Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 15 replies
  • Subscribers 6 subscribers
  • Views 4645 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

No Option for Cleaning Up Threats / Mac OSX

markgrant1

Hello.  Ran first scan on Mac OSX 10.6.7.  Here is the screen shot for the results --

http://i852.photobucket.com/albums/ab89/markgrant_bucket/sophosscreenshot.jpg

As you can see, the "Clean Up Threat" button is grayed out.  Should I "Clear From List" or just keep them in Quarantine?

:1003011


This thread was automatically locked due to age.
  • 0
    bernard wrote:

    I could not find the attachment you are pointing to, but I deleted a number of old files in the folders specified by the quarantine message.

    This seems to work and the quarantine window is now empty.

    Two more questions: 

    1.  "On-access scanning" refers to my current free Sophos application or is it one to be purchased?

    2.  Can Sophos work safely simultaneously with other antiviruses, specifically MacKeeper for Mac and Windows Essentials for Parallel? [this seems to be the case, with Sophos able to spot out malware that the two others do not see]?

    In answer to #1: other than the enterprise network management features in the Enterprise version, the Home version is virtually identical.  On-Access refers to the part of the product that watches your computer for any file access, and scans that file when accessed.  This is separate from the "On Demand" scans you can run by launching the Sophos Anti-Virus application itself.

    In answer to #2: Never run two on-access scanners on the same host OS at the same time, as they will likely cause minor or even major issues.  Since Windows Essentials is running under Windows, not under OS X, both can be installed at the same time -- just don't give them both read/write access to the same data at the same time, as this is where issues can begin to crop up.

    For more detail, please read the copious amounts of information written on these topics on this forum and available from the Help menu in Sophos Anti-Virus.

    :1003599
  • 0

    I've just loaded Lion and shortly after (maybe a coincidence) I got a threat report for OSX/FakeAV-A with an action of Manual Clean up.

    The threat details show no path.

    Any ideas how to remove this?

    :1003667
  • 0

    Please see http://openforum.sophos.com/t5/Sophos-Anti-Virus-for-Mac-Home/Help-with-Creating-a-Custom-Scan-to-remove-a-Threat/m-p/3285#M1651 -- found by putting OSX/FakeAV-A into the Board Search box.  Nost likely it's in your Downloads folder and is a Zip file named MacDefender , MacProtector, or something similar.

    :1003675
  • 0

    I don’’’’t understand how to clean malware manually if full path is not shown.

    Why Is My Mac Running Slow

    :1003747
  • 0

    If the manual clean option doesn't work (creating a custom scan with Delete Files enabled), then you need to locate the file.  If there's no file path in Quarantine Manager, then something's up -- without a reference path, the item should not be listed in the quarantine.  However, based on the detection name, I can likely tell you where the file is located.  If it's FakeAV, it'll be in your download folder, a backup of your download folder, or your Applications folder (if it actually installed).  If it's one of the Java detections, it'll be in your Java webCache folder in one of the Library/Caches folders on your system.  Most of the other ones will be in your Mail Attachments folder, unless you've got a shared partition that is used under Windows as well.

    Thinking about it, it's likely that if there's no file path but the detection name exists, the detection was on removable/networked media that is currently inaccessible, such as a USB drive or your Time Machine volume.

    :1003751