Compatible Antivirus Command Line Scanners

Introduction


This page stores the antivirus scanners that people have used together with the Attachment Checker.
This is not a comprehensive list of antivirus products. If you have managed to use another product, do let us know so that we can update this list
 

The requirements for the Command Line Scanner for the Attachment Checker are

  1. The scanner should allow scanning of a single file
  2. The file to be scanned should be the last parameter 
  3. The scanner should return the exit code value 0 if there is no threat found. Other values if there is a possible infection

List of Command Line Scanners

ProductName of Command Line ScannerCompatibleRemarks
Avast! Internet Security
ashcmd.exe
(error)
  • The command line takes a long time to start up, thus not recommended
  • The free version does not come with the command line scanner
AVG Scanavgscanx.exe(error)
  • avgscanx requires the path of the scan as an argument parameter. The attachment checker assumes the file to be scanned is the last name after the last space character

    avgscanx /scan=filename.exe
ClamAVclamscan(tick)
Esetecls.exe(tick)
F-Protfpscan.exe(tick)
Kaspersky Endpoint Security for Linuxkesl-control(tick)
McAfee VirusScan (Linux)

uvscan

(tick)
McAfee VirusScan (Windows)scan.exe(tick)
  • Those using Attachment Checker for Jira 2.7.0 and above, add /ALL to the Additional Options to allow scanning of any file extensions.
Sophos Antivirussavscan(tick)
Symantec Endpoint ProtectionDoScan.exe(error)
  • The exit code will always return 0 even if virus is detected.
Trellix Eamcfg.exe(error)
  • The exit code will always return 0 even if virus is detected
Trend Micro OfficeScanwofielauncher.exe(error)
  • The exit code will always return 0 even if virus is detected
Windows DefenderMpCmdRun.exe(question)

For additional information, please refer to Additional steps for anti-virus scanning

How to check if your antivirus scanner is compatible

  1. Download eicar.txt from https://www.eicar.org/download-anti-malware-testfile/

    From: https://en.wikipedia.org/wiki/EICAR_test_file

    The EICAR Anti-Virus Test File or EICAR test file is a computer file that was developed by the European Institute for Computer Antivirus Research (EICAR) and Computer Antivirus Research Organization (CARO), to test the response of computer antivirus (AV) programs. Instead of using real malware, which could cause real damage, this test file allows people to test anti-virus software without having to use a real computer virus.

  2. Execute the command line scanner to scan the file. 

    C:\Program Files (x86)\MpCmdRun.exe -Scan -ScanType -File eicar.txt

    This command is for Windows Defender. Please update the command and options for the virus scanner you are using

  3. Check the errorLevel returned by the previous command  

    For Microsoft Windows
    echo "returning errorLevel = " %ERRORLEVEL%
    For Linux
    echo "returning errorLevel = " $?
  4. If the error level is not 0, then it is compatible (tick)