skip to primary navigationskip to content
 

VirusScan 8.8 configuration

The following lists the settings of an unconfigured (default settings) version of McAfee VirusScan Enterprise 8.8 and the settings of the configured version by the Computing Service Technical User Support Group. As you will probably notice the settings of the configured version are not too restrictive and reasonably liberal. If you wish to be more restrictive within your College or Department you should download an unconfigured version of VirusScan Enterprise 8.8 and a version of McAfee Installation Designer 8.8 and modify the settings yourself.

Installation Options

  Default SettingsConfigured (if different)
Use default installation folder On  
Install product silently Off On
Preserve settings if previously installed On Off
Do not display shortcuts on Start menu Off  

On-Access Scanner (General)

General Tab
  Default SettingsConfigured (if different)
Boot Sectors On  
Floppy during shutdown Off  
Processes on enable Off On
Trusted installers Off  
   
General:    
Enable on-access scanning at startup On  
   
Scantime:    
Enforce a maximum scanning time for all files On  
Maximum scan time (seconds) (45)  
   
Cookies:    
Scan cookie files On  
   
Artemis (Heuristic network check for suspicious files:    
Sensitivity level Very Low High

 

ScriptScan tab
  Default SettingsConfigured (if different)
Enable ScriptScan Off On

 

Blocking Tab
  Default SettingsConfigured (if different)
Message:    
Send a message Off  
Block:    
Block the connection On  
Unblock connection after 10 minutes  
Block if unwanted program is detected Off On

 

Messages Tab
  Default SettingsConfigured (if different)
Messages for local users:    
Show messages dialog when virus detected On  
Alert when a cookie detection occurs Off  
Text to display in message VirusScan Alert!  
Non-administrator user actions:    
Remove messages from list On  
Clean files On  
Delete files Off  

 

Reports Tab
  Default SettingsConfigured (if different)
Enable activity logging On (default file)  
Limit size of log file 1 MB 20MB
Format Unicode (UTF8)  
What to log in addition to virus activity:    
Session settings Off  
Session summary On  
Failure to scan encrypted files On  

 

On-Access Scanner (All Processes)

Processes Tab
  Default SettingsConfigured (if different)
Configure one scanning policy for all processes On  
Configure different scanning policies for high-risk, low-risk and default processes Off  

 

Scan Items tab
  Default SettingsConfigured (if different)
Scan files:    
When writing to disk On  
When reading from disk On  
On network drives Off  
Opened for backup On  
What to scan:    
All files On  
Default + additional file types (0) Off  
Specified file types (0) Off  
Heuristics:    
Find unknown unwanted programs and trojans On  
Find unknown macro threats On  
Compressed files:    
Scan inside archives (eg .ZIP) Off On
Decode MIME encoded files Off  
Unwanted Program Detection :    
Detect unwanted programs On  
Exclusions tab
  Default SettingsConfigured (if different)
What not to scan (0)  
When to exclude On Read, On Write  

 

Actions Tab
  Default SettingsConfigured (if different)
When a threat is found:    
Primary action Clean files automatically  
Secondary action Delete files automatically  
When an unwanted program is found:    
Primary action Clean files automatically  
Secondary action Delete files automatically  

Access Protection

Access Protection Tab
  Default SettingsConfigured (if different)
Access Protection Rules:    
Enable Access Protection On  

Please note that the table below displays just the configured settings, NOT the default settings.
CategoriesBlockReportRules
DefaultConfiguredDefaultConfigured
Anti-spyware Standard Protection         Protect Internet Explorer favorites and settings
Anti-spyware Maximum Protection         Prevent installation of new CLSIDs, APPIDs and TYPELIBs
          Prevent all programs from running files from the Temp folder
        Prevent execution of scripts from the Temp folder
Anti-virus Standard Protection         Prevent registry editor and Task Manager from being disabled
          Prevent user rights policies from being altered
          Prevent remote creation/modification of executable and configuration files
      Prevent remote creation of autorun files
          Prevent hijacking of .EXE and other executable extensions
          Prevent Windows Process spoofing
      Prevent mass mailing worms from sending mail
      Prevent IRC communication
          Prevent use of tftp.exe
           
Anti-virus Maximum Protection         Prevent svchost executing non-Windows executables
          Protect phonebook files from password and email address stealers
          Prevent alteration of all file extension registrations
          Protect cached files from password and email address stealers
           
Anti-virus Outbreak Control         Make all shares read-only
          Block read and write access to all shares
           
Common Standard Protection     Prevent modification of McAfee files and settings
      Prevent modification of McAfee Common Management Agent files and settings
      Prevent modification of McAfee Scan Engine files and settings
          Protect Mozilla & Firefox files and settings
          Protect Internet Explorer settings
          Prevent installation of Browser Helper Objects and Shell Extensions
          Protect Network Settings
        Prevent common programs from running files from the Temp folder
          Disable HCP URLs in Internet Explorer
      Prevent termination of McAfee processes
           
Common Maximum Protection         Prevent programs registering to autorun
          Prevent programs registering as a service
          Prevent creation of new executable files in the Windows folder
          Prevent creation of new executable files in the Program Files folder
        Prevent launching of files from the Downloaded Programs Files folder
          Prevent FTP communication
          Prevent HTTP communication
           
Virtual Machine Protection       Prevent Termination of VMWare Processes
        Prevent modification of VMWare Workstation files & settings
        Prevent modification of VMWare Server files & settings
        Prevent Modification of VMWare Virtual machine files
           
User-defined Rules         None set by default
  Default SettingsConfigured (if different)
Prevent McAfee services from being stopped On  

 

Reports Tab
  Default SettingsConfigured (if different)
Log file On (default file)  
Limit size of log file 1 MB 20MB
Format Unicode (UTF8)  

 

Buffer Overflow Protection

Buffer Overflow Protection Tab
  Default SettingsConfigured (if different)
Enable buffer overflow protection On  
Warning mode Off  
Protection mode On  
Show the messages dialog box when a buffer overflow is detected On  

 

Reports Tab
  Default SettingsConfigured (if different)
Log file On (default file)  
Limit size of log file 1 MB  
Format Unicode (UTF8)  

 

On-Delivery Scanner

  Default SettingsConfigured (if different)
Enable On-Delivery E-mail Scanner On  
Scan Items tab
  Default SettingsConfigured (if different)
Attachments to scan:    
All file types On  
Default + additional files Off  
Specified file types Off  
Heuristics:    
Find unknown program viruses On  
Find unknown macro viruses On  
Find attachments with multiple extensions Off  
Compressed Files:    
Scan inside archives (e.g. Zip) On  
Decode MIME encoded files On  
Unwanted programs detection:    
Detect unwanted programs On  
E-mail message body:    
Scan e-mail message body On  
Artemis (Heuristic network check for suspicious file)s:    
Security level Very Low  High

 

Actions Tab
  Default SettingsConfigured (if different)
When a threat is found:    
Primary action Clean attachments  
Secondary action Move attachments to a folder  
When an unwanted program attachment is found:    
Primary action Clean attachments  
Secondary action Move attachments to a folder  
Move to folder Quarantine  
Allowed Actions in Prompt dialog box:    
Clean attachment On  
Delete attachment On  
Move attachment On  
Delete Mail (for Outlook Scan only) On  

 

Alerts Tab
  Default SettingsConfigured (if different)
E-mail Alert:    
Send alert mail to user Off  

 

Reports Tab
  Default SettingsConfigured (if different)
Log file:    
Enable activity logging On (default log file)  
Limit size of log file 1 MB 20MB
Format Unicode (UTF8)  
What to log in addition to virus activity:    
Session settings Off  
Session summary On  
Failure to scan encrypted files On  


Notes Scanner Settings Tab
  Default SettingsConfigured (if different)
Server Scanner Settings:    
Scan all server databases Off  
Scan server mailboxes On  
Mailbox root folder !!mail\  
Advanced Options :    
Leave as default settings!    

 

Unwanted Programs Policy

Scan Items Tab
  Default SettingsConfigured (if different)
Detection for DAT's:    
Spyware On  
Adware On  
Remote Administration Tools On  
Dialers On  
Password Crackers On  
Jokes On  
Key Loggers On  
Other Potential Unwanted Programs On  

 

Unwanted program exclusions
  Default SettingsConfigured (if different)
Don't detect specified detections (0) Nothing set!  

 

User-Defined Detection Tab
  Default SettingsConfigured (if different)
User-defined detections: Nothing set!  

 

Scheduled Scans

Task name
  Default SettingsConfigured (if different)
Default Task No  
Full Scan No  
Targeted Scan No  
Add these to existing tasks on the target system On  
Replace existing tasks with these tasks Off  

 

Quarantine Manager

Policy Tab
  Default SettingsConfigured (if different)
Quarantine Folder C:\QUARANTINE\  
Automatically delete quarantined data On  
Number of days to keep backed-up data in the quarantine folder 28  

 

AutoUpdate Schedule

Edit > Configure AutoUpdate Properties

  Default SettingsConfigured (if different)
Update Options:    
Get newer detection definition files if available On  
Get newer detection engines if available On  
Get other available updates (SP's, upgrades etc.) On  
Update Options: None set  

 

Task Tab (under Schedule... button)
  Default Settings Configured (if different)
Schedule Settings:    
Enable (schedule task etc.) On  
Stop the task if it runs for Off  
User Account Settings: None  
Schedule Tab (under Schedule... button)
  Default Settings Configured (if different)
Schedule:    
Schedule Task Daily  
Start Time 17.00 (Local Time) 10:00
Enable Randomisation On (1 hour)  
Run missed task On (5 minutes)  
Schedule Daily Task Every 1 day  

 

Alert Properties

Alert Manager Alerts Tab
  Default SettingsConfigured (if different)
On-Access Scan On  
On-Demand Scan and scheduled scans On  
Email Scan On  
AutoUpdate On  
Access Protection On  

 

Additional Alerting Options Tab
  Default SettingsConfigured (if different)
Severity Filter Suppress Information alerts (severity < 1)  
Local Alerting:    
Log to local application event log On  
Send SNMP trap using SNMP service Off  

 

General Options

Display Options Tab
  Default SettingsConfigured (if different)
System tray icon    
Show the system tray icon with all menu options On  
Show the system tray icon with minimal options Off  
Do not show the system tray icon Off  
Allow this system to make remote console connections to other systems On  
Console Language settings    
Preferred language Automatic  
Password Options Tab
  Default SettingsConfigured (if different)
No password On  
Glonal Scan Setting Tab
  Default SettingsConfigured (if different)
Scan Cache:    
Enable saving scan data across reboots On  
Allow On-Demand scans to utilize the scan cache On  

 

Add/Remove Options

  Default SettingsConfigured (if different)
Allow user to uninstall On  
Allow user to modify features On  
Show on control Panel On  

 

DAT and Engine Files

  Default SettingsConfigured (if different)
Same DAT and engine files as original installation On  
Separate Zip files for DAT files and engine files Off  
Include EXTRA.DAT in the installation package Off  

 

Patch Files

  Default SettingsConfigured (if different)
Nothing set    

 

AutoUpdate Configuration

  Default SettingsConfigured (if different)
Existing Common Management Agent Installer On  
Display McAfee Security Agent icon On  
Edit AutoUpdate repository list... button
  Default SettingsConfigured (if different)
NAIHttp On (Enabled)  
NAIFtp On (Enabled)  
Proxy Settings Tab
  Default Settings Configured (if different)
Don't use a proxy Off  
Use Internet Explorer proxy settings On  
Manually configure the proxy settings Off  
Use authentication for HTTP Off  
Use authentication for FTP Off  

Programs

  Default SettingsConfigured (if different)
Nothing set    

 

Additional Files

  Default SettingsConfigured (if different)
Nothing set    

 

Registry Settings

  Default SettingsConfigured (if different)
Nothing set    

 

Installation Designer Password

  Default SettingsConfigured (if different)
Enter a new password to secure the configurations On (Passord blank)  

 

Upgrade License

  Default SettingsConfigured (if different)
All options Off  

 

Post-Installation Options

  Default SettingsConfigured (if different)
Force reboot after installation Off  
Always display warning message when reboot required Off  
Start On-Access Scanner after installation On  
Perform a system scam after installation On Off
Update definition files after installation On  

It should be noted that the 'Scan all fixed disks' option under the VirusScan console has been left in it's default state - not scheduled.