Hello,I have a problem with myportal@work. Filename: "myprotal @work.exe" (the blank is correct).
Already globally excluded this in Sophos Endpoint. Despite this, Sophos keeps deleting the exe file.
I excluded the whole folder and also the file.Allready i have delteted the blank in the filenmae.
What can i do ?greetings Viktor
What is the trigger for the delete? When you access the file is it populating as a malware event?
One thing, I noticed in your example that its typed "myprotal" - is that what you have in the exclusion?
Program Manager, Support Readiness | CISSP | Sophos Technical SupportSupport Videos | Product Documentation | @SophosSupport | Sign up for SMS AlertsIf a post solves your question use the 'Verify Answer' link.
Thanks for reaching out to the Sophos Community Forum.
If you wish for the file to be analyzed by our team so that the detection can be changed, I suggest sending in a sample of the file through our Sample Submission portal.
If you only wish to white-list the file locally, I suggest navigating to the device entry in Sophos Central where the detection was raised. You can find the detection event under the "Events" tab of the concerned device in order to use the "Details" button on the right hand side to white-list the item. The following KBA provides an example of how this can be done. - Sophos Central Admin: Exclude items from the Device list
sorry, the right word ist "myportal". When i start the program, the message "Lockdown" appears at the bottom right.
Is this a server? Lockdown is part of server protection that prevents any application from running that isn't whitelisted in the server lockdown policy. Exclusions do not override this.
no, it is a Client ! All Clients have this Problem.
Add the following entry in the global exclusions of your endpoint protection :
(File + Folders)