I would like to submit an issue I have had with "Sophos Anti-Virus for Mac Home Edition 7.3". I have reported this issue before but got zero replies. I submitted this issue again because I would like to know if this is a known issue.
For some reason it had detected a windows Iframe virus (due to a visit to a fraudulent web page) in my Mac's swap files, and after blocking access to the swap file my Mac obviously came to a grinding stop.
For now I’’’’ve excluded /private/var/vm for checking. I would guess that that would have to be a default policy. Blocking access to swap files is never a good idea IMHO.
Ernst Mulder.
The Netherlands
Here's part of Sophos' log:
com.sophos.autoupdate: Info: Checked primary server at 18:49 on 07 October 2011
com.sophos.autoupdate: Sophos Anti-Virus was updated
com.sophos.autoupdate:
com.sophos.intercheck: 2011-10-07 19:14:01 +0200 Threat: 'Mal/Iframe-F' detected in /private/var/vm/swapfile4
com.sophos.intercheck: Access to the file denied
com.sophos.intercheck:
com.sophos.intercheck: 2011-10-07 19:14:40 +0200 Threat: 'Mal/Iframe-F' detected in /private/var/vm/swapfile4
This thread was automatically locked due to age.
