Clam Antivirus (ClamAV) is a free, cross-platform antivirus software tool-kit able to detect many types of malicious software, including viruses.There is a common talk that there are no viruses on the Linux platform - which to a large extent is true. But when you get a mail attachment from windows machine may be the machine is full of virus. That virus no affect our linux server.But it will affect the windows users whom using our websites.
Download ClamAV from http://sourceforge.net/projects/clamav/files/clamav/0.97/clamav-0.97.tar.gz/download
Extract
# tar zxvf clamav-0.95.1.tar.gz
# cd clamav-0.95.1
# ./configure
# make all
# make install
Once after installation you need to modify two configuration files to get ClamAV running & for definition updates.
1. vim /etc/clamd.conf
Comment on example:line number 8
2.vim /etc/freshclam.conf
Comment on example:line number 8
ClamAV installation in Cpanel
#Main >> cPanel >> Manage Plugins
#Name: clamavconnector
Author: cPanel Inc.
and select the Install and keep updated tick box
and finally save
after completing in WHM.
You can install it from backend. Follow the steps
#Go terminal window
#login as root
#For 32 bit installations:
cd /usr/local/cpanel/modules-install/clamavconnector-Linux-i686
#For 64 bit:
cd /usr/local/cpanel/modules-install/clamavconnector-Linux-x86_64
#Run on screen ./install
update your virus definitions
freshclam
check files in your home directory:
clamscan
check files in the entire home directory:
clamscan -r /home
check files on the entire drive (displaying everything):
clamscan -r /
check files on the entire drive but only display infected files and ring a bell when found:
clamscan -r --bell --mbox -i /
scan and mail report
clamscan --remove -r --bell -i /home/example/mail/ | mail -s 'clam' 123@example.com
examples of scanned virus
/home/example/mail/new/1301578754.H708604P328.server.test.com,S=42794: Trojan.Spy.Zbot-464 FOUND
/home/example/mail/new/1301578754.H708604P328.server.test.com,S=42794: Removed.
/home/example/mail/new/1301455585.H960996P15497.server.test.com,S=10619: Trojan.Downloader.Agent-1452 FOUND
/home/example/mail/new/1301455585.H960996P15497.server.test.com,S=10619: Removed.
Download ClamAV from http://sourceforge.net/projects/clamav/files/clamav/0.97/clamav-0.97.tar.gz/download
Extract
# tar zxvf clamav-0.95.1.tar.gz
# cd clamav-0.95.1
# ./configure
# make all
# make install
Once after installation you need to modify two configuration files to get ClamAV running & for definition updates.
1. vim /etc/clamd.conf
Comment on example:line number 8
2.vim /etc/freshclam.conf
Comment on example:line number 8
ClamAV installation in Cpanel
#Main >> cPanel >> Manage Plugins
#Name: clamavconnector
Author: cPanel Inc.
and select the Install and keep updated tick box
and finally save
after completing in WHM.
You can install it from backend. Follow the steps
#Go terminal window
#login as root
#For 32 bit installations:
cd /usr/local/cpanel/modules-install/clamavconnector-Linux-i686
#For 64 bit:
cd /usr/local/cpanel/modules-install/clamavconnector-Linux-x86_64
#Run on screen ./install
update your virus definitions
freshclam
check files in your home directory:
clamscan
check files in the entire home directory:
clamscan -r /home
check files on the entire drive (displaying everything):
clamscan -r /
check files on the entire drive but only display infected files and ring a bell when found:
clamscan -r --bell --mbox -i /
scan and mail report
clamscan --remove -r --bell -i /home/example/mail/ | mail -s 'clam' 123@example.com
examples of scanned virus
/home/example/mail/new/1301578754.H708604P328.server.test.com,S=42794: Trojan.Spy.Zbot-464 FOUND
/home/example/mail/new/1301578754.H708604P328.server.test.com,S=42794: Removed.
/home/example/mail/new/1301455585.H960996P15497.server.test.com,S=10619: Trojan.Downloader.Agent-1452 FOUND
/home/example/mail/new/1301455585.H960996P15497.server.test.com,S=10619: Removed.
