Saturday, January 9, 2010

How to make your own antivirus rescue bootable USB

Project: custom antivirus rescue solution

** using a USB instead of a CD
** signatures can be updated constantly, unlike most available rescue CDs out there
; some (like Kaspersky, Bitdefender or Avira) will offer updating the signatures but will require 1) cable LAN connection to Internet, and 2) a lot of your time - more than an hour to just update the obsolete definitions in the Live CDs

What I wanted: a rewritable antivirus "Live CD" that I can update database definitions in, that I can boot up on infected Windows computers, and remove viruses.

Strategy:
1. figure out how to create a GUI-based Linux that will run in a USB drive.
2. install clamtk on that system, with ability to connect to Internet to get updates for virus signatures.


Implementation (this actually work):
1. Using the Ubuntu 9.10 Live CD, create a bootable Ubuntu USB drive (aka Live USB, instead of Live CD) -

I used a 2gb USB, formatted with a volume label and FAT32.

reference: the pendrivelinux.com site

2. Plug in the USB, change BIOS to boot from USB.

3. Connected my Sun Cellular Huawei USB modem.

4. Set up a new broadband mobile connection using the Ubuntu network manager.

5. Change APN setting of the broadband to fbband.

6. Once the Internet was alive,

- sudo apt-get update
- changed repositories to pick the best server
- sudo apt get install clamav
- set a new location in the clock (Manila)
- downloaded the deb for clamtk at the sourceforge site

7. sudo dpkg -i {deb package}

8. if error message appears (w/c happened to me),
sudo apt-get -f install

to fix the broken dependencies, and just repeat 7.


After all these, I know have a bootable USB of Ubuntu plus CLAMTK - for my own antivirus rescue solution.

No comments:

Post a Comment