Greetings, I am a recent hire at my company and new to Sophos. I have been asked to investigate why files are piling up in the C:\Windows\Cryptoguard folder. They have consumed 20GB on our c drive which nearly out of space.
Our environment is:
Related Software Versions (Operating System, Outlook, etc.):
Windows 2016 DataCenter
Amazon EC2 r5.4xlarge
Sophos
RAM 126.54
c drive 5gb free out of 74.9!!!!
Core agent 2.2.5
Server AV 10.8.4.227
Server Intercept X 2.0.8
Last update signature update 7/10,7/16
We do have Sophos central, though I haven't seen it yet.
Based on searches it seems that this folder is used to hold files suspected of being ransomware, is that correct? Last night the Sophos was updated, and this morning there were 844 files added to the folder after reboot, where there had only been 6 since June.
Can someone please get me up to speed on what is going on and how to fix it?
This thread was automatically locked due to age.
