Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 6 subscribers
  • Views 6961 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to view full path to virus infected file

dogpaw

This software installed and appears to be running smoothly, thank you  for this product.

However, in trying to manually clean up virus in my Quarantine Manager, I can't view the full path to the infected files. The paths are truncated since they are longer than the width of the window. I can't seem to expand the width or otherwise view the full path.

Please advise so that I can find and clean them up manually.

Thanks

:1000176


This thread was automatically locked due to age.
Parents
  • 0

    While SAV does do in-file virus cleanup (if a virus has infected an existing file, the virus can be removed), in your case this won't happen, as it's not a viral infection, but a malicious iFrame or javascript hosted in the indicated web page.

    As far as I know, the product does not clean up HTML files, only deletes them. However, if you don't mind potentially damaging the display/content of those files, you can just use a text editor or html editor to strip out all the javascript and invisible iFrames (iFrames with a size of 0).  I'd recommend converting the pages to a format that strips the iFrames and Javascript, unless you require the original format for some reason. Save as PDF works well, for example (but creates static content).  My guess is that this will get rid of all your malware alerts.

    That said, if the files are old, it's likely that the websites the malware redirects you to no longer carry a payload (which is likely Windows-only). Avoid being a Typhoid Mary; don't share those old archives with a Windows OS, as they may end up compromising the system. If you do require them to be in their pristine condition, just group them all together and exclude their folder from scanning. BE CAREFUL, as there WAS malicious content detected in the files.  Leaving them in their current malicious state is not recommended.

    :1000441
Reply
  • 0

    While SAV does do in-file virus cleanup (if a virus has infected an existing file, the virus can be removed), in your case this won't happen, as it's not a viral infection, but a malicious iFrame or javascript hosted in the indicated web page.

    As far as I know, the product does not clean up HTML files, only deletes them. However, if you don't mind potentially damaging the display/content of those files, you can just use a text editor or html editor to strip out all the javascript and invisible iFrames (iFrames with a size of 0).  I'd recommend converting the pages to a format that strips the iFrames and Javascript, unless you require the original format for some reason. Save as PDF works well, for example (but creates static content).  My guess is that this will get rid of all your malware alerts.

    That said, if the files are old, it's likely that the websites the malware redirects you to no longer carry a payload (which is likely Windows-only). Avoid being a Typhoid Mary; don't share those old archives with a Windows OS, as they may end up compromising the system. If you do require them to be in their pristine condition, just group them all together and exclude their folder from scanning. BE CAREFUL, as there WAS malicious content detected in the files.  Leaving them in their current malicious state is not recommended.

    :1000441
Children
No Data