Thanks @josepp, that is just what I have been doing, ModSec learning curve, so far enabled COMODO and disabled ModSecurity from the local accounts, my working team is just two people, we have to finish migrating and then tune up ModSec site by site, what I do know is that ModSecurity will be in our lives from now on.
run this commands one by one and it will get resolved remove any config done previously to /usr/lib/systemd/system/clamd.service
service clamd stop && service amavisd stop
sed -i 's/TimeoutStartSec.*/TimeoutStartSec=10min/' /usr/lib/systemd/system/clamd.service
service clamd start && service amavisd start
it will be included in clamd fix script in cwp soon