Volume mount point exclusions do not work

  • Article ID: 117281
  • Rating:
  • 2 customers rated this article 3.0 out of 6
  • Updated: 20 Apr 2012

Issue

After excluding a volume mount point from the Sophos Anti-Virus on-access scanner it is still scanned.

First seen in

Sophos Anti-Virus for Windows 2000+ 9.0.5  

Cause

Sophos Anti-Virus scans the mount point using the Win32 Device Namespace but the exclusion has been added as a Win32 File Namespace.

What To Do

To exclude a volume mount point C:\MOUNT\:

  1. Open a command prompt with administrative privileges and type the below command

    MOUNTVOL /L

  2. Locate the below entry in the output:

    \\?\Volume{ccdd9132-6eb7-11e1-aa37-000c2956a1b4}\  C:\MOUNT\

  3. Add a folder exclusion for:

    \\.\Volume{ccdd9132-6eb7-11e1-aa37-000c2956a1b4}\

    Note:
    The exclusion path is a Win32 Device Namespace, the '?' has to be replaced with a '. ' in order to convert the path from File to Device Namespace.

More Information

For more information on Win32 Namespaces see Naming Files, Paths, and Namespaces

 
If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent

Comments