Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 9 subscribers
  • Views 56295 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Threat with no filename/path, can't be removed. So what do I do?

clemactica

I occassionally get entries like this in my log:

com.sophos.intercheck: 2013-09-20 13:17:37 -0400 Threat: 'Mal/DrodZp-A' detected in
com.sophos.intercheck: Access to the file denied
com.sophos.intercheck:

There is no filename/path ("detected in" is all the log says -- eol) so I can't view in finder and attempts to remove hang/fail as would be expected. If I remove from the quarantine list, it'll just show up again later.

I have Time Machine/Time Capsule and I suspect it's something in a backup file on that volume but that's just my wild guess -- it is weird that Sophos finds it, doesn't/can't indicate the location, offers removal as an option, but is unable to remove it.

  1. Anyone have any insight into what this is (the "no file/path" aspect of the result, not the trojan itself)?
  2. Recommended course of action?

I've searched a bunch on this forum and haven't seen a definitive explanation for the null filename/path.

Thanks!

:1013519


This thread was automatically locked due to age.
Parents
  • 0

    I keep getting the following screenshot:

    Screenshot 2014-09-13 06.16.34.png

    This is the results of my scan log:  

    "Scan name: "Scan Local Drives"
    Scan items:
    Configuration:
    Scan inside archives and compressed files: Yes
    Automatically clean up threats: No
    Action on infected files: Report only
    Live Protection enabled: Yes

    Scan started at 2014-09-11 11:56:51 +0100

    New volume detected at /Volumes/Backup
    New volume detected at /
    New volume detected at /Volumes/Storage

    Scan completed at 2014-09-11 13:13:50 +0100.
    1040344 items scanned, 0 threats detected, 0 issues"

    This is appearing almost daily and driving me nuts, I have watched your videos and checked Time Machine and cannot find this file anywhere on my mac!

    Has anobody got a solution to this or should I uninstall Sophos?

    :1019027
Reply
  • 0

    I keep getting the following screenshot:

    Screenshot 2014-09-13 06.16.34.png

    This is the results of my scan log:  

    "Scan name: "Scan Local Drives"
    Scan items:
    Configuration:
    Scan inside archives and compressed files: Yes
    Automatically clean up threats: No
    Action on infected files: Report only
    Live Protection enabled: Yes

    Scan started at 2014-09-11 11:56:51 +0100

    New volume detected at /Volumes/Backup
    New volume detected at /
    New volume detected at /Volumes/Storage

    Scan completed at 2014-09-11 13:13:50 +0100.
    1040344 items scanned, 0 threats detected, 0 issues"

    This is appearing almost daily and driving me nuts, I have watched your videos and checked Time Machine and cannot find this file anywhere on my mac!

    Has anobody got a solution to this or should I uninstall Sophos?

    :1019027
Children
No Data
Unfiltered HTML