Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 60 replies
  • Subscribers 6 subscribers
  • Views 170185 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DELETING A THREAT MANUALLY - FINDING THE THREAT

colettenorris

Whenever I do a full scan, Sophos finds the same two threats which need to be manually removed.  The trouble is I can't find the location folder of these threats as whenever I search for the filename on my mac they just can't be found.

Does anyone know of a way I can find the path to where these threats are located so I can manually remove them?  

Thanks

Colette     :smileyvery-happy:

:1001219


This thread was automatically locked due to age.
Parents
  • 0

    If the file is javasomethingsomething##, it's likely in the java cache, which is where Java stores its temp files downloaded from the internet.  These files can be deleted with no worries as they're just cache files.  Searching for these files with Spotlight won't show anything because Spotlight doesn't index your cache folders by default.  Running locate from the terminal might find it, but that depends on whether the cache file was around the last time the locate index was updated.

    To answer your other question, cleanup depends on what kind of malware you're dealing with and how it's installed.  For cache files like your instance, deleting is just as effective as "cleaning it up" (and is, in fact, the same thing -- not to be confused with putting the item in the trash).  For file infectors, cleanup actually removes the malicious code from the infected file.  For multi-part malware, cleanup often cleans up multiple support files as well as deleting the bad files.

    :1001259
Reply
  • 0

    If the file is javasomethingsomething##, it's likely in the java cache, which is where Java stores its temp files downloaded from the internet.  These files can be deleted with no worries as they're just cache files.  Searching for these files with Spotlight won't show anything because Spotlight doesn't index your cache folders by default.  Running locate from the terminal might find it, but that depends on whether the cache file was around the last time the locate index was updated.

    To answer your other question, cleanup depends on what kind of malware you're dealing with and how it's installed.  For cache files like your instance, deleting is just as effective as "cleaning it up" (and is, in fact, the same thing -- not to be confused with putting the item in the trash).  For file infectors, cleanup actually removes the malicious code from the infected file.  For multi-part malware, cleanup often cleans up multiple support files as well as deleting the bad files.

    :1001259
Children
No Data