"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
After excluding a volume mount point from the Sophos Anti-Virus on-access scanner it is still scanned.
First seen in Sophos Anti-Virus for Windows 2000+ 9.0.5
Sophos Anti-Virus scans the mount point using the Win32 Device Namespace but the exclusion has been added as a Win32 File Namespace.
Upgrade to Sophos Anti-Virus version 10.3.13 or above, this allows you to exclude volume mount points correctly using a 'folder' type exclusion.
To exclude a volume mount point C:\MOUNT\:
For more information on Win32 Namespaces see Naming Files, Paths, and Namespaces
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.