|
If you don't have log_selector = all and you don't see a file path for these mails. You really should just do a clamscan of all your public_html's.
for i in /home/*/www ; do clamscan -ri -l /some/log "$i" ; done
Or search the forums here there are also malware grep search scripts etc.
|