[sergiumartin]

here is the zimbra.log content since i started the antivirus service again ..
you can see at the begin that clamd didn't really start..so i used zmclamdctl start and then all services looked ok , but i still got the previous errors and messages still get stuck in deffered queue ..

Code:

Jun 13 07:31:37 server03 amavis[22072]: starting.  /opt/zimbra/amavisd/sbin/amavisd at server03.computervoice.com amavisd-new-2.4.3 (20060930), Unicode aware, LANG=en_US.UTF-8
Jun 13 07:31:37 server03 amavis[22072]: user=1001, EUID: 1001 (1001);  group=, EGID: 1000 1000 51 5 (1000 1000 51 5); log_level=1
Jun 13 07:31:37 server03 amavis[22072]: Perl version               5.008008
Jun 13 07:31:38 server03 amavis[22072]: SpamControl: init_pre_chroot done
Jun 13 07:31:38 server03 amavis[22073]: Net::Server: Process Backgrounded
Jun 13 07:31:38 server03 amavis[22073]: Net::Server: 2007/06/13-07:31:38 Amavis (type Net::Server::PreForkSimple) starting! pid(22073)
Jun 13 07:31:38 server03 amavis[22073]: Net::Server: Binding to UNIX socket file /opt/zimbra/amavisd/amavisd.sock using SOCK_STREAM
Jun 13 07:31:38 server03 amavis[22073]: Net::Server: Binding to TCP port 10024 on host 127.0.0.1
Jun 13 07:31:38 server03 amavis[22073]: Net::Server: Group Not Defined.  Defaulting to EGID '1000 1000 51 5'
Jun 13 07:31:38 server03 amavis[22073]: Net::Server: User Not Defined.  Defaulting to EUID '1001'
Jun 13 07:31:38 server03 amavis[22073]: Module Amavis::Conf        2.072
Jun 13 07:31:38 server03 amavis[22073]: Module Archive::Tar        1.30
Jun 13 07:31:38 server03 amavis[22073]: Module Archive::Zip        1.18
Jun 13 07:31:38 server03 amavis[22073]: Module BerkeleyDB          0.31
Jun 13 07:31:38 server03 amavis[22073]: Module Compress::Zlib      1.42
Jun 13 07:31:38 server03 amavis[22073]: Module Convert::TNEF       0.17
Jun 13 07:31:38 server03 amavis[22073]: Module Convert::UUlib      1.08
Jun 13 07:31:38 server03 amavis[22073]: Module DBD::mysql          4.001
Jun 13 07:31:38 server03 amavis[22073]: Module DBI                 1.53
Jun 13 07:31:38 server03 amavis[22073]: Module DB_File             1.815
Jun 13 07:31:38 server03 amavis[22073]: Module Digest::MD5         2.36
Jun 13 07:31:38 server03 amavis[22073]: Module MIME::Entity        5.420
Jun 13 07:31:38 server03 amavis[22073]: Module MIME::Parser        5.420
Jun 13 07:31:38 server03 amavis[22073]: Module MIME::Tools         5.420
Jun 13 07:31:38 server03 amavis[22073]: Module Mail::Header        1.74
Jun 13 07:31:38 server03 amavis[22073]: Module Mail::Internet      1.74
Jun 13 07:31:38 server03 amavis[22073]: Module Mail::SPF::Query    1.999001
Jun 13 07:31:38 server03 amavis[22073]: Module Mail::SpamAssassin  3.001007
Jun 13 07:31:38 server03 amavis[22073]: Module Net::Cmd            2.27
Jun 13 07:31:38 server03 amavis[22073]: Module Net::DNS            0.59
Jun 13 07:31:38 server03 amavis[22073]: Module Net::LDAP           0.33
Jun 13 07:31:38 server03 amavis[22073]: Module Net::SMTP           2.30
Jun 13 07:31:38 server03 amavis[22073]: Module Net::Server         0.95
Jun 13 07:31:38 server03 amavis[22073]: Module Time::HiRes         1.9704
Jun 13 07:31:38 server03 amavis[22073]: Module Unix::Syslog        0.99
Jun 13 07:31:38 server03 amavis[22073]: Amavis::DB code      loaded
Jun 13 07:31:38 server03 amavis[22073]: Amavis::Cache code   loaded
Jun 13 07:31:38 server03 amavis[22073]: SQL base code        NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: SQL::Log code        NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: SQL::Quarantine      NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: Lookup::SQL code     NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: Lookup::LDAP code    loaded
Jun 13 07:31:38 server03 amavis[22073]: AM.PDP-in proto code loaded
Jun 13 07:31:38 server03 amavis[22073]: SMTP-in proto code   loaded
Jun 13 07:31:38 server03 amavis[22073]: Courier proto code   NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: SMTP-out proto code  loaded
Jun 13 07:31:38 server03 amavis[22073]: Pipe-out proto code  NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: BSMTP-out proto code NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: Local-out proto code loaded
Jun 13 07:31:38 server03 amavis[22073]: OS_Fingerprint code  NOT loaded
Jun 13 07:31:38 server03 amavis[22073]: ANTI-VIRUS code      loaded
Jun 13 07:31:38 server03 amavis[22073]: ANTI-SPAM code       loaded
Jun 13 07:31:38 server03 amavis[22073]: ANTI-SPAM-SA code    loaded
Jun 13 07:31:38 server03 amavis[22073]: Unpackers code       loaded
Jun 13 07:31:38 server03 clamd[22086]: Daemon started.
Jun 13 07:31:38 server03 clamd[22086]: clamd daemon 0.88.7 (OS: linux-gnu, ARCH: i386, CPU: i686)
Jun 13 07:31:38 server03 clamd[22086]: Log file size limited to 20971520 bytes.
Jun 13 07:31:38 server03 clamd[22086]: Reading databases from /opt/zimbra/clamav/db
Jun 13 07:31:38 server03 amavis[22073]: Found $file            at /usr/bin/file
Jun 13 07:31:38 server03 amavis[22073]: No $dspam,             not using it
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .mail
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .asc 
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .uue 
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .hqx 
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .ync 
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .F    tried: unfreeze, freeze -d, melt, fcat
Jun 13 07:31:38 server03 amavis[22073]: Found decoder for    .Z    at /usr/bin/gzip -d
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .gz  
Jun 13 07:31:38 server03 amavis[22073]: Found decoder for    .bz2  at /usr/bin/bzip2 -d
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .lzo  tried: lzop -d
Jun 13 07:31:38 server03 amavis[22073]: Found decoder for    .rpm  at /usr/bin/rpm2cpio
Jun 13 07:31:38 server03 amavis[22073]: Found decoder for    .cpio at /usr/bin/pax
Jun 13 07:31:38 server03 amavis[22073]: Found decoder for    .tar  at /usr/bin/pax
Jun 13 07:31:38 server03 amavis[22073]: Found decoder for    .deb  at /usr/bin/ar
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .zip 
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .rar  tried: rar, unrar
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .arj  tried: arj, unarj
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .arc  tried: nomarch, arc
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .zoo  tried: zoo
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .lha  tried: lha
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .cab  tried: cabextract
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .tnef tried: tnef
Jun 13 07:31:38 server03 amavis[22073]: Internal decoder for .tnef
Jun 13 07:31:38 server03 amavis[22073]: No decoder for       .exe  tried: rar, unrar; lha; arj, unarj
Jun 13 07:31:38 server03 amavis[22073]: Using internal av scanner code for (primary) ClamAV-clamd
Jun 13 07:31:38 server03 amavis[22073]: Creating db in /opt/zimbra/amavisd/db/; BerkeleyDB 0.31, libdb 4.2
Jun 13 07:31:39 server03 amavis[22073]: SpamControl: initializing Mail::SpamAssassin
Jun 13 07:31:40 server03 amavis[22073]: SpamControl: init_pre_fork done
Jun 13 07:31:40 server03 sudo:   zimbra : TTY=unknown ; PWD=/ ; USER=root ; COMMAND=/opt/zimbra/postfix-2.2.9/sbin/postalias /etc/aliases
Jun 13 07:31:41 server03 sudo:   zimbra : TTY=unknown ; PWD=/ ; USER=root ; COMMAND=/opt/zimbra/postfix-2.2.9/sbin/postfix reload norewrite
Jun 13 07:31:41 server03 clamd[22086]: Protecting against 93408 viruses.
Jun 13 07:31:41 server03 postfix/postfix-script: refreshing the Postfix mail system
Jun 13 07:31:41 server03 postfix/master[2484]: reload configuration /opt/zimbra/postfix-2.2.9/conf
Jun 13 07:31:41 server03 postfix/anvil[24956]: statistics: max connection rate 1/60s for (smtp:64.132.92.129) at Jun 13 07:28:07
Jun 13 07:31:41 server03 postfix/anvil[24956]: statistics: max connection count 1 for (smtp:64.132.92.129) at Jun 13 07:28:07
Jun 13 07:31:41 server03 postfix/anvil[24956]: statistics: max cache size 2 at 
Jun 13 07:32:32 server03 postfix/smtpd[22267]: connect from eh1.eyezonhealth.com[65.111.174.144]
Jun 13 07:32:32 server03 postfix/smtpd[22267]: 4AB831128F8E: client=eh1.eyezonhealth.com[65.111.174.144]
Jun 13 07:32:32 server03 postfix/cleanup[22272]: 4AB831128F8E: message-id=<20070613123232.4AB831128F8E@server03.computervoice.com>
Jun 13 07:32:32 server03 postfix/qmgr[22120]: 4AB831128F8E: from=<LindoraLeanForLife@eyezonhealth.com>, size=3178, nrcpt=1 (queue active)
Jun 13 07:32:32 server03 postfix/smtpd[22267]: disconnect from eh1.eyezonhealth.com[65.111.174.144]
Jun 13 07:32:32 server03 amavis[22102]: (22102-01) ESMTP::10024 /opt/zimbra/amavisd/tmp/amavis-20070613T073232-22102: <LindoraLeanForLife@eyezonhealth.com> -> <manta@computervoice.com> SIZE=3178 BODY=8BITMIME Received: from server03.computervoice.com ([127.0.0.1]) by localhost (server03.computervoice.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP for <manta@computervoice.com>; Wed, 13 Jun 2007 07:32:32 -0500 (CDT)
Jun 13 07:32:32 server03 amavis[22102]: (22102-01) Checking: 8XKVE9tOSEWj [65.111.174.144] <LindoraLeanForLife@eyezonhealth.com> -> <manta@computervoice.com>
Jun 13 07:32:32 server03 amavis[22102]: (22102-01) ClamAV-clamd: Can't connect to INET socket 127.0.0.1:3310: Connection refused, retrying (1)
Jun 13 07:32:33 server03 amavis[22102]: (22102-01) (!)ClamAV-clamd: Can't connect to INET socket 127.0.0.1:3310: Connection refused, retrying (2)
Jun 13 07:32:39 server03 amavis[22102]: (22102-01) (!!)ClamAV-clamd av-scanner FAILED: Too many retries to talk to 127.0.0.1:3310 (Can't connect to INET socket 127.0.0.1:3310: Connection refused) at (eval 59) line 269.
Jun 13 07:32:39 server03 amavis[22102]: (22102-01) (!!)WARN: all primary virus scanners failed, considering backups
Jun 13 07:32:39 server03 amavis[22102]: (22102-01) (!!)TROUBLE in check_mail: virus_scan FAILED: virus_scan: ALL VIRUS SCANNERS FAILED: ClamAV-clamd av-scanner FAILED: Too many retries to talk to 127.0.0.1:3310 (Can't connect to INET socket 127.0.0.1:3310: Connection refused) at (eval 59) line 269.
Jun 13 07:32:39 server03 amavis[22102]: (22102-01) (!)PRESERVING EVIDENCE in /opt/zimbra/amavisd/tmp/amavis-20070613T073232-22102
Jun 13 07:32:39 server03 postfix/smtp[22273]: 4AB831128F8E: to=<manta@computervoice.com>, relay=127.0.0.1[127.0.0.1], delay=7, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=22102-01, virus_scan FAILED: virus_scan: ALL VIRUS SCANNERS FAILED: ClamAV-clamd av-scanner FAILED: Too many retries to talk to 127.0.0.1:3310 (Can't connect to INET socket 127.0.0.1:3310: Connection refused) at (eval 59) line 269. (in reply to end of DATA command))
Jun 13 07:32:53 server03 postfix/smtpd[22267]: warning: 65.208.234.44: hostname cwpexch01.manchg01.manfinancial.net verification failed: Name or service not known
Jun 13 07:32:53 server03 postfix/smtpd[22267]: connect from unknown[65.208.234.44]
Jun 13 07:32:53 server03 postfix/smtpd[22267]: EDE951128FA8: client=unknown[65.208.234.44]
Jun 13 07:32:54 server03 postfix/cleanup[22272]: EDE951128FA8: message-id=<8BE33F976BBED34385CB2224773E25EE04400129@CWPEXCV01.manchg01.manfinancial.net>
Jun 13 07:32:54 server03 postfix/qmgr[22120]: EDE951128FA8: from=<CWhite@manfinancial.com>, size=21907, nrcpt=1 (queue active)
Jun 13 07:32:54 server03 amavis[22102]: (22102-02) ESMTP::10024 /opt/zimbra/amavisd/tmp/amavis-20070613T073254-22102: <CWhite@manfinancial.com> -> <dolarov@computervoice.com> SIZE=21907 Received: from server03.computervoice.com ([127.0.0.1]) by localhost (server03.computervoice.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP for <dolarov@computervoice.com>; Wed, 13 Jun 2007 07:32:54 -0500 (CDT)
Jun 13 07:32:54 server03 postfix/smtpd[22267]: disconnect from unknown[65.208.234.44]
Jun 13 07:32:54 server03 amavis[22102]: (22102-02) Checking: VMGv7qYCk2zN [65.208.234.44] <CWhite@manfinancial.com> -> <dolarov@computervoice.com>
Jun 13 07:32:54 server03 amavis[22102]: (22102-02) ClamAV-clamd: Can't connect to INET socket 127.0.0.1:3310: Connection refused, retrying (1)
Jun 13 07:32:55 server03 amavis[22102]: (22102-02) (!)ClamAV-clamd: Can't connect to INET socket 127.0.0.1:3310: Connection refused, retrying (2)
Jun 13 07:32:57 server03 sshd[22335]: reverse mapping checking getaddrinfo for 82-77-35-21.arad.rdsnet.ro [82.77.35.21] failed - POSSIBLE BREAK-IN ATTEMPT!
Jun 13 07:33:00 server03 sshd[22335]: Accepted keyboard-interactive/pam for smartin from 82.77.35.21 port 1673 ssh2
Jun 13 07:33:01 server03 amavis[22102]: (22102-02) (!!)ClamAV-clamd av-scanner FAILED: Too many retries to talk to 127.0.0.1:3310 (Can't connect to INET socket 127.0.0.1:3310: Connection refused) at (eval 59) line 269.
Jun 13 07:33:01 server03 amavis[22102]: (22102-02) (!!)WARN: all primary virus scanners failed, considering backups
Jun 13 07:33:01 server03 amavis[22102]: (22102-02) (!!)TROUBLE in check_mail: virus_scan FAILED: virus_scan: ALL VIRUS SCANNERS FAILED: ClamAV-clamd av-scanner FAILED: Too many retries to talk to 127.0.0.1:3310 (Can't connect to INET socket 127.0.0.1:3310: Connection refused) at (eval 59) line 269.
Jun 13 07:33:01 server03 amavis[22102]: (22102-02) (!)PRESERVING EVIDENCE in /opt/zimbra/amavisd/tmp/amavis-20070613T073254-22102
Jun 13 07:33:01 server03 postfix/smtp[22273]: EDE951128FA8: to=<dolarov@computervoice.com>, relay=127.0.0.1[127.0.0.1], delay=8, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=22102-02, virus_scan FAILED: virus_scan: ALL VIRUS SCANNERS FAILED: ClamAV-clamd av-scanner FAILED: Too many retries to talk to 127.0.0.1:3310 (Can't connect to INET socket 127.0.0.1:3310: Connection refused) at (eval 59) line 269. (in reply to end of DATA command))
Jun 13 07:33:04 server03 su: (to root) smartin on /dev/pts/3
Jun 13 07:33:06 server03 su: (to zimbra) smartin on /dev/pts/3
Jun 13 07:33:11 server03 sudo:   zimbra : TTY=pts/3 ; PWD=/ ; USER=root ; COMMAND=/opt/zimbra/libexec/zmtomcatmgr status
Jun 13 07:33:11 server03 zmtomcatmgr[22464]: status requested
Jun 13 07:33:11 server03 zmtomcatmgr[22464]: status OK
Jun 13 07:33:25 server03 clamd[22603]: Daemon started.
Jun 13 07:33:25 server03 clamd[22603]: clamd daemon 0.88.7 (OS: linux-gnu, ARCH: i386, CPU: i686)
Jun 13 07:33:25 server03 clamd[22603]: Log file size limited to 20971520 bytes.
Jun 13 07:33:25 server03 clamd[22603]: Reading databases from /opt/zimbra/clamav/db
Jun 13 07:33:27 server03 clamd[22603]: Protecting against 93425 viruses.
Jun 13 07:33:27 server03 clamd[22606]: Bound to port 3310
Jun 13 07:33:27 server03 clamd[22606]: Setting connection queue length to 15
Jun 13 07:33:27 server03 clamd[22606]: Archive: Archived file size limit set to 104857600 bytes.
Jun 13 07:33:27 server03 clamd[22606]: Archive: Recursion level limit set to 8.
Jun 13 07:33:27 server03 clamd[22606]: Archive: Files limit set to 1000.
Jun 13 07:33:27 server03 clamd[22606]: Archive: Compression ratio limit set to 250.
Jun 13 07:33:27 server03 clamd[22606]: Archive support enabled.
Jun 13 07:33:27 server03 clamd[22606]: Archive: RAR support disabled.
Jun 13 07:33:27 server03 clamd[22606]: Portable Executable support enabled.
Jun 13 07:33:27 server03 clamd[22606]: Mail files support enabled.
Jun 13 07:33:27 server03 clamd[22606]: Mail: Recursion level limit set to 64.
Jun 13 07:33:27 server03 clamd[22606]: OLE2 support enabled.
Jun 13 07:33:27 server03 clamd[22606]: HTML support enabled.
Jun 13 07:33:27 server03 clamd[22606]: Self checking every 1800 seconds.
Jun 13 07:33:31 server03 sudo:   zimbra : TTY=pts/3 ; PWD=/ ; USER=root ; COMMAND=/opt/zimbra/libexec/zmtomcatmgr status
Jun 13 07:33:31 server03 zmtomcatmgr[22703]: status requested
Jun 13 07:33:31 server03 zmtomcatmgr[22703]: status OK
Jun 13 07:33:41 server03 sshd[22739]: Accepted publickey for zimbra from 192.168.29.8 port 45313 ssh2
Jun 13 07:33:41 server03 sshd[22743]: Accepted publickey for zimbra from 192.168.29.8 port 45314 ssh2
Jun 13 07:33:41 server03 sudo:   zimbra : TTY=unknown ; PWD=/opt/zimbra ; USER=root ; COMMAND=/opt/zimbra/libexec/zmqstat
Jun 13 07:33:42 server03 sudo:   zimbra : TTY=unknown ; PWD=/opt/zimbra ; USER=root ; COMMAND=/opt/zimbra/libexec/zmqstat deferred
Jun 13 07:33:42 server03 sudo:   zimbra : TTY=unknown ; PWD=/opt/zimbra ; USER=root ; COMMAND=/opt/zimbra/postfix-2.2.9/sbin/postconf -h queue_directory
Jun 13 07:33:42 server03 sudo:   zimbra : TTY=unknown ; PWD=/opt/zimbra ; USER=root ; COMMAND=/opt/zimbra/postfix-2.2.9/sbin/postconf -h hash_queue_depth
Jun 13 07:33:42 server03 sshd[22746]: Received disconnect from 192.168.29.8: 11: Closed due to user request.
Jun 13 07:33:42 server03 sudo:   zimbra : TTY=unknown ; PWD=/opt/zimbra ; USER=root ; COMMAND=/opt/zimbra/postfix-2.2.9/sbin/postconf -h queue_directory
Jun 13 07:33:42 server03 sudo:   zimbra : TTY=unknown ; PWD=/opt/zimbra ; USER=root ; COMMAND=/opt/zimbra/postfix-2.2.9/sbin/postconf -h hash_queue_depth
Jun 13 07:33:42 server03 sshd[22773]: Received disconnect from 192.168.29.8: 11: Closed due to user request.
Jun 13 07:33:48 server03 sshd[22874]: Accepted publickey for zimbra from 192.168.29.8 port 45316 ssh2
Jun 13 07:33:49 server03 postfix/postsuper[22925]: 4AB831128F8E: requeued
Jun 13 07:33:49 server03 postfix/postsuper[22925]: EDE951128FA8: requeued
Jun 13 07:33:49 server03 postfix/postsuper[22925]: Requeued: 2 messages
Jun 13 07:33:49 server03 sudo:   zimbra : TTY=unknown ; PWD=/opt/zimbra ; USER=root ; COMMAND=/opt/zimbra/postfix/sbin/postsuper -r - deferred
Jun 13 07:33:49 server03 sshd[22877]: Received disconnect from 192.168.29.8: 11: Closed due to user request.

(first part of log..)