Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 6 subscribers
  • Views 5473 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is malware secretly controlling my SAV settings??

NewUser

I recently had the problem of my SAV not updating anymore (probably the generic one discussed here – but in addition, On-Access scanning was also disabled and I couldn't switch it on anymore). I resolved this by uninstalling and re-installing SAV. Now the updates essentially work, and so does On-Access scan, BUT:

Whenever I've just restarted my computer and logged in, and have a look at my SAV settings, I find that the settings are not protected anymore (it reads "click the lock to prevent changes"), even though I always, always, always protect my settings (such that it should read "click the lock to make changes"). (Also, once I noticed the Sophos logo in the toolbar suddenly going from black to grey, as if it were turned off, but as soon as I clicked on it, it was back to black and everything looked normal.)

Now I really worry, is there some malware meddling with my SAV?

:1018761


This thread was automatically locked due to age.
Parents
  • 0

    I use Mavericks (10.9.4) and SAV 9.0.11 (it was 9.1.6 before I uninstalled and re-installed; I used to get updates through my university but now I get them directly from Sophos).

    I am the only user of my MacBook, so of course my account has admin rights. Now I created another account to try out its behavior, first as a "normal", non-admin user. The padlock in my SAV settings remained perfectly closed when I logged in with this new account; the same was the case when I stripped my good old main account of its admin status, while when I made the new account into an admin account, the padlock was open after login, just as with the main account when it has admin status. Furthermore, I observed that when I look at my SAV settings not immediately after login but only after a certain time, I also find the padlock closed, without having to manually lock it. Also, whenever SAV is getting updated, On-Access scanning seems to switch off for a short time, then switches on again.

    :1018975
Reply
  • 0

    I use Mavericks (10.9.4) and SAV 9.0.11 (it was 9.1.6 before I uninstalled and re-installed; I used to get updates through my university but now I get them directly from Sophos).

    I am the only user of my MacBook, so of course my account has admin rights. Now I created another account to try out its behavior, first as a "normal", non-admin user. The padlock in my SAV settings remained perfectly closed when I logged in with this new account; the same was the case when I stripped my good old main account of its admin status, while when I made the new account into an admin account, the padlock was open after login, just as with the main account when it has admin status. Furthermore, I observed that when I look at my SAV settings not immediately after login but only after a certain time, I also find the padlock closed, without having to manually lock it. Also, whenever SAV is getting updated, On-Access scanning seems to switch off for a short time, then switches on again.

    :1018975
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?