Standard User's guide Antivirus Copyright © 2006 SOFTWIN Antispyware
BitDefender 9 Standard BitDefender 9 Standard User's guide SOFTWIN Published 2006.05.19 Version 9.5 Copyright © 2006 SOFTWIN Legal Notice All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage and retrieval system, without written permission from SOFTWIN, except for the inclusion of brief quotations in reviews. The content can not be modified in any way.
BitDefender 9 Standard OK, so you're a Ph.D. Just don't touch anything.
BitDefender 9 Standard
BitDefender 9 Standard Table of Contents License and Warranty . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ix Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xiii 1. Conventions used in this book . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1.1. Typographical conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1.2.
BitDefender 9 Standard 6.1.1. Virus Shield . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6.1.2. Automatic Update . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6.2. Product registration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6.3. Management console settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6.4. Events . . . . . . . . . . . . . . . . . . . .
BitDefender 9 Standard 11. LinuxDefender howto . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103 11.1. Start and stop . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11.1.1. Start LinuxDefender . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11.1.2. Stop LinuxDefender . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11.2. Configure the Internet connection . . . . . . . . . . . .
BitDefender 9 Standard viii
License and Warranty License and Warranty This License Agreement is a legal agreement between you (either an individual or a single entity end user) and SOFTWIN for use of the SOFTWIN software product identified above, which includes computer software and may include associated media, printed materials, and "online" or electronic documentation ("BitDefender"), all of which are protected by U.S. and international copyright laws and international treaty protection.
License and Warranty UPGRADES. If BitDefender is labeled as an upgrade, you must be properly licensed to use a product identified by SOFTWIN as being eligible for the upgrade in order to use the BitDefender. A BitDefender labeled as an upgrade replaces and/or supplements the product that formed the basis for your eligibility for the upgrade. You may use the resulting upgraded product only in accordance with the terms of this License Agreement.
License and Warranty DAMAGES, SO THE ABOVE LIMITATION OR EXCLUSION MAY NOT APPLY TO YOU. IN NO CASE SHALL SOFTWIN'S LIABILITY EXCEED THE PURCHASE PRICE PAID BY YOU FOR BITDEFENDER. The disclaimers and limitations set forth above will apply regardless of whether you accept or use, evaluate, or test BitDefender. IMPORTANT NOTICE TO USERS. THIS SOFTWARE IS NOT FAULT-TOLERANT AND IS NOT DESIGNED OR INTENDED FOR USE IN ANY HAZARDOUS ENVIRONMENT REQUIRING FAIL-SAFE PERFORMANCE OR OPERATION.
License and Warranty xii
Preface Preface This guide is intended to all users who have chosen BitDefender 9 Standard as a security solution for their personal computers. The information presented in this book is suitable not only for computer literates, it is accessible to everyone who is able to work under Windows. This book will describe for you BitDefender 9 Standard, the Company and the team who built it, will guide you through the installation process, will teach you how to configure it.
Preface Appearance sample code listing Description The code listing is printed with monospaced characters. 1.2. Admonitions The admonitions are in-text notes, graphically marked, bringing to your attention additional information related to the current paragraph. Note The note is just a short observation. Although you can omit it, the notes can provide valuable information, such as specific feature or a link to some related topic.
Preface Best practices. Follow the steps described in here in order to ensure a computer free from viruses&spyware. BitDefender Rescue CD. Description of the BitDefender Rescue CD. It helps understand and use the features offered by this bootable CD. Getting help. Where to look and where to ask for help if something unexpected appears. It includes a FAQ section too. Glossary. The Glossary tries to explain some technical and uncommon terms you will find in the pages of this document. 3.
Preface xvi
Product installation Product installation
Product installation
BitDefender 9 Standard installation Product installation 01 1. BitDefender 9 Standard installation The BitDefender 9 Standard installation section of this user guide contains the following topics: • • • • System requirements Installation steps Upgrade Removing, repairing or modifying BitDefender features 1.1.
01 Product installation BitDefender 9 Standard installation Installation steps 1. Click Next to continue or click Cancel if you want to quit installation. 2. Click Next to continue or click Back to return to the first step. 3. Please read the License Agreement, select I accept the terms in the License Agreement and click Next. If you do not agree with these terms click Cancel. The installation process will be abandoned and you will exit setup. 4.
BitDefender 9 Standard installation Product installation 01 • Custom - You may choose the components you want to install. Recommended for advanced users only. • Complete - For full installation of the product. All BitDefender modules will be installed. If you select Typical or Complete you will skip step 5. 5. If you have selected Custom, a new window will appear containing all the BitDefender components listed so that you may select the ones you would like to install.
01 Product installation BitDefender 9 Standard installation 1.3. Upgrade The upgrade procedure can be done in one of the following ways: • Install without removing the previous version - v8 to v9 only Double-click the setup file and follow the wizard described in the “Installation steps” (p. 19) section. Important During the installation process an error message caused by the Filespy service, will appear. Click OK to continue the installation.
BitDefender 9 Standard installation Product installation 01 To continue setup, select one of the three options listed above. We recommend that you choose Remove for a clean re-installation. After the uninstall process is over, we recommend that you delete the Softwin folder from the Program Files.
01 24 Product installation BitDefender 9 Standard installation
Description and features Description and features
Description and features
Overview Description and features 02 2. Overview BitDefender provides security solutions to satisfy the protection requirements of today's computing environment, delivering effective threat management for over 41 million home and corporate users in more than 100 countries. Designed to provide full protection for corporate network and systems, the BitDefender solution range comprises, beside antivirus protection, antispam, personal firewall and security management solutions.
02 Description and features Overview Your Ultimate Protection. The final frontier for any possible threat to your computer system. As virus detection based on code analysis has not always offered good results, BitDefender has implemented behavior based protection, providing security against newborn malware.
Description and features Overview 02 2.3. SOFTWIN Bucharest-based SOFTWIN is the leading provider of complex software solutions and services in Romania. SOFTWIN focuses on providing software solutions and services that enable fast growing companies to solve critical business challenges and to capitalize on new business opportunities. SOFTWIN enables companies to focus on their core business and expand to new markets, by outsourcing non-core activities.
02 30 Description and features Overview
BitDefender 9 Standard Description and features 03 3. BitDefender 9 Standard BitDefender 9 Standard is a powerful antivirus tool with features that best meets your security needs. Ease of use and automatic updating make BitDefender 9 Standard an "install and forget" antivirus product. 3.1. Antivirus The mission of the Antivirus module is to ensure detection and removal of all viruses in the wild.
03 Description and features BitDefender 9 Standard loading the damaged or missing files from BitDefender servers. BitDefender license owners benefit from free virus definition updates and free product upgrades. 24/7 Support. Offered online by qualified support representatives and an online database with answers to Frequently Asked Questions. Rescue Disk. BitDefender 9 Standard is delivered on a bootable CD (based on LinuxDefender), which can be used to disinfect a system without booting it.
BitDefender modules Description and features 04 4. BitDefender modules BitDefender 9 Standard contains the modules: General, Antivirus and Update. 4.1. General module BitDefender comes fully configured for maximum security. Essential status information about all the BitDefender modules is displayed in the General module. Here you can register your product and you can set the overall behavior of BitDefender. 4.2.
04 Description and features BitDefender modules • Updates for the antivirus engines - as new threats appear, the files containing virus signatures must be updated to ensure permanent up-to-date protection against them. This update type is also known as Virus Definitions Update. • Updates for the antispyware engines - new spyware signatures will be added to the database. This update type is also known as Antispyware Update.
Management console Management console
Management console
Overview Management console 05 5. Overview BitDefender 9 Standard was designed with a centralized management console, which allows the configuration of the protection options for all BitDefender modules. In other words, it is enough to open the management console in order to have access to all modules: Antivirus and Update.
05 Management console Overview • Update - in this section you can configure the Update module. On the right side of the management console you can see information regarding the section you are into. The More Help option, placed at the right bottom, opens the Help file. 5.1. System tray When the console is minimized, an icon will appear in the system tray: If you double-click this icon, the management console will open.
Management console Overview 05 Note • The icon will turn into black, if you disable one or more of the BitDefender modules. This way you will know if some modules are disabled without opening the management console. • The icon will blink when an update is available. 5.2. Scan activity bar The Scan activity bar is a graphic visualization of the scanning activity on your system. The green bars (the File Zone) show the number of scanned files per second, on a scale from 0 to 50.
05 40 Management console Overview
Management console General module 06 6. General module The General section of this user guide contains the following topics: • • • • • General information Product registration Management console settings Events About Note For more details regarding the General module check the description of the “General module” (p. 33). 6.1. General information To access this section click Status tab from the General module.
06 Management console General module General information In this section you can review information regarding the product status. To enable/disable the main BitDefender features select/clear the check boxes corresponding to them. Warning Items marked in red require your immediate attention. 6.1.1. Virus Shield It provides real-time continuous protection from viruses and other malicious threats. The number of scanned files, infected files and the date of the last system scan are displayed.
Management console General module 06 Warning We strongly recommend you a full system scan at least once a week. In order to perform a full system scan, access the Antivirus module, Virus Scan section, check Local Drives and click Scan. 6.1.2. Automatic Update New viruses are found and identified every day. This is why it is very important to keep BitDefender up to date with the latest virus signatures. It displays the date of the last update.
06 Management console General module This section contains information about the status of your BitDefender license. Here you can register the product and you can see the expiring date. The product is delivered with a trial registration key valid for thirty days. At the end of the trial period, if you want to purchase the product you have to provide a new license key. Click Buy now to get a new License Key from the BitDefender online store.
Management console General module 06 Management console settings Here you can set the overall behavior of BitDefender. By default, BitDefender is loaded at Windows startup and then runs minimized in the taskbar.
06 Management console General module Type in the password in the Password field, re-type it in the Retype password field and click OK. Enter password From now on, if you want to change the BitDefender configuration options, you will be asked to introduce the password. Important If you forgot the password you will have to repair the product in order to modify the BitDefender configuration. • Load BitDefender when Windows starts - automatically launches BitDefender at system startup.
Management console General module 06 Note This option can only be enabled or disabled by users with administrator rights on the local machine. • Enable activity bar - enables/disables the “ Scan activity bar ” (p. 39). • Choose skin - allows you to select the color of the management console. The skin represents the background image on the interface. In order to select a different skin, click the corresponding color.
06 Management console General module Events In this section all the events generated by BitDefender are displayed. There are 3 types of events: Information, Warning and Critical. Examples of events: • Information - when an e-mail was scanned; • Warning - when a suspected file was detected; • Critical - when an infected file was detected. For each event the following information are offered: the date and the time when the event occurred, a small description and its source (Antivirus or Update).
General module Management console 06 If the management console is open at the Events section and at the same time an event occurs you must click Refresh to see that event. To delete all the events from the list click Clear log. 6.5. About To access this section click About tab in the General module. In this section you can find the contact information and the product details.
06 50 Management console General module
Antivirus module Management console 07 7. Antivirus module The Antivirus section of this user guide contains the following topics: • • • • • On-access scanning On-demand scanning Scheduled scanning Quarantine Report Note For more details regarding the Antivirus module check the description of the “Antivirus module” (p. 33). 7.1. On-access scanning To access this section click Shield tab from the Antivirus module.
07 Management console Antivirus module Virus Shield In this section you can configure the Virus Shield and you can view information regarding its activity. The Virus Shield protects your computer by scanning e-mail messages, downloads and all accessed files. Note To prevent viruses from infecting your computer keep the Virus Shield enabled. In the bottom side of the section you can see the Virus Shield statistics about files and e-mail messages scanned.
Management console Antivirus module 07 The Registry is also used to define which programs should be launched automatically when Windows is started. Viruses often use this in order to be automatically launched when the user restarts his computer. Registry Control keeps an eye on the Windows Registry - this is again useful for detecting Trojan horses. It will alert you whenever a program will try to modify a registry entry in order to be executed at Windows start-up.
07 Management console Antivirus module For each application a small expandable menu will be created; it contains all the modifications to the registry. To delete a registry entry, just select it and click Delete. To temporarily deactivate a registry entry without deleting it, clear the checkbox corresponding to it. Registry access control Note BitDefender will usually alert you when you install new programs that need to run after the next startup of your computer.
Management console Antivirus module 07 7.1.3. Other settings Advanced users might want to take advantage of the scan-settings BitDefender offers. The scanner can be set to skip file extensions, directories or archives that you know to be harmless. Click Advanced >>> corresponding to Scan accessed files to explore these settings. Click the box with "+" to open an option or the box with "-" to close an option. You can observe that some scan options, although the "+" sign appears, cannot be opened.
07 Management console Option Antivirus module Description Scan user defined extensions Only the files with the extensions specified by the user will be scanned. These extensions must be separated by ";". Exclude extensions from scan The files with the extensions specified by the user will NOT be scanned. These extensions must be separated by ";". Scan inside archives The accessed archives will be scanned. With this option on, the computer will slow down.
Management console Antivirus module 07 Action Description Delete file Deletes the infected files immediately, without any warning. Move file to quarantine Move the infected files into the quarantine. The same actions as for infected files are available for suspected ones. • Do not scan files greater than - type in the maximum size of the files to be scanned.
07 Management console Antivirus module Virus Scan In this section you can configure BitDefender to scan your computer. The main objective for BitDefender is to keep your computer clean of viruses. This is first and foremost done by keeping new viruses out of your computer and by scanning your e-mail messages and any new files downloaded or copied to your system. There is a risk that a virus is already lodged in your system, before you even install BitDefender.
Management console Antivirus module 07 7.2.1. Immediate scanning To scan your computer for viruses, please follow the next steps: Step 1/5 - Close all open programs In order for BitDefender to make a complete scanning, you need to shut down all open programs. Especially your email-client (i.e. Outlook, Outlook Express or Eudora) is important to shut down.
07 Management console Antivirus module • Settings - opens a window where you can specify which files to be scanned, the action on the infected files, generating alert messages, saving scan results in report files. • Scan - launches the system scanning, taking in account the selected scan options. Besides the buttons explained above there are also some options that allow the fast selection of the scan locations. • • • • Local drives - to scan the local drives. Network drives - to scan all network drives.
Management console Antivirus module 07 The scan options are organized like an expandable menu very much like the exploring ones from Windows. Scan settings The scan options are grouped in five categories: • • • • • Virus scan options Spyware scan options Action options Report options Other options Note Click the box with "+" to open an option or the box with "-" to close an option. • Specify the type of objects to be scanned (archives, e-mail messages and so on) and other options.
07 Management console Option Antivirus module Description sys; wdm; cla; class; ovl; ole; exe; hlp; doc; dot; xls; ppt; wbk; wiz; pot; ppa; xla; xlt; vbs; vbe; mdb; rtf; htm; hta; html; xml; xtp; php; asp; js; shs; chm; lnk; pif; prc; url; smm; pdf; msi; ini; csc; cmd; bas; eml and nws. Scan user defined ex- Scans only the files with the extensions specified by the user. These extensions must be separated by tensions ";".
Management console Antivirus module Option Description Scan processes Scans processes. Scan cookies Scans cookie files. Scan registry Scans registry entries. 07 • Specify the action on infected or suspicious files. Open Action options category in order to see all possible actions on these files. Select the actions to take when an infected or a suspected file is detected. You can specify different actions for infected and suspected files. You can also select a second action if the first fails.
07 Management console Antivirus module Option Description Show all scanned files Lists all scanned files and their status (infected or not) in a report file. With this option on, the computer will slow down. Create report Report file name vs- This is an edit field that allows changing the name of the report file. Select this option and type in a file can.log new name. Limit report size to Limits the size of the report file. Type in the maximum file size.
Antivirus module Management console 07 Virus Scan While scanning, BitDefender will show you its progress and alert you if any threats are found. In the right, you can see statistics about the scanning process. Depending on the scan target, spyware and/or virus information is available. If both are available, click the corresponding tab to learn more about the spyware or virus scanning process.
07 Management console Antivirus module Note The report file is saved automatically in the Report section from the Antivirus module. An icon will appear in the system tray when a scan process is running. 7.2.2. Contextual scanning Right-click the file or folder you want scanned and select the BitDefender Antivirus v9. A report file named vscan.log will be created and you can open it from the Report section, Antivirus module. Contextual Scan 7.2.3.
Antivirus module Management console 07 In both alternative scanning (contextual and drag&drop scanning) the scan window will appear. If a virus is detected, an alert window will prompt you to select the action on the infected file. You can view the name of the file and the name of the virus.
07 Management console Antivirus module 7.2.4. Scheduled scanning To access this section click Scheduler tab from the Antivirus module. Antivirus Scheduler Since the scanning will take some time, and works best if you have closed all other programs, it is best for you to schedule the scanning at a time when you are not using your computer and it is standing idly by. This implies that the user must previously create a so-called task, job or scan event.
Management console Antivirus module 07 Note If you modify the event's name, a new event will be created, under the newly introduced name. • Delete - deletes a selected task. • Properties - opens the properties of the selected task. • Run Now - runs the selected task. The Scheduler's screen also contains a list where all the scan tasks can be seen, with their names, the date of the first execution, the date of the next execution and the task's type (periodically or one time only).
07 Management console Antivirus module Step 1/9 - Welcome Window Intro Type in the name of the new event in the Event name field and a short description in the Event description field. The following options are available: • Run the task with Low priority - Decreases the priority of the scan process. You will allow other programs to run faster and increase the time needed for the scan process to finish. • Minimize scan window on start - Minimizes the scan window to system tray.
Antivirus module Management console 07 Step 2/9 - Start Time/Date Start Time/Date Select the scan frequency: • Once - launches the scan only once, at a certain moment. • Periodically - launches the scan periodically, at certain time intervals(hours, days, weeks, months, years) starting with a specified date and time.
07 Management console Antivirus module Step 3/9 - Target Objects Target Objects Select the objects you want to be scanned. The scan target is divided into two categories: • Scan for viruses - scans for viruses. Note Select the corresponding check box in order to set the virus scan target. The following options are available: Option Description Boot Scans the system’s boot sector in order to identify the boot viruses. Files Scans files.
Management console Antivirus module 07 Note Select the corresponding check box in order to set the spyware scan target. The following options are available: Option Description Cookies Scans cookie files. Registry Scans registry entries. Memory Scans memory. To enable/disable a scan target select/clear the corresponding check box. Click Back to go to the previous step or click Next to continue the wizard. Step 4/9 - Target Path Target Path Specify the path to the objects that will be scanned.
07 Management console Antivirus module Also, in order to select the locations to be scanned, you can use the fast-selection options placed on the topside of the window: • Local drives - scans all local drives; • Network drives - scans all network drives. Click Back to go to the previous step or click Next to continue the wizard. Step 5/9 - File Mask File Mask Specify the types of the files that will be scanned. This step is necessary if you have selected to scan files in the third step.
Antivirus module Management console 07 Step 6/9 - Analysis Type Analysis Type Select the scan type: • Non Heuristic - means scanning the files with the procedure based on known virus signatures; • Heuristic - represents a method based on certain algorithms, whose aim is to identify new unknown viruses. Occasionally, it may report a suspicious code in normal programs, generating the so-called "false positive".
07 Management console Antivirus module Step 7/9 - Action Mode Action Mode BitDefender allows selecting two actions in case an infected or a suspected file is found. Select the actions for infected and suspected files. 76 Action Description None (log objects) No action will be taken on infected files. These files will appear in the report file. Prompt user for action When an infected file is detected, a window will appear prompting the user to select the action on that file.
Management console Antivirus module 07 Action Description Move files to quarantine Moves the infected files into the quarantine zone. When the virus is in quarantine it can't do any harm. Note We recommend you to select the first action Disinfect files and the second action Move to quarantine. The same actions as for infected files are available for suspected ones. Click Back to go to the previous step or click Next to continue the wizard.
07 Management console Antivirus module Note The report files can be seen in the Report section from the Antivirus module. Click Back to go to the previous step or click Next to continue the wizard. Step 9/9 - Summary Summary This is the last step of the wizard. In this window you can view all the settings for the new scan event and you can make any changes, by returning to the previous steps (Back). If you do not want to make any modifications, click Finish.
Antivirus module Management console 07 Quarantine BitDefender allows isolating the infected or suspicious files in a secure area, named quarantine. By isolating these files in the quarantine, the risk of getting infected disappears and, at the same time, you have the possibility to send these files for further analysis to the BitDefender lab. The component that ensures the administration of the isolated files is Quarantine.
07 Management console Antivirus module • Add - adds files to quarantine. Use this button to quarantine a file you suspect of being infected. A window will open and you can select the file from its location on the disk. This way the file is copied to quarantine. If you want to move the file in the quarantine zone you must select the checkbox corresponding to Delete from original location. A quicker method to add suspicious files to the quarantine is to drag&drop them in the quarantine list.
Antivirus module 07 Management console • Limit the size of quarantine folder - maintains under control the size of the quarantine. This option is enabled by default and its size is 12000 kB. If you want to change this value type in a new one in the corresponding field.
07 Management console Antivirus module Report The Report section contains a list of all the report files generated so far. Every file has enclosed its name, size and the date of the last modification. When launching a scan process, the user has the possibility to opt for creating a report file where he can see information about the scan process. The user may open these reports from the management console. BitDefender will keep track of its own activity on your computer.
07 Management console Antivirus module • Delete - deletes the selected report file. • Refresh - refreshes the Report section. If the management console is open at the Report section and in the meantime you perform a scan of your computer, the new report file with the scan results will be visible only after you click Refresh. • Browse - opens a window from where you can select the report files you want to see. Note The report files are by default saved in the folder where BitDefender is installed.
07 84 Management console Antivirus module
Management console Update module 08 8. Update module The Update section of this user guide contains the following topics: • Automatic update • Manual update • Update settings Note For more details regarding the Update module check the description of the “Update module” (p. 33). 8.1. Automatic update To access this section click Update tab from the Update module.
08 Management console Update module Automatic Update If you are connected to the Internet through broadband or DSL, BitDefender takes care of this itself. It checks for updates when you turn on your computer and every hour after that. If an update was detected, depending on the options set in the Automatic update options section, you will be asked to confirm the update or the update will be made automatically. The automatic update can also be done anytime you want by clicking Update Now.
Management console Update module 08 8.2. Manual update This method allows installing the latest virus definitions. To install a product upgrade of the latest version use the Automatic update. Important Use the manual update when the automatic update can not be performed or when the computer is not connected to the Internet. There are 2 ways to perform the manual update: • With weekly.exe file; • With zip archives. 8.2.1. Manual update with weekly.exe The update package weekly.
08 Management console Update module • daily.zip is released each day and it includes all the virus definitions and scan engines updates since the last cumulative and up to the current date. BitDefender uses a service-based architecture. Because of this the procedure to replace the virus definitions is different depending on the operating system: • Windows NT-SP6, Windows 2000, Windows XP. • Windows 98, Windows Millennium. Windows NT-SP6, Windows 2000, Windows XP Steps to be followed: 1.
Update module Management console 08 • Start BitDefender Virus Shield service. Select BitDefender Virus Shield service from the list and click Start. • Open BitDefender management console. Windows 98, Windows Millennium Steps to be followed: 1. Download the appropriate update. If it is Monday, please download the cumulative.zip and save it somewhere on your disk when prompted. Otherwise please download the daily.zip and save it on your disk.
08 Management console Update module Update Settings The updates can be performed from the local network, over the Internet, directly or through a proxy server. The window with the update settings contains 4 categories of options (Update location settings, Automatic update options, Manual update settings and Advanced options) organized in an expandable menu, similar to the ones from Windows. Note Click the box labeled "+" to open a category or click the one labeled "-" to close it. 8.3.1.
Management console Update module 08 • Update location - If you are connected to a local network that has BitDefender virus signatures placed locally, you can change the location of the updates here. By default this is: http://upgrade.bitdefender.com. • Use proxy - In case the company uses a proxy server check this option. The following settings must be specified: • Proxy sets - type in the IP or the name of the proxy server and the port BitDefender uses to connect to the proxy server.
08 Management console Update module 8.3.3. Manual update settings • Silent update - the manual update will be made automatically in background. • Ask before download - every time you perform a manual update you will asked before downloading and installing the updates. Important If you select Ask before download and you close&exit the management console the manual update will not be performed. 8.3.4.
Best practices Best practices
Best practices
Best practices Best practices 09 9. Best practices The Best practices section of this user guide contains the topic: • Antivirus 9.1. Antivirus Steps to be followed in order to ensure a virus&spyware-free computer: 1. After the installation process is over, please register your product, as described in the “Product registration” (p. 43) section 2. Perform an update by user request of your virus&spyware signatures as described in the “Automatic update” (p. 85) section. 3.
09 96 Best practices Best practices
BitDefender Rescue CD BitDefender Rescue CD BitDefender 9 Standard comes with a bootable CD (BitDefender Rescue CD based on LinuxDefender) capable to scan and disinfect all existing hard drives before your operating system starts. You should use BitDefender Rescue CD any time your operating system is not working properly because of virus infections. That usually happens when you don't use an antivirus product.
BitDefender Rescue CD
BitDefender Rescue CD Overview 10 10. Overview LinuxDefender is a BitDefender re-mastered Knoppix distribution, which integrates the latest BitDefender for Linux security solution into the GNU/Linux Knoppix Live CD, offering instant SMTP antivirus/antispam protection and a desktop antivirus which is capable to scan and disinfect existing hard drives (including Windows NTFS partitions), remote Samba/Windows shares or NFS mount points.
10 BitDefender Rescue CD Overview CD-ROM LinuxDefender runs from a CD-ROM, therefore a CD-ROM and a BIOS capable to boot from it is required. Internet connection Although LinuxDefender will run with no Internet connection, the update procedures will require an active HTTP link, even through some proxy server. Therefore, for an up to date protection, the Internet connection is a MUST. Graphical resolution A graphical resolution of 800x600 at least is recommended for the web-based administration. 10.
Overview BitDefender Rescue CD 10 10.4.1. BitDefender SMTP Proxy BitDefender for Linux Mail Servers - SMTP Proxy is a secure content inspection solution, which provides antivirus and antispam protection at the gateway level, by scanning all e-mail traffic for known and unknown malware. As a result of a unique proprietary technology, BitDefender for Mail Servers is compatible with the majority of existing e-mail platforms and "RedHat Ready" certified.
10 102 BitDefender Rescue CD Overview
LinuxDefender howto BitDefender Rescue CD 11 11. LinuxDefender howto 11.1. Start and stop 11.1.1. Start LinuxDefender To start the CD, set up the BIOS of your computer to boot off the CD, put the CD in the drive and reboot the computer. Make sure that your computer can boot from CD. Wait until the next screen shows up and follow the on-screen instructions to start LinuxDefender. Boot splash screen Press F2 for detailed options. Press F3 for detailed options in German.
11 BitDefender Rescue CD LinuxDefender howto The Desktop 11.1.2. Stop LinuxDefender To properly exit from LinuxDefender it's recommended to unmount all mounted partitions using umount command or by right-clicking the partition icons on the desktop and select Unmount. Then you can safely shut down your computer by selecting Exit from the LinuxDefender menu (right-click to open it) or by issuing the halt command in a terminal.
BitDefender Rescue CD LinuxDefender howto 11 When LinuxDefender has succesfully closed all programs it will show a screen like the following image. You may remove the CD in order to boot from your hard drive. Now it's ok to turn off your computer or to reboot it. Wait for this message when shutting down 11.2. Configure the Internet connection If you're in a DHCP network and you have an ethernet network card, the Internet connection should already be detected and configured.
11 BitDefender Rescue CD LinuxDefender howto 11.3. BitDefender update The BitDefender packages for LinuxDefender are using the system's ramdisk for updatable files. This way, you can update all virus signatures, scanning engines or antispam databases, even if you're running the system from a read-only media, as the LinuxDefender CD. Make sure that you have a working Internet connection. First open BitDefender Remote Admin and select Live! Update from the left menu.
LinuxDefender howto BitDefender Rescue CD 11 To add support for NTFS partitions, you have to install the NTFS drivers first, from your hard drives, remote shares, USB sticks or from Windows Update. It's recommended to use the drivers from a known-safe location because the local drivers from the Windows host may be virused or corrupted. Double-click Install NTFS Write Drivers desktop icon to run the BitDefender Captive NTFS Installer.
11 BitDefender Rescue CD LinuxDefender howto 11.5.1. Prerequisites You'll need a PC with Pentium 3 compatible CPU or newer, at least 256MB of RAM and a CD/DVD drive to boot from. The LinuxDefender system will have to receive the SMTP traffic instead of the real mail server. There are several ways to make this setup. 1. Change the IP of your real mail server and assign the old IP to the LinuxDefender system 2.
BitDefender Rescue CD LinuxDefender howto 11 with the word [SPAM]. An email header (X-BitDefender-Spam: Yes/No) is added to all emails to ease the client-side filtering. 11.6. Perform a network security audit Beside its anti-malware, data recovery and mail filtering capabilities, LinuxDefender comes with a set of tools that perform an in-depth host & network security audit. Forensics analysis of compromised systems is also possible using the security tools included into LinuxDefender.
11 BitDefender Rescue CD LinuxDefender howto Click the Target selection tab and enter the computer IP or hostnames you want to scan for vulnerabilities. Make sure you customize all scan options according to your nework or system configuration before you start the scan in order to save tons of bandwidth and resources and have a more accurate scan result. Then click Start the scan. When the scan process is complete, Nessus displays the findings and the recommendations.
Getting help Getting help
Getting help
Getting help Support 12 12. Support 12.1. Support Department As a valued provider, SOFTWIN strives to provide its customers with an unparalleled level of fast and accurate support. The Support Center (which you can contact at the address indicated below) continually keeps up with the latest threats. This is where all your questions are answered in due time.
12 Getting help Support 12.3. Contact information Efficient communication is the key to a successful business. During the past 10 years SOFTWIN has established an unquestionable reputation by constantly striving for better communication so as to exceed the expectations of our clients and partners. Should you have any questions, do not hesitate to contact us. 12.3.1. Web Addresses Sales department: Technical support:
Getting help Support 12 Spain Constelación Negocial, S.L C/ Balmes 195, 2ª planta, 08006 Barcelona Soporte técnico: Ventas: Phone: +34 932189615 Fax: +34 932179128 Sitio web del producto: http://www.bitdefender-es.com U.S.A BitDefender LLC 6301 NW 5th Way, Suite 3500 Fort Lauderdale, Florida 33308 Technical support: Sales:
12 116 Getting help Support
Frequently Asked Questions Getting help 13 13. Frequently Asked Questions 1. General Q: How can I tell if BitDefender is actually working? A: In the General module, access the Status section and look at the statistics. Q: What are the system requirements? A: You will find them in the “System requirements” (p. 19) section. Q: How do I uninstall BitDefender? A: The removing procedure is described in the “Removing, repairing or modifying BitDefender features” (p. 22) section.
13 Getting help Frequently Asked Questions Q: What happens with the files from the quarantine zone? A: You can send these files to the BitDefender Labs in order to be analyzed, but first you must specify the e-mail settings (access the Quarantine section and click Settings). 3. Update 118 Q: Why is it necessary to update BitDefender? A: Every time you perform an update new virus signatures will be added to the scan engines and new antispyware signatures will be added to the database.
Glossary Glossary ActiveX ActiveX is a model for writing programs so that other programs and the operating system can call them. ActiveX technology is used with Microsoft Internet Explorer to make interactive Web pages that look and behave like computer programs, rather than static pages. With ActiveX, users can ask or answer questions, use push buttons, and interact in other ways with the Web page. ActiveX controls are often written using Visual Basic.
Glossary disks, the boot sector also contains a program that loads the operating system. Boot virus A virus that infects the boot sector of a fixed or floppy disk. An attempt to boot from a diskette infected with a boot sector virus will cause the virus to become active in memory. Every time you boot your system from that point on, you will have the virus active in memory. Browser Short for Web browser, a software application used to locate and display Web pages.
Glossary Download To copy data (usually an entire file) from a main source to a peripheral device. The term is often used to describe the process of copying a file from an online service to one's own computer. Downloading can also refer to copying a file from a network file server to a computer on the network. E-mail Electronic mail. A service that sends messages on computers via local or global networks. Events An action or occurrence detected by a program.
Glossary For example, even though applets run on the client, they cannot read or write data onto the client's machine. Additionally, applets are further restricted so that they can only read and write data from the same domain that they are served from. Macro virus A type of computer virus that is encoded as a macro embedded in a document. Many applications, such as Microsoft Word and Excel, support powerful macro languages.
Glossary Phishing The act of sending an e-mail to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft. The e-mail directs the user to visit a Web site where they are asked to update personal information, such as passwords and credit card, social security, and bank account numbers, that the legitimate organization already has.
Glossary transmits that information in the background to someone else. Spyware can also gather information about e-mail addresses and even passwords and credit card numbers. Spyware's similarity to a Trojan horse is the fact that users unwittingly install the product when they install something else. A common way to become a victim of spyware is to download certain peer-to-peer file swapping products that are available today.
Glossary The term comes from a story in Homer's Iliad, in which the Greeks give a giant wooden horse to their foes, the Trojans, ostensibly as a peace offering. But after the Trojans drag the horse inside their city walls, Greek soldiers sneak out of the horse's hollow belly and open the city gates, allowing their compatriots to pour in and capture Troy. Update A new version of a software or hardware product designed to replace an older version of the same product.
Glossary 126
