Hello guys, Already found the issue being mentioned here: https://www.howtoforge.com/community/threads/solved-clamscan-is-killing-vps.87335/#post-425269 Clamd is an issue in AWS small VPS with 2GB of Ram (kinda sucks if you want a small web tests / dev machine). I've also tested with a 4GB medium instance and everything runs smoothly... I used for the first time the ISPConfig auto install on a debian 11... Wow, I would like to thank you guys, fast and easy to deploy. I used this command to install a "web" only machine (maybe I should have removed php5.6 and php7.3): wget -O - https://get.ispconfig.org | sh -s -- --no-dns --no-mail --no-firewall --no-roundcube --no-mailman --use-ftp-ports=50000-60000 --unattended-upgrades My question relates if clamd / freshclam is being used for web FTP scan? Would the clamav-daemon be safe to remove from startup?