Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 14 replies
  • Subscribers 6 subscribers
  • Views 23187 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Frustrated, please help me....Diz if you are there, if not someone with patience

Darlene

Hello,

could you please forward this to Diz?  If not I would appreciate your help!!

I received another threat on Sept. 8th!??

The name of the threat was a Mal/phish-A  

filename is: ujbsqx.html

action:

clean up manually

How do I do that?

I had this software for 3-years and now I am receiving these threats!!??

Please tell me how to clean it up!??

I tried sending a request for help and was very disppointed....can you please help me with this!!??  I received 3-more threats today (what's going on!!??)  I was able to clean them up; however, I still have the one threat that I don't know how to clean it....I have looked at the videos etc. and I am still confused and frustrated!!  

Also concerned.....I clicked on the threat in the quarantine manager is that a problem when I do that??  Did I open the threat! and cause a problem on my computer??  At the bottom of the quarantine it says clear from list however; if I do won't it still be there in the computer!!??  Then at the bottom of the quarantine where it says clean up threat..it is not highlighted!!??  So don't know what to do to get rid of this threat!!??  Please help me here!!

Thank you,

Darlene

:1013349


This thread was automatically locked due to age.
Parents
  • 0

    According to Sophos' website Mal/phish-A "...attempts to steal personal information (for example login information, banking details or credit card numbers) by pretending to be a page belonging to a legitimate account provider but sending the details to a malicious or compromised website instead."

    So it's not a file or code that runs on your computer.  Your Mac isn't infected (or even affected) by it.  It's simply a normal HTML webpage that when run in a web browser will look like a login screen for a bank - probably not even your bank. This is what phishing is.  If you use online banking AND as long as you type your bank's web address into the browser yourself: you're safe.

    Where is the file ujbsqx.html located?  Open the Quarantine Manager, authenticate with the padlock, select the item, expand the 'Show Details' arrow and look at the 'Path and Filename' information - copy out all the fields it if posting back.

    Sounds like it's an attachment to a mail (maybe in the Spam/Trash folder of your Mail application), however with the path I can't be sure.

    If it is in the Mail app then your options are:

    • Best option: Open the mail program and look for the email (with the offending attachment) and delete it.
    • OR: from the quarantine manager click the 'Reveal in Finder' button and see if that leads you to the file.
    • OR: from the quarantine manager click the 'Clean Up Threat' button and try that.

    Note:  The recommend method is to try deleting the mail manually from the Mail application.  This does take longer and you do have to hunt around, but take the time to time this method first.  And also worth mentioning:  If the mail app is connecting to a web mail account the mail could be redownloaded from the server - hence you would need to login to the web mail in a browser and delete the mail from there (just adding this so you have all the possibilities).

    If you do post back needing help please include a screenshot/full details of the 'Show Details' panel from the quarantine and say where the 'Reveal in Finder' button took you.

    Good luck.

    :1013357
Reply
  • 0

    According to Sophos' website Mal/phish-A "...attempts to steal personal information (for example login information, banking details or credit card numbers) by pretending to be a page belonging to a legitimate account provider but sending the details to a malicious or compromised website instead."

    So it's not a file or code that runs on your computer.  Your Mac isn't infected (or even affected) by it.  It's simply a normal HTML webpage that when run in a web browser will look like a login screen for a bank - probably not even your bank. This is what phishing is.  If you use online banking AND as long as you type your bank's web address into the browser yourself: you're safe.

    Where is the file ujbsqx.html located?  Open the Quarantine Manager, authenticate with the padlock, select the item, expand the 'Show Details' arrow and look at the 'Path and Filename' information - copy out all the fields it if posting back.

    Sounds like it's an attachment to a mail (maybe in the Spam/Trash folder of your Mail application), however with the path I can't be sure.

    If it is in the Mail app then your options are:

    • Best option: Open the mail program and look for the email (with the offending attachment) and delete it.
    • OR: from the quarantine manager click the 'Reveal in Finder' button and see if that leads you to the file.
    • OR: from the quarantine manager click the 'Clean Up Threat' button and try that.

    Note:  The recommend method is to try deleting the mail manually from the Mail application.  This does take longer and you do have to hunt around, but take the time to time this method first.  And also worth mentioning:  If the mail app is connecting to a web mail account the mail could be redownloaded from the server - hence you would need to login to the web mail in a browser and delete the mail from there (just adding this so you have all the possibilities).

    If you do post back needing help please include a screenshot/full details of the 'Show Details' panel from the quarantine and say where the 'Reveal in Finder' button took you.

    Good luck.

    :1013357
Children
No Data