The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to tell if clamav have detected some malware?

Discussion in 'Security' started by Kent Brockman, Jul 28, 2015.

  1. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,134
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello guys. After one year of functions, I want to evaluate if ClamAV have found any threats in our servers/mails. Is there any logs being saved? Are quarantined files saved to any folder? Do you have any docs on this?

    Thanks!
     
    #1 Kent Brockman, Jul 28, 2015
  2. ModServ

    ModServ Well-Known Member

    Joined:
    Oct 17, 2006
    Messages:
    332
    Likes Received:
    5
    Trophy Points:
    18
    Location:
    Egypt
    cPanel Access Level:
    Root Administrator
    Did you schedule ClamAV to work on specific times, perform scans manually or do you use CallUploadScript?

    In all situations you can use the command like this:
    Code:
    clamdscan --quiet --log=/var/log/threats.log
    Check those also:
    Code:
    clamdscan --help
clamscan --help
     
    #2 ModServ, Jul 28, 2015
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    34,951
    Likes Received:
    1,072
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    Keep in mind that ClamAV only scans your email by default. You can see recent activity with a command such as:

    Code:
    zgrep -Hn "This message contains a virus or other harmful content" /var/log/exim_rejectlog*
    It won't scan your system files automatically, unless you setup a cron job to do so.

    Thank you.
     
    #3 cPanelMichael, Jul 31, 2015
  4. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,134
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Thank you guys!

    In regards of activating scheduled scans via cronjobs, can you point me to some docs about it?
     
    #4 Kent Brockman, Aug 6, 2015
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    34,951
    Likes Received:
    1,072
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    #5 cPanelMichael, Aug 7, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - tell clamav detected
  1. DWHS.net

    SOLVED Is there way to tell the PHP-CLI version

    DWHS.net, Dec 19, 2016, in forum: EasyApache
    Replies:
    3
    Views:
    222
    cPanelMichael
    Dec 20, 2016
  2. Steve Kessler

    What to do About ClamAV False Positives

    Steve Kessler, May 27, 2017 at 12:01 AM, in forum: Security
    Replies:
    5
    Views:
    46
    rpvw
    May 28, 2017 at 12:44 PM
  3. dubweb

    Clamav Malformed database

    dubweb, May 16, 2017, in forum: E-mail Discussions
    Replies:
    2
    Views:
    72
    cPanelJasonT
    May 17, 2017
  4. Keith Becker

    ClamAV installed cannot find clamscan

    Keith Becker, Apr 19, 2017, in forum: Security
    Replies:
    1
    Views:
    94
    cPanelMichael
    Apr 19, 2017
  5. Nirjonadda

    SOLVED Configure ClamAV Scanner

    Nirjonadda, Apr 3, 2017, in forum: General Discussion
    Replies:
    1
    Views:
    141
    cPanelMichael
    Apr 4, 2017

Share This Page