Free Tools

Discussions Strange virus founds on my MAC

Free Tools requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 2 replies
Subscribers 6 subscribers
Views 624 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Strange virus founds on my MAC

zulu over 13 years ago

I use since a couple of days Sophos 8 for mac and there are some really strange virus

warnings in the quarantine manager:

Troj/Chepvil-A

/System/Library/Fonts/Helvetica.dfont

Troj/Chepvil-B

/System/Library/Frameworks/AppKit.framework/Versions/C/Resources/Info.plist

Troj/BredoZp-HU

/Applications/Sophos Anti-Virus.app/Contents/Info.plist

Mal/Wintrim-E

without any path

Are this wrong findings?

Kind Regards

zulu

This thread was automatically locked due to age.

0 zulu over 13 years ago

Troj/BredoZp-HU
/Applications/Sophos Anti-Virus.app/Contents/Info.plist
:1006491
Cancel
Vote Up 0 Vote Down

Cancel
0 Agile over 13 years ago

I can safely say that the file paths are incorrect there; the detecions would never fire on the items indicated. My best guess is that the item matching somehow got broken, so it's listing files either before or after the ones where the malware was actually detected.
The only place you should ever see Troj/BredoZp-HU, for example, is in your mail's downloaded attachments folder, or in a web cache folder (if you were viewing your email through a web browser). Since Troj/BredoZp-HU will only ever detect a zip file (and a very specific style of zip file at that), something is definitely wrong here.
:1006549
Cancel
Vote Up 0 Vote Down

Cancel