Configuring AntiVir for maximum protection

Your Ad Here

Avira AntiVir PersonalEdition Classic reliably protects your private computer against dangerous viruses, worms, Trojans and costly dialers.

More than 15 million users worldwide trust in the reliable protection of Avira AntiVir. And this is no coincidence at all: Avira has gained several awards. The product combines first-class detection rates and ease of use with a top performance that protects your computer safely and hardly burdens older PCs. - Avira


Avira AntiVir® PersonalEdition Classic is an exceptionally well built antivirus package with a rich feature set. One of the best features of AntiVir is that it is free for personal use. With this important feature, there is no reason NOT to run it, save one - the configuration can be difficult and confusing to manage for a new user to get the best configuration for maximum protection. That is where this site comes in.

It is available at Avira's free site.

This site is a How-To on setting AntiVir up for maximum protection. Here, you will find a detailed list of screen shots that describe which options need to be set and why to achieve the best results for AntiVir. I know these options work because I have been using them for about 7 years of computers around the world. I have been a programmer and security specialist since 1980.

You must have AntiVir installed on your Windows computer before continuing. It you have not done so already, then click on the above link to download AntiVir. Be sure to reboot your computer after the installation. This make sure the installation is complete and saves your configuration settings.

Once AntiVir is installed and your computer is at the desktop, you status bar will look similar to the below. You will have the AntiVir red umbrella in your tray. Right click on the red umbrella and you will see the AntiVir menu as below:

AntiVir taskbar icon

This menu is your interface to all of AntiVir's major functions.

The Activate AntiVir Guard should always be checked (turned on). This option controls the background scanning of AntiVir. You always want it scanning files you are using.

The Start AntiVir option loads the "On Demand" scanner. This allows you to manually scan any file or set of files on your hard drive.

The Configure AntiVir option is where all the settings that we are interested in are. This controls how AntiVir reacts to your environment.

The Start Update option is where you go to get updates to AntiVir. Updates cover new virus definitions and software updates to AntiVir itself.

The last two options are self explanatory. Left click on Configure AntiVir and you will get a screen similar the one below:

AntiVir Configuration

The screen you have will most likely not have all of what you see in the above. In the upper left hand corner, by the word Security, you'll see a check box called Expert mode. If it is not checked, click on the white box to check mark it. After which, your screen will resemble the above. If you see a plus sign next to the word Scanner, click on it. This will open the drop-down menu.

Left click on the Scan option. Set your options to that of the above screen.

The All files option tell AntiVir to scan all files irregardless of extension. This may outwardly seem like a waste of time, but nowadays viruses can do do hide anywhere.

The Scan boot sectors of selected drives option looks for viruses that can load themselves into the boot sector. These are nasty little buggers that won't go away easily. It most cases, formatting the hard drive won't even get rid of them.

The Scan memory option looks for viruses that may live in the RAM memory of the computer. These little buggers are crafty. If you get rid of the virus on the hard drive, if it is in memory, it can just write itself out to the hard drive again. they can also attach themselves to any emails you write. Then you'll have all your mates complaining you gave them a virus.

A "Rootkit" is usually defined as a piece of software intended to hide a resource from the user. "Resource" can be file(s), registry items or processes. Malware frequently hides their processes, registry entries and files to bypass detection by anti-virus products. -Avira

The Rootkit search on search start is considered beta, but still worth testing. Critical systems should NOT check this yet.

Now left click on the plus sign to the left of the Scan option, then left click on the Action for concern.  

AntiVir Configuration

Set your options to look like the above. The Automatic option tells AntiVir just to take care of business, no guessing around about it.

The Primary action option tells AntiVir how to take care of business. As a security specialist, there is only one real way to deal with a virus - delete the bugger! The only good virus is none at all.

That being said, now left click on the Archives option. You will see a screen like the one below:

AntiVir Configuration

Set your options to look like the ones above. You want AntiVir to scan everything, even in archives. Remember, viruses can hide anywhere. A little time here can save you a whole world of grief later.

Now click on the Heuristic option. Your screen will look like the one below.

AntiVir Configuration

Set your options to match the ones above. These options are very cut n' dry, but well worth the technobabble. They control how AntiVir handle weird file that may not yet be regarded as viruses, but just as dangerous, the 0-day or new viruses and they seem to spring up faster then weeds in an open field.

Now that we've done all that, you'll see a minus sign next to the Scan option. Left click on it and the Scan menu closes up. We're ready for the next major sector, the Guard. Left click on the plus sign to the left of the Guard option. Your screen will look like the one below:

AntiVir Configuration

Set your options to match the ones above. The Scan when reading and writing option makes sure these little buggers can't slip through the cracks. and the All files option means there's nowhere to hide!

The Local drives option keeps an eye of all of your hard drives. The Unpack runtime compressed files option means the viruses can't compress themselves or attach themselves to compressed DLLs (Windows library files) and slip through that way.

We've really messed up any places a virus could and do hide... Ain't no little buggers slipping in here...

Now click on the plus sign to the left of the Scan option. That's the Scan option the one under Guard, not Scanner. Remember, we're in the Guard section now.

Now click Heuristic option under the Guard, Scan option. You will see something like what's below:

AntiVir Configuration

Set your options to match the ones above. Like the "On Demand" scanner, the Guard can look for new viruses that have not yet been named. These little buggers are just like the ones described above and equally as nasty if not worse. This area covers the "Web Virus" types that can infect web pages and try to infect your computer from the internet. Nasty little buggers they are!

Now click on the Report option. You will then see something like what's below:

AntiVir Configuration

Set your options to match the ones above. Default reporting is fine, no need to write a book here. The Limit size option keeps AntiVir from writing novels. The Write configuration in report file option saves you some heartburn if you ever need to contact Avira for support. They always ask for the configuration options.

We're done with the Guard option, now we move on to the General option. To close the Guard option, left click on the minus sign to the left of it. Now to open the General option, left click on the plus sign next to it, then click on the Extended threat categories option.

You will now see something like what's below:

AntiVir Configuration

Click on the Select all option. Bellow is a list that explains each item and why you will want to have it checked. This is Avira's definitions of each. Any additional comments I have will be in red italic.

Dialer Certain services available in the internet have to be paid for. They are invoiced in Germany via dialers with 0190/0900 numbers (or via 09x0 numbers in Austria and Switzerland; in Germany, the number is set to change to 09x0 in the medium term). Once installed on the computer, these programs guarantee a connection via a suitable premium rate number whose scale of charges can vary widely.

The marketing of online content via your telephone bill is legal and can be of advantage to the user. Genuine dialers leave no room for doubt that they are used deliberately and intentionally by the user. They are only installed on the user’s computer subject to the user’s consent, which must be given via a completely unambiguous and clearly visible labeling or request. The dial-up process of genuine dialers is clearly displayed. Moreover, genuine dialers tell you the incurred costs exactly and unmistakably.

Unfortunately there are also dialers which install themselves on computers unnoticed, by dubious means or even with deceptive intent. For example they replace the internet user’s default data communication link to the ISP (Internet Service Provider) and dial a cost-incurring and often horrendously expensive 0190/0900 number every time a connection is made. The affected user will probably not notice until his next phone bill that an unwanted 0190/0900 dialer program on his computer has dialed a premium rate number with every connection, resulting in dramatically increased costs.

We recommend you to directly ask your telephone provider to block this number range to be immediately protected against undesired dialers (0190/0900 dialers).
Games There is a place for computer games - but it is not necessarily at work (except perhaps in the lunch hour). Nevertheless, with the wealth of games downloadable from the internet, a fair bit of mine sweeping and Patience playing goes on among company employees and civil servants. You can download a whole array of games via the Internet. Email games have also become more popular: numerous variants are circulating, ranging from simple chess to "fleet exercises" (including torpedo combats): The corresponding moves are sent to partners via email programs, who answer them.

Studies have shown that the number of working hours devoted to computer games has long reached economically significant proportions. It is therefore not surprising that more and more companies are considering ways of banning computer games from workplace computers.

In all the years I have personally run AntiVir, I have never had it flag any commercial desktop or legal internet games. For this reason, I strongly recommend trying this option. You can always turn it off later if needed. For the record, I am a hard core gamer, from WarCraft to Unreal and just about everything in the middle.
Jokes Jokes are merely intended to give someone a fright or provide general amusement without causing harm or reproducing. When a joke program is loaded, the computer will usually start at some point to play a tune or display something unusual on the screen. Examples of jokes are the washing machine in the disk drive (DRAIN.COM) or the screen eater (BUGSRES.COM).

But beware! All symptoms of joke programs may also originate from a virus or Trojan. At the very least the user, will get quite a shock or be thrown into such a panic he may do real damage.
Security Privacy Risk
 Software that maybe is able to compromise the security of your system, initiate unwanted program activities, damage your privacy or spy out your user behavior and might therefore be unwanted.
Backdoor Clients
 In order to steal data or manipulate computers, a backdoor server program is smuggled in unbeknown to the user. This program can be controlled by a third party using backdoor control software (client) via the internet or a network.
Unusual Runtime Compression Tools
 Files that have been compressed with an unusual runtime compression tool and that can therefore be classified as possibly suspicious.
Double Extension Files
 Executable files that hide their real file extension in a suspicious way. This camouflage method is often used by malware.
Phishing
Phishing, also known as brand spoofing, is an elaborate form of data theft, targeting possible clients of ISP companies, banks, online banking services, government agencies etc.
When submitting your email address on the Internet, filling in online forms, accessing newsgroups or websites, your data can be stolen by Internet crawling spiders and then used without your permission to commit fraud or other crimes.

It is important to remember that any legal and reputable business will NEVER ask for your account information via email.

Now click on the Security option. You will see a screen like the one below:

AntiVir Configuration

Set your options to match the above. Click on the OK button and AntiVir will save and start using your new settings.

Thats it! We are done!

You now have maximum protection from AntiVir and your computer will be a whole lot safer!
AntiOnline, Changing LINKS

Links to this site are welcomed!
link partners

AntiVir is a registered trademark of the Avira GmbH.

Windows is a registered trademark of the Microsoft
Corporation in the United States and other countries.
This web site is Copyright © 2007 by Robert APM Darin
All Rights Reserved.
All advertisements on this page do not reflect the views of the author.
They are only to help offset the costs of maintaining this site.