| Server IP : 180.180.241.3 / Your IP : 216.73.216.252 Web Server : Microsoft-IIS/7.5 System : Windows NT NETWORK-NHRC 6.1 build 7601 (Windows Server 2008 R2 Standard Edition Service Pack 1) i586 User : IUSR ( 0) PHP Version : 5.3.28 Disable Function : NONE MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /ProgramData/Sophos/AutoUpdate/data/warehouse/ |
Upload File : |
<?xml version="1.0"?>
<configuration prodver="102" version="7" policy="1">
<components>
<configurationManager>
<security>
<roles>
<role name="SophosAdministrator"/>
<role name="SophosPowerUser"/>
<role name="SophosUser"/>
</roles>
<policies/>
</security>
</configurationManager>
<logging>
<logSources>
<settings/>
</logSources>
<workstation>
<consumers>
<item itemName="EventLog">
<settings>
<filtering/>
</settings>
</item>
<item itemName="FileLog">
<settings>
<rotation/>
<filtering/>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
<item itemName="SNMPMessaging">
<settings>
<filtering/>
</settings>
</item>
</consumers>
</workstation>
</logging>
<consumerFactory>
<item itemName="SNMPMessaging">
</item>
</consumerFactory>
<ICManagement>
<ICfixedExclusions/>
<cscan/>
</ICManagement>
<DCManagement>
</DCManagement>
<sipsManagement>
<runtimeBehaviour>
<bufferOverflowProtection/>
<resourceShield>
<suspicious/>
</resourceShield>
</runtimeBehaviour>
</sipsManagement>
<swiManagement>
<exclusions policy="0"/>
</swiManagement>
<bhoManagement/>
<DataControl>
<settings>
</settings>
<rules>
</rules>
<desktopMessaging>
</desktopMessaging>
<processExclusions/>
</DataControl>
<DeviceControlManager>
<settings>
</settings>
<rules>
</rules>
</DeviceControlManager>
<TamperProtectionManagement>
<settings>
</settings>
</TamperProtectionManagement>
<ApplicationManagement>
<Detection>
<enabled>false</enabled>
<detected></detected>
</Detection>
<AutoExclusions>
<enabled>false</enabled>
<onAccess>
<fileAndFolder></fileAndFolder>
<process></process>
</onAccess>
<onDemand>
<fileAndFolder></fileAndFolder>
</onDemand>
</AutoExclusions>
</ApplicationManagement>
<SEDManagement>
<settings/>
</SEDManagement>
<VEManager>
<settings>
<cloud>
<saviOptions/>
</cloud>
<scanner>
<saviOptions/>
</scanner>
</settings>
</VEManager>
</components>
<TDE>
<processors>
<VEAdapter>
<settings>
<saviOptions/>
</settings>
</VEAdapter>
</processors>
</TDE>
<!--
Global messaging settings
-->
<notification>
<consumers>
<smtpConsumer>
<settings>
<server>
<authentication/>
</server>
<sender/>
<replyTo/>
<from/>
</settings>
</smtpConsumer>
<SNMPMessaging>
<settings/>
</SNMPMessaging>
<eeConsumer>
<settings>
<blackList/>
<whiteList/>
</settings>
</eeConsumer>
</consumers>
</notification>
<!--
Product information
-->
<productInfo>
<productName/>
<productStatus/>
</productInfo>
<!--
Quarantine manager
-->
<quarantineManager>
<actions>
<user/>
<powerUser/>
<administrator/>
</actions>
<authorisedList policy="0"/>
<authorisedFileList policy="0" xml:space="preserve"/>
</quarantineManager>
<!--
Authorisation list manager
-->
<authorisationListManager>
<authorisedAppCList policy="0"/>
<blockedAppCList policy="0"/>
<blockedAppCCategoryList policy="0"/>
</authorisationListManager>
<!--
Concrete on-demand scan configurations
-->
<scanJobs>
<!--
Default scan - scan this computer
-->
<scan id="{F86EBCD5-687E-40B1-800D-021062361F6C}" ScanType="SystemScan">
<displayInfo>
<description policy="0">
<object ind="0">
<item type="marker" ind="0">ResStr</item>
<item type="unsigned" ind="1">104</item>
</object>
</description>
</displayInfo>
<configuration>
<template>OnDemandScanTemplate</template>
<notification>
<consumers>
<item itemName="FileLog">
<settings>
<rotation/>
<filtering/>
<filename policy="0" dir="LOCAL_APPDATA">Sophos\Sophos Anti-Virus\logs\Scan my computer.txt</filename>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
<scanManager/>
<instanceManager/>
<TDE>
<processors>
<item itemName="SOCDecomposer">
<settings/>
</item>
<item itemName="RawFSDecomposer">
<settings/>
</item>
<item itemName="DriveDecomposer">
<settings/>
</item>
<item itemName="FileAttributeFilter">
<settings>
<attributeList/>
</settings>
</item>
<item itemName="ExtensionFilter">
<settings>
<extensionList/>
</settings>
</item>
<item itemName="ExclusionFilterProcessor">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="FSDecomposerProcessor">
<settings></settings>
</item>
<item itemName="ScanPreprocessor">
<settings></settings>
</item>
<item itemName="VEAdapter">
<settings>
<general>
<disinfect>false</disinfect>
<mcmRemoval>false</mcmRemoval>
</general>
<stopScan/>
<saviOptions>
<item itemName="PuaDetection">
<name>PuaDetection</name>
<value>1</value>
</item>
<item itemName="DetectSecondaries">
<name>DetectSecondaries</name>
<value>1</value>
</item>
<!-- Currently, the ThreatAccumulation option must be enabled in order
to detect secondary PUA components
-->
<item itemName="ThreatAccumulation">
<name>ThreatAccumulation</name>
<value>1</value>
</item>
</saviOptions>
</settings>
</item>
<item itemName="FileOpProcessor">
<settings>
<move/>
<delete/>
<suspiciousFiles>
<move/>
<delete/>
</suspiciousFiles>
</settings>
</item>
<item itemName="ScanPostprocessor">
<settings></settings>
</item>
</processors>
</TDE>
</configuration>
<areas>
<object ind="0">
<item type="marker" ind="0">SOCollection</item>
<item type="unsigned" ind="1">5</item>
<object ind="2">
<item type="marker" ind="0">SKernel</item>
<item type="string" ind="1">Memory</item>
</object>
<object ind="3">
<item type="marker" ind="0">SMemory</item>
<item type="string" ind="1">Memory</item>
</object>
<object ind="4">
<item type="marker" ind="0">SRegistry</item>
<item type="signed" ind="1">1</item>
</object>
<object ind="5">
<item type="marker" ind="0">SRawFS</item>
<item type="signed" ind="1">1</item>
</object>
<object ind="6">
<item type="marker" ind="0">SDrive</item>
<item type="signed" ind="1">3</item>
<item type="string" ind="2"/>
<!-- types : fixed_mbr, fixed_pbr & fixed -->
<item type="unsigned" ind="3">11</item>
</object>
</object>
</areas>
</scan>
<!--
Cleanup scan - scan computer with automatic cleanup for malware
-->
<scan id="{20F676DB-F174-441E-A6D1-7395CF3A8FFC}" ScanType="SystemScan">
<displayInfo>
<description policy="0">
<object ind="0">
<item type="marker" ind="0">ResStr</item>
<item type="unsigned" ind="1">109</item>
</object>
</description>
</displayInfo>
<configuration>
<template>OnDemandScanTemplate</template>
<notification>
<consumers>
<item itemName="FileLog">
<settings>
<rotation/>
<filtering/>
<filename policy="0" dir="LOCAL_APPDATA">Sophos\Sophos Anti-Virus\logs\Cleanup scan.txt</filename>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
<scanManager/>
<instanceManager/>
<TDE>
<processors>
<item itemName="SOCDecomposer">
<settings/>
</item>
<item itemName="RawFSDecomposer">
<settings/>
</item>
<item itemName="DriveDecomposer">
<settings/>
</item>
<item itemName="FileAttributeFilter">
<settings>
<attributeList/>
</settings>
</item>
<item itemName="ExtensionFilter">
<settings>
<extensionList/>
</settings>
</item>
<item itemName="ExclusionFilterProcessor">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="FSDecomposerProcessor">
<settings></settings>
</item>
<item itemName="ScanPreprocessor">
<!-- consider disabling cache processing for the cleanup scan -->
<settings></settings>
</item>
<item itemName="VEAdapter">
<settings>
<general>
<disinfect>true</disinfect>
<puaRemoval>false</puaRemoval>
<mcmRemoval>true</mcmRemoval>
<scanVdlArchives>false</scanVdlArchives>
</general>
<stopScan/>
<saviOptions>
<item itemName="PuaDetection">
<name>PuaDetection</name>
<value>1</value>
</item>
<item itemName="DetectSecondaries">
<name>DetectSecondaries</name>
<value>1</value>
</item>
<!-- Currently, the ThreatAccumulation option must be enabled in order
to detect secondary PUA components
-->
<item itemName="ThreatAccumulation">
<name>ThreatAccumulation</name>
<value>1</value>
</item>
<item itemName="ApplicationControl">
<name>ApplicationControl</name>
<value>0</value>
</item>
</saviOptions>
</settings>
</item>
<item itemName="FileOpProcessor">
<settings>
<move/>
<delete/>
<suspiciousFiles>
<move/>
<delete/>
</suspiciousFiles>
</settings>
</item>
<item itemName="ScanPostprocessor">
<settings></settings>
</item>
</processors>
</TDE>
</configuration>
<areas>
<object ind="0">
<item type="marker" ind="0">SOCollection</item>
<item type="unsigned" ind="1">5</item>
<object ind="2">
<item type="marker" ind="0">SKernel</item>
<item type="string" ind="1">Memory</item>
</object>
<object ind="3">
<item type="marker" ind="0">SMemory</item>
<item type="string" ind="1">Memory</item>
</object>
<object ind="4">
<item type="marker" ind="0">SRegistry</item>
<item type="signed" ind="1">1</item>
</object>
<object ind="5">
<item type="marker" ind="0">SRawFS</item>
<item type="signed" ind="1">1</item>
</object>
<object ind="6">
<item type="marker" ind="0">SDrive</item>
<item type="signed" ind="1">3</item>
<item type="string" ind="2"/>
<!-- types : fixed_mbr, fixed_pbr & fixed -->
<item type="unsigned" ind="3">11</item>
</object>
</object>
</areas>
</scan>
</scanJobs>
<!--
Scan summaries
-->
<scanSummaries policy="0"/>
<!--
Scan templates
-->
<scanTemplates>
<webScanning>
<notification>
<consumers>
<item itemName="DesktopConsumer">
<settings>
<filtering/>
</settings>
</item>
</consumers>
</notification>
<TDE>
<processors>
<item itemName="VEAdapter">
<settings>
<general/>
<stopScan/>
<saviOptions/>
</settings>
</item>
<item itemName="WebScanningOperations">
<settings>
<mimeTypeList/>
</settings>
</item>
</processors>
</TDE>
</webScanning>
<onAccessScan>
<notification>
<consumers>
<item itemName="DesktopConsumer">
<settings>
<filtering/>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
<TDE>
<processors>
<item itemName="DriverOperations">
<settings/>
</item>
<item itemName="DriverExtensions">
<settings>
<extensionList/>
</settings>
</item>
<item itemName="FileExclusions">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="DriveExclusions">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="ProcessExclusions">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="GeneralExclusions">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="UserExclusions">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="ScanPreprocessor">
<settings/>
</item>
<item itemName="VEAdapter">
<settings>
<general/>
<stopScan/>
<saviOptions/>
</settings>
</item>
<item itemName="FileOpProcessor">
<settings>
<suspiciousFiles/>
</settings>
</item>
<item itemName="ScanPostprocessor">
<settings/>
</item>
</processors>
</TDE>
</onAccessScan>
<onDemandScan>
<instanceManager/>
<notification>
<consumers>
<item itemName="FileLog">
<settings>
<rotation/>
<filtering/>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
<TDE>
<processors>
<item itemName="SOCDecomposer">
<settings/>
</item>
<item itemName="RawFSDecomposer">
<settings/>
</item>
<item itemName="DriveDecomposer">
<settings/>
</item>
<item itemName="FileAttributeFilter">
<settings>
<attributeList/>
</settings>
</item>
<item itemName="ExtensionFilter">
<settings>
<extensionList/>
</settings>
</item>
<item itemName="ExclusionFilterProcessor">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="FSDecomposerProcessor">
<settings/>
</item>
<item itemName="ScanPreprocessor">
<settings></settings>
</item>
<item itemName="VEAdapter">
<settings>
<general/>
<stopScan/>
<saviOptions/>
</settings>
</item>
<item itemName="FileOpProcessor">
<settings>
<suspiciousFiles/>
</settings>
</item>
<item itemName="ScanPostprocessor">
<settings></settings>
</item>
</processors>
</TDE>
</onDemandScan>
<rightClickScan>
<instanceManager/>
<notification>
<consumers>
<item itemName="FileLog">
<settings>
<rotation/>
<filtering/>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
<TDE>
<processors>
<item itemName="SOCDecomposer">
<settings/>
</item>
<item itemName="RawFSDecomposer">
<settings/>
</item>
<item itemName="DriveDecomposer">
<settings/>
</item>
<item itemName="FileAttributeFilter">
<settings>
<attributeList/>
</settings>
</item>
<item itemName="ExtensionFilter">
<settings>
<extensionList/>
</settings>
</item>
<item itemName="ExclusionFilterProcessor">
<settings>
<exclusionList/>
</settings>
</item>
<item itemName="FSDecomposerProcessor">
<settings/>
</item>
<item itemName="ScanPreprocessor">
<settings></settings>
</item>
<item itemName="VEAdapter">
<settings>
<general/>
<stopScan/>
<saviOptions/>
</settings>
</item>
<item itemName="FileOpProcessor">
<settings>
<suspiciousFiles/>
</settings>
</item>
<item itemName="ScanPostprocessor">
<settings></settings>
</item>
</processors>
</TDE>
</rightClickScan>
<sipsMessaging>
<notification>
<consumers>
<item itemName="DesktopConsumer">
<settings>
<filtering/>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
</sipsMessaging>
<swiMessaging>
<notification>
<consumers>
<item itemName="DesktopConsumer">
<settings>
<filtering/>
</settings>
</item>
</consumers>
</notification>
</swiMessaging>
<dataControl>
<notification>
<consumers>
<item itemName="DesktopConsumer">
<settings>
<filtering/>
</settings>
</item>
<item itemName="FileLog">
<settings>
<filtering/>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
</dataControl>
<deviceControl>
<notification>
<consumers>
<item itemName="DesktopConsumer">
<settings>
<filtering/>
</settings>
</item>
<item itemName="FileLog">
<settings>
<filtering/>
</settings>
</item>
<item itemName="SmtpConsumer">
<settings>
<filtering/>
<messageFields>
<recipients/>
</messageFields>
</settings>
</item>
</consumers>
</notification>
</deviceControl>
<tamperProtection>
<notification>
<consumers>
<item itemName="FileLog">
<settings>
<filtering/>
</settings>
</item>
</consumers>
</notification>
</tamperProtection>
</scanTemplates>
<UserDefinedMessage/>
<disabledDeviceListManager>
<alertOnlyDevices/>
<disabledDevices/>
</disabledDeviceListManager>
<deviceControlManager>
<wirelessConnections/>
<storageDevices/>
<mediaDevices/>
<whiteList/>
<compositeDeviceParentList/>
</deviceControlManager>
</configuration>