Which account is used to cleanup malware?

  • ID de l'article 116816
  • Mis à jour : 24 févr. 2014

Cleanup of malware in Sophos Anti-Virus is performed by different accounts depending on how cleanup is initiated.  This article explains which account is used for cleanup depending on which feature of Sophos Anti-Virus has called the cleanup request.

Applies to the following Sophos product(s) and version(s)

Sophos Anti-Virus for Windows 2000+

Cleanup can be run as either:

  • The 'System' account.
  • The currently logged on user.
  • A defined user account.

The table below lists all the user actions of Sophos Anti-Virus that can request cleanup and the associated account.

Action / Method of cleanup Account used...
System Logged in user Defined user
On-access
Cleanup will be carried out by the NT Authority\System account on the client computer. This will only have permissions to files found on local drives.
Console requested
Cleanup will be carried out by the NT Authority\System account on the client computer. This will only have permissions to files found on local drives.
Quarantine Manager
When cleanup is performed from the Quarantine Manager, it is performed by the user who triggered the cleanup.
Scan started locally
The cleanup is performed by the user account that started the scan.
Scheduled Scan created locally
The cleanup is performed by the user account set to run the scheduled scan.
Scheduled Scan created by the Console policy
Cleanup will be carried out by the NT Authority\System account on the client computer. This will only have permissions to files found on local drives.
Right click scan
The cleanup is performed by the user account that started the scan.

 
Si vous avez besoin de plus d'informations ou d'instructions, veuillez contacter le support technique.

Évaluez cet article

Très mauvais Excellent

Commentaires