sudo su
apt update
apt -y install clamav
#sed -i -e "s/^NotifyClamd/#NotifyClamd/g" /etc/clamav/freshclam.conf
#dpkg-reconfigure clamav-freshclam
apt install -y mailutils
cat > /home/jirka/clamscan_daily.sh << \EOF
#!/bin/bash
LOGFILE="/var/log/clamav/clamav-$(date +'%Y-%m-%d').log";
EMAIL_TO="[email protected]";
##DIRTOSCAN="/var/www /var/deluge/download";
DIRTOSCAN="/var/www";
for S in ${DIRTOSCAN}; do
DIRSIZE=$(du -sh "$S" 2>/dev/null | cut -f1);
echo "Starting a daily scan of "$S" directory.
Amount of data to be scanned is "$DIRSIZE".";
clamscan -ri "$S" >> "$LOGFILE";
# get the value of "Infected lines"
MALWARE=$(tail "$LOGFILE"|grep Infected|cut -d" " -f3);
# if the value is not equal to zero, send an email with the log file attached
if [ "$MALWARE" -ne "0" ];then
mail -s "Malware Found" $EMAIL_TO < $LOGFILE
fi
done
exit 0
EOF
chmod 0777 /home/jirka/clamscan_daily.sh
ln /home/jirka/clamscan_daily.sh /etc/cron.daily/clamscan_daily
- To check all files on the computer, displaying the name of each file:
clamscan -r /
#or
clamscan -r /home | [email protected]
- To check all files on the computer, but only display infected files and ring a bell when found:
clamscan -r --bell -i /
- To scan all files on the computer but only display infected files when found and have this run in the background:
clamscan -r -i / &
Note - Display background process's status by running the jobs command.
- To check files in the all users home directories:
clamscan -r /home
- To check files in the USER home directory and move infected files to another folder:
clamscan -r --move=/home/USER/VIRUS /home/USER
- To check files in the USER home directory and remove infected files (WARNING: Files are gone.):
clamscan -r --remove /home/USER
- To see more options:
clamscan --help