"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
This article provides information on deploying the Windows Sophos Central installer to multiple computers. It provides a couple of examples to cover common deployment methods.
Important: Before installation to computers, removal of the following software packages is required:
Important: If a device control policy has been sent to the computers, on uninstall of Sophos Anti-Virus the computer may need to be restarted in order to unload and therefore be able re-install the kernel driver sdcfilter.sys.
Applies to the following Sophos product(s) and version(s) Sophos Cloud
Note: If bandwidth is a concern for the initial deployment, the following articles may prove helpful as part of either a scripted or manual installation:
Important: 'SophosInstall.exe' is required to run as an administrator on the computer. If using 'logon' scripts, the logging on user will need to be an administrator on the local computer for the installation to succeed. If your users are not local administrators then AD start-up scripts should be used.
@echo off SET MCS_ENDPOINT=Sophos\Management Communications System\Endpoint\McsClient.exe IF "%PROCESSOR_ARCHITECTURE%" == "x86" GOTO X86_PROG IF NOT EXIST "%ProgramFiles(x86)%\%MCS_ENDPOINT%" GOTO INSTALL exit /b 0 :X86_PROG IF NOT EXIST "%ProgramFiles%\%MCS_ENDPOINT%" GOTO INSTALL exit /b 0 :INSTALL pushd \\servername\share SophosInstall.exe -q Popd
The following Microsoft documentation may also provide assistance: 'Assign computer startup scripts'.
SophosInstall.exe -q -tps remove
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.