Otdfbt

What are the implications when matrix's lowest eigenvalue is equal to 0?

Was Self-modifying-code possible just using BASIC?

Are polynomials with the same roots identical?

What is the logic behind charging tax _in the form of money_ for owning property when the property does not produce money?

Does a bank have to tell me if a check made out to me was cashed there?

How can one's career as a reviewer be ended?

Is using 'echo' to display attacker-controlled data on the terminal dangerous?

tabular: caption and align problem

bash vs. zsh: What are the practical differences?

What is the Leave No Trace way to dispose of coffee grounds?

Analogy between an unknown in an argument, and a contradiction in the principle of explosion

Did Apple bundle a specific monitor with the Apple II+ for schools?

What aircraft was used as Air Force One for the flight between Southampton and Shannon?

How to avoid typing 'git' at the begining of every Git command

Ability To Change Root User Password (Vulnerability?)

Please figure out this Pan digital Prince

What would prevent chimeras from reproducing with each other?

Is it safe to change the harddrive power feature so that it never turns off?

Arduino wrap or Subclass print() to work with multiple Serial

Why are MBA programs closing in the United States?

Does the new finding on "reversing a quantum jump mid-flight" rule out any interpretations of QM?

What is the energy payback time of solar panels, in hours?

Why Does Mama Coco Look Old After Going to the Other World?

Who is "He that flies" in Lord of the Rings?

How to scan for Windows viruses on Linux servers?

How to configure “On-Access Anti-Virus” for a faster boot?Better antivirus for Windows Server 2008 R2 x64 VPS1 Linux Backup server - 4 linux servers, 3 Windows servers - how to backup?Anti-Malware Antivirus for Linux Web Server?How do I get Jenkins running on Linux to communicate with Windows servers?

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;

5

1

I have a CentOS server storing files for windows users.

How do I scan for windows viruses in these files, and meanwhile prevent quarantine and other measures?

I do not want the files altered in any way, and would prefer if it can be done purely in command line with parsable results.

The antivirus we have a license for is Kaspersky Endpoint Security.
That is the preferred antivirus, but the question applies to Linux Anti-viruses in general.

linux windows centos anti-virus malware

share|improve this question

asked Oct 12 '16 at 22:39

DannyZBDannyZB

18917

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Did you check out kapersky for linux ?
  
  – Iain
  Oct 12 '16 at 22:54
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  This is definitely possible since VirusTotal does so, but I would also like to know how to do so.
  
  – timmyRS
  Oct 12 '16 at 23:02
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Yes. Actually mentioned it in the question as the antivirus of choice. Do you know how to : 1. Run it from commandline 2. Prevent it from quarantining and 3. does it find windows viruses? 4. How to parse it's results in commandline? (for automation) if you have an accurate answer I am sure this is a common problem!
  
  – DannyZB
  Oct 12 '16 at 23:03
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Do you setup your windows OS AV to scan network share ?
  
  – yagmoth555♦
  Oct 13 '16 at 2:01
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  It's not a network share. It's a RedHat EL server with files stored on it(part of a product). Some relevant resources I've found so far: support.kaspersky.com/4320 support.kaspersky.com/4318 support.kaspersky.com/4322 support.kaspersky.com/4323 support.kaspersky.com/4326
  
  – DannyZB
  Oct 13 '16 at 7:51
  

  
  
  
  

 | 
show 5 more comments

5

1

I have a CentOS server storing files for windows users.

How do I scan for windows viruses in these files, and meanwhile prevent quarantine and other measures?

I do not want the files altered in any way, and would prefer if it can be done purely in command line with parsable results.

The antivirus we have a license for is Kaspersky Endpoint Security.
That is the preferred antivirus, but the question applies to Linux Anti-viruses in general.

linux windows centos anti-virus malware

share|improve this question

asked Oct 12 '16 at 22:39

DannyZBDannyZB

18917

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Did you check out kapersky for linux ?
  
  – Iain
  Oct 12 '16 at 22:54
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  This is definitely possible since VirusTotal does so, but I would also like to know how to do so.
  
  – timmyRS
  Oct 12 '16 at 23:02
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Yes. Actually mentioned it in the question as the antivirus of choice. Do you know how to : 1. Run it from commandline 2. Prevent it from quarantining and 3. does it find windows viruses? 4. How to parse it's results in commandline? (for automation) if you have an accurate answer I am sure this is a common problem!
  
  – DannyZB
  Oct 12 '16 at 23:03
  
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Do you setup your windows OS AV to scan network share ?
  
  – yagmoth555♦
  Oct 13 '16 at 2:01
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  It's not a network share. It's a RedHat EL server with files stored on it(part of a product). Some relevant resources I've found so far: support.kaspersky.com/4320 support.kaspersky.com/4318 support.kaspersky.com/4322 support.kaspersky.com/4323 support.kaspersky.com/4326
  
  – DannyZB
  Oct 13 '16 at 7:51
  

  
  
  
  

 | 
show 5 more comments

I have a CentOS server storing files for windows users.

How do I scan for windows viruses in these files, and meanwhile prevent quarantine and other measures?

I do not want the files altered in any way, and would prefer if it can be done purely in command line with parsable results.

The antivirus we have a license for is Kaspersky Endpoint Security.
That is the preferred antivirus, but the question applies to Linux Anti-viruses in general.

linux windows centos anti-virus malware

share|improve this question

asked Oct 12 '16 at 22:39

DannyZBDannyZB

18917

share|improve this question

asked Oct 12 '16 at 22:39

DannyZBDannyZB

18917

share|improve this question

asked Oct 12 '16 at 22:39

DannyZBDannyZB

18917

asked Oct 12 '16 at 22:39

DannyZBDannyZB

18917

asked Oct 12 '16 at 22:39

DannyZBDannyZB

18917

1 Answer
1

active

oldest

votes

1

Untested, but if you are happy using ClamAV the following should work:

Install the ClamAV (enabling EPEL repo first):

yum install -y epel-release
yum install clamav

Via: https://www.clamav.net/documents/installing-clamav#rhel

Then you can update ClamAV:

/usr/bin/freshclam

Then scan:

/usr/bin/clamscan -r --infected /

--infected (-i): Only print infected files.
--recursive (-r): Scan directories recursively. All the subdirectories in the given directory will be scanned.

It's worth noting that by default clamscan does not remove files, you would have to manually set the switch: --remove[=yes/no(*)]

Via: https://linux.die.net/man/1/clamscan

Regarding scanning for windows signatures in linux I will refer you to this accepted answer on AskUbuntu: Does ClamAV Scan Windows virus?

In practice however, you will mainly use a virusscanner to protect your Windows partners. ClamAV does scan for Windows viruses as well.

share|improve this answer

edited Apr 13 '17 at 12:22

Community♦

1

answered Oct 13 '16 at 1:01

Andy VerhoefAndy Verhoef

814

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Thanks for the comment. While this may be true, I rather doubt ClamAV is very effective against Windows threats - It's not one of the leading antiviruses.
  
  – DannyZB
  Oct 13 '16 at 7:52
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  You're probably right. I guess it was designed for mail scanning. Have you looked into setting up a windows client (VM or physical) and just using a commercial client?
  
  – Andy Verhoef
  Oct 13 '16 at 22:47
  
  

  
  
  
  


• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  clamav is part of CentOS. Every windows-threat that was detected SEP was confirmed by clamscan. So it should work.
  
  – Nils
  May 16 '17 at 19:58
  

  
  
  
  

add a comment | 

Your Answer

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f808729%2fhow-to-scan-for-windows-viruses-on-linux-servers%23new-answer', 'question_page');

);

Post as a guest

Name

Email

Required, but never shown

1

Untested, but if you are happy using ClamAV the following should work:

Install the ClamAV (enabling EPEL repo first):

yum install -y epel-release
yum install clamav

Via: https://www.clamav.net/documents/installing-clamav#rhel

Then you can update ClamAV:

/usr/bin/freshclam

Then scan:

/usr/bin/clamscan -r --infected /

--infected (-i): Only print infected files.
--recursive (-r): Scan directories recursively. All the subdirectories in the given directory will be scanned.

It's worth noting that by default clamscan does not remove files, you would have to manually set the switch: --remove[=yes/no(*)]

Via: https://linux.die.net/man/1/clamscan

Regarding scanning for windows signatures in linux I will refer you to this accepted answer on AskUbuntu: Does ClamAV Scan Windows virus?

In practice however, you will mainly use a virusscanner to protect your Windows partners. ClamAV does scan for Windows viruses as well.

share|improve this answer

edited Apr 13 '17 at 12:22

Community♦

1

answered Oct 13 '16 at 1:01

Andy VerhoefAndy Verhoef

814

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Thanks for the comment. While this may be true, I rather doubt ClamAV is very effective against Windows threats - It's not one of the leading antiviruses.
  
  – DannyZB
  Oct 13 '16 at 7:52
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  You're probably right. I guess it was designed for mail scanning. Have you looked into setting up a windows client (VM or physical) and just using a commercial client?
  
  – Andy Verhoef
  Oct 13 '16 at 22:47
  
  

  
  
  
  


• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  clamav is part of CentOS. Every windows-threat that was detected SEP was confirmed by clamscan. So it should work.
  
  – Nils
  May 16 '17 at 19:58
  

  
  
  
  

add a comment | 

1

Untested, but if you are happy using ClamAV the following should work:

Install the ClamAV (enabling EPEL repo first):

yum install -y epel-release
yum install clamav

Via: https://www.clamav.net/documents/installing-clamav#rhel

Then you can update ClamAV:

/usr/bin/freshclam

Then scan:

/usr/bin/clamscan -r --infected /

--infected (-i): Only print infected files.
--recursive (-r): Scan directories recursively. All the subdirectories in the given directory will be scanned.

It's worth noting that by default clamscan does not remove files, you would have to manually set the switch: --remove[=yes/no(*)]

Via: https://linux.die.net/man/1/clamscan

Regarding scanning for windows signatures in linux I will refer you to this accepted answer on AskUbuntu: Does ClamAV Scan Windows virus?

In practice however, you will mainly use a virusscanner to protect your Windows partners. ClamAV does scan for Windows viruses as well.

share|improve this answer

edited Apr 13 '17 at 12:22

Community♦

1

answered Oct 13 '16 at 1:01

Andy VerhoefAndy Verhoef

814

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Thanks for the comment. While this may be true, I rather doubt ClamAV is very effective against Windows threats - It's not one of the leading antiviruses.
  
  – DannyZB
  Oct 13 '16 at 7:52
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  You're probably right. I guess it was designed for mail scanning. Have you looked into setting up a windows client (VM or physical) and just using a commercial client?
  
  – Andy Verhoef
  Oct 13 '16 at 22:47
  
  

  
  
  
  


• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  clamav is part of CentOS. Every windows-threat that was detected SEP was confirmed by clamscan. So it should work.
  
  – Nils
  May 16 '17 at 19:58
  

  
  
  
  

add a comment | 

Untested, but if you are happy using ClamAV the following should work:

Install the ClamAV (enabling EPEL repo first):

yum install -y epel-release
yum install clamav

Via: https://www.clamav.net/documents/installing-clamav#rhel

Then you can update ClamAV:

/usr/bin/freshclam

Then scan:

/usr/bin/clamscan -r --infected /

--infected (-i): Only print infected files.
--recursive (-r): Scan directories recursively. All the subdirectories in the given directory will be scanned.

It's worth noting that by default clamscan does not remove files, you would have to manually set the switch: --remove[=yes/no(*)]

Via: https://linux.die.net/man/1/clamscan

Regarding scanning for windows signatures in linux I will refer you to this accepted answer on AskUbuntu: Does ClamAV Scan Windows virus?

In practice however, you will mainly use a virusscanner to protect your Windows partners. ClamAV does scan for Windows viruses as well.

share|improve this answer

edited Apr 13 '17 at 12:22

Community♦

1

answered Oct 13 '16 at 1:01

Andy VerhoefAndy Verhoef

814

yum install -y epel-release
yum install clamav

/usr/bin/freshclam

/usr/bin/clamscan -r --infected /

share|improve this answer

edited Apr 13 '17 at 12:22

Community♦

1

answered Oct 13 '16 at 1:01

Andy VerhoefAndy Verhoef

814

edited Apr 13 '17 at 12:22

Community♦

1

edited Apr 13 '17 at 12:22

Community♦

1

answered Oct 13 '16 at 1:01

Andy VerhoefAndy Verhoef

814

answered Oct 13 '16 at 1:01

Andy VerhoefAndy Verhoef

814