How to tell if clamav have detected some malware?

Kent Brockman

• July 28, 2015 21:18

Hello guys. After one year of functions, I want to evaluate if ClamAV have found any threats in our servers/mails. Is there any logs being saved? Are quarantined files saved to any folder? Do you have any docs on this? Thanks!

• 

  ModServ

  • July 29, 2015 02:42

  Did you schedule ClamAV to work on specific times, perform scans manually or do you use CallUploadScript? In all situations you can use the command like this:
  clamdscan --quiet --log=/var/log/threats.log
  Check those also:
  clamdscan --help clamscan --help
  

  0
• 

  cPanelMichael

  • July 31, 2015 12:29

  Hello :) Keep in mind that ClamAV only scans your email by default. You can see recent activity with a command such as:
  zgrep -Hn "This message contains a virus or other harmful content" /var/log/exim_rejectlog*
  It won't scan your system files automatically, unless you setup a cron job to do so. Thank you.

  0
• 

  Kent Brockman

  • August 06, 2015 10:27

  Thank you guys! In regards of activating scheduled scans via cronjobs, can you point me to some docs about it?

  0
• 

  cPanelMichael

  • August 07, 2015 17:44

  In regards of activating scheduled scans via cronjobs, can you point me to some docs about it?

  
  This thread should help:

  0

Please sign in to leave a comment.