How to uninstall Sophos Anti-Virus if you cannot disable tamper protection : helpdesk@the-internet-guy.com

How to uninstall Sophos Anti-Virus if you cannot disable tamper protection Print

Modified on: Wed, Jan 24, 2018 at 11:20 AM

I had an issue whereas my cloud account would not disable my tamper protection with the password or at the cloud UI level.

After contacting tech support they told me about this method.

It DOES require you to boot into safe mode and it DOES require you to be a system administrator on your system... but it does work.

Boot the system into Safe Mode.
Click Start > Run > services.msc > right-click Sophos Anti-Virus service > properties > set to disabled > OK
Click Start > Run and type regedit and then click OK.
Go to the following location in the registry editor:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sophos MCS Agent and set the REG_DWORD Start to 0x00000004
Go to the following location in the registry editor:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sophos Endpoint Defense\TamperProtection\Config and set the following REG_DWORD values SAVEnabled and SEDEnabled to 0
Go to the following location in the registry editor:
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Sophos\SAVService\TamperProtection and set the REG_DWORD Enabled to 0
Reboot the system in normal mode.
Uninstall Sophos AV

At this point we are ready to reinstall the application or alternate application.

Hope this helps!

Did you find it helpful? Yes No

How can we help you today?

How to uninstall Sophos Anti-Virus if you cannot disable tamper protection Print

Related Articles