About ClamAV®


ClamAV is an open source (GPL) antivirus engine designed for detecting Trojans, viruses, malware and other malicious threats. It is the de facto standard for mail gateway scanning. It provides a high performance mutli-threaded scanning daemon, command line utilities for on demand file scanning, and an intelligent tool for automatic signature updates. The core ClamAV library provides numerous file format detection mechanisms, file unpacking support, archive support, and multiple signature languages for detecting threats. The core ClamAV library is utilized in Immunet 3.0, powered by ClamAV, which is a fast, fully featured Desktop AV solution for Windows.


Latest Stable Release


Latest ClamAV® stable release is: 0.97.4
Windows Antivirus - Immunet 3.0, powered by ClamAV (Learn more) Download now
ClamAV Virus Databases:
main.cvd ver. 54 released on 11 Oct 2011 10:34 :0400 (sig count: 1044387)
daily.cvd ver. 14956 released on 23 May 2012 17:00 :0400 (sig count: 179857)
bytecode.cvd ver. 184 released on 23 May 2012 11:33 :0400 (sig count: 40)
safebrowsing.cvd ver. 38907 released on 23 May 2012 18:45 :0400 (sig count: 1300824)


Latest Development Release (Release Candidates)


There are no Release Candidates currently planned.


News


ClamAV 0.97.3 installation guide on Mac OS X has been posted!

December 11th, 2011 Posted by - webmaster

Thanks to Christoph Murauer for an excellent guide to installing ClamAV 0.97.3 on Mac OS X!

Check out Christoph’s ClamAV 0.97.3 install guide here.

Thanks to all of our ClamAV community contributors on their documentation, if you’d like to contribute some documentation, please feel free to contact me at joel@snort.org.

As always Snort.org makes no warranty or edits to submitted documentation, and we’d like to thank the contributors of the documentation for their time.

Bytecode signatures for polymorphic malware

November 4th, 2011 Posted by - webmaster

About one year ago Alain presented the LLVM-based ClamAV bytecode. We’ve realised that, besides that initial introduction, we’ve never shown any real life use case, nor did we ever demonstrate the incredible power and flexibility of the ClamAV bytecode engine. I’ll try to fix that today.

I decided to target the Xpaj virus because it’s an polymorphic file infector, which means that it is not easily to detected with plain signatures.
Please note that I’m (Read more...)

ClamAV 0.97.3 has been released!

October 17th, 2011 Posted by - webmaster

Just released is version 0.97.3 of ClamAV.  The following changes are noted in the ChangeLog distributed with the package:


Mon Oct 10 14:41:48 CEST 2011 (tk)
----------------------------------
freshclam/manager.c: fix error when compiling without DNS support (bb#3056)

Sat Oct 8 12:19:49 EEST 2011 (edwin)
-------------------------------------
libclamav/pdf.c: flag and dump PDF objects with /Launch (bb #3514)

Sat Oct 8 12:10:13 EEST 2011 (edwin)
-------------------------------------
libclamav/bytecode.c,bytecode_api.c: fix recursion level crash (Read more...)

ClamXav and ClamAV for OSX Lion 10.7

October 13th, 2011 Posted by - webmaster

Christoph Murauer, one of the many ClamAV and Snort users in the community has written Snort User guides for Lion which we’ve linked to before over on the Snort blog.  
This time Christoph has written a guide for using ClamXav and ClamAV on OSX Lion 10.7.  If you are interested in Antivirus protection for on OSX in any way, I suggest a read of his guide.
Check out the article here

Another day, another Rogue Antivirus

September 1st, 2011 Posted by - webmaster

Today I have the following on my desk:


The malware usually enters your PC via a drive-by download or the user is tricked into loading the file – for example, if the user wants to see some video on the web and the page tells them that they need an additional plugin. Your Windows security center pops up (Read more...)

« Previous PageNext Page »