SmarterMail ESET External AV Nod32
Question asked by Alex Johnson - March 2, 2016 at 5:13 AM
Unanswered
Hi
 
I have Smartermail 14.x in my server and as you all may know clamav does not doing a very good job of catching malwares from email attachments so Ive decided to install NOD32 on the server and add a command-line AV in smartermail to use this antivirus for scanning incoming emails.
Here is the command line Im using :
"C:\Program Files\ESET\ESET Endpoint Antivirus\ecls.exe" /base-dir="C:\Program Files\ESET\ESET Endpoint Antivirus" /aind  /arch //sfx /adware /clean-mode=Delete %FILEPATH%
 
 
When I check delivery log it says :
[20002] Unable to parse Command Line Path: "C:\Program Files\ESET\ESET Endpoint Antivirus\ecls.exe" /base-dir="C:\Program Files\ESET\ESET Endpoint Antivirus" /aind  /arch //sfx /adware /clean-mode=Delete %FILEPATH%
 
Any help would be appreciated.

5 Replies

Reply to Thread
0
Alfred Lim Replied
Try

C:\Program Files\ESET\ESET Endpoint Antivirus\ecls.exe /base-dir="C:\Program Files\ESET\ESET Endpoint Antivirus" /aind /arch //sfx /adware /clean-mode=Delete %FILEPATH%
0
Alex Johnson Replied
Thanks Alfred it worked!
But unfortunately it does nothing, even if the attachment is a virus!
I've tested it with a few infected email attachments but it does absolutely nothing.
Log : Launching 'C:\Program Files\ESET\ESET Endpoint Antivirus\ecls.exe' command line exe.
I've copied the attachment over into the server and ESET antivirus removed it immediately .
Is there anything I could do to force the ESET to remove the infected attachments?
0
You must use %FILEPATH and not %FILEPATH%
0
Davin Smyth Replied
there seems to be a double forward slash at //sfx. works with the following command.

C:\Program Files\ESET\ESET Endpoint Antivirus\ecls.exe /base-dir="C:\Program Files\ESET\ESET Endpoint Antivirus" /aind /arch /sfx /adware /clean-mode=Delete %FILEPATH
Smarter Mail v13.3
0
Alfred Lim Replied
i already try the above command line in Windows server 2003, it works. But it is not working in Windows 2008 and above, the log file show the email was scan but no virus found, if i try to use command prompt (run as administrator), the virus can be detected and deleted, is there any permission privileges require for command-line AV virus scanning for the NOD32?

Reply to Thread