How can I test that the Anti-malware detection is working?

Testing Sentinel Anti-malware Detection

  1. Download the eicar test malware into the httpdocs directory of one of your domains.
  2. Change the ownership from root:root to the owner of the domain. (By default Sentinel will ignore files owned by root).
  3. Run a scan on the domain with the sample malware. See: https://www.danami.com/clients/knowledgebase/168/How-do-I-run-a-malware-scan-using-Sentinel-Anti-malware.html

Testing Sentinel Anti-malware Automatic Quarantine

  1. Make sure that automatic quarantine is enabled. See: https://www.danami.com/clients/knowledgebase/165/How-can-I-enable-automatic-qurantine-using-Sentinal-Anti-malware.html
  2. Download the eicar test malware into the httpdocs directory of one of your domains.
  3. Change the ownership from root:root to the owner of the domain. (By default Sentinel will ignore files owned by root).
  4. If real-time monitoring is enabled then the file should be automatically moved to the quarantine area. If the real-time monitoring is disabled you can run manually run a scan on the domain with the sample malware. See: https://www.danami.com/clients/knowledgebase/168/How-do-I-run-a-malware-scan-using-Sentinel-Anti-malware.html

To Download the Eicar Test Malware Sample

// change to a domain hosted on your server
cd /var/www/vhosts/example.com/httpdocs/

// download the test malware
wget http://www.eicar.org/download/eicar.com.txt

// change the ownership to the domain owner user 
chown example:psacln eicar.com.txt
  • test
  • 0 A felhasználók hasznosnak találták ezt
Hasznosnak találta ezt a választ?

Kapcsolódó cikkek

How can I view the contents of a file in the quarantine?

To View the File Contents Navigate to Sentinel Anti-malware -> Quarantine Click on a File...

How can I change the interface language of the extension?

You can change the interface language under Settings -> Application Settings -> Locale...

Where are the configuration files for Sentinel located?

Centos/RHEL/CloudLinux/AlmaLinux Configuration files: // Linux malware detect (Anti-malware...

How can I enable third party anti-virus signatures within Sentinel to improve the ClamAV detection rate?

Sentinel supports enabling third party anti-virus signatures to improve the detection rate. Full...

How can I report a virus or malware that was not detected by ClamAV?

If you have a virus or malware that is not detected by ClamAV, please fill out:...