infection in ~Library/Application Support/Mobilesync/Backup/xxxxx

macos mac backup anti-virus

Solution 1:

It does not mean that your Mac or iPhone is infected and you should not delete the file.

From Wikipedia:

Phishing is the act of attempting to acquire information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT administrators are commonly used to lure the unsuspecting public. Phishing emails may contain links to websites that are infected with malware. Phishing is typically carried out by e-mail spoofing or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one.

So ClamAV has found a spoofed email stored somewhere in your iPhone Backup. Unless you clicked on the the links in the email, that's no problem.

However, if you delete the file, you will break the backup of your iPhone.

The best solution is to either:

  1. tell ClamAV not to scan the folder; or
  2. tell iTunes to encrypt your iPhone backups so that ClamAV won't be able to scan them.

Related

Add SSD to iMac: Thunderbolt or internal?
Replacement for iPod.app on old iPhone 3G with large buttons for play/pause and prev/next track
How do I make Mountain Lion read iMessage texts as they come in?
Can the Finder Dock be fixed to show all icons of aliases instead of some?
Notes - Setting up for use with iCloud
facetime with same apple id and on different devices
How can I recover an unresponding application without quitting?
How do I get a notification sound on my iPhone 5?
How can I charge and output audio from iPhone 5 in a car?
How do I verify the integrity of my OSX installation? (Files, versions, and preferences)
Download from iTunes to iPod without deleting songs already on iPod
Does anyone know of a Crystal Reports viewer app for iPad?