Currently Being ModeratedFeb 26, 2013 10:52 AM (in response to Linc Davis)
Allow me to interject
goto to clamxav support site and determine what the message designation represents
However when u search use Heuristics.Phishing as the search parameter
Currently Being ModeratedFeb 26, 2013 11:39 AM (in response to michaelsip4)
a sample of some of the responsed could be along this line or others.
I don't know how this could have gotten there, but it's a possible infected e-mail message that is sitting in your Trash Can. I can only guess that this was somehow moved there in after a previous scan which is a bad idea for two reasons.
The word Heuristics means that it wasn't positively identified as a phishing message, just that something about the say it was formatted looked suspicious. These should always be read first to make certain they aren't something important.
Here's my standard guidance on handling such things: Never use ClamXav (or any other A-V software) to move (quarantine) or delete e-mail. It will corrupt the mailbox index which could cause loss of other e-mail and other issues with functions such as searching. It may also leave the original e-mail on your ISP's e-mail server and will be re-downloaded to your hard drive the next time you check for new mail. So, if you choose to "Scan e-mail content for malware and phishing" in the General Preferences, make sure you do not elect to either Quarantine or Delete infected files. When possibly infected e-mail files are found: - Highlight the entry in the ClamXav window's top pane that needs to be dealt with. - Right-click/Control-click on the entry. - Select "Reveal In Finder" from the pop-up menu. - When the window opens, double-click on the file to open the message in your e-mail client application. - Read the message and if you agree that it is junk/spam/phishing then use the e-mail client's delete button to delete it (reading it is especially important when the word "Heuristics" appears in the infection name). - If you disagree and choose to retain the message, return to ClamXav and choose "Exclude From Future Scans" from the pop-up menu. - If this is a g-mail account and those messages continue to show up after you have deleted them in the above manner, you may need to log in to webmail using your browser, go to the "All Mail" folder, find the message(s) and use the delete button there to permanently delete them from the server. Then check the "Trash" folder and delete them there.
Currently Being ModeratedFeb 26, 2013 6:42 PM (in response to smr.kol)
My mid-2010 MacBook Pro has been behaving perfectly, except for a few occasions when I might have imagined that it took a bit longer to open an app or a folder or file. With talk about trojans and all going round, I downloaded recently ClamXav. It has detected and quarantined more than 50 files with a malware identified as "Heuristics.Phishing.Email.SpoofedDomain" from the inbox of my Gmail account. All the mails were from two banks.
As others have said, the fastest way to get help with ClamXav is to visit the Forum.
One thing that is new for Gmail accounts, is that I finally found a way to permanently delete e-mail without having to use webmail in the All Mail folder. See how here.
Currently Being ModeratedFeb 26, 2013 11:00 PM (in response to smr.kol)
Thank you so much for all the very useful information. All the files quarantined by ClamXav appear to be routine publicity material from banks. As I am a novice I am not sure about how to return these files from the Quarantine folder in Documents to their original location in Mail without disturbing the latter's index or sequencing system. Some guidance will be very helpful. Secondly, how should I get rid of ClamXav without disturbing the operating system?
Currently Being ModeratedFeb 26, 2013 11:19 PM (in response to smr.kol)
Thank you so much for all the very useful information. All the files quarantined by ClamXav appear to be routine publicity material from banks. As I am a novice I am not sure about how to return these files from the Quarantine folder in Documents to their original location in Mail without disturbing the latter's index or sequencing system.
You have already corrupted the maibox index by moving them. As long as you don't need any of them, all you need to do is rebuild each mailbox that that they came from. If you are using Apple Mail, then you do that by highlighting each affected mailbox, in turn, and selecting "Rebuild" from the bottom of the Mailbox menu.
how should I get rid of ClamXav without disturbing the operating system?
That depends on where you got it from (AppStore or web site). Everything you need to know about ClamXav can be found from the ClamXav Help menu or as I suggested earlier, dropping by the ClamXav Forum, but I'll save you some time just this once.
Removal of the AppStore version is done in the same manner as any other AppStore app http://support.apple.com/kb/HT4673.
Removal of the Web version requires you to remove the scan engine first which is all explained at FAQ 22. How do I uninstall ClamXav completely?
More Like This
- Retrieving data ...
- This solved my question - 10 points
- This helped me - 5 points