ClamAV® is an open source antivirus engine for detecting trojans, viruses, malware & other malicious threats. Documentation & FAQ. Official documentation can be found online at ClamAV.net. Our source code release tarballs also includes a copy of the documentation for offline reading. ClamAV Signatures. Anyone can learn to read and write ClamAV. MacOS-clamAV A simple macOS clamAV configuration with scheduled volume scans and on-access scans of user Downloads and Desktop directories. This configures clamAV for macOS with regular on-demand scans and on-access scanning of user Downloads and Desktop directories. There are a number of solutions on the market for scanning a Mac for files that have become infected with a virus or macro-virus. Many of these have a negative return on investment. So customers can instead go the open source route to scan files and quarantine them. And customers can use Jamf Pro to Continue reading Managing Virus Scans With ClamAV. ClamAV includes a multi-threaded scanner daemon, command line utilities for on demand file scanning and automatic signature updates.
Building ClamAV® on Mac OS X 10.4 through macOS 11.0 Big Sur I'm running ClamXav Sentry as 'launch agent' with ClamAV antivirus scanning engine of my own custom build. I've tested for building ClamAV (from version 0.90.x to version 0.103.x) on Mac OS X 10.4 through macOS 11.0 Big Sur.
The current version works in a passive mode only - ClamAV will log the detection but won't block access to the infected file. However, it's possible to perform special actions (eg. quarantine files) with the VirusEvent directive of clamd.
Usage
-----
1. Run ClamAuth_load to load the kernel extension (you can edit the script to change or add more paths that will be monitored).
2. Add 'ClamAuth yes' to your clamd.conf (ClamAV 0.97.4) or 'ScanOnAccess yes' (ClamAV-devel)
3. Start clamd with root privileges ('sudo /usr/local/sbin/clamd')
If clamd properly connects to the driver, you should see a line like this in the log file:
ClamAuth: Driver version: 0.3, protocol version: 2
ClamAV is now monitoring the paths specified in ClamAuth_load.
If you have any questions or feedback about this module please send it to the ClamAV mailing list here: