Virus Detected in inbound e-mail

Similar Messages

• Virus detected in inbound email

  We have just upgraded to OSX Server 3.0.3 and am now getting alerts saying "Virus detected in inbound email".
  Go to /Library/Server/Mail/Data/scanner/quarantine 
  When I go to the folder, I don't have permission to get into it even though I am logged into the server as the administrator?
  I need to see if these are coming from customer or not.
  Any ideas on how to inspect them much appreciated.
  Thanks
  Carl

  I found this post on Google, sorry to dig up an old thread but I'd just like to say you can inspect them this way:
  sudo su
  cd /Library/Server/Mail/Data/scanner/quarantine
  ls
  If the files are gz format like they are on my server you can:
  zless <bad file name here>.gz
  Then use your up and down keys to see the HTML content or anything else. In my case it was actually a legitimate message being marked as spam, not a virus at all!

• Server Alerts reports "Virus Detected in inbound email" for spam

  I receive hundreds of email every day that a Virus was detected in inbound email.  When checking the contents of /Library/Server/Mail/Data/scanner/quarantine these messages are only spam message, not viruses.  Virus infected messages seem to get placed in /Library/Server/Mail/Data/scanner/virusmails
  I am running on Mavericks Server 3.1.2 (1354517)
  serveradmin -v = Version 10.8 ($revision: 1.13 $ -- May 13 2014)
  Does anyone know how to tune the Server Alerting to properly handle the files in /Library/Server/Mail/Data/scanner so that virusmails are reported as virus's but quarantine is not reported?
  I have searched high and low, and cannot find where this is controlled.  With Mavericks, I no longer see Virus Alerts under the alerts management menu of Server.app
  I checked amavisd configs, as well as many other files under /Library/Server for any references to "quarantine" text, to no avail.
  I dumped all of serveradmin settings, and do not see anything that references quarantine except for the quarantine recipient addresses for spam and viruses.
  Is anyone else experiencing this, or does anyone know how to solve this?
  Thanks in advance.

  I received over 200 spam messages yesterday that got reported as viruses to me, and out of frustration, I discovered a work around.  I don't know if this is the result of a past update, or the steps I used trying to reset the server, but I performed the following and was able to suppress the email alerts.  At the time of my original posting, the Alerts section of the Server.app did not offer any option for disabling the alerts for virus..
  1) Launch Server.app
  2) Select Mail in left pane
  3) Turn off Virus filtering
  4) stop/start Mail server
  5) Turn on Virus filtering
  6) stop/start Mail server
  7) Turn off Spam filtering
  8) stop/start Mail server
  9) Turn on Spam filtering
  10) stop/start Mail server
  11) Select Alerts in left pane
  12) clear all active alert
  13) Under notifications tab, I now saw "Mail" as an option
  13.1) Turn off the alerts for Mail
  Now I don't get spammed with Virus alerts for spam messages.  This is not a fix for the configuration error in the alerting service, but it does stop the admin mailboxes from being flooded with virus alerts for all spam messages.  I cannot confirm if it was the enable/disable of the filtering that added the Mail entry under alert notifications or if it was an update, as I did not check the alerts notifications at the time.  I was frustrated, and desperate for a fix, so I did the first thing that came to mind.  But now my Mail system alerts can be enabled/disabled through server.app so I am happy.  Lets just hope for a classification fix in the Yosemite update coming this fall.

• Mail server rejected message: spam or virus detected (#5.3.0)

  Hi everybody,
  for the first time ever I got this funny message:
  mail server rejected message: spam or virus detected (#5.3.0)
  This happens now with e-mails containing a pdf which I a) have already sent before and b) created on the mac. Checked with another pdf just for testing - same effect. Any other documents work fine - just those pdfs don't work anymore.
  Any ideas?
  Thanks in advance,
  Bettina

  Bettina,
  There is the possibility of the MS Office and Word being infected (but not the Mac overall) with what are called micro-viri, and are cross-platform. Many AV filters will catch those. I am providing a link where some of us discussed this MS Office infection:
  http://discussions.apple.com/thread.jspa?messageID=2782109&#2782109
  Let us know what you find? See also:
  http://outlandishjosh.com/wp/index.php?p=861
  which you will see in that topic linked above.
  I have not confirmed the path you chose to create the PDF will transmit this virus, but this must be checked out, and is probably the source of the message you are getting.
  Ernie

• Thunderbird Issue. Thousands of inbound e-mails from "Mail Delivery Failed" from people to whom I've never attempted to send an e-mail.

  All inbound e-mails are going directly to "TRASH" how do I fix this? I also have has thousands of inbound e-mails from "MAIL DELIVERY FAILED" involving people to whom I have never attempted to send an e-mail. Whats the cure? I have to use Time Warner as an internet connection and there is a duplicate of about half of what I'm getting in inbound traffic on Thunderbird.

  The inbound is Backscatter see http://en.wikipedia.org/wiki/Backscatter_%28email%29
  The trash issue is most likely the SPAM tool that comes with your anti virus program. Try disabling the tool in the anti virus suite and see how you get on.

• Directory Damage, what can be used for Disk Repair and Virus Detection?

  Hi,
  My eMac is acting up. Yesterday I started getting these messages that I needed to restart my computer (message was in a brown box window with an icon of a start up button in background).
  I did the disk repair using Start up CD and it came back with "invalid key......." or something like that, and when I tried to repair it, it tried to repair the B-Tree's but then said it could not repair the problem.
  I have Diskwarrior 3.03 Build 39, on a CD and on my FW Ext HD, which has a clone of my Mac HD.
  Diskwarrior could not produce a graph of Mac HD because the directory was damaged. When I did a rebuild it hung on step 9 comparing directories, said there was 7 million + tests. ( I let it hang on step 9 for 15 hrs. to see if maybe it was just taking a long time due to corrupt directory). I finally clicked on Skip and got to the report page. I could do a preview, but the replace button is greyed out. When I was comparing the sizes of each folder, in both preview and original, I got a can not calculate error message on a few of them. The size of Mac HD in preview compared to the one in Original was different by 4 gbs. A week ago I repaired the Mac HD and did a Diskwarrior directory repair on all my HD's.
  Before I do any reformatting of HD or other drastic measures, I was wondering what is safe to use for disk repair and virus detection. I know there is Norton System Works 3.0, Norton AntiVirus and TechTool, are these the only ones? Are these safe to use? Are there any other programs that can repair directory damage?
  Thank you in advance,
  Deb
  eMac 2005 1.42GHz Combo Drive 256MB Tiger 10.4 75GB   Mac OS X (10.4)   Western Digital (WD) 160GB FW Ext & WD 320gb Media FW Ext, Creative Speakers

  The long-standing rule of thimb has been that if Disk Warrior can't repair a mungled disk directory, then you're looking at reformatting or replacing the hard drive. Since this is a week-old hard drive, I'd suspect the replacement hard drive is itself bad. It might save you grief in the long run to contact the vendor who sold you the drive and inquire about their warrenty. You might want to first run the file system check utility fsck as described in Using Disk Utility and fsck
  Directory repair and antivirus protection are different critters. Norton AV is mostly safe (if you don't mind it's track record of false positives) and is used by the IT department at the lab where I work. Norton SystemWorks, AKA Disk Doctor Kervorkian, is most assuredly NOT safe. For every poster reporting something nice about it, you'll find at least 2 dozen cursing it. It has a known track record of detecting problems no other utility finds and of "repairing" drives such that nothing can then read or repair the drive short of low-level reformatting (and occasionally even that fails).
  Tech Tool Pro 4 has a good reputation, as does Drive Genius. Tiger OS X 10.4.2 and later include a version of Disk Utility that can for the first time also make effective B-tree and keys out of order and overlapped extent repairs. Still, my personal gut feeling is that if Disk Warrior is choking on the hard drive, you're looking at reformatring while zeros the drive (zeroing should detect and map out bad physical secotrs).
  You can also refer to Disk First Aid: What to do when it finds an error and to Handling "overlapped extent allocation" errors reported by Disk Utility or fsck

• Virus Detected (403), Your file could not be uploaded because it contains a virus.

  From a Windows 7 Ultimate PC I tried to upload a PDF portfolio containing 35 PDFs. The upload failed with the message "Virus Detected (403), Your file could not be uploaded because it contains a virus."
  It is highly unlikely that this PDF portfolio or its 35 PDFs contain a virus. It passed a scan by Microsoft Security Essentials. Any suggestions?
  Bill

  Hello,
  I've got the same 403 error when I want to upload a ebook (purchased on peachpit, see this url for ebook), but when I scan it (windows 8 / avast) no virus found.
  Olivier

• Update data of pdf (offline adobe forms) to sap system By Inbound E-mail

  Hello,
  I am trying to update data in PDF (offline adobe forms) to Sap system by Inbound E-mail. Kindly give some suggestions for scenario to do this task.

  Hi,
  There ia a good information for your requirement.
  Please check the below link.
  http://www.sdn.sap.com/irj/scn/events?rid=/library/uuid/c0c139d3-3eae-2910-01a1-d253f2587b0e&overridelayout=true
  Thanks.
  Uma

• I am usiing Kaspersky Internet protection.  I keep getting a 403 error Virus Detected on just one of the files that I am trying to convert.  What do I need to do.

  I am getting a message 403 that the file that I am trying to convert has a virus.  I use Kaspersky virus detection and I ran it on just that file.  I have converted another file with on problems.  What do I need to do?

  What is your Windows version?  32-bit or 64-bit?
  Internet Explorer: you must use the 32-bit version, regardless of your OS version.
  What is the exact error you get, and what are you doing when you get that error?

• Comodo anti-virus detected the file hi.bat

  Comodo anti-virus detected the file C:\Toshiba\Drivers\hi.bat as unclassified Malware-risk High.
  I don't no what to do. Delete?
  I need some help please.

  Hi
  The antivirus scanner has detected this file which is classified as Malware-risk high.
  Either you would delete this file or would add it to the quarantine.
  But these options are provided by Antivirus as well

• Anti virus - detect and delete - in Snow leopard

  Hello
  They say Snow Leopard has excellent built in anti-virus software, but I'm not sure. I just taken a job to the printer and his PC virus detection said I had serious virus problems on my Mac.
  This seems likely, and could explain the problems I've been having with OS applications like Fontbook - it's so slow it's useless. And Adobe CS3 is also playing up, I have to force quit programs, they work OK for a while, then the most basic elements of the application fail (like quiting, and cropping in Photoshop).
  I have spoken to Adobe (useless) and I have reinstalled the OS, and CS3.
  How can I check and eliminate a worm or virus from my HD and external backup HD.
  I'd be very grateful for any help.
  John

  I'm with you there. I had been running OS 10.4.11 with absolutely no problems whatsoever. Now I have Snow Leopard and CS3. And, the ONLY reason I upgraded to Snow Leopard was to use the iLife suite, which has some software I need. Now there are problems all over the place. I can't use some of the CS3 plugins that I paid good money for, CS3 has a strange artifact that shows up every time it opens (fortunately the artifact doesn't print), video downloads through Firefox, Chrome or Safari have numerous cache issues, startup is slow, some apps crash randomly, and Word doesn't function properly (don't chastise me on using Word. I have to use it.) I've even installed the proper updates and reinstalled CS3 (like you, I can't afford CS5 yet -- starving artist, you know.)
  I am VERY disappointed in Snow Leopard (not to mention Apple support). Macs used to be the machine to beat when it came to bugs and crashes. Now a Mac is just like any PC -- you never know what's going to happen.

• Inbound workflow mailer tags don't recognize Undeliverable system messages

  We have an inbound Workflow mailer that was not set up initially to view or filter any custom tags. There are 2 "Undeliverable" messages, which seem to be looping in our inbox.
  The undeliverable message comes in and gets filed to the "PROCESS" folder. It then seems to be triggering a invalid response template email to be sent, which then attempts to send another email to the invalid address, and gets received again starting the process over again. I have created a new tag on the workflow mailer Advanced setup with "Undeliverable" as the pattern, and "Unavailable" as the action. I have also tried the "Ignore" as the action but neither change sent the message to the Discard folder.
  Oracle System: EBR R12
  Email: Microsoft Exchange

  We have an inbound Workflow mailer that was not set up initially to view or filter any custom tags. There are 2 "Undeliverable" messages, which seem to be looping in our inbox.What is the difference between these 2 messages and the other ones?
  The undeliverable message comes in and gets filed to the "PROCESS" folder. It then seems to be triggering a invalid response template email to be sent, which then attempts to send another email to the invalid address, and gets received again starting the process over again. I have created a new tag on the workflow mailer Advanced setup with "Undeliverable" as the pattern, and "Unavailable" as the action. I have also tried the "Ignore" as the action but neither change sent the message to the Discard folder.Did you bounce the Workflow mailer and listener and see if this helps? -- Workflow Java Mailer & Notifications FAQ [ID 562551.1]
  Can you find any errors in the Workflow log file?
  Oracle System: EBR R12
  Email: Microsoft ExchangeWhat R12 release you are on?
  Thanks,
  Hussein

• Trojan Virus Detected

  While using Safari a notice stating Trojan Virus detected keeps appearing! Safe Booted once but very apprehensive !?

  HI and welcome to Apple Discussions...
  Malware perhaps but not a virus. Get MacScan
  You can use the demo for 30 days free and runs on Snow Leopard.
  Carolyn

• Win 7, IE 11 downloading flash installer, I get virus detected even after disabling ActiveX

  Win 7 IE 11, ACTIVEX disabled, trying to download Flash installer, I get Virus detected- installer deleted. Any Ideas?

  Download the Adobe Flash Player FULL installer directly by right clicking one of the following links ans selecting "Save target as".
  Flash Player for ActiveX (Internet Explorer)
  Flash Player Plug-in (All other browsers)
  Disable the A/V and then run the installer.

• Inbound Workflow Mailer Tags not discarding messages

  Our workflow mailer tags don't seem to be discarding undeliverable messages. we have a few closed PO notifications that are being returned with "Undeliverable:" subjects, and "Delivery has failed to these recipients or groups" in the body.
  I have added the Undeliverable and "Delivery has failed to these recipients or groups" to the tag list in Notification mailer setup, but it makes no difference. I have added the tags, and refreshed the mailer but the messages are still coming into the PROCESS folder instead of being put in the DISCARD folder.
  I posted this thread previously and it never received an answer. I was hoping someone else had the issue now and could provide some insight.
  Inbound workflow mailer tags don't recognize Undeliverable system messages
  Oracle EBS R12: 12.1.3
  Mail system: Exchange

  I posted this thread previously and it never received an answer. I was hoping someone else had the issue now and could provide some insight.
  Inbound workflow mailer tags don't recognize Undeliverable system messages
  Sorry, I missed your last update in the other thread. I have just responded and it might be helpful if you provide those details.
  Thanks,
  Hussein