Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 40 replies
  • Subscribers 6 subscribers
  • Views 66700 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Troj/Zbot - HAD

dakotaspurs

Hi everybody,

I am using Sophos Anti-Virus 8.0.20C on the Mac and I am having a very annoying alert recurring constantly throughtou the day.

I have an alert come up saying that it has detected the Troj/Zbot - HAD (sometimes the HAD is replaced with something else).  So I open up Quarantine Manager and Authenticate to be able to remove it, but as soon as I have authenticated, the threat in the window disappears without giving me a chance to clear it.

This has been going on for weeks and I have run the full scan of the machine a number of times, which comes up clean, but it keeps coming up.

Does anyone know why this is and how I can stop this happening?

UPDATE - I have since truned off the Scan inside archives and compressed files option in the preferences pain as suggetsed on another post but this hasn't solved the issue.

:1014787


This thread was automatically locked due to age.
Parents
  • 0

    Ok, thanks for the quick reply.

    First I will try using the Disk Utility on my TM and see what will turn up. With a little luck that just might do the trick.

    Last fall, when I got my first trojan-warning, I actually tried to delete it manually. I went into TM and followed the steps from the posted video guide and deleted all TM backups of the file. I also went into Finder and located the file inside my Mail folder and deleted it manually. Unfortunately it didn't work for me and the alert came back after a few days (if I remember correctly). Since then I've started to get alerts for 2-3 more of these trojans from time to time, almost every day now.

    I've also done a search inside my Mail program as well as my webmail for the same account, but I cannot find any copies of these spam mails in any of my folders.

    :1015579
Reply
  • 0

    Ok, thanks for the quick reply.

    First I will try using the Disk Utility on my TM and see what will turn up. With a little luck that just might do the trick.

    Last fall, when I got my first trojan-warning, I actually tried to delete it manually. I went into TM and followed the steps from the posted video guide and deleted all TM backups of the file. I also went into Finder and located the file inside my Mail folder and deleted it manually. Unfortunately it didn't work for me and the alert came back after a few days (if I remember correctly). Since then I've started to get alerts for 2-3 more of these trojans from time to time, almost every day now.

    I've also done a search inside my Mail program as well as my webmail for the same account, but I cannot find any copies of these spam mails in any of my folders.

    :1015579
Children
No Data