ClamWin Free Antivirus Forum Index
ClamWin Free Antivirus
Support and Discussion Forums
Reply to topic
GuitarBob


Joined: 09 Jul 2006
Posts: 4540
Location: USA
Reply with quote
It sure sounds like the problem is due to ClamWin's slow loading time for the virus signatures, perhaps compounded if you do not have a custom group of signatures (20 to 30) to scan. I think there are just too many signatures now and Clam AV needs to compact its database. Compacting has always been a big deal, and that is probably why they put it off.

Yes, I have been using Forticlient 6.0 sometimes (I switch between several main AVs), and it has a minimal log. The log notes when a scan starts, when it ends, and if anything is detected/quarantined. I exclude ClamWin's freshclam, clamscan, sigtool, QRestore, and ClamWin.exe from Forticlient scans. There are several updates each day, and you can force a manual update if you click on About (for some reason). Configure the malware and web pages--be sure to choose to update the program automatically.

Regards,
View user's profileSend private message
langenet


Joined: 03 Sep 2010
Posts: 19
Reply with quote
GuitarBob,

Are you sure Forticlient 6.0 does command line scanning? I can't find an example of how to do this.

Any chance that you can motion the developers of Clam AV to compact its database?

Robert
View user's profileSend private message
GuitarBob


Joined: 09 Jul 2006
Posts: 4540
Location: USA
Reply with quote
Sorry--I didn't realize you were only interested in a command line scan. Here is some info about command line scanning at https://forum.fortinet.com/tm.aspx?m=96658 on the web--it doesn't look like it is possible.

Since the purchase of Clam AV by Cisco and the loss of the original Clam AV development team before that, ClamWin does not have any contact(s) with the Clam AV team at Cisco. Clam AV is not a commercial product at Cisco, and it does not have much priority there. As far as I know, there is no one working on Clam AV on a full-time basis. In the past they have worked on Clam only when they are not performing their primary duties.

Compacting the database used to be a tricky thing. I doubt that even now, anyone at Cisco attempting it will know how to do it without some detailed study. The first attempt after the original Clam AV team left was a fiasco.

I think that Windows Defender is all you need for email scanning. It is much better than Clam AV/ClamWin. It is under continuous development by a full-time, professional team that uses the latest technology. There are well over 300,000 new forms of malware each day, but Clam AV only prepares about 1,000 daily malware signatures. Clam AV has practically no heuristics, and there is no use of machine learning/AI.

Regards,
View user's profileSend private message
langenet


Joined: 03 Sep 2010
Posts: 19
Reply with quote
Thanks again for everything GuitarBob. I went with Windows Defender and as a result of it's multi-thread design, it is near instantaneous and does provide a form of logging.

Too bad about ClamAv...

Robert
View user's profileSend private message
GuitarBob


Joined: 09 Jul 2006
Posts: 4540
Location: USA
Reply with quote
Thanks for using ClamWin all these years, Robert. Unfortunately, it appears to be winding down now. You can't go wrong with Windows Defender.

Regards,
View user's profileSend private message
High CPU when scanning email
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT  
Page 2 of 2  

  
  
 Reply to topic