About ClamAV®
ClamAV is an open source (GPL) antivirus engine designed for detecting Trojans, viruses, malware and other malicious threats. It is the de facto standard for mail gateway scanning. It provides a high performance mutli-threaded scanning daemon, command line utilities for on demand file scanning, and an intelligent tool for automatic signature updates. The core ClamAV library provides numerous file format detection mechanisms, file unpacking support, archive support, and multiple signature languages for detecting threats. The core ClamAV library is utilized in Immunet 3.0, powered by ClamAV, which is a fast, fully featured Desktop AV solution for Windows.
Latest Stable Release
Latest ClamAV® stable release is: 0.97.3
Windows Antivirus - Immunet 3.0, powered by ClamAV (Learn more) 
ClamAV Virus Databases:
main.cvd ver. 54 released on 11 Oct 2011 10:34 :0400 (sig count: 1044387)
daily.cvd ver. 14641 released on 12 Mar 2012 20:04 :0400 (sig count: 115927)
bytecode.cvd ver. 168 released on 08 Mar 2012 15:53 :0500 (sig count: 38)
safebrowsing.cvd ver. 36786 released on 13 Mar 2012 05:00 :0400 (sig count: 1052501)
Latest Development Release (Release Candidates)
There are no Release Candidates currently planned.
News
Are you a ninja? Want to become one?
February 28th, 2012 Posted by - webmaster
Then we want to talk to you! While you can look up the different openings that the Vulnerability Research Team (VRT) has, what you won’t see if why you should choose Sourcefire for your next job. This is why I love working here, in no particular order:
1. The people. We come from different backgrounds and bring a wealth of talent and knowledge to the table. Most of us were using computers pre-Internet before (Read more...)
Open Source Fact and Fiction: Sourcefire Stays True To Its Roots
January 27th, 2012 Posted by - webmaster
Open Source Fact and Fiction: Sourcefire Stays True To Its Roots
Alan Shimel writes a great article about our new product FireAMP, and it’s roots, not only with ClamAV but many other OpenSource technologies. It’s a quick read, but really shows what we are trying to do here at Sourcefire and how OpenSource is not only the foundation of our products, but really, is baked into everything that we do here.
ClamAV 0.97.3 installation guide on Mac OS X has been posted!
December 11th, 2011 Posted by - webmaster
Thanks to Christoph Murauer for an excellent guide to installing ClamAV 0.97.3 on Mac OS X!
Check out Christoph’s ClamAV 0.97.3 install guide here.
Thanks to all of our ClamAV community contributors on their documentation, if you’d like to contribute some documentation, please feel free to contact me at joel@snort.org.
As always Snort.org makes no warranty or edits to submitted documentation, and we’d like to thank the contributors of the documentation for their time.
Bytecode signatures for polymorphic malware
November 4th, 2011 Posted by - webmaster
About one year ago Alain presented the LLVM-based ClamAV bytecode. We’ve realised that, besides that initial introduction, we’ve never shown any real life use case, nor did we ever demonstrate the incredible power and flexibility of the ClamAV bytecode engine. I’ll try to fix that today.
I decided to target the Xpaj virus because it’s an polymorphic file infector, which means that it is not easily to detected with plain signatures.
Please note that I’m (Read more...)
ClamAV 0.97.3 has been released!
October 17th, 2011 Posted by - webmaster
Just released is version 0.97.3 of ClamAV. The following changes are noted in the ChangeLog distributed with the package:
Mon Oct 10 14:41:48 CEST 2011 (tk)
----------------------------------
freshclam/manager.c: fix error when compiling without DNS support (bb#3056)
Sat Oct 8 12:19:49 EEST 2011 (edwin)
-------------------------------------
libclamav/pdf.c: flag and dump PDF objects with /Launch (bb #3514)
Sat Oct 8 12:10:13 EEST 2011 (edwin)
-------------------------------------
libclamav/bytecode.c,bytecode_api.c: fix recursion level crash (Read more...)