Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

How to tell if clamav have detected some malware?

Discussion in 'Security' started by Kent Brockman, Jul 28, 2015.

  1. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,182
    Likes Received:
    7
    Trophy Points:
    168
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello guys. After one year of functions, I want to evaluate if ClamAV have found any threats in our servers/mails. Is there any logs being saved? Are quarantined files saved to any folder? Do you have any docs on this?

    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 Kent Brockman, Jul 28, 2015
  2. ModServ

    ModServ Well-Known Member

    Joined:
    Oct 17, 2006
    Messages:
    332
    Likes Received:
    5
    Trophy Points:
    168
    Location:
    Egypt
    cPanel Access Level:
    Root Administrator
    Did you schedule ClamAV to work on specific times, perform scans manually or do you use CallUploadScript?

    In all situations you can use the command like this:
    Code:
    clamdscan --quiet --log=/var/log/threats.log
    Check those also:
    Code:
    clamdscan --help
clamscan --help
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 ModServ, Jul 28, 2015
  3. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,802
    Likes Received:
    1,895
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    Keep in mind that ClamAV only scans your email by default. You can see recent activity with a command such as:

    Code:
    zgrep -Hn "This message contains a virus or other harmful content" /var/log/exim_rejectlog*
    It won't scan your system files automatically, unless you setup a cron job to do so.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 cPanelMichael, Jul 31, 2015
  4. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,182
    Likes Received:
    7
    Trophy Points:
    168
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Thank you guys!

    In regards of activating scheduled scans via cronjobs, can you point me to some docs about it?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 Kent Brockman, Aug 6, 2015
  5. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,802
    Likes Received:
    1,895
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 cPanelMichael, Aug 7, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - tell clamav detected
  1. Dezdan

    How to tell if SSD or HDD on a VM?

    Dezdan, Nov 5, 2017, in forum: Workarounds and Optimization
    Replies:
    3
    Views:
    805
    cPanelMichael
    Nov 6, 2017
  2. WebHostPro

    SOLVED Is there way to tell the PHP-CLI version

    WebHostPro, Dec 19, 2016, in forum: EasyApache
    Replies:
    3
    Views:
    1,511
    cPanelMichael
    Dec 20, 2016
  3. DevTeam9200

    How to remove clamav additional databases

    DevTeam9200, Oct 4, 2018, in forum: General Discussion
    Replies:
    1
    Views:
    51
    cPanelLauren
    Oct 8, 2018
  4. Michaelit

    SOLVED Bypassing ClamAV Scan question

    Michaelit, Sep 11, 2018, in forum: Security
    Replies:
    11
    Views:
    418
    Michaelit
    Sep 20, 2018
  5. Peter Smith

    ClamAV duplicate database Warning

    Peter Smith, Sep 10, 2018, in forum: Security
    Replies:
    4
    Views:
    156
    cPanelMichael
    Sep 12, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice