This article provides instructions on how to enable verbose logging for Sophos Malicious Traffic Detection (MTD). This should normally only be required on instruction from Sophos Technical Support.
Applies to the following Sophos product(s) and version(s) Sophos Cloud Managed Endpoint 10.6.0Sophos Anti-Virus for Windows 2000+ 10.6.2
To enable verbose logging for MTD:
HKEY_LOCAL_MACHINE\Software\Sophos\Sophos Network Threat Protection\Application\
The output will be logged to the SntpService.log which is located in the following directory:
C:\ProgramData\Sophos\Sophos Network Threat Protection\Logs\
The default maximum log size is 10 MB with a maximum of two log files for rotation. When any level verbose logging is enabled the maximum log size increases to 1GB.
In addition to enabling additional service logging. It may also be required to enable verbose driver logging. In order to do so, the following steps should be carried out:
Important: It is recommended that you disable both the above logging once you have obtained the necessary log files.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.