The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

ERROR: Malformed database - clamav

Discussion in 'E-mail Discussions' started by katmai, Nov 16, 2015.

  1. katmai

    katmai Well-Known Member

    Joined:
    Mar 13, 2006
    Messages:
    526
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Brno, Czech Republic
    clamd[11883]: LibClamAV Error: cli_loaddbdir(): error loading database /usr/local/cpanel/3rdparty/share/clamav/securitein

    clamd[11883]: ERROR: Malformed database

    systemd[1]: clamd.service: control process exited, code=exited status=1

    hey guys
    i am getting this on one centos7 box since about 24 hours now.

    i removed the db files and redownloaded them with freshclam but the thing is still ongoing.
    i also did an upcp --force but that didn't do anything either

    anyone can give me any pointers?
     
  2. twhiting9275

    twhiting9275 Well-Known Member

    Joined:
    Sep 26, 2002
    Messages:
    538
    Likes Received:
    15
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Twitter:
    Seeing this here as well. Cent 6.7
     
  3. twhiting9275

    twhiting9275 Well-Known Member

    Joined:
    Sep 26, 2002
    Messages:
    538
    Likes Received:
    15
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Twitter:
    Turns out that warning was from a specific file being outdated.
    Code:
    rm -rf /usr/local/cpanel/3rdparty/share/clamav/securiteinfo*.hdb
    
    should fix this

    Code:
    more securiteinfooffice.hdb.bak
    
    shows:
    Code:
    clamav.securiteinfo.com/securiteinfooffice.hdb has been removed
    
    New up-to-date signatures are available for download
    
    Please see the following link for more information :
    
    [URL='https://www.securiteinfo.com/services/improve-detection-rate-of-zero-day-malwares-for-clamav.shtml']Add 1.000.000 signatures to Clamav antivirus[/URL]
    
    same with honeynet.hdb, you'll have to remove that as well.
    Seems someone got tired of providing free virus definitions and decided to break everything for everyone
     
    #3 twhiting9275, Nov 16, 2015
    Last edited by a moderator: Nov 16, 2015
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
  5. twhiting9275

    twhiting9275 Well-Known Member

    Joined:
    Sep 26, 2002
    Messages:
    538
    Likes Received:
    15
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Twitter:
    honeynet.hdb doesn't in my personal server, but on another one it did
    securiteinfo did on both. Oddly enough, it was just affecting one server this way
    Needless to say, removing these didn't harm the install at all. In fact, just the opposite, that got it working again.
     
Loading...

Share This Page