ClamPack Official Download: http://repo.a2af37vnxe44tcgo.onion/ (Require "Tor Browser" or Tor)
Image: https://i.imgur.com/o7MO38t.jpg

"ClamPack" is one-click updater for ClamWin and ClamSentinel.
It is highly configurable. I'm using it on my company network to save
bandwidth & easy-to-management all clients. (all office PCs are using ClamWin)

Pros:
+ Open source!
+ You can setup your own server if you don't trust 3rd party.

Cons:
- Not for "noob"; user must know about 7Zip(and Tor if he/she use default service).

Here's my config file(partial).

VersionCheckURL http://proxyserver.office/ clamav.php?version=%%VER%%
PackDownloadURL http://proxyserver.office/ clamav_bl.7z
HTTPProxy none


Network Image:
Clients ---> proxyserver.office
Bandwidth cost: "ZERO" (network)

If I don't using "ClamPack":
Clients ---> Download and install ClamWin and ClamSentinel separately
Bandwidth cost: (Clients * 2) (Internet)

Let me caution all users to verify links (from new/unknown sources) with Virus Total before you click on them and to also verify files that you have downloaded with Virus Total before you install/execute them.

Regards,

Virustotal won't be able to analyze onion connections, but I am curious as to know why you only have it available as onion?

Also, what is the purpose of this? ClamWin and Clam Sentinel both of a built in updater already.

I'm not the author. I just found it recently.

>ClamWin and Clam Sentinel both of a built in updater already.
Really? For "client" update? Isn't it just a "update notification"?

Yes, they mostly just notify user. I mean I get your point, it would be useful for more limited bandwidth users or even servers environments, but since it's part of the dark web, I don't know if I would trust it (I am not saying everything on the dark web is not trustworthy, but I still just don't trust it).

Also, you should analyze the files on Virustotal to make sure they are clean.

"Also, you should analyze the files on Virustotal to make sure they are clean."

Isn't that what I already said? If a file is a Windows file, you should be able to scan it on Virus Total, Virus Scan, or Jotti. You might have to get out of Tor to do so if you downloaded it while using that browser, but you should be able to scan any file on the online scanners. Just don't install/execute a file until the scanner says it is clean. I like to see what 2 or more of these AVs say abut a file: Antivir, Bitdefender, Eset Nod32, Kaspersky, and Sophos.

Regards,

Sorry bob. When you said analyze link in your original post, I thought you meant he should analyze the URL on virustotal, which you won't be able to as virustotal doesn't recognize onion links (go ahead and try it if you don't believe me). Mostly because onion/tor links are beyond search engine and AV grasps. However, you are correct, the files themselves should be able to be scanned by a AV or even uploaded to Virustotal.

I was mainly talking about the files, but many links can be analyzed by a knowledgeable user: hover the mouse to see if the actual link matches the words of description, be careful with the bitly-type shortened stuff from questionable sources, and look for strange things in the actual link--places (maybe ru,etc.),/descriptions/etc. When I was working malware, if I couldn't tell a file was malicious, I looked at the source instead, so look at the source of a link or file. If you don't know about the source, forget the link/file.

Regards,