Questions[search](server)

My organization recently discovered malware that was sent to some users via email that managed to get past our email security in a sophisticated, targeted attack. The names of the files vary from user to user but we have collected a list of the common MD5 hashes among the malware files.

Just a shot in the dark -- I was wondering if there's a way to find files based on their MD5 hashes rather than their file names, extensions, etc. via PowerShell....or any method. We are using Windows 2012 R2 for most of the servers in our data center.

How can I tell the version of a package after doing a yum search?

e.g.

yum search rabbitmq

returns

rabbitmq-server.noarch : The RabbitMQ server

I need to know the version of this server.

I have a Windows Server 2008 R2 network share setup as a map drive in Win 7 x64. I want to search it via Windows 7 but I always get "no items match your search". It's as though it's not even attempting to search.

The File Server role with Windows Search Service is installed. The drive holding the network share is added to the indexing options on the server, and it indicates that indexing is complete.

From what I understand, the search query should be sent to the server (where the content is indexed), executed, and the results returned.

Failed solutions:

Source: http://social.technet.microsoft.com/Forums/en-US/w7itpronetworking/thread/afb904c1-1c61-4aae-b6b1-5cf525b9f8de/

• create a symbolic link to the UNC. I find that to be an extreme fix to what should be a simple problem.

• enable "Always Available Offline" for the UNC. In a corporate setting it's not acceptable to duplicate all server content locally, nor is it feasible with many TB's of server storage.

• install the "Windows Desktop Search: Add-in for Files on Microsoft Networks" http://www.microsoft.com/downloads/details.aspx?DisplayLang=en&FamilyID=f7e981d9-5a3b-4872-a07e-220761e27283 It allows a UNC path to be entered into the indexing options on the client and then the index built locally. However, the add-on is not for Windows 7 and is not supported for x64.

Update:

• The setup includes two clients (Both fully updated Win7 x64), one file server, no domain. Just to make it easy (security isn't an issue in this case), anonymous access is used. I really doubt it's a permissions problem as I can access, modify, and create content on the mapped drive. I just can't search it.

• Searching on the server ALWAYS works. The share in question has lot of content: 2.17TB with 274,633 Files, however, the folder(s) I wish to search has only 11,503 files (54.3GB)

• Searching on one of the two clients works most of the time. It appears to be somewhat unreliable. Some days it works, others it does not. Searching on the second client has never worked.

• The index has been rebuilt on the server as well as both clients.

Update 2:

• From the client, if I highlight all files in the share, go to properties, and let Win 7 count the files, then proceed to do a search after the counting is complete, it works. I'm not sure why that worked (something to do with rebuilding the index, properly this time?). I have a feeling that as the fileserver content changes it wont stay working. Any thoughts?

Is there a way to search in windows explorer for just folders?

I know folders get sorted to the top, but I'm always looking for that extra option.

Given this example folder structure:

/folder1/file1.txt
/folder1/file2.djd
/folder2/file3.txt
/folder2/file2.fha

How do I do a recursive text search on all *.txt files with grep from "/"?

("grep -r <pattern> *.txt" fails when run from "/", since there are no .txt files in that folder.)