Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to tell if clamav have detected some malware?

Discussion in 'Security' started by Kent Brockman, Jul 28, 2015.

  1. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,156
    Likes Received:
    3
    Trophy Points:
    68
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello guys. After one year of functions, I want to evaluate if ClamAV have found any threats in our servers/mails. Is there any logs being saved? Are quarantined files saved to any folder? Do you have any docs on this?

    Thanks!
     
    #1 Kent Brockman, Jul 28, 2015
  2. ModServ

    ModServ Well-Known Member

    Joined:
    Oct 17, 2006
    Messages:
    332
    Likes Received:
    5
    Trophy Points:
    168
    Location:
    Egypt
    cPanel Access Level:
    Root Administrator
    Did you schedule ClamAV to work on specific times, perform scans manually or do you use CallUploadScript?

    In all situations you can use the command like this:
    Code:
    clamdscan --quiet --log=/var/log/threats.log
    Check those also:
    Code:
    clamdscan --help
clamscan --help
     
    #2 ModServ, Jul 28, 2015
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,127
    Likes Received:
    1,366
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello :)

    Keep in mind that ClamAV only scans your email by default. You can see recent activity with a command such as:

    Code:
    zgrep -Hn "This message contains a virus or other harmful content" /var/log/exim_rejectlog*
    It won't scan your system files automatically, unless you setup a cron job to do so.

    Thank you.
     
    #3 cPanelMichael, Jul 31, 2015
  4. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,156
    Likes Received:
    3
    Trophy Points:
    68
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Thank you guys!

    In regards of activating scheduled scans via cronjobs, can you point me to some docs about it?
     
    #4 Kent Brockman, Aug 6, 2015
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,127
    Likes Received:
    1,366
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    #5 cPanelMichael, Aug 7, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - tell clamav detected
  1. WebHostPro

    SOLVED Is there way to tell the PHP-CLI version

    WebHostPro, Dec 19, 2016, in forum: EasyApache
    Replies:
    3
    Views:
    392
    cPanelMichael
    Dec 20, 2016
  2. jndawson

    ClamAV freshclam and clamscan binaries are different versions.

    jndawson, Sep 14, 2017, in forum: Security
    Replies:
    4
    Views:
    88
    cPanelMichael
    Sep 19, 2017 at 12:10 PM
  3. Steve Kessler

    What to do About ClamAV False Positives

    Steve Kessler, May 27, 2017, in forum: Security
    Replies:
    5
    Views:
    282
    rpvw
    May 28, 2017
  4. dubweb

    Clamav Malformed database

    dubweb, May 16, 2017, in forum: E-mail Discussions
    Replies:
    2
    Views:
    362
    cPanelJasonT
    May 17, 2017
  5. Keith Becker

    ClamAV installed cannot find clamscan

    Keith Becker, Apr 19, 2017, in forum: Security
    Replies:
    1
    Views:
    262
    cPanelMichael
    Apr 19, 2017

Share This Page