Hi,
we're having general problems with the endpoints that are protected by sophos endpoint.
We have all computer connected to sophos central and in general we did not have any security issues, but we see that some activities became very slow (mainly…
Bonjour,
Nous rencontrons un problème quand on installe Sophos en ligne de commande (SophosSetup.exe --products=antivirus,intercept,xdr --quiet ) le logiciel d’installation Sophos se lance bien, l’installation se fait correctement. Le seul problème…
We could not download Adobe creative cloud. It just did not work. No message by the endpoint at all.
It works when disabling Web Protection in the Endoint.
There is one block message in the endpoint event log for a totally weird Adobe Download URL…
Hi all,
My company is using Intercept X managed on Sophos Central (200+ terminals).
2 weeks back some users started facing the issue of their browsers not loading any web pages at all, resulting in timeout. This is regardless of browser type, be it…
SOPHOS Endpoint Agent cannot be uninstalled on a specific computer.
When I try to uninstall, it is blocked
Message 'AmsiRegistrationProtection' exploit blocked in Admin Application Authorization UI Uninstalling other apps and executing commands are…
Dear All
I would like your support, I try to deploy sophos client to our client, I download installation file from console, but install is failed
I already check on firewall, it no block, for log file it show
2023-07-10T05:18:16.0211113Z…
We have created a custom query to allow us to find specific file names and path on any system within our tenant.
SELECT file, path FROM sophos_file_journal WHERE file LIKE '$$Filename$$';
This is very temperamental, as it will sometimes return a result…
I am getting hundreds of these error messages. Uninstalling and reinstalling Sophos hasn't helped.
What can I do to either stop these messages or fix the root cause?
I've seen a few posts already about this but nothing in recent years. I've turned on Application policy to try an prevent misuse of PowerShell and other tools. However its raised a large number of regular (hourly) alerts on most of the endpoints. Suggests…
Hello everyone,
is it usual, that Core Agent Version doesn´t change on the devices? All of our devices are still on 2022.4.3.1. I always thought Intercept X updates itself completely automatic.
Screenshots of the "Agent Summary" in sophos central…
Hi, I use multiple Windows VPN connections and DrayTek VPN connections to connect to my clients and last week all the windows vpn connections stopped working. I have tried everything I can find on the web to resolve and I want to rule out/determine whether…
Hello everybody,
Does Sophos Endpoint products must be running a version of Microsoft Windows that has been updated to support the Azure Code Signing (ACS) program, which replaced the deprecated cross-signing program?
Windows support for the Azure…
Hey guys
For the past two years, we have been using Sophos Intercept X with an XG210 firewall in our company. Since then, we've been experiencing difficulties establishing network connections with our LAN or WLAN.
The main issue is that the endpoints…
Hi,
Im getting this error in Sophos central for our client PC.
"Malware or potentially unwanted applications in quarantine"
How am i going to clean this? and if where is the location of the quarantine folder?
Thanks,
nidz
We're using the software "ALVA" by Ascherslebener Computer GmbH. Yesterday there was a scheduled update install of "ALVA". After installing the update you were not able to create or print any files out of the "ALVA" software. Also there was no error message…
Greetings very good afternoon community!
I have a question. Is the endpoint capable of detecting and reporting a port scan? That it has been executed on the network and towards computers that have the Endpoint installed? I have seen that the Sophos…
Not sure what has happened Sophos was asking for a reboot dure to an update on many computer last week and this week machines are being crippled.
50GB of memory usage, alerts in Windows were out of Virtual memory (When is the last time you ever thought…
One of our user has " Outbreak detected " report due to the following domain access. does this site really have any issue or this is an wrong detectection, as much as I can see it blocked image files only ? if no how sophos going to resolve it?
https…
Hello everybody.
I've never seen this type of behavior. How to proceed in this case?
Description
Manual malware cleanup required: 'Unknown Threat' at 'null'
More information
We tried to clean up a threat but failed.
Thanks
Sophos no deja entrar a mis usuario a una pagina de gobierno ( egob.finanzas.cdmx.gob.mx/.../a ) porque una aplicación que usa la categoriza como "Mal/HTMLGen-A". Ya puse la pagina en una whitelist y nada.
Hello Community,
i recently started deploying the Sophos Endpoint(/Server?) Agent to our Servers. These servers don't have internet access and i have set up a Update Cache Server with Message Relay.
I perform the installation with a customized script…
The detections section in Threat Analysis Center is filling with many of these events caused by MDR checks.
SRP seems to be related to Microsoft Software Restriction Policies.
What is the intension of this check?
"COMPLIANCE-SRP-DISALLOWED-PATHS…
I would like a setting from Sophos central to have block Bluetooth but only connect Bluetooth headphones which only transmits 2-way (in and out) audio but no data or file sharing. It is Possible or not...? If it possible then please guide me...!