Alert from CNET Staff

 Attention forum users:  We want you to try out the new CNET forums platform! Click here to read the details. Thanks!

General Mac software discussions forum: SOPHOS AV - NOT WHAT THEY SAY IT IS

by: JoelW May 1, 2012 11:35 AM PDT

Like this

0 people like this thread

Staff pick


by JoelW - 5/1/12 11:35 AM

Hello, I am in the midst of a very serious issue, which already has lost me thousands of dollars due to Sophos AV. In short:


This is not a joke, and I'm not interested in arguing the point. I have already been down that road with Sophos company/tech support. I not only found them to be UNSYMPATHETIC, and UNCONCERNED, but a slip from the representative, showed me they know of this very serious issue, and are not in any hurry to fix it. it all started out simple enough.

I installed Sophos AV for ONLY THREE HOURS. I did not like user interface, so I uninstalled it with their uninstaller. I checked it, made sure it was purged, I made sure no traces were left. In a few days I think about five, my machine was progressively slowing down, finally to a non functional state. My finder was crashing, or freezing - Sound familiar? We stress about such things, and often never know the why of it. Then the spinning wheel, long periods of time, then just... non workable.

I ran EVERY diagnostic imaginable... the MAC disks, I went into the Single User Mode, Disk Warrior, Snow Leopard Cache Cleaner, directory tools, you name it. They said my drive was functioning normally. I was upset, as I make my living with my machine, and I have, as of today lost ten days of income, at a cost of a few thousand, with kids, and an empty bank account.

I kept booting into single user mode, on one particular boot, I happened to catch an error of sorts and I saw the name 'SOPHOS Anti Virus.' I opened a terminal window, and pulled up my firewall logs - - - you will not believe this..

Sophos had, in a manner of speaking taken over my machine. When I checked my system logs, I was astounded to find Sophos making querys into my machine EVERY TEN SECONDS at tree per second.

My system resources were being bled away from functional work! That was all that was wrong. Sophos has in effect, become a virus in itself. But worse, because it is from the Sophos server.

I counted in one and a half hours, over 4500, yes, FOUR THOUSAND, FIVE HUNDRED, QUERYS. My diagnostics were correct. Nothing was wrong with my machine, except for Sophos.

The standard searches I did, did not show any more Sophos files in the machine. So I got Onyx, and toggled 'show hidden files.' Then I went to 'Mac Help Mate,' and did a search, and WOW, I found about thirty or more files, and many were over 1 mg. So, I manually cleared the machine, and put the files into a data shredder. I checked, and rechecked. My machine was immediately back to speed, and humming along nicely. But...I just checked. It's been two hours since I purged my machine, now the messages are coming in at 6 to 10 or more, EVERY TEN SECONDS.

I am exhausted, out of money, and looking at a very difficult outcome. I do not know what to do. Sophos, does NOT care. When I told them I was losing my business, they told me to go online for 'free' tech support. I told them I did NOT want tech support, I wanted their program off my unit. I kept getting directed to online support.

Read they forums. They are NOT about support in truth. They are about propagating their own agenda. IF, they were actually concerned, when I told them their servers were not letting go, and I can't work, it made no difference. They told me to go online and see what I can find out.

I think if only one person had this problem, they shoud be at least interested what is up. I do not think I am an isolated case. Most regular users, i.e. students, kids, household types, are not aware of single user, or terminal. I just almost accidently fell on to the root of my problem. If anyone can help, Please, I need it. But, at this point, I'm about out of money.

It would not suprise me, if Sophos wrote malware to create their on market. Create it, be the one to 'cure' it. Then you be the hero. On my word, their tech guys were not suprised. As I was reading my syslogs to them, I heard him quoting the message as I was reading. Oops...

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to


Thank you. Sent email to


You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.


Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.


You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted and will appear on our site shortly.