The “ClamAV Antivirus” module is placed in “Security” menu. This module is designed to protect against malicious programs from entering your corporate network. The module has three tabs: “ClamAV Antivirus”, “Settings” and “Log”.
On the “ClamAV Antivirus” tab you can see status of these services: “ClamAV Antivirus” and “Antivirus proxy server”, the “Disable” button (or “Enable”, if the module is disabled) for each service.
The “ClamAv Antivirus” service is responsible for operation of the ClamAV antivirus, which checks mail messages if the corresponding flag is set, as well as checks the HTTP and HTTPS traffic in case of “Antivirus proxy server” is running and the corresponding flag is set in the “Proxy” menu - “Settings” tab.
Accordingly, the “Antivirus proxy server” service is responsible for sending HTTP / HTTPS packets to ClamAV Antivirus, provided that the flag is set in the proxy server settings.
The widget of the “ClamAV Antivirus” service also displays: number of signatures, current threat base versions and the ClamAV Antivirus version, time and date of the last update, the “Update Now” button and the log for the current date.
This tab is designed to configure the ClamAV Antivirus.The “Use in proxy” and “Scan mail” checkboxes correspond to flags in setting tabs of “Proxy” and “Mail” modules. These flags instruct ClamAV Antivirus to filter traffic going through proxy server and mail attachments.
The “Check for bases updates” field allows to set the frequency of antivirus database update checks. By default in case of at least of one flags on this tab having been set, the check is run each hour. There is ability to set the “Time” for base updates checking if “Every day” or “Once per week” periods were selected. The “Update virus bases while program is shutted down” checkbox allows to run viral base updates even when “ClamAV Antivirus” service is disabled.
The “Log” tab displays summary of all system messages of ClamAV Antivirus service with date and timestamp. The log is divided into pages. Using “forward” and “back” buttons it is possible to go from page to page, or enter the number of the desired page.
Log entries are highlighted in color depending on the type of message. Normal system messages are marked in white, system status messages (on / off, user connection) are green, warnings are yellow, errors are red.
In the upper right corner of the log is search bar. And display period selector for displaying the event log. By default, the log displays events for the current date. If necessary, you can save the log data to a file by clicking the “Export” button or delete the log data for a certain period by clicking the “Delete logs” button.