• Core Agent report Sophos Central

    Hi, How to generate a report of Core Agent version of all devices? Excel or CSV, do not mind
  • No access to URL once unlocked

    Hello I will have been looking at the Sophos Endpoint panel for around 3-4 hours for a web page that I have included in the website management list, to say that I have tried others and it does enable them, but in the case of the one indicated there…
  • Hollow Process and VMware ThinApp

    Hi, I have an application created using VMware ThinnApp. Something like a portable application. The last few days I have been getting the application blocked on HollowProcess. Unfortunately the application is quite important for me and I need to run…
  • Installation failed : IsWow64Process2 not available on older platforms

    Hello there, I´m trying to install the Sophos Client on an Server 2016 and I´m getting this Error (short): Installation failed : IsWow64Process2 not available on older platforms On an older thread I found this solution: mkdir C:\digicerttemp …
  • Cómo encontrar rangos de direcciones IP utilizados por Amazon

    tengo un ambiente de produccion en aws y he permitido cuanta urls me dice el manual de sopho para actualizar los agente pero no se me actualizan debe permitir todo el trafico https para que actualicen pero mis politicas internas por el tipo de negocio…
  • Eagle was misreported as ransomware

    I was importing images and Eagle was terminated by HMPA Eagle - 图片收集及管理必备工具
  • Will there be a local independent firewall in the future?

  • Some HMPA rules are not yet found on SOPHOS,When will it be fully integrated?

    Some HMPA rules are not yet found on SOPHOS, such as: MalwareBlocked,StackPivot,ROP,CodeCave,CookieGuard,LockDown。
  • Block Internet Access for Device group

    So I got a group of clients with Sophos Intercept X Advanced with XDR installed. Is there a way to block surfing for those clients via a policy, except for 1-2x Websites? Cause with the "Web Control" -> "Let me specify" -> "Block everything" it doesn…
  • May I ask what happened? Detected on the computer :C2_9a (T1095 mem/meter-e) 、 Disrupt_2a (T1574.002)

  • Sophos DLP not blocking transfer to USB not blocked

    Hi All, Having a real issue around a DLP policy I am trying to create. For context we do quite a bit of business with government organizations (hence I have had to redact some of these screenshots) and as such have a lot of sensitive data on site. My…
  • False positive for javaw.exe

    Hello, I am trying to install application from OpenSTM32 Community Site | HomePage (install_sw4stm32_win_64bits-v2.9.zip from download area) I have been using this application for years.without issues. But the SOPHOS is indicating and blocking javaw…
  • How DLP works?

    Hello! First of all, i'm realy sorry for my bad english! I hope that some people car excuse me and try to help me ;) I'm tring to create some DLP rules. My first step was to create content control lists in Global settings > Data Loss Prevention…
  • Alert or log when application is elevated

    Does sophos or is it possible to have sophos alert/generate a log when a process or application has been elevated? The scenario we have is, we have an application that has to run with admin privileges. The application has been saved to run with these…
  • Enpoint Agent is updating every day

    The Sophos Endpoint is updating successfully every day on some PCs. There are no errors but it is updating every day. Had someone happen something like this before?
  • Sophos Endpoint Endpoint Defence Software High RAM Usage

    We have deployed Sophos in our organization (on a 100+ plus) devices and we keep getting the same complaint of poor device performance. After investigation we have noticed that Sophos is using up a lot of RAM on client devices. I have noticed their…
  • SSP.log rotation and E Failed to raise async: Error converting user SID to string. Windows error code : 1337

    I was checking the SSP.log recently in C:\ProgramData\Sophos\Endpoint Defense\Logs\. According to https://support.sophos.com/support/s/article/KB-000038787?language=en_US this file should have a log rotation of 5 files. On Windows Server endpoints…
  • warning message for website will not showing in browser

    We used Sophos Central Endpoint and edited the web control policys. So for example we have set the category Society & Culture to warn. But in the users browser the website opens without a warning message. If we set the same category to block, in the user…
  • Sophos Device Encryption with Intune

    Hii Our company manages devices via Intune. Sophos Endpoint Protection is installed on all devices. In addition, encryption is managed via Sophos Device Encryption. Some of our customers also use Intune to manage devices. For new devices, we always…
  • chromedriver ransomeware alert

    Hello, One of our machines is generating this alerts when user is trying to run automations on the chromedriver. It says ransomeware detected. CryptoGuard trying to encrypt files. Can someone please assist or have experienced the same. Let me know what…
  • problem with installation

    Hello, I have problem with installation: 023-07-27T08:04:07.6522972Z INFO : Writing state HMPA64 to registry. 2023-07-27T08:04:07.6532972Z INFO : Writing state SAUXG to registry. 2023-07-27T08:04:07.6532972Z INFO : Cache folder: C:\\ProgramData\\Sophos…
  • Sophos Endpoint Protection: Whitelist a complete URL

    Hello, is it possible to whitelist an URL via Web Management like https://google.com/recaptcha/ but block https://google.com or is there an other way do this? Thank you your answers. Dirk
  • Deleted user from Central but device has encryption turned on

    Issue: A customer of ours has deleted some devices from the Central account for over 6months. They wish to remove Sophos from those device now however, as its over 90days the tamper protection from the Central console is not possible. We tried recovering…
  • Threats Detected but will not clear

    Dear Support, My Sophos found threats in endpoint but cannot clear it. Please see screenshot.
  • UNINSTALLING SOPHOS HITMAN

    a little context, i was given my father's official laptop for personal use but because of sophos i am simply unable to even copy files from a pendrive as sophos blocks the pendrive without even asking and prohibits intsallation of other softwares as…