Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 6 subscribers
  • Views 2799 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can't remove Mal/Badsrc-C

iJohn

I recently ran a scan and it found two instances of Mal/Badsrc-C.

While this only affects Windows PCs, I'm not too worried about it, but I can't delete it either.

Sophos tells me that it has to be manually cleaned, but when I go to the Sophos site, it tells me to use the 'Clean up' option within the application, which I don't have the option to click.

Any ideas?

:1004871


This thread was automatically locked due to age.
  • 0

    I've the same problem. It seems detected on the time machine and some time it appears and when I open the quarantine manager ... it desappear.

    I found out that it is detected in the "mail" folder, so I suppose that it is part of an email message.

    Any help is appreciated.

    Al

    :1004881
  • 0
    It was located in the .Spotlight-V100 folder. I used an app called Main Menu to clear the Spotlight cache. I then went into the Sophos Options. Under "Scan Local Drives", for When a threat is found, I chose "Clean up threat". If clean fails, selected "Delete threat". It needs admin priviledges to scan, but it found and deleted the threats for me. That seems to work. I haven't ran a second scan yet to see if it's totally gone.
    :1004887
  • 0

    You followed the procedure perfectly, iJohn; that's exactly what you should have done, and the threat should now be gone.

    :1004911
  • 0

    Hi There,

    My Sophos scan keeps popping up with a message saying I've got Mal/Badsrc-B on my mac.  However, it won't let me quarantine the file and then just disappears from the quarantine list and the log.  I've now set all my preferences to delete threats in the hope this will work.  I've tried looking up ways of manually removing the threat but I can't find a single guide.

    Do you know how I would go about doing this please?

    Many thanks,

    Tom

    :1005345
  • 0

    Hi Tom,

    Please read the message thread you just posted to.  SAV is detecting cached files which no longer exist on your computer, and therefore no longer exist in the Quarantine Manager.  As the OS deletes them itself, there is no need to auto-delete, other than that it will be deleted slightly earlier (in any case, it will be blocked from executing).

    For future issues, feel free to use the board's search function to find the answers to your questions.  Try a few different searches using different key words or phrases if your first search is not successful in finding your answer.

    :1005465