Hi guys I recently was presented with a whole bunch of Trojans that had been sent to my Google Mail account in iMail. Apple had quarantines some of them to the Spam folder though not all but Sophos identified all of the Trojans and I clicked 'clean up. The issue kept appearing however and I am not sure whether this is because the Trojan is self-replicating or because there were a lot of them I decided to run a full scan but something keeps holding that up: checking my log there are several messages of this type: com.sophos.intercheck: Issue: Could not scan /private/tmp/68f01de2.$$$ com.sophos.intercheck: An unexpected error occurred And similar. This seems to be what is stopping the scan Can anyone advise I am wondering whether it is linked to the Torjans themselves all of which appear to be of this type: com.sophos.intercheck: 2012-01-03 14:30:58 +0000 Threat: 'Troj/JSRedir-EK' detected in /Users/benamponsah68/Library/Mail/V2/Mailboxes/Junk (Gmail).mbox/C49321ED-C846-415A-BC11-115D7CA05705/Data/1/3/1/Attachments/131557/2/kizjfxyvpun.html Any help appreciated as I am stumped com.sophos.intercheck: Access to the file denied :1004921

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is a Trojan stopping Sophos running full scan?

Hi guys

I recently was presented with a whole bunch of Trojans that had been sent to my Google Mail account in iMail. Apple had quarantines some of them to the Spam folder though not all but Sophos identified all of the Trojans and I clicked 'clean up. The issue kept appearing however and I am not sure whether this is because the Trojan is self-replicating or because there were a lot of them

I decided to run a full scan but something keeps holding that up: checking my log there are several messages of this type:

com.sophos.intercheck: Issue: Could not scan /private/tmp/68f01de2.$$$
com.sophos.intercheck: An unexpected error occurred
And similar. This seems to be what is stopping the scan
Can anyone advise

I am wondering whether it is linked to the Torjans themselves all of which appear to be of this type:

com.sophos.intercheck: 2012-01-03 14:30:58 +0000 Threat: 'Troj/JSRedir-EK' detected in /Users/benamponsah68/Library/Mail/V2/Mailboxes/Junk (Gmail).mbox/C49321ED-C846-415A-BC11-115D7CA05705/Data/1/3/1/Attachments/131557/2/kizjfxyvpun.html

Any help appreciated as I am stumped

com.sophos.intercheck: Access to the file denied

This thread was automatically locked due to age.

Parents

0 Agile over 13 years ago

I'd say this has to do with caching files from an IMAP server -- best bet is to log in to gmail via the web interface and delete the files. Of course, due to the fact that these are redirect javascripts, you may also want to turn off the preview pane in Mail (or quit mail.app) before cleaning, as the files are likely currently locked by Mail.app.
:1004931
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Agile over 13 years ago

I'd say this has to do with caching files from an IMAP server -- best bet is to log in to gmail via the web interface and delete the files. Of course, due to the fact that these are redirect javascripts, you may also want to turn off the preview pane in Mail (or quit mail.app) before cleaning, as the files are likely currently locked by Mail.app.
:1004931
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data