1

Topic: Email mark as virus by Heuristics.Phishing.Email.SpoofedDomain

Hi,


- iRedMail version (check /etc/iredmail-release)
==> 0.9.9
- Deployed with iRedMail Easy or the downloadable installer?
==>downloadable installer?
- Linux/BSD distribution name and version
==>  Debian Linux 9
- Store mail accounts in which backend (LDAP/MySQL/PGSQL)
==> MySQL
- Web server (Apache or Nginx)
==> Nginx
- Manage mail accounts with iRedAdmin-Pro?
==> Yes.
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Some emails from outside are stucked in Quarantine by Virus tag same emails contain PDF attachment which has bank statement please let us know how to resolve the same.

Error message

###############################

554 5.7.0 Reject, id=18145-02 - INFECTED: Heuristics.Phishing.Email.SpoofedDomain

Virus scanner output:
  p015: Heuristics.Phishing.Email.SpoofedDomain FOUND

###############################

Thanks
Sunil

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team.

2

Re: Email mark as virus by Heuristics.Phishing.Email.SpoofedDomain

You can either release it to mailbox or delete it if you are sure it's virus.

3

Re: Email mark as virus by Heuristics.Phishing.Email.SpoofedDomain

ZhangHuangbin wrote:

You can either release it to mailbox or delete it if you are sure it's virus.

Hi,

We are already release the same, is there any way by automatically it will delivered to the user inbox without mark as virus and stuck  in Quarantine.

Thanks
Sunil

4

Re: Email mark as virus by Heuristics.Phishing.Email.SpoofedDomain

With iRedAdmin-Pro, you can find options in "System -> Spam Policy". smile