This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Removal of Troj/Inor-Fam...

We are running Enterprise Console 4.0.0.2362, End Point Security v.9.

Sophos is detecting the above Trojan, but Im having a lot of difficulty removing it, even when following the suggested removal techniques.

It appears to infect html files. If I attempt clean from the Enterprise Console, it reports that the files are not cleanable and the only option is to "acknowledge".

If I go to the desktop and attempt to clean, it can only do so by deleting the files. This in itself is something of a problem since its deleting html files from the machine (mostly software guides etc), but it might be acceptable as a solution if it wasnt for the fact that new files continue to be infected (email signature files are a necessity, so I delete the file, but the following day the replacement file is also infected).

Any suggestions on how to remove this would be greatly appreciated.

This thread was automatically locked due to age.

0 A_K over 14 years ago

Sounds like a file infector is on the machine and therefore it will be worthwhile contacting sophos support for help to sucessfully remove the infection and have the SAV.txt file to hand. Also please make sure if the files are not cleanable that you send a sample of an infected file to Sophos.
Also please check the Anti-virus and HIPs policy to make sure that HIPs is turnned on and is not in Alert only mode.
:4193
Cancel
Vote Up 0 Vote Down

Cancel
0 Bezerk over 14 years ago

Just a thought,
Remove ther drive and attach it to another computer, you should then be able to remove the virus fully as it's still active whilst your trying to disinfect the files :)
:6817
Cancel
Vote Up 0 Vote Down

Cancel