This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Antivirus issues

I'm just now getting around to playing with the endpoint protection.

I'm curious about a scan I just implemented.
I added loads of features making the scan much more robust than default.
The logs suggest very few things were scanned.
Is it safe to use this as client protection in the wild?

Here's the log:
****************** Sophos Anti-Virus Log - 11/30/2012 11:03:51 PM **************

20121130 111048    Using detection data version 4.82G (detection engine 3.36.2). This version can detect 4103544 items.
20121130 111049    User (NT AUTHORITY\LOCAL SERVICE) has started on-access scanning for this machine.
20121130 111155    The automatic sending of file data and samples for Sophos Live Protection is enabled.
20121130 111500    Scan 'Ravenna' started.
20121130 111710    User (NT AUTHORITY\SYSTEM) has stopped on-access scanning for this machine.
20121130 111741    Using detection data version 4.83G (detection engine 3.37.2). This version can detect 4205611 items.
20121130 111741    User (NT AUTHORITY\LOCAL SERVICE) has started on-access scanning for this machine.
20121130 111741    Using detection data version 4.83G (detection engine 3.37.2). This version can detect 4205611 items.
20121130 112109    Using detection data version 4.83G (detection engine 3.37.2). This version can detect 4205611 items.
20121130 112109    User (NT AUTHORITY\LOCAL SERVICE) has started on-access scanning for this machine.
20121130 112847    Scan 'Dougs Scan - Fairly Deep' started.
20121130 114419    Unknown error 0x8000ffff decomposing "Downloads".
20121130 114419    Unknown error 0x8000ffff decomposing "Sparx".
20121130 114419    Unknown error 0x8000ffff decomposing "workspace".
20121130 114419    Unknown error 0x8000ffff decomposing "Music".
20121130 114419    Unknown error 0x8000ffff decomposing "Videos".
20121130 114419    Unknown error 0x8000ffff decomposing "Documents".
20121130 114419    Unknown error 0x8000ffff decomposing "Pictures".
20121130 115156    Scan 'Dougs Scan - Fairly Deep' completed.
20121130 115156    Summary of results for scan 'Dougs Scan - Fairly Deep':
        Items scanned: 4586
        Errors: 7
        Items quarantined: 0
        Items dealt with: 0

This thread was automatically locked due to age.

Parents

0 SalishSwede over 11 years ago

I believe I enabled quite a few things...

Computer Group:Ravenna
Computer Status:Protected
Tamper Protection:Enabled

AntiVirus Settings:

On-access scanning is enabled
Scan for PUA is disabled
Automatic cleanup is enabled
Sophos live protection is enabled
Send sample file is enabled
Suspicious behaviour (HIPS) is enabled
Web protection is enabled
Block malicious sites is enabled
Download scanning is enabled
Scheduled scanning is enabled
Root kit scan is enabled
Low priority scan is disabled
Time event: MWF 3:15am

Device Control Settings:

Floppy Drive: Blocked
Optical Drive: Allowed
Removable Storage: Allowed
Encrypted Storage: Allowed
Modem: Blocked
Wireless: Allowed
Bluetooth: Blocked
Infrared: Blocked
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 SalishSwede over 11 years ago

I believe I enabled quite a few things...

Computer Group:Ravenna
Computer Status:Protected
Tamper Protection:Enabled

AntiVirus Settings:

On-access scanning is enabled
Scan for PUA is disabled
Automatic cleanup is enabled
Sophos live protection is enabled
Send sample file is enabled
Suspicious behaviour (HIPS) is enabled
Web protection is enabled
Block malicious sites is enabled
Download scanning is enabled
Scheduled scanning is enabled
Root kit scan is enabled
Low priority scan is disabled
Time event: MWF 3:15am

Device Control Settings:

Floppy Drive: Blocked
Optical Drive: Allowed
Removable Storage: Allowed
Encrypted Storage: Allowed
Modem: Blocked
Wireless: Allowed
Bluetooth: Blocked
Infrared: Blocked
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data