Intercept X module on Sophos Endpoint Cloud's client don't give logs

Question

There is an app at my pc. It works seamlessly on my pc and other pcs. And It also runs when I installed only endpoint advanced module. But when I want to install intercept module, it is preventing from my app's works. And there is no log for this situation from sophos sides. Is there anybody who have similar problem?

This thread was automatically locked due to age.

jak · Accepted Answer

Hi, 
 If you rename: 
 C:\windows\system32\hmpalert.dll to say: C:\windows\system32\hmpalert.dll.rename 
 and relaunch the application does it work? I wonder if the issue is with the injected DLL? 
 Note: if it's a 32-bit application on a 64-bit computer then it would be the file: C:\windows\syswow64\hmpalert.dll you would need to rename. 
 Otherwise, the next test would be to disable the hmpalert driver by setting the start value under: hklm\system\currentcontrolset\hmpalert 
 from 3 (default) to 4 (disabled) and reboot. 
 I wonder if the issue is with the driver or the user mode DLL. 
 Regards, 
 Jak

Yasin Aydın · Answer

I did this.And It is working now. But I do not know what consequences this might cause. Does this stop all the alarms? 
 
 Thanks Jak