[clamav-users] Heuristics.Phishing.Email.SpoofedDomain FP

Alex mysqlstudent at gmail.com
Tue Aug 25 06:36:59 EDT 2015


I have an email with an apparent false-positive spoofed domain. How
can I determine what domain it is that clamscan thinks is spoofed and
correct it?

I'm sorry if this is a FAQ. I'm familiar with how to use sigtool to
decode a false-positive, but no signature or other details are given.


More information about the clamav-users mailing list