NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Antivirus stopped updating
The antivirus stopped updating a couple of weeks ago. I tried updating os to 6.9.5 but i stilldo not update.
Tried running host -t txt current.cvd.clamav.net which returned a long string of numbers...
Note that starting with 6.10.x, netgear is dropping antivirus on the RN100 series. See item 19 here: https://community.netgear.com/t5/ReadyNAS-Beta/ReadyNASOS-6-10-0-RC2/m-p/1651396#M10285
StephenB wrote:
Hopchen wrote:
If I try to resolve that address, even with Google DNS, it does not resolve.
Cloudflare (1.1.1.1) doesn't resolve it either.
Likely this is on ClamAV (FWIW I have seen issues with their DNS before).
Alright, so after a bit of digging around I realised that current.cvd.clamav.net is not a DNS A record. This explains why it does not resolve upon normal DNS lookup :)
Instead it is a TXT record and querying it correctly actually works fine. You can query it, as OP said, with:
host -t txt current.cvd.clamav.net
That works fine.
So yeah, not sure why the ClamAV engine does not update to the latest version.
So, after a reboot of the NAS and then running freshclam it did some more updates of the virus database.
root@Datastore:~# freshclam
ClamAV update process started at Sat Mar 16 15:38:03 2019
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.100.2 Recommended version: 0.101.1
DON'T PANIC! Read https://www.clamav.net/documents/upgrading-clamav
main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr)
Downloading daily-25390.cdiff [100%]
daily.cld updated (version: 25390, sigs: 1520006, f-level: 63, builder: raynman)
bytecode.cvd is up to date (version: 328, sigs: 94, f-level: 63, builder: neo)
Database updated (6086349 signatures) from database.clamav.net (IP: 104.16.219.84)
Clamd successfully notified about the update.
Clamscan is now running on the NAS as I suppose it is re-scanning files as the AV signatures are updated. I will leave it run and see what happens.
The AV engine is the same version as before but I suppose that gets updated in a different way - not 100% sure about the upgrade process for that.
Cheers
I only get to the dowload, then the process seems to hang or get to an infinite loop.
root@ReadyNAS:~# freshclam -v
Current working dir is /var/lib/clamav
Max retries == 5
ClamAV update process started at Sat Mar 16 17:11:55 2019
Using IPv6 aware code
Querying current.cvd.clamav.net
TTL: 235
Software version from DNS: 0.101.1
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.100.2 Recommended version: 0.101.1
DON'T PANIC! Read https://www.clamav.net/documents/upgrading-clamav
main.cvd version from DNS: 58
main.cld is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr)
daily.cvd version from DNS: 25390
Retrieving http://database.clamav.net/daily-25380.cdiff
Trying to download http://database.clamav.net/daily-25380.cdiff (IP: 104.16.218.84)
Downloading daily-25380.cdiff [100%]
Then reshclam process takes 80% CPU:
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
12648 root 20 0 14448 9672 4976 R 81.8 1.9 8:58.20 freshclam
Cheers
Note that starting with 6.10.x, netgear is dropping antivirus on the RN100 series. See item 19 here: https://community.netgear.com/t5/ReadyNAS-Beta/ReadyNASOS-6-10-0-RC2/m-p/1651396#M10285
Thank you all for your help. Maybe the best thing to do is to disable the AV on my RN102 and rely om virus scanning on the clients instead.
Cheers
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
