Results 1 to 11 of 11

Thread: Scan for Windows viruses using Linux??

  1. #1
    A shadowy flight. MSIC's Avatar
    Join Date
    Oct 2005
    Location
    London/Herts
    Posts
    3,413
    Thanks
    394
    Thanked
    229 times in 168 posts
    • MSIC's system
      • Motherboard:
      • ASRock H170M-ITX
      • CPU:
      • Core i5 6500
      • Memory:
      • 2 x 4GB Corsair Veng DDR4 2666
      • Storage:
      • 240GB SSD (boot) +1TB Samsung F3
      • Graphics card(s):
      • ASUS GeForce 750Ti
      • PSU:
      • Silverstone 450W ST455F
      • Case:
      • Silverstone SG06-450
      • Operating System:
      • Win10
      • Monitor(s):
      • Dell S2309W
      • Internet:
      • PlusNet FiberTTC

    Scan for Windows viruses using Linux??

    The Scenario
    A friend of mine has got lots of probably viruses and related malware on a laptop, with Windows XP SP1. He doesnt know alot, but started getting concerned when a variety of pop-ups and 'bizzare' things started appearing. He had neither anti-virus, firewall nor anti-spyware installed.
    I went around last week (could only stay for a couple of hours) and ran the usual stuff - AVG free edition, Zonealarm, Spybot S&D and Ad-aware. Before all of that i ran Trend Housecall, find it to be very useful. Trend Housecall couldnt complete. Spybot & Adaware found loads of stuff, but Spybot also couldnt complete. Worryingly, Zonealarm WOULDNT install correctly, although i could see it running in task manager. it also refused to un-install, not even in safe mode!!! Then the internet connection dropped out. Seemed bad news. Am going around tonight to see if i can complete the job and remove whatever might be there, as well as leave it SP2'd and firewalled etc etc.

    My Question
    Given that something might in fact be on there, i was wondering if I could run a CD install of Linux (Knoppix to be exact) and then virus scan Windows?? I Found this link here although couldnt find exactly what i wanted.

    Does anyone have any thoughts or experience?
    I know my friend was stupid, and i think he has learnt his lesson. This may well end up needing a complete re-install, but am hoping to prevent that likelihood....

    Cheers
    I'm commenting on an internet forum. Your facts hold no sway over me.
    - Another poster, from another forum.

    System as shown, plus: Microsoft Wireless mobile 4000 mouse and Logitech Illuminated keyboard.
    Sennheiser RS160 wireless headphones. Creative Gigaworks T40 SII. My wife.
    My Hexus Trust

  2. #2
    Administrator Moby-Dick's Avatar
    Join Date
    Jul 2003
    Location
    There's no place like ::1 (IPv6 version)
    Posts
    10,665
    Thanks
    53
    Thanked
    385 times in 314 posts
    you could try something like a PE disk to do this - the only little problem with using a live CD is the definitions aren't always up to date.
    my Virtualisation Blog http://jfvi.co.uk Virtualisation Podcast http://vsoup.net

  3. #3
    HEXUS.social member Agent's Avatar
    Join Date
    Jul 2003
    Location
    Internet
    Posts
    19,168
    Thanks
    735
    Thanked
    1,607 times in 1,045 posts
    If its in that bad of a state - seriously, just forget about it.
    Start from scratch. Back everything up, install windows and get all the anti-virus, firewall and spy stuff he will need.
    Quote Originally Posted by Saracen View Post
    And by trying to force me to like small pants, they've alienated me.

  4. #4
    Comfortably Numb directhex's Avatar
    Join Date
    Jul 2003
    Location
    /dev/urandom
    Posts
    17,074
    Thanks
    228
    Thanked
    1,027 times in 678 posts
    • directhex's system
      • Motherboard:
      • Asus ROG Strix B550-I Gaming
      • CPU:
      • Ryzen 5900x
      • Memory:
      • 64GB G.Skill Trident Z RGB
      • Storage:
      • 2TB Seagate Firecuda 520
      • Graphics card(s):
      • EVGA GeForce RTX 3080 XC3 Ultra
      • PSU:
      • EVGA SuperNOVA 850W G3
      • Case:
      • NZXT H210i
      • Operating System:
      • Ubuntu 20.04, Windows 10
      • Monitor(s):
      • LG 34GN850
      • Internet:
      • FIOS
    scanning for windows viruses from linux is common & simple enough - consider how many email servers need to do it.

    the specific problem here is that XP uses NTFS to store files, and microsoft keep the NTFS specs hidden away - so you can't write to NTFS (and therefore disinfect files on an NTFS disk)

  5. #5
    Almost in control. autopilot's Avatar
    Join Date
    Dec 2004
    Location
    Region 2
    Posts
    4,071
    Thanks
    51
    Thanked
    12 times in 11 posts
    You could also try http://www.ultimatebootcd.com/, just make sure the deffinitions for the virus scanners that are on (there are 2 or 3 i think) there are uptodate (which you can do yourself).
    Last edited by autopilot; 22-02-2006 at 04:49 PM.

  6. #6
    not posting kempez's Avatar
    Join Date
    Aug 2005
    Location
    Basingstoke
    Posts
    3,204
    Thanks
    0
    Thanked
    0 times in 0 posts
    Just re-install winblow$ for him then make sure he's all AV/FW'd up

    Otherwise you'll spend ages messing around
    Check my project <<| Black3D |>>
    Quote Originally Posted by hexah
    Games are developed by teams of talented people and sometimes electronic arts

  7. #7
    Almost in control. autopilot's Avatar
    Join Date
    Dec 2004
    Location
    Region 2
    Posts
    4,071
    Thanks
    51
    Thanked
    12 times in 11 posts
    I agree, i would reformat. I think virus or no virus, the damage has been done. That said, you might still be able to rescue it. Just checked the Ultimate Boot CD projects website, and it has DOS versions of F-Prot, McAfee, Avast and AVG. All updated on the 9th of Feb. Worth a go.

  8. #8
    A shadowy flight. MSIC's Avatar
    Join Date
    Oct 2005
    Location
    London/Herts
    Posts
    3,413
    Thanks
    394
    Thanked
    229 times in 168 posts
    • MSIC's system
      • Motherboard:
      • ASRock H170M-ITX
      • CPU:
      • Core i5 6500
      • Memory:
      • 2 x 4GB Corsair Veng DDR4 2666
      • Storage:
      • 240GB SSD (boot) +1TB Samsung F3
      • Graphics card(s):
      • ASUS GeForce 750Ti
      • PSU:
      • Silverstone 450W ST455F
      • Case:
      • Silverstone SG06-450
      • Operating System:
      • Win10
      • Monitor(s):
      • Dell S2309W
      • Internet:
      • PlusNet FiberTTC
    Thanks guys, usefull info.
    Just realised that i might not have time to arrange this in advance for this evening, but good advice for the future.
    Cheers
    I'm commenting on an internet forum. Your facts hold no sway over me.
    - Another poster, from another forum.

    System as shown, plus: Microsoft Wireless mobile 4000 mouse and Logitech Illuminated keyboard.
    Sennheiser RS160 wireless headphones. Creative Gigaworks T40 SII. My wife.
    My Hexus Trust

  9. #9
    Senior Member
    Join Date
    Mar 2005
    Posts
    4,825
    Thanks
    161
    Thanked
    358 times in 288 posts
    • badass's system
      • Motherboard:
      • ASUS P8Z77-m pro
      • CPU:
      • Core i5 3570K
      • Memory:
      • 32GB
      • Storage:
      • 1TB Samsung 850 EVO, 2TB WD Green
      • Graphics card(s):
      • Radeon RX 580
      • PSU:
      • Corsair HX520W
      • Case:
      • Silverstone SG02-F
      • Operating System:
      • Windows 10 X64
      • Monitor(s):
      • Del U2311, LG226WTQ
      • Internet:
      • 80/20 FTTC
    Quote Originally Posted by kempez815
    Just re-install winblow$ for him then make sure he's all AV/FW'd up

    Otherwise you'll spend ages messing around
    Agreed. You're wasting your time trying to fix it.
    "In a perfect world... spammers would get caught, go to jail, and share a cell with many men who have enlarged their penises, taken Viagra and are looking for a new relationship."

  10. #10
    A shadowy flight. MSIC's Avatar
    Join Date
    Oct 2005
    Location
    London/Herts
    Posts
    3,413
    Thanks
    394
    Thanked
    229 times in 168 posts
    • MSIC's system
      • Motherboard:
      • ASRock H170M-ITX
      • CPU:
      • Core i5 6500
      • Memory:
      • 2 x 4GB Corsair Veng DDR4 2666
      • Storage:
      • 240GB SSD (boot) +1TB Samsung F3
      • Graphics card(s):
      • ASUS GeForce 750Ti
      • PSU:
      • Silverstone 450W ST455F
      • Case:
      • Silverstone SG06-450
      • Operating System:
      • Win10
      • Monitor(s):
      • Dell S2309W
      • Internet:
      • PlusNet FiberTTC
    Back from the job.
    We re-installed.
    For interest, the laptop was bought from Mesh and at one point about a year ago went back for an unrelated fan issue - they fixed it, and gave a new re-install CD.
    As i said earlier, the machine was XP SP1, but the install disc was XP SP2! If they'd only have put that oon at the time, we might not have needed this (maybe...).
    Oh well, the machine is all done now...
    I'm commenting on an internet forum. Your facts hold no sway over me.
    - Another poster, from another forum.

    System as shown, plus: Microsoft Wireless mobile 4000 mouse and Logitech Illuminated keyboard.
    Sennheiser RS160 wireless headphones. Creative Gigaworks T40 SII. My wife.
    My Hexus Trust

  11. #11
    lazy student nvening's Avatar
    Join Date
    Jan 2005
    Location
    London
    Posts
    4,656
    Thanks
    196
    Thanked
    31 times in 30 posts
    I would doubt that sp2 would have helped that much, i hope you told him how to maintain his security as well? Oh and what did you put on?
    (\__/)
    (='.'=)
    (")_(")

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Run Windows software on Linspire desktop Linux
    By Bob Crabtree in forum HEXUS News
    Replies: 0
    Last Post: 09-02-2006, 01:16 AM
  2. Scan Order - Not Happy
    By t_aitch in forum SCAN.care@HEXUS
    Replies: 15
    Last Post: 30-11-2005, 06:40 PM
  3. a little praise for scan
    By asteroth in forum SCAN.care@HEXUS
    Replies: 1
    Last Post: 05-11-2005, 04:17 PM
  4. Moving from XP to Linux
    By Ceefer in forum Software
    Replies: 8
    Last Post: 25-04-2005, 09:27 AM
  5. We heard your feedback on Newegg....
    By DR in forum General Discussion
    Replies: 33
    Last Post: 05-03-2005, 08:13 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •