Since I came back this afternoon (family have been using the Mac), SAV keeps popping up a message to say it has detected a threat. When I open the quarantine manager, it says the threat is Mal/KeyGen-M and the filename is '...'
Under threat details, for the Path and Filename is says "To view all components of the threat, you must authenticate as an administrator", and under Action Available is says "The threat can be cleaned up". However, when I authenticate as admin, the Path and Filename is still blank. If I then choose the clean up the threat, quarantine manager says "Cleaning up threats", shows me a progress bar and then goes no further. Even leaving iot for an hour or more this window doesn't go anywhere and the only way out of it is to Force Quit the app. Later on the message pops up again and so the cycle repeats.
I have noticed the following console messages for Sophos:
25/11/2011 21:51:34.910 com.sophos.notification: 2011-11-25 21:51:34.909 SophosAVAgent[1331:207] <IPCConnection: 0x429200> exception raised in delegate's message handler: *** -[__NSArrayM insertObject:atIndex:]: object cannot be nil
25/11/2011 21:52:42.953 com.apple.SecurityServer: Failed to authorize right 'com.sophos.cleanup' by client '/Library/Sophos Anti-Virus/SophosAntiVirus.app' [1084] for authorization created by '/Applications/Sophos Anti-Virus.app' [1302]
25/11/2011 22:12:37.319 com.apple.launchd.peruser.501: ([0x0-0x42042].com.sophos.sav[1302]) Exited: Terminated: 15
Any ideas - is this a false alarm of some sort, and if not how can I find out what file SAV is complaining about and how to clean it up?
This thread was automatically locked due to age.
