Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 5839 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

quarantine manager finds trojan, but then it disappears

karlusmagnus

i have free sophos for mac, and i get Quarantine Mgr tellin me it finds a trojan called something like "trojan/iframe/jl" but the button to activate cleaning is dark (not active) and then within about 20 seconds the message disappears, and there is nothing to clean. Any idea? (i googled but dod not find anything really similar). Thanks. Karl.

:38281


This thread was automatically locked due to age.
Parents
  • 0

    Hello OceanDream,

    I'm not Sophos and even less Sophos Labs so this is just my personal opinion.

    You should take the Affected Operating Systems with a grain of salt and generally not interpret it as can not/will not/does not affect other OSs. It's a technical detail with a certain meaning - no more, no less. 

    Trying to answer your questions and address your concerns:

    I don't recall ever downloading anything from any questionable sites

    Web pages can be made up of dozens or even hundreds of elements and most of them you don't "download" - many of them often don't come from the site you visit. The threat could have been some animated ad (SWF referring to Flash).

    I wasn't doing a scan

    Unless you have on-access scanning turned off (which you shouldn't do) all files are assessed when they are opened and if necessary scanned. A browser usually downloads a page's elements to its cache and then opens them to process/display their contents.

    Any way to know if the program was actually executing or not?

    Troj/ detections are pre-execution - the file has been blocked before it could execute (whether it would have affected you or not).

    Christian

    :44705
Reply
  • 0

    Hello OceanDream,

    I'm not Sophos and even less Sophos Labs so this is just my personal opinion.

    You should take the Affected Operating Systems with a grain of salt and generally not interpret it as can not/will not/does not affect other OSs. It's a technical detail with a certain meaning - no more, no less. 

    Trying to answer your questions and address your concerns:

    I don't recall ever downloading anything from any questionable sites

    Web pages can be made up of dozens or even hundreds of elements and most of them you don't "download" - many of them often don't come from the site you visit. The threat could have been some animated ad (SWF referring to Flash).

    I wasn't doing a scan

    Unless you have on-access scanning turned off (which you shouldn't do) all files are assessed when they are opened and if necessary scanned. A browser usually downloads a page's elements to its cache and then opens them to process/display their contents.

    Any way to know if the program was actually executing or not?

    Troj/ detections are pre-execution - the file has been blocked before it could execute (whether it would have affected you or not).

    Christian

    :44705
Children
No Data