Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 9 subscribers
  • Views 56293 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Threat with no filename/path, can't be removed. So what do I do?

clemactica

I occassionally get entries like this in my log:

com.sophos.intercheck: 2013-09-20 13:17:37 -0400 Threat: 'Mal/DrodZp-A' detected in
com.sophos.intercheck: Access to the file denied
com.sophos.intercheck:

There is no filename/path ("detected in" is all the log says -- eol) so I can't view in finder and attempts to remove hang/fail as would be expected. If I remove from the quarantine list, it'll just show up again later.

I have Time Machine/Time Capsule and I suspect it's something in a backup file on that volume but that's just my wild guess -- it is weird that Sophos finds it, doesn't/can't indicate the location, offers removal as an option, but is unable to remove it.

  1. Anyone have any insight into what this is (the "no file/path" aspect of the result, not the trojan itself)?
  2. Recommended course of action?

I've searched a bunch on this forum and haven't seen a definitive explanation for the null filename/path.

Thanks!

:1013519


This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    Has there been any follow-up to this situation? Has anyone else had this problem? I have two apparent "malware issues" as of today, but there is no filename/path for either of them in the Quarantine Manager; I get this in the console:

    com.sophos.intercheck: 2014-07-07 12:23:46 -0400 Threat: 'Mal/Generic-S' detected in
    com.sophos.intercheck:                              Access to the file denied
    com.sophos.intercheck:
    com.sophos.intercheck: 2014-07-07 12:24:13 -0400 Threat: 'Mal/Phish-A' detected in
    com.sophos.intercheck:                              Access to the file denied

    Anyone have suggestions about what to do?

    Thanks!

    :1018287
Reply
  • 0

    Hi,

    Has there been any follow-up to this situation? Has anyone else had this problem? I have two apparent "malware issues" as of today, but there is no filename/path for either of them in the Quarantine Manager; I get this in the console:

    com.sophos.intercheck: 2014-07-07 12:23:46 -0400 Threat: 'Mal/Generic-S' detected in
    com.sophos.intercheck:                              Access to the file denied
    com.sophos.intercheck:
    com.sophos.intercheck: 2014-07-07 12:24:13 -0400 Threat: 'Mal/Phish-A' detected in
    com.sophos.intercheck:                              Access to the file denied

    Anyone have suggestions about what to do?

    Thanks!

    :1018287
Children
No Data
Unfiltered HTML