On-access scanner detects malware in PureMessage Temp folder

  • Article ID: 29009
  • Updated: 01 May 2013


Sophos Anti-Virus has reported malware in the C:\Program Files\Sophos\Puremessage\Temp\ folder.

First seen in
PureMessage for Microsoft Exchange


You have not excluded the PureMessage temporary folder from the local Anti-Virus on-access scanner.  PureMessage uses this Temp folder to extract and scan compressed files.

What to do

Set up an exclusion for this folder so that the on-access scanner in Sophos Anti-Virus does not interfere with PureMessage.

If the local copy of Sophos Anti-Virus is managed from the console ensure that the central Anti-Virus and HIPS policy of the PureMessage server has the exclusion set rather than being configured locally.  This stops the setting being lost if the policy is complied from the console.

Also ensure you have implemented exclusions for IIS and Exchange.  For further information see article 35970.

If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent