Several computers have the alert 'Memory_1b (mem/xworm-a)'. It Says Manual malware cleanup required: 'Memory_1b (mem/xworm-a)' at 'c:\Program Files\Sophos\Sophos UI\Sophos UI.exe'.
The following are the details of the alerts.
Detection type: Behavioral…
Hi,
I manage many end-customers. Some have only XGS firewalls, others have XGS + InterceptX. I find it very time consuming switching among them, from one Sophos Central to the other. And many times when I close Sophos Central Dashboadr of one customer…
Hi
When I enable the "Prevent malicious network traffic with packet inspection (IPS)", the Microsoft Global Acces stop working (microsoft ztna).
Anyone knows why?
Shay
I wanted to test GIMP 3.0 RC1 but Sophos always blocks the start
It then shows: averted harmful behaviour 'Lockdown'
Gimp installer link: download.gimp.org/.../gimp-3.0.0-RC1-setup.exe
would like to understand when manual cleanup is needed via API events/alerts alone
this field in API events/alerts I am not clear on:
Event::Endpoint::CorePuaClean 'result'
API RESULT UNDERSTOOD:
{"items":[{"descriptor":"C:\\Users\\SOMEUSERNAME…
Hi Support,
I am unable to log in to my Sophos central account, my username and Password are correct but after entering the web portal ask verification code. Unfortunately, I never received this code in my email. Secondly, when I tried to change the…
Hi,
I am considering to replace existing Endpoint Security products (Webroot, ESET and Panda) with Sophos Intercept X on a dozen of customers. They all run Windows AD environment, most of clients are desktops in local domain. Is there any reliable automtion…
Hi all,
How can I check the version of Sophos Intercept X installed on the devices?
E.g. how can I check this information. The device tab just tells me if they are up to date, but not the actual version
Core Agent: 2024.2.4.1.0
Sophos Intercept…
Hi,
All my endpoints registered from my Sophos Central account. When I logged into my central account I'm no longer able to see any of my Endpoint options. I was under the Early Access Programs for Endpoint and all my serial keys keys have vanished…
Hi,
After the Sophos Central update, searching by username is not working. Kindly address this issue.
path details:
https://central.sophos.com/manage/overview/devices-list
its showing search by device name operating system and ip address…
Hey,
I've been trying to grant Sophos Endpoint Protection full disk access via a configuration profile in multiple ways.
I tried:
Using the profiles provided by Sophos,
Creating my own profiles using an older tutorial from Sophos ( Sophos Community…
DO I Need a special licence in my sophos central to be able to convert to Sophos Central Enterprise dashboard? [ Individual Sub-Estate Licenses and Enterprise Master Licenses ]
Does anyone know why some browsers can access ChatGPT, but others cannot after a web control policy prohibiting access to it has been created?
We do make use of Google Chrome and Microsoft Edge. Google Chrome does not ban the ChatGPT website, however…
Hi team,
The customer has purchased Sophos XDR for 400 terminal PC users, but all the terminal PCs cannot access the Internet. Based on this situation, how can the user computers use the endpoint protection function, how to deploy the agent, and use…
Hiya,
I am weirdly experiencing major hits to performance on a veriety of high end Windows surface devices following the 24H2 feauture update. I initially felt as if it was windows itself doing this but, upon testing, it seems to disappear when removing…
Hi,
we are getting below error i have added Sophos certificate to the trusted certificate of windows but no luck
also i have followed sophos KB article again same problem.if i removed endpoint from that machine error is not showing.
Hi all,
I'm looking for instructions on how to install Sophos Intercept X with Citrix PVS services.
The instructions I've already found all want to disable certain Sophos services to delete the machine_id file, and that's where the problem comes in…
Hello everyone,
I have configured DLP policies for one of our clients, they work as expected.
There is just one remark our client gave us : Sometimes if a user does the same action repeateadly, generating alerts every time he does that action, that…
We have a 4 core VM with Linux SPL Agent 2024.2.1.2
4 regular processes run and each run intended at 100% - usually. Currently Sophos osquery.4 is consuming 1 core at 100% so the other 4 processes run at about 75% only, slowing down calculations of…
I have been using Sophos EndPoint for about 3 years and using ChatGPT for about a year. Everything has been working fine until about 4 to 6 weeks ago when all of the sudden staff in our office cannot upload files to ChatGPT. I wasn't sure what is was…
Hi
After installing Sophos agent, the agent is not communicating with central.
I put the password in the agent, after that I can not select the 4 hours disabled protections.
When I disable the temper protection, but the agent is not communicating…