Sophos Endpoint Security and Control status report for machine CORNB156 [General] Endpoint security and control = 10.8 Support reference = Current user rights = Sophos Administrator [Anti-virus and HIPS] -[ Software] Sophos Anti-Virus 10.8.2.311 On-access status Enabled Detection engine 3.73.0 Detection data 5.54 Virus data date 8/21/2018 Items detected 24410608 Detection identities 176 HIPS rules version 10.3.244.1 HIPS configuration version 1.0.65.2 Last updated 8/27/2018 9:19:03 AM +[ Components] AppFeedManager.dll 10.8.2.311 , size 531008 bytes ApplicationManagement.dll 10.8.2.311 , size 460808 bytes AuthorisedLists.dll 10.8.2.311 , size 246800 bytes BackgroundScanning.dll 10.8.2.311 , size 102880 bytes BHOManagement.dll 10.8.2.311 , size 338688 bytes bpaif.dll 2.5.0.99 , size 265480 bytes Categories.dll 10.8.2.311 , size 21784 bytes ComponentManager.dll 10.8.2.311 , size 124168 bytes Configuration.dll 10.8.2.311 , size 377624 bytes DesktopMessaging.dll 10.8.2.311 , size 530432 bytes DetectionFeedback.dll 10.8.2.311 , size 1019304 bytes DriveProcessor.dll 10.8.2.311 , size 174040 bytes EEConsumer.dll 10.8.2.311 , size 139256 bytes FilterProcessors.dll 10.8.2.311 , size 272248 bytes FSDecomposer.dll 10.8.2.311 , size 118416 bytes ICAdapter.dll 10.8.2.311 , size 222376 bytes ICManagement.dll 10.8.2.311 , size 587536 bytes ICProcessors.dll 10.8.2.311 , size 374040 bytes Instrumentation.dll 10.8.2.311 , size 84656 bytes LegacyConsumers.dll 10.8.2.311 , size 128328 bytes Localisation.dll 10.8.2.311 , size 155944 bytes Logging.dll 10.8.2.311 , size 532032 bytes osdp.dll 1.44.1.2420 , size 239000 bytes Persistance.dll 10.8.2.311 , size 125704 bytes rkdisk.dll 1.5.33.1 , size 121888 bytes Safestore32.dll 1.3.0.1 , size 1699752 bytes SafeStore64.dll 1.3.0.1 , size 2278520 bytes SavAdapter.dll 10.8.2.311 , size 1595904 bytes SAVControl.dll 10.8.2.311 , size 240088 bytes SAVI.dll 9.0.11.2420 , size 3571608 bytes savmscm.dll 2.00.1503 , size 261376 bytes SavNeutralRes.dll 10.8.2.311 , size 3232856 bytes SavPlugin.dll 10.8.2.311 , size 148080 bytes SavRes.dll 10.8.2.311 , size 776664 bytes SavResChs.dll 10.8.2.311 , size 143352 bytes SavResCht.dll 10.8.2.311 , size 142840 bytes SavResDeu.dll 10.8.2.311 , size 203136 bytes SavResEng.dll 10.8.2.311 , size 194824 bytes SavResEsp.dll 10.8.2.311 , size 203136 bytes SavResFra.dll 10.8.2.311 , size 214008 bytes SavResIt.dll 10.8.2.311 , size 209336 bytes SavResJap.dll 10.8.2.311 , size 157928 bytes SavSecurity.dll 10.8.2.311 , size 164136 bytes SavShellExt.dll 10.8.2.311 , size 427616 bytes SavShellExtX64.dll 10.8.2.311 , size 546544 bytes SAVUserContext.dll 10.8.2.311 , size 125824 bytes ScanEditExports.dll 10.8.2.311 , size 56136 bytes ScanEditFacade.dll 10.8.2.311 , size 223400 bytes ScanManagement.dll 10.8.2.311 , size 333568 bytes SEDManagement.dll 10.8.2.311 , size 391752 bytes SIPSManagement.dll 10.8.2.311 , size 758440 bytes SophosOfficeAV.dll 10.8.2.311 , size 177176 bytes SophosOfficeAVx64.dll 10.8.2.311 , size 214576 bytes SophtainerAdapter.dll 10.8.2.311 , size 89896 bytes sophtlib.dll 1.00.0.2420 , size 770456 bytes SWIManagement.dll 10.8.2.311 , size 237408 bytes SystemInformation.dll 10.8.2.311 , size 132992 bytes TamperProtectionControl.dll 10.8.2.311 , size 153264 bytes TamperProtectionControlX64.dll 10.8.2.311 , size 178256 bytes TamperProtectionManagement.dll 10.8.2.311 , size 242072 bytes TamperProtectionPlugin.dll 10.8.2.311 , size 285168 bytes ThreatDetection.dll 10.8.2.311 , size 603192 bytes ThreatManagement.dll 10.8.2.311 , size 782928 bytes Translators.dll 10.8.2.311 , size 236440 bytes VEController.dll 10.8.2.311 , size 279992 bytes veex.dll 3.73.0.2420 , size 4372688 bytes VirusDetection.dll 10.8.2.311 , size 1027616 bytes wow64ext.dll 1.0.0.9 , size 64392 bytes BackgroundScanClient.exe 10.8.2.311 , size 82672 bytes ForceUpdateAlongSideSGN.exe 10.8.2.311 , size 300256 bytes Native.exe 10.8.2.311 , size 317000 bytes sav32cli.exe 2.99.9.00 , size 528896 bytes SAVAdminService.exe 10.8.2.311 , size 251984 bytes SAVCleanupService.exe 10.8.2.311 , size 169888 bytes SavMain.exe 10.8.2.311 , size 1748200 bytes SavProgress.exe 10.8.2.311 , size 498784 bytes SavProxy.exe 10.8.2.311 , size 90984 bytes SavService.exe 10.8.2.311 , size 225000 bytes SAVTelem.exe 10.8.2.311 , size 70712 bytes ssr32.exe 1.3.0.1 , size 151096 bytes ssr64.exe 1.3.0.1 , size 173928 bytes WSCClient.exe 10.8.2.311 , size 282160 bytes difxapi.dll 2.1 , size 414152 bytes swi_filter.dll 3.6.0.3312 , size 2919560 bytes swi_filter_64.dll 3.6.0.3312 , size 4144112 bytes swi_ifslsp.dll 3.6.0.3312 , size 141424 bytes swi_ifslsp_64.dll 3.6.0.3312 , size 201656 bytes swi_di.exe 3.6.0.3312 , size 298840 bytes swi_fc.exe 3.6.0.3312 , size 3164376 bytes swi_filter.exe 3.6.0.3312 , size 475384 bytes swi_lsp32_util.exe 3.6.0.3312 , size 251472 bytes swi_lspdiag.exe 3.6.0.3312 , size 213552 bytes swi_lspdiag_64.exe 3.6.0.3312 , size 262976 bytes swi_service.exe 3.6.0.3312 , size 3621480 bytes swi_update_64.exe 3.6.0.3312 , size 2121216 bytes swi_callout.sys 3.6.0.1 , size 47760 bytes savonaccess.sys 3.25.2.0 , size 204328 bytes SophosBootDriver.sys 1.1.1.0 , size 45840 bytes SophosBootTasks.exe 10.8.2.311 , size 44304 bytes +[ Detection identity files] keylo-ul.ide fare-fih.ide emote-vz.ide msili-sy.ide hupig-wm.ide blada-hg.ide pdfu-fmg.ide sidewi-a.ide mdro-igi.ide autosp-j.ide spy-ard.ide msili-tb.ide fare-fiv.ide fare-fiw.ide emote-wr.ide phis-cxx.ide emote-wt.ide msili-tc.ide emote-wv.ide netwi-mj.ide pdfu-fmu.ide remco-cp.ide drop-ui.ide lethi-dj.ide fare-fja.ide msil-lod.ide fare-fje.ide phis-cyb.ide mdro-igl.ide emote-wy.ide phis-cye.ide rtfdro-q.ide htmld-ie.ide bank-gws.ide age-azkg.ide delf-gui.ide netwi-mk.ide zbot-mex.ide msil-lor.ide vbinj-st.ide trick-ed.ide remco-cn.ide phis-czh.ide miner-ov.ide inje-dks.ide steal-ar.ide trick-eg.ide age-azlf.ide pdfu-foj.ide phis-czo.ide age-azli.ide phis-czp.ide msil-loy.ide docd-ozp.ide phis-czq.ide zbot-mfb.ide formb-da.ide inje-dku.ide msil-log.ide phis-czx.ide age-azls.ide blada-hk.ide steal-az.ide fare-fkn.ide remco-ct.ide emote-ya.ide formb-dd.ide emote-xb.ide pdfu-fox.ide docd-pan.ide emoge-fo.ide msil-lpi.ide rtf-bb.ide fare-flj.ide zbot-mey.ide inje-dle.ide rans-ezt.ide docd-pdf.ide msil-lpo.ide phis-dbj.ide chisb-vt.ide phis-dbk.ide blada-hr.ide emoge-fq.ide delf-guy.ide docd-pdk.ide shiot-de.ide zbot-mfe.ide pdfu-fpu.ide keylo-ut.ide hawke-rx.ide phis-dbv.ide fuerbo-g.ide rans-ezx.ide zbot-mfx.ide inje-dli.ide fare-fjs.ide emote-yt.ide fare-fmd.ide rans-ezy.ide fare-fmg.ide zbot-mga.ide formb-dq.ide mdro-ihc.ide age-azki.ide rans-ezq.ide rans-faa.ide fare-fld.ide docph-y.ide remco-cv.ide remco-da.ide inje-dlo.ide remco-db.ide formb-dr.ide steal-bl.ide trick-ee.ide delf-gvj.ide age-aznx.ide lokib-ak.ide nymai-hy.ide remco-dd.ide age-azoc.ide inje-dlz.ide bckdo-ab.ide inje-dmd.ide wont-aem.ide darkc-ht.ide formbo-t.ide fare-fnd.ide msil-lrj.ide inje-dmj.ide zbot-mgk.ide docd-phy.ide rtfdr-dj.ide emote-zn.ide nanoc-zl.ide msil-lro.ide age-azox.ide emote-zp.ide nanoc-zm.ide remco-dh.ide formb-ed.ide msil-lrp.ide rans-fad.ide fare-fnj.ide docph-ad.ide bank-gwy.ide nymai-ia.ide keylo-ur.ide trick-et.ide vbinj-sz.ide lokib-ao.ide age-azpo.ide emot-aai.ide fare-fnx.ide pdfdro-m.ide zbot-mgt.ide msil-lrw.ide formb-eh.ide miner-ox.ide emot-aan.ide nanoc-zt.ide encdo-af.ide docd-pix.ide gandcr-w.ide gen-e.ide zbot-mhd.ide emot-aas.ide msili-uk.ide msili-ul.ide pdfu-ftf.ide emoge-fn.ide blada-id.ide zbot-mhg.ide zbot-mhi.ide zbot-mhj.ide [Web Control] +[ Software] Web control 1.5.2549 Web control status Disabled +[ Components] swc_service.exe 1.5.2549 , size 360040 bytes SWCAdapter.dll 1.5.2549 , size 328384 bytes WCMResChs.dll 1.5.2549 , size 18648 bytes WCMResCht.dll 1.5.2549 , size 18648 bytes WCMResDeu.dll 1.5.2549 , size 19160 bytes WCMResEng.dll 1.5.2549 , size 18136 bytes WCMResEsp.dll 1.5.2549 , size 19160 bytes WCMResFra.dll 1.5.2549 , size 19160 bytes WCMResIt.dll 1.5.2549 , size 19160 bytes WCMResJap.dll 1.5.2549 , size 19160 bytes WCPResChs.dll 1.5.2549 , size 87792 bytes WCPResCht.dll 1.5.2549 , size 87792 bytes WCPResDeu.dll 1.5.2549 , size 88304 bytes WCPResEng.dll 1.5.2549 , size 87280 bytes WCPResEsp.dll 1.5.2549 , size 88304 bytes WCPResFra.dll 1.5.2549 , size 88304 bytes WCPResIt.dll 1.5.2549 , size 88304 bytes WCPResJap.dll 1.5.2549 , size 87792 bytes WebControlMessaging.dll 1.5.2549 , size 196872 bytes WebControlPlugin.dll 1.5.2549 , size 312216 bytes [Updating] +[ Software] Sophos AutoUpdate 5.14.36 Last checked for updates 8/27/2018 9:35:41 Update status Success +[ Components] ALMon.exe 5.14.36.36 , size 1517632 bytes ALsvc.exe 5.14.36.36 , size 775696 bytes ALUpdate.exe 5.14.36.36 , size 2473968 bytes SophosUpdate.exe 5.14.19 , size 2305560 bytes AUAdapter.dll 5.14.36.36 , size 1165280 bytes EECustomActions.dll 5.14.36.36 , size 533056 bytes ispsheet.dll 5.14.36.36 , size 425568 bytes SAUConfigDLL.dll 5.14.36.36 , size 722240 bytes SingleGUIPlugin.dll 5.14.36.36 , size 677432 bytes SUL.dll 5.14.19 , size 1461440 bytes iconfig.ppi 5.14.36.36 , size 519560 bytes ilog.ppi 5.14.36.36 , size 609968 bytes isched.ppi 5.14.36.36 , size 482672 bytes almonres.dll 5.14.36.36 , size 39448 bytes iconfres.dll 5.14.36.36 , size 21272 bytes ilogres.dll 5.14.36.36 , size 19160 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.14.36.36 , size 37400 bytes almonres.dll 5.14.36.36 , size 40472 bytes iconfres.dll 5.14.36.36 , size 21784 bytes ilogres.dll 5.14.36.36 , size 19160 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.7.35.35 , size 40984 bytes almonres.dll 5.14.36.36 , size 39960 bytes iconfres.dll 5.14.36.36 , size 21784 bytes ilogres.dll 5.14.36.36 , size 19160 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.7.35.35 , size 38936 bytes almonres.dll 5.14.36.36 , size 41560 bytes iconfres.dll 5.14.36.36 , size 21784 bytes ilogres.dll 5.14.36.36 , size 19672 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.7.35.35 , size 40984 bytes ALMonres.dll 5.14.36.36 , size 41048 bytes iconfres.dll 5.14.36.36 , size 21784 bytes ilogres.dll 5.14.36.36 , size 19160 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.7.35.35 , size 39960 bytes almonres.dll 5.14.36.36 , size 36312 bytes iconfres.dll 5.14.36.36 , size 20760 bytes ilogres.dll 5.14.36.36 , size 18648 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.7.35.35 , size 30616 bytes ALMonres.dll 5.14.36.36 , size 34776 bytes iconfres.dll 5.14.36.36 , size 20760 bytes ilogres.dll 5.14.36.36 , size 18648 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.7.35.35 , size 25432 bytes ALMonres.dll 5.14.36.36 , size 34264 bytes iconfres.dll 5.14.36.36 , size 20760 bytes ilogres.dll 5.14.36.36 , size 18648 bytes ischdres.dll 5.14.36.36 , size 18136 bytes sharedres.dll 5.7.35.35 , size 25944 bytes [System] Revision = 14857 Description = Intel64 Family 6 Model 58 Stepping 9 AddressWidth = 64 ThreadCount = 4 LoadPercentage = 2 VirtualizationFirmwareEnabled = True Level = 6 DeviceID = CPU0 AssetTag = Fill By OEM CurrentVoltage = 0 PowerManagementSupported = False SocketDesignation = SOCKET 0 StatusInfo = 3 Family = 205 Name = Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz Manufacturer = GenuineIntel NumberOfEnabledCore = 2 DataWidth = 64 Stepping = InstallDate = ProcessorType = 3 Characteristics = 4 Caption = Intel64 Family 6 Model 58 Stepping 9 L2CacheSize = 512 VoltageCaps = L3CacheSpeed = 0 CreationClassName = Win32_Processor Architecture = 9 PartNumber = Fill By OEM ErrorDescription = Availability = 3 SystemName = CORNB156 Role = CPU SecondLevelAddressTranslationExtensions = True NumberOfCores = 2 CurrentClockSpeed = 2601 SystemCreationClassName = Win32_ComputerSystem PowerManagementCapabilities = ConfigManagerUserConfig = VMMonitorModeExtensions = True ErrorCleared = L3CacheSize = 3072 UniqueId = ProcessorId = BFEBFBFF000306A9 L2CacheSpeed = SerialNumber = ExtClock = 100 CpuStatus = 1 ConfigManagerErrorCode = OtherFamilyDescription = Version = Status = OK NumberOfLogicalProcessors = 4 PNPDeviceID = UpgradeMethod = 33 MaxClockSpeed = 2601 LastErrorCode = Description = CurrentTimeZone = -240 CSCreationClassName = Win32_ComputerSystem DataExecutionPrevention_Available = True ServicePackMinorVersion = 0 PAEEnabled = Debug = False MUILanguages = BuildNumber = 17134 TotalVisibleMemorySize = 8291088 DataExecutionPrevention_SupportPolicy = 2 Name = Microsoft Windows 10 Pro|C:\WINDOWS|\Device\Harddisk0\Partition1 CSName = CORNB156 BuildType = Multiprocessor Free Manufacturer = Microsoft Corporation PlusVersionNumber = OSType = 18 InstallDate = 20180802 142022 RegisteredUser = KSRAdmin ProductType = 1 NumberOfUsers = 6 Caption = Microsoft Windows 10 Pro NumberOfProcesses = 168 LocalDateTime = 20180827 093836 TotalVirtualMemorySize = 16679696 WindowsDirectory = C:\WINDOWS OSArchitecture = 64-bit SystemDrive = C: CreationClassName = Win32_OperatingSystem OSLanguage = 1033 ServicePackMajorVersion = 0 LargeSystemCache = TotalSwapSpaceSize = SizeStoredInPagingFiles = 8388608 Primary = True SystemDirectory = C:\WINDOWS\system32 NumberOfLicensedUsers = 0 DataExecutionPrevention_Drivers = True CSDVersion = CountryCode = 1 OtherTypeDescription = BootDevice = \Device\HarddiskVolume1 MaxProcessMemorySize = 137438953344 SerialNumber = 00330-80000-00000-AA986 PortableOperatingSystem = False OperatingSystemSKU = 48 MaxNumberOfProcesses = 4294967295 LastBootUpTime = 20180827 090332 FreeSpaceInPagingFiles = 8384340 SystemDevice = \Device\HarddiskVolume1 DataExecutionPrevention_32BitApplications = True Organization = KSR International Co. PlusProductID = SuiteMask = 272 FreeVirtualMemory = 13468652 ForegroundApplicationBoost = 2 Version = 10.0.17134 Status = OK FreePhysicalMemory = 5521508 EncryptionLevel = 256 Locale = 0409 Distributed = False CodeSet = 1252 OSProductSuite = 256