I decided to give Clamavconnector a try, and it looks to have installed correctly. However, exim times out when connecting to the clamd socket. Exim looks for it in /var/clamd, which is configured in clamd.conf and, yes, works--however, Exim throws this error in paniclog. 2012-01-02 06:55:20 1RhgNP-0001vr-9Q malware acl condition: clamd: unable to read from socket (Connection timed out) Doing a check on the socket itself produces this: srw-rw-rw- 1 root root 0 Jan 2 12:22 /var/clamd= What you see there is, in fact, a symlink with no actual file to symlink to. Hence--I'd imagine--exim's inability to actually connect. From Exim: av_scanner = clamd:/var/clamd From clamd.conf: LocalSocket /var/clamd I'm not an expert by any means, but I'm fairly sure this isn't supposed to happen. What didn't get done during install process and can I fix it? Any help would be awesome.