first of all, an exclusion is an exclusion - if there's a match the file isn't scanned. I'm not sure I understand you correctly, you mean if you check Scan files without extension? BTW - please note that there are settings for On-Access scanning and on-demand scans and they are independent. Whatever the settings they don't override exclusions. Furthermore a file without extension is special only insofar as Windows doesn't associate any actions with it.
Could you perhaps add some detail what your concerns or issues are?
Hello so here is what i have. i have several drives all these drives are in the exclusion list, how ever sophos has quarantined several files from within these drives. All these files have no extensions. That is the only thing i can see that would cause sophos to even be scanning n anything from with in these drives. If what you say is correct then sophos should not even be scanning theses drives however this is incorrect. So something is overriding something in order for sohpos to be quarantining these files.
first of all, if something triggers a detection this shouldn't be dismissed lightly. Of course a quarantined file is not necessarily malicious.
As said, there are two sets of settings and therefore exclusions. If a drive is excluded in one but not the other this will cause "unexpected" detections. Could you please post some relevant lines from the AV log and your on-access and on-demand exclusions?
trust me when i say these files are not malicious we know what these files are and they are proprietary. As for the on access and on demand. do you mean from the enterprise console or form a client machine? And i apologize where would i get relevant logs?
trust me when i say these files are not malicious we know what these files are and they are proprietary. As for the on access and on demand. do you mean from the enterprise console or form a client machine? And i apologize where would i get relevant logs?
