eScan Anti-Virus User Guide
for Linux Workstation
eScan
Anti-Virus User Guide for
Linux Workstation
The
software described in this book is furnished under a license agreement and may
be used only in accordance with the terms of the agreement.
Document
Number : LINODS/8.06.04
Copyright Notice
Copyright
(C) 2004. All rights Reserved.
Any
technical documentation that is made available by MicroWorld is the copyrighted
work of MicroWorld and is owned by MicroWorld.
NO
WARRANTY. The technical documentation is being delivered to you AS-IS and
MicroWorld makes no warranty as to its accuracy or use. Any use of the
technical documentation or the information contained therein is at the risk of
the user.
Documentation
may include technical or other inaccuracies or typographical errors. MicroWorld
reserves the right to make change without prior notice.
No
part of this publication may be copied without the express written permission
of MicroWorld.
Trademarks.
MicroWorld,
MicroWorld Logo, eScan, eScan logo, MailScan are
trademarks of MicroWorld.
Red
Hat, Red Hat Press, and the Red Hat Press logo are trademarks or registered
trademarks of Red Hat, Inc. Linux is a trademark or registered trademark of Linus Torvalds.
All
product names referenced herein are trademarks or registered trademarks of
their respective companies. MicroWorld Software Services Pvt. Ltd.
(MicroWorld) disclaims proprietary interest in the marks and names of others.
Although MicroWorld every effort to ensure that this information is accurate,
MicroWorld will not be liable for any errors or omission of facts contained
herein. MicroWorld Software Services Pvt. Ltd. reserves the right to modify
specifications cited in this document without prior notice.
Companies,
names and data used in examples herein are fictitious unless otherwise noted.
No
part of this document may be reproduced or transmitted in any form or by any
means, electronic or mechanical, for any purpose, without the express written
permission of MicroWorld Software Services Pvt. Ltd.
Other
product names mentioned in this manual may be trademarks or registered
trademarks of their respective companies and are hereby acknowledged.
Technical
Support: support@mwti.net
Sales: sales@mwti.net
Printed
: MicroWorld
October,
2004
The increasing
use of Linux as an alternate operating system has increased the number of
viruses targeting Linux machines. eScan for Linux Workstation provides
protection from viruses. The software works as an ‘on-demand’ scanner and you
can execute it as and when you need to scan a file or directory. This document
provides information to use eScan for Linux Workstation.
We offer 24x7
support to our customers through e-mail, telephone and Chat.
Chat Support
·
Chat
with our support team at ‘escanchat’ using: AOL; MSN or Yahoo messenger
service.
E-Mail
Support
·
If
you have any queries about our products or have suggestions and comments about
this guide, please send them to support@mwti.net.
|
Head Office: MicroWorld
Technologies Inc. Tel: (248)
848 9081/ 848 9084 Fax: (248)
848 9085 |
MicroWorld
Software Services Pvt Ltd.. Plot No 80,
Road 15, MIDC, Marol, Andheri (E), Tel (91) -
22- 28265701 - 05 Fax (91) -
22-28304750 |
For sales
enquiry, e-mail: sales@mwti.net
For support
enquiry, e-mail: support@mwti.net
MicroWorld is
one of the leading solution providers in the areas of content security and
Anti-Virus products. With its corporate headquarters in
Microworld has come up with a software named
eScan for Linux Workstation
which protects the system from various virus threats by checks hard drives,removable
drives and files for viruses. eScan is also designed to understand different
file types, data-streams and compression formats. It can look inside
data-streams and identify complex file architecture. It has a user-friendly
interface and automatically downloads latest virus Updates from our download
site.
Detects Viruses on Demand: Scan
applications and Operating System as and when required and detects viruses if
found.
Easy to Manage and Control:
Easy to manage and
control with features such as automated installation and automatic downloads of
updates.
Comprehensive Object Management: eScan understands different file types,
compression formats and data streams
Fast Updates reduce download time: eScan downloads the latest Anti-Virus
Updates quickly and efficiently. Using an incremental update procedure, it
downloads only the changes in the virus pattern file. This ensures that
downloads are restricted to only fresh items and you do not download older
material.
This chapter
gives details of standard conventions used in this guide. Also included are
components of a typical user interface, how to navigate the screens, meanings
of various symbols and buttons, types of fields and how to enter values in
them.
Typical screen
components are explained below:
|
Screen Component |
Function |
||||||||
|
|
Allows
you to view status of On Demand Scanner (ODS) activity. |
||||||||
|
|
Allows
you to run Virus Checks.
|
||||||||
|
|
Allows
you to Schedule Scan Settings to scan your system at a predetermined
time. |
||||||||
|
|
Provides
a log of ODS activity |
||||||||
|
|
Exits
from the application |
||||||||
|
|
Allows
you to set options for Virus checks, Startup, Update, Log |
||||||||
|
|
Provides
a quick link to the MicroWorld website where information about the latest
viruses is available. |
||||||||
|
|
Access the
online help. |
||||||||
|
|
Provides
information about MicroWorld Technologies Inc. the developer of eScan for
Linux. |
On Demand Scanner helps you to
immediately scan your system for viruses and other threats. It also has the eScan
Anti-Virus Toolkit that allows you to scan your system and files for memory
resident viruses.
·
Select
This
screen allows you to specify action to be taken when infected files are
detected, set the priority for scanning, specify file types that should be
scanned and select settings that should be followed during scanning.
Fields are explained in the following
table.
|
Field |
Description |
|
In case of an infection |
You can specify the action to be taken
when virus infected files are detected. Drop down box displays the actions
and you can select a suitable action: Automatic:
Default value. eScan takes automatic action for
infected files. Log only:
Details of the infected file with the file name and
path are stored in the logs. No other action is taken and scanning of other
files continues. Disinfect (if not possible, Skip):
eScan tries to disinfect the infected file. If this is not possible, then the
file is skipped. Disinfect (if not possible, delete file):
eScan tries to disinfect the infected file. If this is not possible, then the
file is deleted. Disinfect (if not possible, rename file):
eScan tries to disinfect the infected file. If this is not possible, then the
file is renamed. This prevents infection from spreading Delete infected :
eScan deletes the file without disinfecting it. Rename infected :
eScan renames the file without trying to disinfect it. Prompt :
eScan displays a message asking you what to do with the infected file. |
|
The frame allows you to select the options
for actions. Names of the options are given beside a check box. To select the
options, click the checkbox. The options in the screen are: Packed Files:
Files that are self executables. Mail Databases:
Scans the database of your mail server Recursive:
Scans directories and their sub directories recursively Heuristic:
The system is checked for unusual sequence, pattern or content and when such
files are detected, the software displays an alert message. Archived Files:
Scans zipped files. Plain Mail Files:
Scans mails in plain text format Unknown Virus Modifications:
Scans files that are probably modified after viruses infected them Cross File System:
In Linux you have different file systems mounted at different location.
Crossing the file systems means checking files on different partitions and/or
network mounted file systems. Self Extracting Archived File:
Scans files that are of self extracting type. |
|
|
Symbolic Links |
Symbolic links allow you to access one
file from another through links. There are options to scan such files: All:
Checks all symbolic files Specified:
Checks specified linked files None:
No checks done for linked files. |
·
Click
Apply and Save to save the changes you have made or Cancel to discard them.
The startup tab allows you to specify
attributes that should be run or displayed on the eScan screen at startup.
Alert if Virus Definitions are: You can
select the number of days after which, if updates are not downloaded, an alert
is displayed.
Do a Scan of ALL Running Processes at Startup: At startup, all processes that are running are
checked for memory resident and other viruses.
Automatic
Update : To start download latest update specific time can be set.
This option
allows you to download latest virus signatures from download site. User can manually configure to
get latest updates at a particular time .
|
Field |
Description |
|
Update Server |
Enter the server path from which
updates are downloaded |
|
Use Proxy |
If you use a proxy to download updates,
select the check box. Enter the IP of your proxy server and the port number. If User Authentication is needed, then enter the
user name and password of authenticated users. |
Location:
Here user can set path for escan log
This menu provides
the Status of anti-virus activity in your system. Click
Anti-Virus Engine Version:
Gives version information of eScan for Linux currently running on your system.
Date of virus signature:
Date when last virus signature was downloaded.
Virus Count:
Total count of download viruses
Reload Virus Signatures:
Virus signatures can be reloaded in the AV engine
Manual Update:
Allows you to manually download updates.
eScan
detects and clean viruses from your system, specific directories, files, floppy
, zip drives and CD ROMs. In the case of CD ROMs, since it is read only, it is
possible to only detect viruses and you cannot remove them.
Click
Check selected directories/files
You can scan a specific files or directory
using this option. To select and scan a specific file or directory, click
·
A
dialog box showing your directory structure is displayed. Expand the nodes and
select the particular files or directories for scanning.
·
Click
Done. The selected item is scanned for viruses.
You
can scan all the home directories Home directories are specific to a user. Only
the administrator of the machine can alter the system files.
·
Click
The scan process box is displayed and it
shows statistics like total number of files scanned, total number of files
disinfected, deleted, and renamed. The total number of errors is also shown.
This menu allows you to scan your system
for viruses.
·
To
check your computer for viruses, click
The scan process box is displayed
and it gives statistics like
Total number of files scanned,
Total number of files disinfected,
Total number of files deleted,
Total number of files renamed.
Total number of errors.
The lower frame lists the infected file
name, its path, Virus information, and Action Taken.
This menu allows you to check your system,
memory and processes running in the background for memory resident and other
viruses.
·
To
check your system memory click
·
The
eScan Anti-Virus Tool Kit starts scanning of your system. The frame Files
Scanned shows names of scanned files. The frame Results, show
scanning results.
·
Select
Log to see details of files scanned. To stop scanning, select Cancel.
eScan
allows you to set a schedule to auto scan your system at any hour or day. This feature ensures that periodic scanning
is carried out and even if you forget to scan,
eScan
will do the work automatically. If you need to go elsewhere for a short while
from your system (lunch break) you can schedule the scan during this time.
·
To
set a schedule for scanning, click
·
A
list of schedules, already created is displayed on the screen. Schedule name, time when it should start, when it is
next due and the last time the schedule was run are displayed.
·
To
create a new schedule, click Add. The Automatic Virus Check screen is
displayed.
·
To
edit a schedule, select the schedule and click Edit.
·
To
delete a schedule, select the schedule from the list and click Delete.
You can add a new schedule to scan your
system at a predetermined time. Adding a schedule is done by entering information
in different tab pages. You begin with assigning a name for the schedule and
specifying hard drives, directories and files for scanning. Next you need to
select the time when the scanning should start and specify what types if files
should be scanned.
The tab pages are explained in the next
sections:
This tab allows you to assign a name for
the schedule. Enter a name for the schedule. After you save the entries, the
name is listed in the Schedule screen.
This
tab allows you to specify what objects should be scanned in the schedule. You
can either choose to scan your systems hard drives or specify files and
directories to be scanned
Fields are:
Check local hard drives:
System hard drives and all directories are scanned.
Check following directories and files
You can select specific files and directories to be included in the schedule.
Click the adjacent browse button. Make the selections as explained and click Ok.
The selected files and directories are displayed in the bottom display box.
The
tab allows you to set the time when auto scanning should be started. Features
of the screen are:
·
Radio
buttons in Execute frame allow you to specify the hour and minute for the scan
to run Once,
Hourly,
Daily,
Weekly,
or Monthly.
·
Spin
buttons allow you to set the hour in the Time frame. Based on the radio button
selected in the Execute frame, additional buttons are displayed in the Time
frame.
This
screen allows you to specify the action to be taken when infected files are
detected, set the priority for scanning, specify file types that should be
scanned.
Fields are explained in Virus Check.
·
Click
Save to
accept the settings. The new job is listed in the main Schedule screen.
After the schedule is created, it is
listed in the screen. To edit a schedule, select the schedule and click Edit.
Screen displayed while adding a schedule
are displayed with values filled in. You can edit values for all the fields.
Only the schedule name cannot be edited.
The four tabs are:
Job Name:
Schedule job name is displayed in the non-editable field.
Analysis:
For details, please refer Analysis.
Schedule:
For details, please refer Schedule.
Virus Check:
For details, please refer Virus
Check.
This tab allows to delete a schedule
listed in the Schedule Scan Settings page. To delete a schedule, click on the
schedule and select Delete.
eScan provides a detailed Log of
anti-virus activity. Click
There are two buttons:
View:
Select a log file from the list and click View to view the log.
Clear:
Select a log file from the list and click Clear to remove it from the
list.