Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 1 subscriber
  • Views 14185 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Turning on Web Protection destroys PC's

Scott2020

Hello.  Yesterday I installed Sophos 9.5 and created a new av and hips policy for a test group.  As part of the group I turned on the new features, but under "web protection" I had set "block access to malicious websites" left OFF.  I decided to try this out, so I turned it ON and pushed out to my test group.  Seconds after the update, I had 3 machines crash with svchost.exe errors, and an NTAUTHORITY process with a 60 second countdown trying to shut the machine down.

We restarted these machines and now we can't log into them.  There are several svchost.exe errors and then random critical errors preventing us from doing anything on the machines.

On one machine I was able to boot with last known good configuration and recovered it.

These are Windows XP SP3 machines with the latest Windows updates.  No firewall or other AV turned on.

Anyone else have this problem?

:3825


This thread was automatically locked due to age.
Parents
  • 0

    Hello all,

    I did open a ticket with Sophos yesterday.  Initial response was fast, and they advised me to download the boot CD and do a scan of my computer.  The scan showed no infections.  I highly doubt my machine was infected.  I was running 9.5 fine after upgrading, until I turned on the website scanning option.  I have 3 machines that were brought down when I enabled this option.  One of them I was able to boot with last known good configuration and saved it.  The others are still down.  I haven't heard from Sophos since yesterday morning.

    :3843
Reply
  • 0

    Hello all,

    I did open a ticket with Sophos yesterday.  Initial response was fast, and they advised me to download the boot CD and do a scan of my computer.  The scan showed no infections.  I highly doubt my machine was infected.  I was running 9.5 fine after upgrading, until I turned on the website scanning option.  I have 3 machines that were brought down when I enabled this option.  One of them I was able to boot with last known good configuration and saved it.  The others are still down.  I haven't heard from Sophos since yesterday morning.

    :3843
Children
No Data
Unfiltered HTML