ClamAV is an open source anti-virus toolkit, specilally use for lunux/unix operating system.
Features :
- ClamAV is designed to scan files quickly.
- ClamAV detects millions of viruses, worms, trojans, and other malware, including Microsoft Office macro viruses, mobile malware, and other threats.
- designed especially for e-mail scanning on mail gateways.
It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner and advanced tool for automatic database updates.
Step 1) Install ClamAV package.
sudo apt-get update
sudo apt install clamav-daemon
Step 2) Start and Enable ClamAV Service.
sudo systemctl enable clamav-daemon
sudo systemctl start clamav-daemon
sudo systemctl status clamav-daemon
Step 3) Following Cmd will Scan files and will also save output of infacted files only on the .txt file.
$ clamscan -ir / > /ClamAV-Scaned-Root-Directory.txt
Or
$ clamscan -ir /var/www/html/ > /ClamAV-Scaned-Web-Directory.txt
Example Found infected files on Ubuntu
root@ip-172-31-95-131:~# clamscan -ir /
/home/ubuntu/.configrc/a/kswapd0: Multios.Coinminer.Miner-6781728-2 FOUND
----------- SCAN SUMMARY -----------
Known viruses: 8623585
Engine version: 0.103.6
Scanned directories: 30204
Scanned files: 184652
Infected files: 1
Total errors: 12500
Data scanned: 8960.11 MB
Data read: 27028.57 MB (ratio 0.33:1)
Time: 1617.228 sec (26 m 57 s)
Start Date: 2022:07:25 08:21:21
End Date: 2022:07:25 08:48:18
root@ip-172-31-95-131:~#
END !!
No comments:
Post a Comment
testing