How to recover a Sophos tamper protected system

By Funashi Mwamba |
sophos tamper protected system
Views: 212

sophos tamper protected system
4.5

Design

 4.5/5

Feel and Look

 4.5/5

Performance

 4.5/5

Ease of Use

 4.5/5

Relevancy

 4.5/5
Read Time:1 Minute, 13 Seconds

This tip applies to Sophos Security admins or anyone managing a Sophos security service or features such as Sophos Antivirus available at Sophos home or Central.

Sophos Home is business-grade cybersecurity and is available to every Zambian home users for free.

If you do not have access to Sophos Central the following steps can be used. To recover a tamper protected system, you must disable Enhanced Tamper Protection.

The following procedure will work:

  1. Boot the system into Safe Mode.
    Click Start > Run > type services.msc > right-click Sophos Anti-Virus service > Properties > set the Startup type to Disabled > then click OK.
    Click Start > Run > type regedit and then click OK.
  2. Go to the following location in the registry editor:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sophos MCS Agent and set the REG_DWORD Start to 0x00000004.
  3. Go to the following location in the registry editor:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sophos Endpoint Defense\TamperProtection\Config and set the following REG_DWORD values SAVEnabled and SEDEnabled to 0 .
  4. Go to the following location in the registry editor:
    HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Sophos\SAVService\TamperProtection and set the REG_DWORD Enabled to 0.
  5. Reboot the system in normal mode.

Enhanced Tamper Protection is now disabled and you should now be able to access the system and make the necessary changes desired.

Feedback

If you have tips and suggestions don’t hesitate to contact me

Share2
Tweet
Pin
2 Shares

More Posts That May Interest You:

You Can Now Install Sophos XG Firewall On Virtual MachinesYou Can Now Install Sophos XG Firewall On Virtual Machines windwos serverHow to rebuild SYSVOL share and NETLOGON share MTN Home Pack offers the best data dealsOffer of the Day: MTN Home Pack Gets You100GB for Price of 20GB Meltdown and Spectre malware caused havoc among many usersProtect your machine from Meltdown and Spectre The Impossible Puzzle of CybersecurityTwo out of three organizations fell victim to a cyberattack in 2018 MTN and Airtel among the Chat CarriersFinally Chat will Put To Use My Thousand SMS Bonus How To Unlicense Office 365 MailBox UserHow To Unlicense Office 365 MailBox User Samsung One UI 3 changesOne UI 3 Upgrade Android 11 Full Changes Default ThumbnailWhy iPhone 7 Product Red is not Popular in Zambia Wifi routers are the starting point for IT Managers in Zambia who seek to ready for work from homeAre IT Managers in Zambia ready for work from home Knowing the command to manage business central lightens the IT daily responsibilitiesPowerShell commands to manage Business Central Types of IPv4 Addresses 5 Special IPv4 Address BlocksTypes of IPv4 Addresses 5 Special IPv4 Address Blocks Default ThumbnailQu’est-ce qu’une assurance ? Default ThumbnailDéfinition d’une assurance 30000 Teacher recruitment in Zambia takes on shapeHere is the list for download of 30,000 teachers recruitment in Zambia in 2022 Office 365 security defaults from February 29th 2020Security defaults replacing baseline protection policies in Azure AD Default ThumbnailHow do i recover acces to my phone Astro Genesis Phab ZTE Android PhoneThe First Phone That Introduced Me To Android OS Work from home is one way to combat coronavirusCombating Coronavirus using technology Every Zambian Is Trying FaceAppEvery Zambian Is Trying FaceApp
Posted in Tools and tagged

This site uses Akismet to reduce spam. Learn how your comment data is processed.