Category Archives: Antivirus for Ubuntu

How to Scan Your Linux Computer for Viruses and Rootkits by

Are you worried that your Linux computer may be infected with malware? Have you ever checked? While Linux systems tend to be less susceptible to malware than Windows, they can still be infected. Many times they’re less obviously compromised, too.

There are a handful of excellent open-source tools to help you check if your Linux system has been the victim of malware. While no software is perfect, these three have a solid reputation and can be trusted to find most known threats.


Selected by Galigio via Computer Borders

Stay safe! Install Rootkit Hunter on Linux and FreeBSD

Rootkit Hunter is a Unix-primarily based scanning tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of vital files with known good ones in online database, looking for default directories (of rootkits), improper permissions, hidden records data, suspicious strings in kernel modules and particular tests for Linux or FreeBSD. Most instances rootkits are self-hiding toolkits utilized by blackhats, crackers and script kiddies, to keep away from the attention of the system admin. If you’re unsure  as to whether your system is compromised, you will get a second opinion from sources such as Linux-oriented forum. If your system is contaminated with a rootkit, cleaning it up will not be an option. Restoring can be not an option unless you might be expert, and have autonomous and an impartial means of verifying that the backup is clear, and does not include misconfigured or stale software. Never trust a potentially compromised machine! Basically a clean install of the OS is always advisable after backing up the system. AddThis mp3 link

A fast guide for beginners to install ClamAV on Ubuntu

This week, in our Linux Page (in Spanish) we have posted a quick guide to rapidly install ClamAV: one of my favourite and open source antivirus for Linux. We have already written some notes in our previous post “Security package (Rev. 1.2) for Ubuntu: antivirus, firewall and P2P stealth” and in that occasion we decide to suggest an external link. This time we reinstalled a fresh new Ubuntu 8.10 and decided to directly add ClamAV. First of all, it is necessary to run Synaptic Package Manager (in System – Administration) and to search Clam and select clamav and all the extra packages you prefer to install. Read very carefully the description that is visualized each time you click on one of them and select the extra feature you need. Then, with the right button of the mouse, select “mark for installation” and click on Apply in the upper menu bar. After few seconds ClamAV will be correctly installed. Now, if you check on Applications – System Tool you will find a new ClamAV icon whose name is Virus Scanner. Now, if you launch ClamAV you will discover that, unfortunately, it is not possible to upgrade the program without administrative privileges. I solved this “problem” dragging and dropping the ClamAV icon to the upper panel. Then I clicked on the icon using the right button of the mouse and selected the Properties panel. Then, in the “command” space I added sudo before the text clamtk %F that I found already written there (sudo clamtk %F). Now, when you click on the upper panel ClamAV icon, you are able to upgrade your new antivirus in a breeze. Recommended! AddThis mp3 link

Use chkrootkit to fight against rare (but always possible) rootkits on your Linux PCs!

This week, in our Linux Page (in Spanish), we would like to focus your attention on chkrootkit, an interesting software for Linux which can really help you to detect malicious rootkits on your Linux PC. Unfortunately, the last update we have found on the chkrootkit homepage is dated December 2007 but we hope to see a new release during the 2009. To check if you have chkrootkit already installed, type chkrootkit on you Terminal:

desktop:~$ chkrootkit

and you certainly will receive this message:
The program ‘chkrootkit’ is currently not installed.  You can install it by typing:
sudo apt-get install chkrootkit

Follow the above instructions and you will be ready to execute the software just typing:

sudo chkrootkit

Please, note that, at our first scan on Ubuntu 8.10, we found a false positive:

Checking `sniffer’… lo: not promisc and no packet sniffer sockets

eth0: PACKET SNIFFER(/sbin/dhclient3[4835])

Do not worry! This (unfortunately frequent) false positive has already been discussed by the community at


If you know other good anti-rootkits, please be so kind, to add a comment on this post. We are really interested to discover new “security software” (especially anti-rootkit) for Linux machines! AddThis mp3 link

Security package for Ubuntu: antivirus, firewall and P2P stealth

Link to Linux Page Linux is the safer OS you can use today: specific Linux viruses are few and malware is rare but with the increasing of users some threads are becoming real. For this reason, I strongly believe that nowadays a simple firewall is not enough we all need also a good antivirus. Today, in our Linux Page we’ve posted a short manual where we explain how to install a firewall (Firestarter), an antivirus (Avast) and a P2P stealth (Peer Guardian). We have tested all this software on a Ubuntu 7.04 without relevant problems; the combined use of this triplet is strongly recommended for people who desire to preserve their data and privacy. AddThis