How do I scan for viruses with ClamAV?

1

ClamAV

There aren't many viruses made for Linux distributions and as such, most people who use such systems don't ever bother using an antivirus software. Those however who do want to be able to scan their system or other windows-based systems that are connected on a Linux PC through a network, they can use ClamAV. ClamAV is an open source anti-virus engine that is built to detect viruses, trojans, malware and other threats. It supports multiple file formats (documents, executables or archives), utilizes multi-thread scanner features and receives updates for its signature database at least 3-4 times a day.

The first step is to install and get the latest signature updates. To do this on Ubuntu, you can open a terminal and insert “sudo apt-get install clamav” and press enter.

sudo apt-get install clamav

You may also build ClamAV from sources to benefit from better scanning performance. To update the signatures, you type “sudo freshclam” on a terminal...

0 0
2

Terminal

At first you have to update the virus definitions with:

sudo freshclam

Then you can scan for viruses.

clamscan OPTIONS File/Folder

Examples:

To check all files on the computer, displaying the name of each file:

clamscan -r /

To check all files on the computer, but only display infected files and ring a bell when found:

clamscan -r --bell -i /

To check files in the all users home directories:

clamscan -r /home

To check files in the USER home directory and move infected files to another folder:

clamscan -r --move=/home/USER/VIRUS /home/USER

To check files in the USER home directory and remove infected files (WARNING: Files are gone.):

clamscan -r --remove /home/USER

To see more options:

clamscan --help

See:

Graphical User Interface: ClamTk

ClamTk is a frontend for ClamAV. You can install it via Terminal with:

sudo apt-get install clamtk

There is also a PPA with the...

0 0
3

Zabihah Halal Vitamins

How to scan for viruses with ClamAV on Ubuntu

There aren’t many viruses made for Linux distributions and as such, most people who use such systems don’t ever bother using an antivirus software. Those however who do want to be able to scan their system or other windows-based systems that are connected on a Linux PC through a network, they can use ClamAV. ClamAV is an open source anti-virus engine that is built to detect viruses, trojans, malware and other threats. It supports multiple file formats (documents, executables or archives), utilizes multi-thread scanner features and receives updates for its signature database at least 3-4 times a day.

Powered by...

0 0
4
On Thu, Sep 27, 2012 at 1:59 AM, Siranjeevi wrote:

> @Paul Enlund : I have installed it thru yum( Reference link:
> http://solutionsfox.com/2011/04/install-clamav-on-redhat-or-centos/).
>
> I am using cent OS 5.5
>
> @Dave R: Also, have you run the standard unit tests? - I couldn't get what
> it is ?? How to run unit tests and all ?
>
> I have attached the configuration file(clamd.conf) with this mail. kindly
> refer to it and tell me.
>
>
> On Tue, Sep 25, 2012 at 8:07 PM, Paul Enlund wrote:
>
> >
> > On 25/09/2012 10:43, Siranjeevi wrote:
> >
> >> Hi All,
> >>
> >> I have added the eicar_com zip file inside a rar file. When i scan
> >> it
> >> with clamav it is passing as *'OK'*. Another case i have added the same
> >>
> >> eicar_com zip file inside another TestScan zip file. But it is
> successful
> >> scanned and got an...

0 0
5

How do I scan server for viruses with ClamAV?

Hello friends here i am come with a tutorial to scan a server with CalmAV.

Here is installation and other command for linux.

To install CalmAV on linux / centos

Yum install CalmAV

For Update CalmAV use below command

freshcalm

By this command your virus definitions will update.
For UBUNTU

Install CalmAV via Terminal

sudo apt-get install clamav

Now you have to update the virus definitions with

sudo freshclam

Now both linux and ubuntu user use Below command to scan there server

Now you are ready to scan your server

clamscan options file/folder

Examples:

To check all files on the computer, displaying the name of each file:

clamscan -r /

To check all files on the computer, but only display infected files and ring a bell when found:

clamscan -r --bell -i /

To check files in the all users...

0 0
6

This article will guide you through the installation of ClamAV on CentOS. Once installed, we will also configure a daily scan on our CentOS server.

ClamAV is an open source (GPL) antivirus engine designed for detecting Trojans, viruses, malware and other malicious threats on Linux. In this article, we will only be configuring ClamAV to run scheduled/on-demand scans; not resident scans.

A. Install ClamAV

1. Install EPEL repo

Before we can do proceed, you must ensure that you have the EPEL yum repository enabled. To do this, click here.

2. Install required ClamAV packages

3. Start the clamd service and set it to auto-start

4. Update ClamAV’s signatures

Note: ClamAV will update automatically, as part of /etc/cron.daily/freshclam.

B. Configure Daily Scan

In this example, we will configure a cronjob to scan the /home/ directory every day:

1. Create cron file:

Add the following to the file...

0 0
7
...
0 0
8

Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX. It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner and advanced tool for automatic database updates. Because ClamAV's main use is on file/mail servers for Windows desktops it primarily detects Windows viruses and malware.

Installation

ClamAV can be installed with package .

Update the virus definitions with:

# freshclam

The database files are saved in:

/var/lib/clamav/daily.cvd /var/lib/clamav/main.cvd /var/lib/clamav/bytecode.cvd

The virus definition updater service is called freshclamd.service. Consider starting it and enabling it to start at boot so that the virus definitions are kept recent.

Starting the daemon

Consider updating the database before starting the service for the first time or you will run into troubles/errors which will prevent ClamAV to start correctly.

The service...

0 0
9

How often do we all hear the phrase, “Could you take a look at it for me?” Whether you are checking out a machine for a friend or colleague or looking after one of your own machines, it's handy to have the ability to virus check a Windows setup from the safety of a Linux boot CD or USB stick. This short guide shows you how to scan for infected files by booting into SystemRescueCD and running ClamAV, a virus checker.

We recently covered SystemRescueCD, a bootable disc that constitutes a Swiss army knife of Linux based tools for system recovery. ClamAV is one of the useful tools that it includes in a preconfigured, ready to run state. It is possible to boot from SystemRescueCD, mount a Windows partition and then scan it for virus infected files. As you don't have to boot the infected system, this approach offers some advantages over that of running a Windows-based tool.

Boot into the SystemRescueCD desktop in the normal way by accepting the default options and then...

0 0
10

Terminal

At first you have to update the virus definitions with:

sudo freshclam

Then you can scan for viruses.

clamscan OPTIONS File/Folder

If necessary start with root permissions: sudo clamscan.

Examples:

To check all files on the computer, displaying the name of each file:

clamscan -r /

To check all files on the computer, but only display infected files and ring a bell when found:

clamscan -r --bell -i /

To scan all files on the computer but only display infected files when found and have this run in the background:

clamscan -r -i / &

Note - Display background process's status by running the jobs command.

To check files in the all users home directories:

clamscan -r /home

To check files in the USER home directory and move infected files to another folder:

clamscan -r --move=/home/USER/VIRUS /home/USER

To check files in the USER home directory and remove infected files (WARNING: Files are...

0 0
11

Our Postfix mail server series comes to a close this week with the addition of antivirus. I think it's fitting to close with this article because, to many people, the idea of having to add antivirus on a Linux machine is antithetical to what Linux is. When applied to a mail server, that is quit untrue.

I am an advocate of "better safe than sorry," and in the case of a Linux mail server, that statement could never be truer. Why is that? To answer that question you simply have to ask yourself what a Linux mail server does: it serves up mail to clients. Will all of those clients be using a Linux operating system? Most likely not. Because of this, the email your server sends out has to be free from viruses or else those Windows clients will become crippled. That is the last thing you want for your mail server.

So, what do you do? You install an antivirus for your mail server. And on the Linux platform, one of the easiest to integrate into Postfix is ClamAV. ClamAV is an...

0 0
12

Installing

ClamAV can be found for Ubuntu in the apt repository. Run this command to install ClamAV:

apt-get install clamav

If you need clamd, you may also want to run:

apt-get install clamav-daemon

If you require support for scanning compressed RAR files you first need to enable the non-free archive, and then you can install the RAR-plugin using:

apt-get install libclamunrar6

There are two classes of clamav packages available for Ubuntu users:

Released Set

The released set (release, *-updates, and *-security) are patched for security updates. Following extensive testing of clamav and the packages that use it in the backports repository, they may be updated to a newer version. These are official Ubuntu packages and supported by community developers.

Backports

The Ubuntu backports repository will contain the newest clamav version that has been at least lightly tested to...

0 0
13

Name

clamscan - scan files and directories for viruses

Synopsis

clamscan [options] [file/directory/-]

Description

clamscan is a command line anti-virus scanner.

Options

Most of the options are simple switches which enable or disable some features. Options marked with [=yes/no(*)] can be optionally followed by =yes/=no; if they get called without the boolean argument the scanner will assume 'yes'. The asterisk marks the default internal setting for a given option.

-h, --help Print help information and exit. -V, --version Print version number and exit. -v, --verbose Be verbose. --debug Display debug messages from libclamav. --quiet Be quiet (only print error messages). --stdout Write all messages (except for libclamav output) to the standard output (stdout). -d FILE/DIR, --database=FILE/DIR Load virus database from FILE or load all virus database files from DIR. --official-db-only=[yes/no(*)] Only load the official...
0 0
14
How to scan and clean website viruses ?

The malware infection has became one of the major annoying security concern for the websites owners and Internet users as they are passing through the emails and web sites to the local machine and other remote servers. There are various security and antivirus software tools available for the Desktop systems ( local machine ) which can scan, detect and remove viruses from the specific files/folders, disk drives and other connected devices. If you have a website which needs to scan for the malware, Trojans and other vulnerable codes or want to check status of any URL link for the security and attack then refer following online tools and services which will help you to do so.

These online tools, services can help you to scan and detect malicious codes as viruses, worms, Trojans, adware, spyware and exploit content from the web pages. Also some hosted antivirus tools and scripts provide options to quarantine and/or clean infected...

0 0
15

In the previous two articles of this Postfix series you learned how to set up and manage the email server database through phpMyAdmin, and how to configure Postfix and Dovecot to handle incoming and outgoing mail. In addition, we explained how to set up a mail client, such as Thunderbird, for the virtual accounts we created previously.

Setup Postfix Mail Server and Dovecot with MariaDB – Part 1 How to Configure Postfix and Dovecot with Virtual Domain Users – Part 2 Install and Configure RoundCube Webmail Client with Virtual Users in Postfix – Part 4 Use Sagator, an Antivirus/Antispam Gateway to Protect Your Mail Server – Part 5

Since no email server setup can be complete without taking precautions against viruses and spam, we are going to cover that topic in the current article.

Integrate ClamAV and SpamAssassin to Protect Postfix

Please keep in mind that even when *nix-like operating systems are usually considered to be virus-free, chances are clients using...

0 0
16

ClamAV can only detect viruses and move any infected files into a quarantined folder; it cannot remove them from files. ClamAv detects viruses on all platforms, but it is primarily useful for Windows viruses and malware.

Other antivirus programs running on Ubuntu can be found here.

By Default 'ClamAV' is in the Main repository so it can install it by the Software Center or Synaptic Package Manager. Just Search for 'clamAv' and install it.

ClamAV has two modes of operation; a program that loads into memory only when you want to scan a file, or for more regular use (such as scanning all incoming e-mail), a program that connects to a daemon that is always running.

Database updates can also be downloaded automatically .

Both methods will also install clamav-freshclam, the updater.

ClamAV Does not come with a GUI by default so you must use the Terminal to use it. How ever you can install ClamTK http://clamtk.sourceforge.net/ which will add...

0 0
17

ClamWin is a Free Antivirus program for Microsoft Windows 10 / 8 / 7 / Vista / XP / Me / 2000 / 98 and Windows Server 2012, 2008 and 2003.

ClamWin Free Antivirus is used by more than 600,000 users worldwide on a daily basis. It comes with an easy installer and open source code. You may download and use it absolutely free of charge. It features: High detection rates for viruses and spyware; Scanning Scheduler; Automatic downloads of regularly updated Virus Database. Standalone virus scanner and right-click menu integration to Microsoft Windows Explorer; Addin to Microsoft Outlook to remove virus-infected attachments automatically.

The latest version of Clamwin Free Antivirus is 0.99.1

Please note that ClamWin Free Antivirus does not include an on-access real-time scanner. You need to manually scan a file in order to detect a virus or...

0 0
18

Note: This article is part of our archive and is likely out of date.
(Links may not work, downloads have not been recently tested for safety)

Getting a virus is bad. Getting a virus that causes your computer to crash when you reboot is even worse. We’ll show you how to clean viruses from your computer even if you can’t boot into Windows by using a virus scanner in a Ubuntu Live CD.

There are a number of virus scanners available for Ubuntu, but we’ve found that avast! is the best choice, with great detection rates and usability.

UPDATE

This article was written a while ago, and almost all of the anti-virus applications for Linux aren’t supported anymore. Here are the ones that still work:

You should be able to install Clam from the Ubuntu application center.

The better solution, however, is to use the BitDefender Rescue CD to scan your PC.

Read Below For Archive Purposes Only

Unfortunately, avast! does not have a proper...

0 0