11-08-2012 08:44 AM
This morning, Sophos popped open a window (capture below) with a message that a threat had been detected (Troj~ObfJS-BK). I went to the Sophos site and followed directions (on page http://www.sophos.com/en-us/support/knowledgebase/
After over two hours, the sub-window inside the Quarantine Manager window was STILL going (horizontal barber pole running). I force quit the program (only way I could stop it), reopened Sophos, and followed the same steps as before, hoping the program had just gotten hung up before… well, two hours later and the cleaning is again, STILL going.
is this to be expected? is this a normal time to remove this threat? should I do something differently?
Solved! Go to Solution.
11-08-2012 09:04 AM
Now I got a notice that the threat could not be cleaned! is this some mistake or a supervirus? I did note that the virus is listed as a Windows virus, so I hope my Mac is safe from it ...
screen cap of the latest msg:
11-08-2012 11:52 AM
However, Blackhole, while mainly targeting Windows machines, can be (and has been) used by malware authors to drop malware for OS X as well. Because of this, I'd highly recommend you check to see if any dodgy plist files are in your /Library/LaunchAgents, /Library/LaunchDaemons/ etc. folders, or unexpected login items are associated with your user account. You may also want to check for unusual network activity (I know, easier said than done).
11-08-2012 12:48 PM
Thank you Agile! That eases my worried mind. Now, if I can figure out the other stuff you said. Clearly you know LOTS more about this than I do. part of the reason I went Mac was because I couldn't figure out how to program and do stull like that on PCs. Guess the easy ride is over.
11-08-2012 03:55 PM - edited 11-08-2012 03:56 PM