Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Subscribers 11 subscribers
  • Views 2064 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Tell if Sophos is working - many 'Failed' in logs

M3dHutchinson

Greetings, I am brand new to this community... looking forward to understanding Sophos better.

The point of this first post.  How can I determine if Sophos is running as it should?... I recently looked at Sophos log files at C:\ProgramData\Sophos\Sophos Anti-Virus\logs

When I run a scan, it takes very long time, then looks to finish but shows last scan was not current. Looking in the log files.. there are approaching half of the lines indicating 'Failed' (4600 lines in 11000 total)

Several years ago we moved to Office 365 and OneDrive. One of the things IT has done was to move what looks to be all of My Documents, Desktop, pictures etc to OneDrive. As I understand it, with this in place... setting up a new computer is expedited in that these locations come automatically to the new computer as soon as the user's account is logged into.

Is Sophos compatible with scanning locations that are in OneDrive?

 

 



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    You can check if the Sophos is running fine and is to up-to-date on your machine from the UI itself, you can check this article for more information. For the log files of items being scanned by Sophos endpoint, you are looking into the correct directory(C:\ProgramData\Sophos\Sophos Anti-Virus\logs), please refer to this article for the location of all the log files. What are the error messages you are seeing under the logs, could you please help me with those errors? Sophos does scan onedrive files, you can also manually scan the files, and check under the AV scanning logs. 

    Shweta

    Community Support Engineer | Sophos Technical Support
    Are you a Sophos Partner? | Product Documentation@SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
    The New Home of Sophos Support Videos! - Visit Sophos Techvids
  • 0 in reply to Shweta

    Just to clarify, are you saying that Sophos will scan Onedrive non-synce'd or sync'd files, as in files you have access to on OneDrive but not on your physical computer and or just files that are on your computer but sync'd in real time to OneDrive?  I am just trying to understand the larger picture with OneDrive and Sophos Central in terms of what is scanned and how.

    Respectfully, 

     

    Badrobot

     

  • 0 in reply to Badrobot

    Hi  

    As  mentioned, one drive-based folder such as my documents, downloads will be scanned when the scheduled scan is running and you can also view the scanning logs to verify(Sophos Cloud Scheduled Scan.txt and SAV.txt for on-access scanning). Also, if you try to access any of the files from one-drive, it will be scanned by Sophos on-access scanner. 

    Shweta

    Community Support Engineer | Sophos Technical Support
    Are you a Sophos Partner? | Product Documentation@SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
    The New Home of Sophos Support Videos! - Visit Sophos Techvids
  • +1 in reply to Badrobot

    Only the files that are stored locally will be scanned during a Scheduled or On-Demand scan.  The One Drive locally stored files are treated like any other local file on the local disk.  Same goes for Box, DropBox, Google Drive.

    The on-line 'copies' of the sync'd files are considered to be remote files and Sophos does not perform scheduled or on-demand scans of remote files.  Sophos only scans the remote files when they are accessed from the remote location.

    Yes, if you're foolish enough you can disable on-access of scanning Remote Files.  I suggest only doing that if you want to suffer a major outbreak.

    In short, Scheduled or On-Demand scans do not scan the on-line storage areas of One Drive or any other online storage solution.

     

    Hope this helps to clarify things.

Reply
  • +1 in reply to Badrobot

    Only the files that are stored locally will be scanned during a Scheduled or On-Demand scan.  The One Drive locally stored files are treated like any other local file on the local disk.  Same goes for Box, DropBox, Google Drive.

    The on-line 'copies' of the sync'd files are considered to be remote files and Sophos does not perform scheduled or on-demand scans of remote files.  Sophos only scans the remote files when they are accessed from the remote location.

    Yes, if you're foolish enough you can disable on-access of scanning Remote Files.  I suggest only doing that if you want to suffer a major outbreak.

    In short, Scheduled or On-Demand scans do not scan the on-line storage areas of One Drive or any other online storage solution.

     

    Hope this helps to clarify things.

Children
No Data
Unfiltered HTML