Hello,
A family member had thousands of Word doc files infected with the WM97/ColdApe-A macro virus. Sophos AV for Mac had identified these documents and offered to clean the threats. After a cleanup, a subsequent scan revealled that the Word documents were still a threat. After another threat removal, a post-cleanup scan indicated that documents still were infected with WM97/ColdApe. After reinstalling Sophos AV, repairing permissions, and even upgrading from 10.4 to 10.6 threats were still identified. Then the half dozen scan logs I have accumulated revealed a pattern; threat counts went down by 200. Sophos failed to clean the infected files all at once using "clean up threat" in the quarantine window, but instead had only taken out 200 after each scan/cleanup. Maybe I missed the 200 threat limit notice in the help and user agreement, or maybe it only effects the macro virus. In any event, this information may help out somebody else (I didn't find it in a search of posts here). I wish I had noticed the pattern sooner, and could also get my 7 hours back. ;)
This thread was automatically locked due to age.
