Malware Analysis with ClamAV in Acunetix 360

In order to enable an Acunetix 360 scan agent to carry out malware analysis for your web application, you need to download and install ClamAV.

ClamAV is an open-source, free, and widely used project backed by Cisco.

In order to enable Acunetix 360 to perform malware analysis, see Malware Analyzer.

	Information
	ClamAV is optional. If you want an Acunetix 360 agent to identify malware, you need to use it. Please note that you may need administrator privileges to run the following operations.

Extract .zip file to a folder
Navigate to the conf_examples folder and copy the clamd.conf.sample and the freshclam.conf.sample file

Paste the clamd.conf.sample and freshclam.conf.sample files into the ClamAV's main folder and delete .sample extension from the files. The Rename popup is displayed. Click Yes.
Open the freshclam.conf file with a text editor, and edit Log and Database directories, if necessary. Remove hashtags from the Log and Database lines.

Next, run clamd install to configure ClamAV as a windows service
Now, run sc config ClamD start auto so that the ClamAV service starts automatically
Then, run sc config FreshClam start auto so that the ClamAV virus update service starts automatically.

	Information
	You may want to run sudo apt update & sudo apt upgrade first before installing ClamAV to update your system.

Run sudo nano /etc/clamav/freshclam.conf and increase ReceiveTimeout to 300
Run sudo systemctl restart clamav-freshclam to apply changed configuration. Then, you may wait 2 - 3 minutes so that ClamAV updates the virus database.
Run sudo nano /etc/clamav/clamd.conf in order to edit the file.

	Information
	You can run sudo apt --purge autoremove clamav-daemon to uninstall ClamAV from your machine.

After the installation, you can run a test to confirm that ClamAV is working as expected.