Thread Info
  • Locked Locked
  • Replies 32 replies
  • Subscribers 27 subscribers
  • Views 71540 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HitmanPro.Alert 3.6.9 Causes Exploit Detection Non Compliance

Shane Clark

After Sophos updated the version of HitmanProAlert  to version 3.6.9, All of my PC's are getting Exploit Detection Non Compliant alerts. After exactly two hours in this state they then go into compliance for 30 minutes and then repeat this process. Sophos Support says its an issue where the HitmanPro service is shutting down before the Management Communication System Service which is causing the trigger. They have yet to figure out how to fix this issue. Is anyone else seeing this issue? Does anyone have any suggestions of how to fix?



This thread was automatically locked due to age.
Parents

  • Same issue at my job. I've contacted Sophos sent them SDU logs and they couldn't determine the issue. Also, we had a spike in policy violations around 14,000 in two days. This started happening after the last maintenance they did.

     

    In Sophos Endpoint Self Help I see Management Communication errors on all of the computers with Policy non-compliance: Exploit Detection issues.

    Failed error '504 Gateway Time-out'. We have around 300 computers with Policy non-compliance: Exploit Detection alerts.

Reply

  • Same issue at my job. I've contacted Sophos sent them SDU logs and they couldn't determine the issue. Also, we had a spike in policy violations around 14,000 in two days. This started happening after the last maintenance they did.

     

    In Sophos Endpoint Self Help I see Management Communication errors on all of the computers with Policy non-compliance: Exploit Detection issues.

    Failed error '504 Gateway Time-out'. We have around 300 computers with Policy non-compliance: Exploit Detection alerts.

Children
  • in reply to Mario Urrea

    Same here Mario, even though I haven't uploaded the SDU logs as my technician requested but apparently the case as been escalated to higher level. According to him, it's in the developer stage for investigation.

    I definitely have the same around of errors as you mentioned, over 200 workstations with the Policy non-compliance: Exploit Detection

     

    Plus when you do look into a workstation, we also getting the Management Communication error with not being able to update with "Failed error '504 Gateway Time-out'.

     

    Not sure when this will get resolved but hopefully soon. Tired of seeing all these false positive alerts. You can't even work on real issues without dealing with Vendor issues.

  • in reply to Chris Rodriguez

    Hello everyone,

     

    We are getting the same issue over her as well.  we have over 1000+ machines that it is affecting.  I have uninstalled Sophos from the pc and deleted the machine from the Sophos central console and reinstalled and it still is popping up with the exploit detection along with the management communication error and the update error in the diagnostic area.

    I noticed this issue started on October 17th and still persisting with no resolution.  I have submitted a ticket to sophos and waiting a response.

  • in reply to Aisha Smith

    Sophos,

     

    What is our risk meter at this point? with all the false positive, Exploit detection's alarming and not able to update, or communicate correctly to the management communication are our systems protected?  because so far what i see on the consoles is that the antivirus is failing.  IT suggest we install and that option is not available.

    how long will this fix take to resolve the issue? 

Unfiltered HTML