Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 6 subscribers
  • Views 12196 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

failure to clean up malware

davidsmac

I have a virus alert in quaratine manager  OSX/FxCodec-A . I ran the remove threat and have now Clean up failure  and cannot find any other solutions.

I have downloaded sophos free Mac antivirus but when opened it says  incompatible progrma downloaded.

Any ideas on how i manually remove this trojan ??

:1021081


This thread was automatically locked due to age.
Parents
  • 0

    Hi penpapercoffee

    So it looks like the theats are all located in a time machine backup. If you follow the steps below, you should be able to manually remove them.

    Note: If you can't see the exact location of the threat when you click the "reveal in finder" button, you can look at the scan log, which should tell you where it is. To see the scan log, click the gear icon in the "scans" menu (screenshot at the bottom of this post.)

    Remove a Threat from a Time Machine Archive.

    1. Make a note of the complete file path. E.g., /Volumes/<Time Machine Volume Name>/Backups.backupdb/<Computer Name>/YYYY-MM-DD-NNNNNN/<User Name>/Library/Caches/Java/cache/6.0/8/123456-123456
    2. From the Sophos Preferences window,temporarily disable on-access scanning.
    3. In the Finder, navigate as close to this location as you can, starting from the <user name> portion. When the next level down no longer exists (or when you've found the file indicated), select 'Enter Time Machine' from the Time Machine menu item (a clock face with an arrow around the outside).
    4. Navigate to the date and time indicated by YYYY-MM-DD in the file path, and then follow the path to the detected file within Time Machine.
    5. Control or right-click the file, and select 'Delete All Backups of <detected filename>'.
    6. Click OK.
    7. From the Sophos Preferences window, re-enable on-access scanning.

    Hopefully that helps! Let me know if you have any questions.

    :1021092
Reply
  • 0

    Hi penpapercoffee

    So it looks like the theats are all located in a time machine backup. If you follow the steps below, you should be able to manually remove them.

    Note: If you can't see the exact location of the threat when you click the "reveal in finder" button, you can look at the scan log, which should tell you where it is. To see the scan log, click the gear icon in the "scans" menu (screenshot at the bottom of this post.)

    Remove a Threat from a Time Machine Archive.

    1. Make a note of the complete file path. E.g., /Volumes/<Time Machine Volume Name>/Backups.backupdb/<Computer Name>/YYYY-MM-DD-NNNNNN/<User Name>/Library/Caches/Java/cache/6.0/8/123456-123456
    2. From the Sophos Preferences window,temporarily disable on-access scanning.
    3. In the Finder, navigate as close to this location as you can, starting from the <user name> portion. When the next level down no longer exists (or when you've found the file indicated), select 'Enter Time Machine' from the Time Machine menu item (a clock face with an arrow around the outside).
    4. Navigate to the date and time indicated by YYYY-MM-DD in the file path, and then follow the path to the detected file within Time Machine.
    5. Control or right-click the file, and select 'Delete All Backups of <detected filename>'.
    6. Click OK.
    7. From the Sophos Preferences window, re-enable on-access scanning.

    Hopefully that helps! Let me know if you have any questions.

    :1021092
Children
No Data
Unfiltered HTML