Ubuntu Security :: Virus Scanner That Will Support To Detect Windows Viruses
Mar 30, 2011
I have been told that some virus scanners for linux (including but not limited to AVG, Antivira, clamAV, others) are available to ubuntu. My question is which of these still CURRENTLY support detection of WINDOWS viruses in addition to linux viruses. I would like to boot the Ubuntu live jump drive I have to scan windows machines and at least detect viruses, dont really need to repair. who knows which virus scanners compatible with ubuntu that will detect windows viruses as well
So right now I am dual booting Windows 7 and Ubuntu.Today, my landlord asked me for help because his machine is filled with virues. So first thing I did was throw it onto one of my spare sata drives and tried to clean it in windows. Got a torjan that for some reason, MS essentials wasnt able to remove. So I am now in Ubuntu trying to remove it with KlamAV, however, KlamAV doesn't seem to spot the same file right now.
So my question is, is there another good virus scanner that works? I tried AVG but it seems they don't support linux anymore, just linux server.
I have set up a virtual machine under VMware Player 3.1.2 in Debian. Operating system of this virtual machine is a Windows Server 2003. I would like to periodically test this Windows Server 2003 installation for viruses. Obvious solution would be to install an AV software under this Windows Server 2003 installation. However, I was wondering, is this possible to use NOD32 for Linux or clamav in order to test this Windows Server 2003 installation for viruses? Is NOD32 for Linux able to detect viruses inside the .vmdk file?
I would like to use my Ubuntu 9.10 Karmic system to scan and clean viruses from Windows based HDD. I have KlamAV, AVG, and AVAST. I couldn't get F-prot to work. I don't find a debian package of it and don't know how to install tar.gz and the tutorials don't help a lot. Are there other antivirus solutions which are good for cleaning Windows OS but work on Linux/WINE? I wonder if I can install antivirus software in WINE and scan with no problem the hard disks.
My machine that is running Windows XP got a virus a few months ago. Keep in mind I have NEVER used Internet Explorer.
Symptoms when CONNECTED to the internet: My volume is turned down on start-up. When the volume is on the internet explorer "clicking" noise plays frequently. In task manager there are two "iexplore.exe" processes running. As soon as I kill them they will start up again. They aren't taking up copious amounts of memory, but they are still very present. If left on for long enough pop-ups will start appearing.
Symptoms when NOT CONNECTED to the internet: None.
What I've done: I've ran a handful of the free Anti-Virus programs, e.g., AVG, ComboFix, avast!, and Malwarebytes' Anti-Malware.
I believe the name of the virus is "PC Defender 2010". This has self-installed, causing popups attempting to convince the user that there is a security flaw, and that they should upgrade to the advanced version. I have looked this up, and it is definitely a virus. The virus creates a shortcut with a target in the AppData folder named defender.exe. When I went to search for this file, after having set it to show hidden files and folder, I looked in the folder, and found nothing by the name of defender.exe. Does anyone have any ideas as to how to find this file, if it even exists, and then remove the virus all together from the computer. Ideally these solutions will be executable from Windows, as the user is rather afraid of linux.
I know that there is little need for me to install an anti-virus etc - but - I was thinking, it is a good idea to scan folders and files that I send to colleagues that run windows.Whats the best way and programme to do this? I guess I simply install an AV programme and thats it!
I believe it is a keylogger because my Facebook account has been hacked, I believe my email has as well. I heard that even if you reformat a harddrive, the virus could still sit there and apparently that is what happened to me. how to be rid of it and keep my security. I installed RKhunter and Chkrootkit. Rkhunter reports warning files while checking my filesystem. I can post a log if need be.
Lately, I've found 2-3 times an .exe file with a random name in my /home, and another data file with a random name as well. I'm a user of wine, but none of the programs that I use seems to be the cause. Last time it happened I sent it to virustotal.com, and this is the result: [URL].. So, this is clearly a virus. The two files show "nobody" in the proprietary field and "none" as group. What can I do to track down the cause? Also, telepathy-butterfly likes to hog 100% of CPU lately, and all I can do is killing it: is someone exploiting a vulnerability? if so, why the hell would he drop a win32 virus?
Let's say I have an avi file that contains a virus for ntfs windows xp sp3. I put that file on a linux ext3 partition. Then on a windows xp sp3 nfts computer, I connect to the partition over a network share via smb. I run the file within the share so the file is never physically on the windows xp sp3 computer. In this situation will the virus infect the windows xp ntfs partition?
So here is the current situation I'm in I have a 4 year old desktop that I built from the ground up that a while back got heavily infested with viruses, so much so that the OS no longer loads. I am currently trying to fix the computer by doing a clean install of Ubuntu, I have a correctly burned Ubuntu disc, however, when I go to use it I get nowhere. It will start the download(or so it appears) but then it will do nothing. It will eventually just cut the signal to my monitor. I have tried both the Install Ubuntu option and the Try Ubuntu Live Without Changing your OS options but neither will work.
I tried to ask this question in the other thread but the admin was saying to me that my other thread here [URL]..( it was not very much the subject of the thread ) People that use Unix,Mac OSX or any Linux OS all none windows do you need anti-virus program like Norton or Kaspersky? And same with firewall like ZoneAlarm and Comodo ?
Some people say you do not need a anti-virus program like Norton or Kaspersky or any firewall.Other people say you do and some say that Unix and Mac OSX have built in firewall.
And if on uses windows use ZoneAlarm or Comodo has it does alot more than windows firewall and router firewall. Note the admin saying the other thread was why windows get more malware and not very much the subject of the thread to post there.
I know that Linux has no viruses out in cyberland that affect it but would it be possible for a Micrcrap virus to wiggle through an Ubuntu partition and find its way into the Windows portion of the same hard drive on a dual boot system when the windows portion is not being used?
I have a dual boot computer. The WindowsXP "side" has been infected with a rootkit virus. So far UBUNTU has not been affected to my knowledge. I have not yet removed the virus from the WindowsXP "side". I am thinking of deleting the NTFS partition and have the computer fully dedicated to UBUNTU. Now for my question. Is there a possibility that the virus resides in the MBR and that I need to "rebuild" the MBR to actually remove the virus?
Even more extreme, should I totally re-install UBUNTU in the name of safety and precaution.
How can i download free pen drive virus scanner? I need good one? Most of computer gets attacked by viruses through flash drives or usb drives or pendrives. If we can scan and delete it before using it we can make our computer safe.
I've prepared a Samba fileserver at work without much too problems and I've prepared a batch file to mount it as z: letter on windows machine at startup.As a sad result the share gets filled with many viruses and became a vehicle of infection.
folder1 ----> folder2 and many other files and folders
folder1 has a condivision access read and write for everyone so I get no problems with passwords for all those who have access but i use ntfs security to do it read only (viruses act like if a pendrive is connected and mainly put infected files just in the "root" of it, in my case in folder 1) and then give everyone full control in folder2. I've been trying to understand how to do this but I'm quite new to linux and smb.conf really scared me. I've tried samba graphical tool which was a lot easier but I'm not able to achieve this kind of result: no need of user password for users to mount the share and no write possibilities in folder 1 and full control in folder 2.
I am a very new Linux user. My first OS is Fedora 12, which I just recently installed into my laptop. So far, I am thoroughly enjoying it. I do have a question bugging my mind though. Linux systems are known to be very safe from viruses, mainly due to programmers targeting the Windows platform. In Windows, common methods for virus infections are from infected executable files, external drives autorun... ETC.
Now my question is how do viruses spread into a Linux system? And with so few viruses known to exist for Linux systems, do I really need to be aware and take precautions for viruses (For example in Windows, disabling autorun function for external drives)?
I read some articles about viruses in Linux and about some antiviruses which work in Linux and delete Windows viruses but I still don't understand: is there any antivirus which specializes in Linux viruses? Even though there are very little of Linux viruses, I know.
I have a dual boot computer. The WindowsXP "side" has been infected with a rootkit virus. So far UBUNTU has not been affected to my knowledge. I have not yet been able to remove the virus from the WindowsXP "side". I am thinking of deleting the NTFS partition and have the computer fully dedicated to UBUNTU.
Now for my question. Is there a possibility that the virus resides in the MBR and that I need to "rebuild" the MBR to actually remove the virus? Even more extreme, should I totally re-install UBUNTU in the name of safety and precaution.
I am having some issues with 11.04. My print/fax/scanner is connected directly to the ethernet line, and 11.04 cannot detect the scanner portion through the Simple Scan program. I am using an HP Officejet 4500.
I used to be able to scan perfectly fine when using 10.10, and it just won't work anymore I have the HPLIP toolbox installed, and I can't get it to open/run!
I work at a local computer shop as a computer technician and we get many computer in daily that require external virus scans (having to take out the hard drives, sticking it in another machine) just to scan (if we're lucky we can sometimes just do it in safe mode).Now what I want to know is...
1. Is it possible to install Ubuntu to an external HDD and use it virtually anywhere I plug it in? Will it pick up the network card, graphics card, etc so I can just plug and go? (Of course there are drivers for some computers).
2. Is it possible to run a Windows oriented virus scanner on Ubuntu? I know I can use WINE to run Windows applications, but will it prove to be compliant with virus scanners as well?
3. The main reason why I want it to be able to pick up on hardware and just work is because I plan on using it for schooling / travelling as well, have all my documents etc saved on it for easy access.
I've used Ubuntu in the past on an old laptop that didn't have much memory, small HDD, and a crap processor but that was 5-6 years ago (I still have the disk they sent me for free ).
I got a new Canon LiDE 110 scanner. It's a very cheap device but the important thing is that it is listed as "completely supported" in the SANE site. I had to compile the latest SANE from sources, but I have no problems with compiling from sources, and now everything runs from the version in /usr/local/... The problem is that "scanimage -L" doesn't detect the scanner. I also don't see any scanners under /dev/... I think it might help if I pass the scanner device with the -d option to scanimage but I don't know how to find out what the device file of it is.
This is what I see with lsusb: Bus 005 Device 004: ID 1c4f:0003 SiGma Micro Bus 005 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 004 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 003 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 002 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 001 Device 007: ID 04a9:1909 Canon, Inc. Bus 001 Device 003: ID 046d:080f Logitech, Inc. Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub The scanner is on Bus 001 Device 007.