Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 6 subscribers
  • Views 1860 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to find effected java file to clean it manually on MAC

PhilCat

I'll try to help steer how to find effected java file listed to do a custom scan.

You just completed a full scan to get the stack of threats.

I just successfully completed the manual process, so yes it does work.

I'll admit for a first time user, I was a little confused the first few hours.

Maybe even reluctant to dive in that deep. I don't go anywhere w/o my GPS.

Using one of my threats from earlier- I had 9 of them all in the same folder.

Mal/JavaKS-G' detected in /Users/phil/Library/Caches/Java/cache/6.0/54/168b2d76-62e2cfd1

***In my case, the files were connected to some mystery application I downloaded.

Details of it were in 'More Info', but I refrained from opening them. 

Starting with Sophos Anti Virus Scan Local Drives' Box

In the lower box area where it says 'Custom Scans, and in the lower left corner, select 'Plus'.

A new scan box is created within.

Hit the info button next to play button, 

a new box appears to the right.

This is where you set up the file or folder to create the new scan

as it will open the Finder-Drop-down menu to select file choice from it's Plus Button.

Each slash in my threat is a column from the Finder.

I could take it a step further, and have the Finder use folder 54 from folder 6.0,

but it's a small group of folders there, so using 6.0 is fine.

This will keep the scan to searching 2500 files vs 2.5 million and takes less than 30 seconds

to complete.

At the top of Box, give the Scan a name.

It can be anything, so I named it 'cache 6.0'.

Under scan name are 3 tabs of 'Scan Items, 'Excluded items, 'Options.

At Scan Items tab, you should already have the file in place you selected from the Finder.

From 'Option Tab, I left the check mark in 'scan inside archives and compressed files'.

We are only scanning folder 6.0, so this works fine.

As for what to do when threat is found, I selected 'Delete Threat.

Just make sure the folder or file to scan is from Places, Home, then Library, etc. 

Not drive 1 - 4, then library.

2 very different places. 

Click DONE.

This takes you back to - Sophos Anti Virus Scan Local Drives and now

click the play button to scan the files in the '6.0' folder of java cache.

In less than 15 seconds, the scan will be done. 

You will have a new report in Quarantine Manager, and Console report.

Good Luck, and Thanks to the crew here.

Sophos Anti-Virus

Product version: 7.2.4C

Threat detection engine version: 3.16.1

Threat data version: 4.62

Release date: 07 February 2011

:1002167


This thread was automatically locked due to age.
Parents
  • 0

    Limit to somewhere in the path indicated by the quarantine details for the file.  You could scan all files with Delete turned on, but remember that if it detects something you want to keep, you'll have to restore from backup.

    :1003723
Reply
  • 0

    Limit to somewhere in the path indicated by the quarantine details for the file.  You could scan all files with Delete turned on, but remember that if it detects something you want to keep, you'll have to restore from backup.

    :1003723
Children
No Data