Di tutorial sebelumnya saya sudah share mengenai panduan instalasi ClamAV di distro berbasis Red Hat seperti CentOS, RockyLinux dan AlmaLinux. Nah kali ini saya akan share tutorial instalasi ClamAV di sistem operasi Debian dan Ubuntu LTS. Pastikan untuk memenuhi persyaratan sistem berikut ini sebelum menginstall ClamAV di distro server Anda.
REQUIREMENTS:
• Virtual Machine dengan Minimum RAM 4GB + 2vCPU
• Menggunakan distro berbasis Debian/Ubuntu
• Hak Akses Root Penuh (sudo privileges)
• Familiar dengan Command-Line Interface Linux (CLI), terutama apt
• Bisa mengoperasikan Terminal SSH, PuTTy maupun PowerShell
1. Update Sistem
Jika Anda baru saja mendeploy virtual machine Anda, pastikan untuk mengupdate sistem Anda dengan perintah berikut:
$ apt update && sudo apt upgrade
2. Install Paket ClamAV
Kemudian lanjut install paket ClamAV dan ClamAV daemon:
$ apt-get install clamav clamav-daemon -y
Reading package lists... Done Building dependency tree... Done Reading state information... Done The following additional packages will be installed: clamav-base clamav-freshclam clamdscan libclamav12 Suggested packages: libclamunrar clamav-doc daemon libclamunrar11 The following NEW packages will be installed: clamav clamav-base clamav-daemon clamav-freshclam clamdscan libclamav12 0 upgraded, 6 newly installed, 0 to remove and 62 not upgraded. Need to get 14.7 MB of archives. After this operation, 44.7 MB of additional disk space will be used.
• Lalu jalankan clamav-daemon dengan command berikut:
$ service clamav-daemon start
3. Perbarui Definisi Virus ClamAV
$ sudo /etc/init.d/clamav-freshclam stop
Stopping clamav-freshclam (via systemctl): clamav-freshclam.service.
$ sudo freshclam
ClamAV update process started at Sat May 16 12:02:25 2026 Sat May 16 12:02:25 2026 -> daily.cvd database is up-to-date (version: 28002, sigs: 355454, f-level: 90, builder: svc.clamav-publisher) Sat May 16 12:02:25 2026 -> main.cvd database is up-to-date (version: 63, sigs: 3287027, f-level: 90, builder: tomjudge) Sat May 16 12:02:25 2026 -> bytecode.cvd database is up-to-date (version: 339, sigs: 80, f-level: 90, builder: nrandolp)
$ sudo /etc/init.d/clamav-freshclam start
Starting clamav-freshclam (via systemctl): clamav-freshclam.service.
4. Jalankan Scan ke Directory dan File, misalnya:
$ sudo clamscan -r /target/directory/*
Misalnya:
$ sudo clamscan -r /var/log/*
Loading: 17s, ETA: 0s [========================>] 3.63M/3.63M sigs Compiling: 7s, ETA: 0s [========================>] 41/41 tasks /usr/share/doc/systemd/README.logs: OK /var/log/alternatives.log: OK /var/log/alternatives.log.1: OK /var/log/alternatives.log.2.gz: OK /var/log/alternatives.log.3.gz: OK /var/log/apport.log: Empty file /var/log/apt/term.log.2.gz: OK /var/log/apt/history.log: OK /var/log/apt/eipp.log.xz: OK /var/log/apt/term.log: OK /var/log/apt/history.log.2.gz: OK /var/log/apt/history.log.3.gz: OK /var/log/apt/term.log.3.gz: OK /var/log/apt/history.log.1.gz: OK /var/log/apt/term.log.1.gz: OK /var/log/auth.log: OK /var/log/auth.log.1: OK /var/log/auth.log.2.gz: OK /var/log/auth.log.3.gz: OK /var/log/auth.log.4.gz: OK /var/log/bootstrap.log: OK /var/log/btmp: Empty file /var/log/btmp.1: Empty file /var/log/clamav/freshclam.log: OK /var/log/clamav/clamav.log: OK /var/log/cloud-init-output.log: OK /var/log/cloud-init.log: OK /var/log/dmesg: OK /var/log/dmesg.0: OK /var/log/dmesg.1.gz: OK /var/log/dmesg.2.gz: OK /var/log/dmesg.3.gz: OK /var/log/dmesg.4.gz: OK /var/log/dpkg.log: OK /var/log/dpkg.log.1: OK /var/log/dpkg.log.2.gz: OK /var/log/dpkg.log.3.gz: OK /var/log/fail2ban.log: OK /var/log/fail2ban.log.1: OK /var/log/fail2ban.log.2.gz: OK /var/log/fail2ban.log.3.gz: OK /var/log/fail2ban.log.4.gz: OK /var/log/faillog: Empty file /var/log/image_build_date: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system@39b7104cd2584ca49aff5d0d0dfed6a6-000000000000057d-00064a344ea267e7.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/user-1001@3b58a965ff1140268e712c1cc66c0db1-000000000002a73d-00064bb582ecfe3d.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/user-1001@06b12b5d07934e24840ec92ec9360f71-00000000000021f3-00064a479cf852a6.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system@06b12b5d07934e24840ec92ec9360f71-00000000000021f4-00064a479cf98088.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system@06b12b5d07934e24840ec92ec9360f71-0000000000001ac7-00064a479a03d21a.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system@3b58a965ff1140268e712c1cc66c0db1-0000000000029fce-00064bb5707b42ce.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system@06b12b5d07934e24840ec92ec9360f71-0000000000016c35-00064b360ef53e5b.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system@7df545ffa9c74d0895b4c5add5a9225e-000000000003d9f9-00064de429110445.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/user-1001@39b7104cd2584ca49aff5d0d0dfed6a6-0000000000001396-00064a364da9b28d.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/system@7df545ffa9c74d0895b4c5add5a9225e-00000000000496fe-0006504875c58fc1.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d/[email protected]~: OK /var/log/journal/de51b77a164342b2b509bf928ec004e4/system.journal: OK /var/log/journal/de51b77a164342b2b509bf928ec004e4/user-1000.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d.netdata/system@f81d93523854462995ca8adf5f9a743c-0000000000000001-00064b06b553056b.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d.netdata/[email protected]~: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d.netdata/system.journal: OK /var/log/journal/a4494f6a7c4340ba93e1da07576aba7d.netdata/system@f81d93523854462995ca8adf5f9a743c-0000000000006876-00064d46aea07c66.journal: OK /var/log/kern.log: OK /var/log/kern.log.1: OK /var/log/kern.log.2.gz: OK /var/log/kern.log.3.gz: OK /var/log/kern.log.4.gz: OK /var/log/landscape/sysinfo.log: Empty file /var/log/lastlog: OK /var/log/letsencrypt/letsencrypt.log.6.gz: OK /var/log/letsencrypt/letsencrypt.log.10.gz: OK /var/log/letsencrypt/letsencrypt.log.2.gz: OK /var/log/letsencrypt/letsencrypt.log.8.gz: OK /var/log/letsencrypt/letsencrypt.log.4.gz: OK /var/log/letsencrypt/letsencrypt.log.7.gz: OK /var/log/letsencrypt/letsencrypt.log.5.gz: OK /var/log/letsencrypt/letsencrypt.log.9.gz: OK /var/log/letsencrypt/letsencrypt.log.12.gz: OK /var/log/letsencrypt/letsencrypt.log.1.gz: OK /var/log/letsencrypt/letsencrypt.log.3.gz: OK /var/log/letsencrypt/letsencrypt.log.11.gz: OK /var/log/letsencrypt/letsencrypt.log: OK /var/log/netdata/access.log.9.gz: OK /var/log/netdata/access.log.3.gz: OK /var/log/netdata/access.log.11.gz: OK /var/log/netdata/access.log.2.gz: OK /var/log/netdata/debug.log: Empty file /var/log/netdata/access.log.13.gz: OK /var/log/netdata/aclk.log: Empty file /var/log/netdata/access.log.14.gz: OK /var/log/netdata/access.log: Empty file /var/log/netdata/access.log.10.gz: OK /var/log/netdata/access.log.1: OK /var/log/netdata/access.log.6.gz: OK /var/log/netdata/access.log.5.gz: OK /var/log/netdata/access.log.4.gz: OK /var/log/netdata/access.log.8.gz: OK /var/log/netdata/access.log.7.gz: OK /var/log/netdata/access.log.12.gz: OK /var/log/nginx/error.log.9.gz: OK /var/log/nginx/error.log.11.gz: OK /var/log/nginx/wiki_access.log.6.gz: OK /var/log/nginx/dev.kulivps.access.log.10.gz: OK /var/log/nginx/access.log.9.gz: OK /var/log/nginx/wiki_access.log.13.gz: OK /var/log/nginx/error.log.10.gz: OK /var/log/nginx/wiki_access.log.9.gz: OK /var/log/nginx/wiki_access.log.7.gz: OK /var/log/nginx/error.log.8.gz: OK /var/log/nginx/wiki_access.log.1: OK /var/log/nginx/error.log.12.gz: OK /var/log/nginx/wiki_access.log.3.gz: OK /var/log/nginx/error.log.4.gz: OK /var/log/nginx/access.log.3.gz: OK /var/log/nginx/wiki_access.log: OK /var/log/nginx/wiki_access.log.8.gz: OK /var/log/nginx/dev.kulivps.access.log.8.gz: OK /var/log/nginx/dev.kulivps.access.log.4.gz: OK /var/log/nginx/wiki_access.log.12.gz: OK /var/log/nginx/error.log.5.gz: OK /var/log/nginx/error.log.7.gz: OK /var/log/nginx/dev.kulivps.access.log: OK /var/log/nginx/dev.kulivps.access.log.6.gz: OK /var/log/nginx/wiki_access.log.5.gz: OK /var/log/nginx/wiki_access.log.4.gz: OK /var/log/nginx/error.log.3.gz: OK /var/log/nginx/access.log.11.gz: OK /var/log/nginx/wiki_error.log: Empty file /var/log/nginx/dev.kulivps.access.log.5.gz: OK /var/log/nginx/wiki_access.log.14.gz: OK /var/log/nginx/dev.kulivps.error.log.1: OK /var/log/nginx/dev.kulivps.access.log.13.gz: OK /var/log/nginx/error.log.14.gz: OK /var/log/nginx/access.log.2.gz: OK /var/log/nginx/dev.kulivps.access.log.9.gz: OK /var/log/nginx/dev.kulivps.access.log.14.gz: OK /var/log/nginx/access.log.13.gz: OK /var/log/nginx/dev.kulivps.access.log.7.gz: OK /var/log/nginx/wiki_access.log.2.gz: OK /var/log/nginx/dev.kulivps.access.log.1: OK /var/log/nginx/error.log.2.gz: OK /var/log/nginx/wiki_access.log.11.gz: OK /var/log/nginx/dev.kulivps.access.log.12.gz: OK /var/log/nginx/error.log: OK /var/log/nginx/access.log.14.gz: OK /var/log/nginx/access.log: OK /var/log/nginx/dev.kulivps.access.log.11.gz: OK /var/log/nginx/wiki_error.log.1: OK /var/log/nginx/error.log.1: OK /var/log/nginx/error.log.6.gz: OK /var/log/nginx/dev.kulivps.error.log: Empty file /var/log/nginx/dev.kulivps.access.log.2.gz: OK /var/log/nginx/dev.kulivps.access.log.3.gz: OK /var/log/nginx/wiki_error.log.2.gz: OK /var/log/nginx/access.log.10.gz: OK /var/log/nginx/error.log.13.gz: OK /var/log/nginx/access.log.1: OK /var/log/nginx/wiki_access.log.10.gz: OK /var/log/nginx/access.log.6.gz: OK /var/log/nginx/access.log.5.gz: OK /var/log/nginx/access.log.4.gz: OK /var/log/nginx/access.log.8.gz: OK /var/log/nginx/access.log.7.gz: OK /var/log/nginx/access.log.12.gz: OK /var/log/php8.3-fpm-slow.log: OK /var/log/php8.3-fpm.log: OK /var/log/php8.3-fpm.log.1: OK /var/log/php8.3-fpm.log.10.gz: OK /var/log/php8.3-fpm.log.11.gz: OK /var/log/php8.3-fpm.log.12.gz: OK /var/log/php8.3-fpm.log.2.gz: OK /var/log/php8.3-fpm.log.3.gz: OK /var/log/php8.3-fpm.log.4.gz: OK /var/log/php8.3-fpm.log.5.gz: OK /var/log/php8.3-fpm.log.6.gz: OK /var/log/php8.3-fpm.log.7.gz: OK /var/log/php8.3-fpm.log.8.gz: OK /var/log/php8.3-fpm.log.9.gz: OK /var/log/redis/redis-server.log.4.gz: OK /var/log/redis/redis-server.log.3.gz: OK /var/log/redis/redis-server.log.1: OK /var/log/redis/redis-server.log.6.gz: OK /var/log/redis/redis-server.log.2.gz: OK /var/log/redis/redis-server.log.8.gz: OK /var/log/redis/redis-server.log: Empty file /var/log/redis/redis-server.log.7.gz: OK /var/log/redis/redis-server.log.9.gz: OK /var/log/redis/redis-server.log.5.gz: OK /var/log/redis/redis-server.log.10.gz: OK /var/log/syslog: OK /var/log/syslog.1: OK /var/log/syslog.2.gz: OK /var/log/syslog.3.gz: OK /var/log/syslog.4.gz: OK /var/log/sysstat/sar10: OK /var/log/sysstat/sa11: OK /var/log/sysstat/sar09: OK /var/log/sysstat/sa16: OK /var/log/sysstat/sar14: OK /var/log/sysstat/sa13: OK /var/log/sysstat/sa07: OK /var/log/sysstat/sar08: OK /var/log/sysstat/sa10: OK /var/log/sysstat/sa14: OK /var/log/sysstat/sar12: OK /var/log/sysstat/sa12: OK /var/log/sysstat/sa15: OK /var/log/sysstat/sar13: OK /var/log/sysstat/sa08: OK /var/log/sysstat/sa09: OK /var/log/sysstat/sar11: OK /var/log/sysstat/sar07: OK /var/log/ubuntu-advantage-apt-hook.log: Empty file /var/log/ufw.log: Empty file /var/log/ufw.log.1: OK /var/log/ufw.log.2.gz: OK /var/log/ufw.log.3.gz: OK /var/log/ufw.log.4.gz: OK /var/log/unattended-upgrades/unattended-upgrades-dpkg.log: OK /var/log/unattended-upgrades/unattended-upgrades.log.3.gz: OK /var/log/unattended-upgrades/unattended-upgrades-dpkg.log.1.gz: OK /var/log/unattended-upgrades/unattended-upgrades-shutdown.log: Empty file /var/log/unattended-upgrades/unattended-upgrades.log.2.gz: OK /var/log/unattended-upgrades/unattended-upgrades.log: OK /var/log/unattended-upgrades/unattended-upgrades-dpkg.log.2.gz: OK /var/log/unattended-upgrades/unattended-upgrades-dpkg.log.3.gz: OK /var/log/unattended-upgrades/unattended-upgrades.log.1.gz: OK /var/log/wtmp: OK ----------- SCAN SUMMARY ----------- Known viruses: 3627862 Engine version: 1.4.4 Scanned directories: 20 Scanned files: 214 Infected files: 0 Data scanned: 1027.19 MB Data read: 406.14 MB (ratio 2.53:1) Time: 146.114 sec (2 m 26 s) Start Date: 2026:05:16 12:03:28 End Date: 2026:05:16 12:05:54 root@srv:~#
* Catatan: ganti dengan target folder di server Anda, misal public_html
5. Restart Service ClamAV
$ systemctl start clamav-daemon
$ systemctl start clamav-freshclam
6. Cek Versi ClamAV
Untuk mengecek versi ClamAV, gunakan perintah berikut ini:
$ clamd --version ClamAV 1.4.4/28002/Sat May 16 06:25:50 2026
ATAU
$ clamscan --version ClamAV 1.4.4/28002/Sat May 16 06:25:50 2026
