Boot Kaspersky Rescue Disk 2018 ISO from Grub2 and Grub4dos

Just like previous versions, you can boot Kaspersky Rescue Disk 2018 ISO from Grub2 and Grub4dos. It supports booting in both UEFI and Legacy modes.

Kaspersky Rescue Disk 2018

What is Kaspersky Rescue Disk? As the name implies, this is a rescue disk released by Kaspersky. It is a Linux based operating system, its previous version is based on Gentoo and the 2018 version is based on SystemRescueCd. Just like the Linux and WinPE operating systems, you can use the built-in tools to diagnose and rescue your computer.

Kaspersky Rescue Disk 2018

I used Kaspersky Rescue Disk 10 before, everything works fine. At version 2018, it supports booting in UEFI mode, but I have encountered a major problem. I have access to all the partitions, but there are not any partitions in the list so I can select and scan. I have tested and this problem does not happen on the virtual machine. Update: I have updated to the latest version and it looks like everything works.

There are many manufacturers of antivirus software also have their own rescue disk, see the list of packages supported by AIO Boot.

  • Acronis Antimalware CD
  • Antivirus Live CD
  • Anvi Rescue Disk
  • AVG Rescue CD
  • Avira Rescue System
  • Bitdefender Rescue CD
  • COMODO Resuce Disk
  • Dr.Web LiveDisk
  • ESET SysRescue Live
  • F-Secure Rescue CD
  • G DATA BootMedium
  • Kaspersky Rescue Disk
  • Norman Rescue Disk
  • PC Tools AOSS
  • Norton Bootable Recovery Tool

I personally encourage you to use these packages. When you suspect the current operating system is infected, simply shutdown, plug in and boot USB to scan.

AIO Boot now supports integration for both versions, just run AIOCreator.exe to integrate. Here I will guide you to boot Kaspersky Rescue Disk 2018 from Grub2 and Grub4dos using ISO file. You can also extract ISO files to any folder you want. Download Kaspersky Rescue Disk 2018 here.

Boot directly from ISO file

If you already have Grub2 or Grub4dos installed on your computer, you can add the Grub2 menu directly without having to create a USB boot.

  1. Copy the ISO file of Kaspersky Rescue Disk 2018 (krd.iso) to /data/krd.iso. You can put this data directory on any drive.
  2. Open the configuration file and add the following code:
    • Grub2: /AIO/Menu/Main.cfg:
      ### Start Kaspersky Rescue Disk 2018
      menuentry "Kaspersky Rescue Disk 2018" {
      	set iso_path="/data/krd.iso"
      	set lang="en"
      	# en=English; ru=Russian
      	# if [ x$lang != xru ]; then set lang=en; fi
      	# booting ${iso_path}
      	search -s root -f ${iso_path}
      	loopback loop ${iso_path}
      	if cpuid -l; then set _kernel="k-x86_64"; else set _kernel_="k-x86"; fi
      	linux	(loop)/boot/grub/${_kernel} net.ifnames=0 lang=${lang} dostartx isoloop=krd.iso
      	initrd	(loop)/boot/grub/initrd.xz
      }
      ### End Kaspersky Rescue Disk 2018
    • Grub4dos: /AIO/Menu/Grub4dos.lst:
      title Kaspersky Rescue Disk 2018
      set iso_path=/data/krd.iso
      set lang=en
      # en=English; ru=Russian
      find --set-root %iso_path%
      map %iso_path% (0xff) || map --mem %iso_path% (0xff)
      map --hook
      set _kernel=k-x86_64
      checkrange 0,1 is64bit && set _kernel=k-x86
      kernel	(0xff)/boot/grub/%_kernel% net.ifnames=0 lang=%lang% dostartx isoloop=krd.iso
      initrd	(0xff)/boot/grub/initrd.xz

Extract ISO

You can also extract the ISO file to whatever path you want. Here I will extract the KasperskyRescueDisk2018 folder on the root of the drive. Then add the menu.

  • Grub2: /AIO/Menu/Main.cfg:
    ### Start Kaspersky Rescue Disk 2018
    menuentry "Kaspersky Rescue Disk 2018" {
    	set extract_path="/KasperskyRescueDisk2018"
    	set lang="en"
    	# en=English; ru=Russian
    	# if [ x$lang != xru ]; then set lang=en; fi
    	if cpuid -l; then set _kernel="k-x86_64"; else set _kernel="k-x86"; fi
    	search -s root -f ${extract_path}/boot/grub/${_kernel}
    	linux	${extract_path}/boot/grub/${_kernel} net.ifnames=0 lang=${lang} dostartx subdir=${extract_path}/data
    	initrd	${extract_path}/boot/grub/initrd.xz
    }
    ### End Kaspersky Rescue Disk 2018
  • Grub4dos: /AIO/Menu/Grub4dos.lst:
    title Kaspersky Rescue Disk 2018
    set _path=/KasperskyRescueDisk2018
    set lang=en
    # en=English; ru=Russian
    set _kernel=k-x86_64
    checkrange 0,1 is64bit && set _kernel=k-x86
    find --set-root %_path%/boot/grub/%_kernel%
    kernel	%_path%/boot/grub/%_kernel% net.ifnames=0 lang=%lang% dostartx subdir=%_path%/data
    initrd	%_path%/boot/grub/initrd.xz

Kaspersky Rescue Disk 2018 is based on SystemRescueCd, which has a very nice feature that is backing-store. It allows you to save changes including browser data to somewhere that it supports. For Ubuntu it is called persistent mode. But there is a big problem that has arisen when I use this feature, that is, I can not update Kaspersky’s virus database. Currently they do not support this feature, but may in the future.

If you want to try this feature, simply add the parameter backstore=alldev,data.img to the linux command (or kernel). Then copy the data.img file (EXT3 format) into the data directory. The data.img file can be found in the \AIO\Tools\DATA.IMG directory of AIO Boot.

linux	${extract_path}/boot/grub/${_kernel} net.ifnames=0 lang=${lang} dostartx subdir=${extract_path}/data backstore=alldev,data.img
initrd	${extract_path}/boot/grub/initrd.xz

I tried to boot Kaspersky Rescue Disk 2018 via iPXE but failed.

Update definitions offline

Antivirus programs can define new viruses by updating the database without updating the program. Virus definitions can be easily updated through its program, but it requires an Internet connection.

Kaspersky Rescue Disk is an operating system that can run on USB and CD/DVD… And you can boot it on many other computers. Virus definitions in the ISO file you downloaded may be out of date. When you start the program, thanks to a network connection it can update the new definitions. But it does not update the file that it previously used, it will save the definition to the KRD2018_Data folder for future use. But if you boot it on a new computer that you have not updated or updated the latest database before. You need to update it again, or you will not be able to update if you do not have an Internet connection. I tried copying the KRD2018_Data folder to the USB drive but it did not work for me.

We will update the definitions manually for Kaspersky Rescue Disk 2018 by replacing its latest 005-bases.srm file. For AIO Boot users, you can find the data directory after the integration at /AIO/Files/Antivirus/krd/data.

  1. Download the 042-freshbases.srm file, rename it to 005-bases.srm and copy it to the /data/005-bases.srm path.
  2. Download the hashes.txt file, rename it to 005-bases.srm.sha512, and overwrite it with the /data/005-bases.srm.sha512 path. This is the file containing the hash of the file above, you can compare these two hashes, if different means that you are using the old version and should update.

You now have the most up-to-date virus database. Do not forget to manually update to make sure you always use the latest version even on offline computers.

You can update and repackage ISO files using mkisofs and xorriso to burn to CDs and DVDs, but the database will soon be outdated. You should attach ISOs to VirtualBox and VMware and test to make sure everything works well before burning.

Good luck!

 

Leave a Reply

Your email address will not be published. Required fields are marked *

6 thoughts on “Boot Kaspersky Rescue Disk 2018 ISO from Grub2 and Grub4dos”

  1. Hello.
    Now you can manually update bases from 042-freshbases.srm file without extract all data from ISO.
    1. Need to place krd.iso and 042-freshbases.srm, 042-freshbases.srm.sha512 to data/ dir.
    2. Also need to add parameter loadsrm to GRUB4DOS/GRUB2 kernel cmdline:
    “loadsrm=00[!5]*.srm,../../isostore/data/042-freshbases.srm”
    (where 00[!5]*.srm – we load all srm modules except 005-bases.srm and next parameter is separated by comma – relative path to the new module)
    Link:http://forum.ru-board.com/topic.cgi?forum=5&topic=48335&start=1120#7

    1. Yes, I use the ISO extract method and replace the 005-bases.srm file. Some computers will not be able to boot from the ISO of the Linux distributions, it needs to extract.

  2. I don’t like to edit anything manually, I just like to add things automatically, so what now? use version 10 till you figure out how to add version 2018 automatically also it’s important to have Kaspersky’s virus database updated, not all systems could be connected to the Internet.