Volume mount point exclusions do not work

  • Article ID: 117281
  • Rating:
  • 3 customers rated this article 4.0 out of 6
  • Updated: 02 Oct 2015


After excluding a volume mount point from the Sophos Anti-Virus on-access scanner it is still scanned.

First seen in
Sophos Anti-Virus for Windows 2000+ 9.0.5  


Sophos Anti-Virus scans the mount point using the Win32 Device Namespace but the exclusion has been added as a Win32 File Namespace.

What To Do

Upgrade your version of Sophos Anti-Virus

Upgrade to Sophos Anti-Virus version 10.3.13 or above, this allows you to exclude volume mount points correctly using a 'folder' type exclusion.

Exclude the volume mount point using the Device Namespace

To exclude a volume mount point C:\MOUNT\:

  1. Open a command prompt with administrative privileges and type the below command


  2. Locate the below entry in the output:

    \\?\Volume{ccdd9132-6eb7-11e1-aa37-000c2956a1b4}\  C:\MOUNT\

  3. Add a folder exclusion for:


    The exclusion path is a Win32 Device Namespace, the '?' has to be replaced with a '. ' in order to convert the path from File to Device Namespace.

More Information

For more information on Win32 Namespaces see Naming Files, Paths, and Namespaces

If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent