warnings
-r2 ............. log all scanned paths in addition
-r3 ............. log all scanned files
-r4 ............. select verbose log mode
-rs ............. select single-line alert messages
-rf<filename> ... name of log file
%d = day, %m = month, %y = year (two digits each)
-ra ............. append new log data to existing file
-ro ............. overwrite existing log file
-q .............. quiet mode
-lang[:|=]DE .... use German texts
-lang[:|=]EN .... use English texts
-once ........... run only once a day
-if<dateiname> .. antivir uses the given ini file
--with-<type> ... detect other (non-virus but unwanted) software, too;
type may be e.g. "dial", "joke", "game", etc,
there is a --with-alltypes shortcut
--without-<type> like --with-<type>, but disables this type
--alltypes ...... synonymous for --with-alltypes (obsolete)
--alert-urls=<yes|no> print URL for more detailed information on alerts
--warnings-as-alerts exit with a return code as if a concerning file
had been found when warnings have been issued
--exclude=<file> exclude files or directories from scan
--log-email=<addr> send out scan report by email, too
@<rspfile> ...... read parameters from the file <rspfile>
with each option in a separate line