Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX. It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner and advanced tool for automatic database updates. Because ClamAV's main use is on file/mail servers for Windows desktops it primarily detects Windows viruses and malware.
Whether you are going to use clamav as a daemon or use it as a simple file checker you need to comment out the line that contains the word Example, usually it is found at the beginning of
Starting the daemon
To start the daemon:
# systemctl start clamd
To start it automatically at boot:
# systemctl enable clamd
/etc/conf.d/clamav change the start options from "no" to "yes".
# change these to "yes" to start START_FRESHCLAM="yes" START_CLAMD="yes"
Edit the below file and comment out the line saying "Example"
# vim /etc/clamav/freshclam.conf # Comment or remove the line below. #Example
Update the virus definitions with:
The database files are saved in:
Scan for Viruses
clamscan can be used to scan certain files, home directory, or an entire system:
$ clamscan myfile $ clamscan -r -i /home $ clamscan -r -i --exclude-dir=^/sys\|^/proc\|^/dev /
If you would like
clamscan to remove the infected file use the
--remove option in the command.
If you get the following messages after running freshclam:
WARNING: Clamd was NOT notified: Cannot connect to clamd through /var/lib/clamav/clamd.sock connect(): No such file or directory
Add a sock file for clamav:
# touch /var/lib/clamav/clamd.sock # chown clamav:clamav /var/lib/clamav/clamd.sock
/etc/clamav/clamd.conf – uncomment this line:
Save the file and restart the daemon
systemctl restart clamd
If you get the next error when starting the daemon:
LibClamAV Error: cli_loaddb(): No supported database files found in /var/lib/clamav ERROR: Not supported data format
Run freshclam as root:
# freshclam -v
If you get a:
# can't create temporary directory
error, along with a 'HINT' containing a UID and a GID number.
Do the following:
# chown UID:GID /var/lib/clamav & chmod 755 /var/lib/clamav
# ex: chown 64:64