ArchLinux 2017.10.01: Virus scan with ClamAV

Install clamav.

$ sudo pacman -Sy --noconfirm clamav

The freshclam will update virus database.

$ sudo freshclam

freshclamd will update virus database automatically. You do not need to run freshclam manually.

$ sudo systemctl enable freshclamd
$ sudo systemctl start freshclamd

The clamscan will scan file or directory.

• -r option will scan directory recursively.
• -i option will show detected file only.
• –move option will move detected file to specific directory.

$ mkdir ~/virus
$ clamscan -r -i --move=$HOME/virus .

The clamd load database once and wait as a daemon. And run virus scan by request from clamdscan without loading database.

clamd always consume memory for database, but clamdscan is faster than clamscan. And clamdscan's behavior depends on clamd while clamscan's behavior depends clamscan's options.

$ sudo systemctl enable clamd
$ sudo systemctl start clamd
$ clamdscan <dir>

clamtk provides GUI window, This is useful for desktop user.

$ sudo pacman -Sy --noconfirm clamtk

clamtk is as the following. My environment needs double click to select item.

Check "scan directories recursively" in Settings.

Home directory can be scanned recursively by "Scan a directory".