Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to tell if clamav have detected some malware?

Discussion in 'Security' started by Kent Brockman, Jul 28, 2015.

  1. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,175
    Likes Received:
    6
    Trophy Points:
    168
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello guys. After one year of functions, I want to evaluate if ClamAV have found any threats in our servers/mails. Is there any logs being saved? Are quarantined files saved to any folder? Do you have any docs on this?

    Thanks!
     
    #1 Kent Brockman, Jul 28, 2015
  2. ModServ

    ModServ Well-Known Member

    Joined:
    Oct 17, 2006
    Messages:
    332
    Likes Received:
    5
    Trophy Points:
    168
    Location:
    Egypt
    cPanel Access Level:
    Root Administrator
    Did you schedule ClamAV to work on specific times, perform scans manually or do you use CallUploadScript?

    In all situations you can use the command like this:
    Code:
    clamdscan --quiet --log=/var/log/threats.log
    Check those also:
    Code:
    clamdscan --help
clamscan --help
     
    #2 ModServ, Jul 28, 2015
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    42,699
    Likes Received:
    1,703
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello :)

    Keep in mind that ClamAV only scans your email by default. You can see recent activity with a command such as:

    Code:
    zgrep -Hn "This message contains a virus or other harmful content" /var/log/exim_rejectlog*
    It won't scan your system files automatically, unless you setup a cron job to do so.

    Thank you.
     
    #3 cPanelMichael, Jul 31, 2015
  4. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,175
    Likes Received:
    6
    Trophy Points:
    168
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Thank you guys!

    In regards of activating scheduled scans via cronjobs, can you point me to some docs about it?
     
    #4 Kent Brockman, Aug 6, 2015
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    42,699
    Likes Received:
    1,703
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    #5 cPanelMichael, Aug 7, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - tell clamav detected
  1. Dezdan

    How to tell if SSD or HDD on a VM?

    Dezdan, Nov 5, 2017, in forum: Workarounds and Optimization
    Replies:
    3
    Views:
    368
    cPanelMichael
    Nov 6, 2017
  2. WebHostPro

    SOLVED Is there way to tell the PHP-CLI version

    WebHostPro, Dec 19, 2016, in forum: EasyApache
    Replies:
    3
    Views:
    938
    cPanelMichael
    Dec 20, 2016
  3. Elizabeta

    SOLVED Clamav update question

    Elizabeta, Mar 21, 2018, in forum: General Discussion
    Replies:
    7
    Views:
    150
    Elizabeta
    Mar 23, 2018
  4. EneTar

    Initiated new Clamav scan through cPanel. Results location?

    EneTar, Feb 12, 2018, in forum: Security
    Replies:
    3
    Views:
    157
    cPanelMichael
    Mar 9, 2018
  5. Venomous21

    Clamav .99.2 vulnerabilities

    Venomous21, Jan 25, 2018, in forum: Security
    Replies:
    7
    Views:
    366
    cPanelMichael
    Mar 26, 2018

Share This Page