skip to primary navigationskip to content
 

VirusScan 8.8 configuration

The following lists the settings of an unconfigured (default settings) version of McAfee VirusScan Enterprise 8.8 and the settings of the configured version by UIS. As you will probably notice the settings of the configured version are not too restrictive and reasonably liberal. If you wish to be more restrictive within your College or Department you should download an unconfigured version of VirusScan Enterprise 8.8 and a version of McAfee Installation Designer 8.8 and modify the settings yourself.

Installation Options

Default SettingsConfigured (if different)
Use default installation folder On
Install product silently Off On
Preserve settings if previously installed On Off
Do not display shortcuts on Start menu Off

On-Access Scanner (General)

General Tab
Default SettingsConfigured (if different)
Boot Sectors On
Floppy during shutdown Off
Processes on enable Off On
Trusted installers Off
General:
Enable on-access scanning at startup On
Scantime:
Enforce a maximum scanning time for all files On
Maximum scan time (seconds) (45)
Cookies:
Scan cookie files On
Artemis (Heuristic network check for suspicious files:
Sensitivity level Very Low High

 

ScriptScan tab
Default SettingsConfigured (if different)
Enable ScriptScan Off On

 

Blocking Tab
Default SettingsConfigured (if different)
Message:
Send a message Off
Block:
Block the connection On
Unblock connection after 10 minutes
Block if unwanted program is detected Off On

 

Messages Tab
Default SettingsConfigured (if different)
Messages for local users:
Show messages dialog when virus detected On
Alert when a cookie detection occurs Off
Text to display in message VirusScan Alert!
Non-administrator user actions:
Remove messages from list On
Clean files On
Delete files Off

 

Reports Tab
Default SettingsConfigured (if different)
Enable activity logging On (default file)
Limit size of log file 1 MB 20MB
Format Unicode (UTF8)
What to log in addition to virus activity:
Session settings Off
Session summary On
Failure to scan encrypted files On

 

On-Access Scanner (All Processes)

Processes Tab
Default SettingsConfigured (if different)
Configure one scanning policy for all processes On
Configure different scanning policies for high-risk, low-risk and default processes Off

 

Scan Items tab
Default SettingsConfigured (if different)
Scan files:
When writing to disk On
When reading from disk On
On network drives Off
Opened for backup On
What to scan:
All files On
Default + additional file types (0) Off
Specified file types (0) Off
Heuristics:
Find unknown unwanted programs and trojans On
Find unknown macro threats On
Compressed files:
Scan inside archives (eg .ZIP) Off On
Decode MIME encoded files Off
Unwanted Program Detection :
Detect unwanted programs On
Exclusions tab
Default SettingsConfigured (if different)
What not to scan (0)
When to exclude On Read, On Write

 

Actions Tab
Default SettingsConfigured (if different)
When a threat is found:
Primary action Clean files automatically
Secondary action Delete files automatically
When an unwanted program is found:
Primary action Clean files automatically
Secondary action Delete files automatically

Access Protection

Access Protection Tab
Default SettingsConfigured (if different)
Access Protection Rules:
Enable Access Protection On

Please note that the table below displays just the configured settings, NOT the default settings.
CategoriesBlockReportRules
DefaultConfiguredDefaultConfigured
Anti-spyware Standard Protection Protect Internet Explorer favorites and settings
Anti-spyware Maximum Protection Prevent installation of new CLSIDs, APPIDs and TYPELIBs
Prevent all programs from running files from the Temp folder
Prevent execution of scripts from the Temp folder
Anti-virus Standard Protection Prevent registry editor and Task Manager from being disabled
Prevent user rights policies from being altered
Prevent remote creation/modification of executable and configuration files
Prevent remote creation of autorun files
Prevent hijacking of .EXE and other executable extensions
Prevent Windows Process spoofing
Prevent mass mailing worms from sending mail
Prevent IRC communication
Prevent use of tftp.exe
Anti-virus Maximum Protection Prevent svchost executing non-Windows executables
Protect phonebook files from password and email address stealers
Prevent alteration of all file extension registrations
Protect cached files from password and email address stealers
Anti-virus Outbreak Control Make all shares read-only
Block read and write access to all shares
Common Standard Protection Prevent modification of McAfee files and settings
Prevent modification of McAfee Common Management Agent files and settings
Prevent modification of McAfee Scan Engine files and settings
Protect Mozilla & Firefox files and settings
Protect Internet Explorer settings
Prevent installation of Browser Helper Objects and Shell Extensions
Protect Network Settings
Prevent common programs from running files from the Temp folder
Disable HCP URLs in Internet Explorer
Prevent termination of McAfee processes
Common Maximum Protection Prevent programs registering to autorun
Prevent programs registering as a service
Prevent creation of new executable files in the Windows folder
Prevent creation of new executable files in the Program Files folder
Prevent launching of files from the Downloaded Programs Files folder
Prevent FTP communication
Prevent HTTP communication
Virtual Machine Protection Prevent Termination of VMWare Processes
Prevent modification of VMWare Workstation files & settings
Prevent modification of VMWare Server files & settings
Prevent Modification of VMWare Virtual machine files
User-defined Rules None set by default
Default SettingsConfigured (if different)
Prevent McAfee services from being stopped On

 

Reports Tab
Default SettingsConfigured (if different)
Log file On (default file)
Limit size of log file 1 MB 20MB
Format Unicode (UTF8)

 

Buffer Overflow Protection

Buffer Overflow Protection Tab
Default SettingsConfigured (if different)
Enable buffer overflow protection On
Warning mode Off
Protection mode On
Show the messages dialog box when a buffer overflow is detected On

 

Reports Tab
Default SettingsConfigured (if different)
Log file On (default file)
Limit size of log file 1 MB
Format Unicode (UTF8)

 

On-Delivery Scanner

Default SettingsConfigured (if different)
Enable On-Delivery E-mail Scanner On
Scan Items tab
Default SettingsConfigured (if different)
Attachments to scan:
All file types On
Default + additional files Off
Specified file types Off
Heuristics:
Find unknown program viruses On
Find unknown macro viruses On
Find attachments with multiple extensions Off
Compressed Files:
Scan inside archives (e.g. Zip) On
Decode MIME encoded files On
Unwanted programs detection:
Detect unwanted programs On
E-mail message body:
Scan e-mail message body On
Artemis (Heuristic network check for suspicious file)s:
Security level Very Low High

 

Actions Tab
Default SettingsConfigured (if different)
When a threat is found:
Primary action Clean attachments
Secondary action Move attachments to a folder
When an unwanted program attachment is found:
Primary action Clean attachments
Secondary action Move attachments to a folder
Move to folder Quarantine
Allowed Actions in Prompt dialog box:
Clean attachment On
Delete attachment On
Move attachment On
Delete Mail (for Outlook Scan only) On

 

Alerts Tab
Default SettingsConfigured (if different)
E-mail Alert:
Send alert mail to user Off

 

Reports Tab
Default SettingsConfigured (if different)
Log file:
Enable activity logging On (default log file)
Limit size of log file 1 MB 20MB
Format Unicode (UTF8)
What to log in addition to virus activity:
Session settings Off
Session summary On
Failure to scan encrypted files On


Notes Scanner Settings Tab
Default SettingsConfigured (if different)
Server Scanner Settings:
Scan all server databases Off
Scan server mailboxes On
Mailbox root folder !!mail\
Advanced Options :
Leave as default settings!

 

Unwanted Programs Policy

Scan Items Tab
Default SettingsConfigured (if different)
Detection for DAT's:
Spyware On
Adware On
Remote Administration Tools On
Dialers On
Password Crackers On
Jokes On
Key Loggers On
Other Potential Unwanted Programs On

 

Unwanted program exclusions
Default SettingsConfigured (if different)
Don't detect specified detections (0) Nothing set!

 

User-Defined Detection Tab
Default SettingsConfigured (if different)
User-defined detections: Nothing set!

 

Scheduled Scans

Task name
Default SettingsConfigured (if different)
Default Task No
Full Scan No
Targeted Scan No
Add these to existing tasks on the target system On
Replace existing tasks with these tasks Off

 

Quarantine Manager

Policy Tab
Default SettingsConfigured (if different)
Quarantine Folder C:\QUARANTINE\
Automatically delete quarantined data On
Number of days to keep backed-up data in the quarantine folder 28

 

AutoUpdate Schedule

Edit > Configure AutoUpdate Properties

Default SettingsConfigured (if different)
Update Options:
Get newer detection definition files if available On
Get newer detection engines if available On
Get other available updates (SP's, upgrades etc.) On
Update Options: None set

 

Task Tab (under Schedule... button)
Default Settings Configured (if different)
Schedule Settings:
Enable (schedule task etc.) On
Stop the task if it runs for Off
User Account Settings: None
Schedule Tab (under Schedule... button)
Default Settings Configured (if different)
Schedule:
Schedule Task Daily
Start Time 17.00 (Local Time) 10:00
Enable Randomisation On (1 hour)
Run missed task On (5 minutes)
Schedule Daily Task Every 1 day

 

Alert Properties

Alert Manager Alerts Tab
Default SettingsConfigured (if different)
On-Access Scan On
On-Demand Scan and scheduled scans On
Email Scan On
AutoUpdate On
Access Protection On

 

Additional Alerting Options Tab
Default SettingsConfigured (if different)
Severity Filter Suppress Information alerts (severity < 1)
Local Alerting:
Log to local application event log On
Send SNMP trap using SNMP service Off

 

General Options

Display Options Tab
Default SettingsConfigured (if different)
System tray icon
Show the system tray icon with all menu options On
Show the system tray icon with minimal options Off
Do not show the system tray icon Off
Allow this system to make remote console connections to other systems On
Console Language settings
Preferred language Automatic
Password Options Tab
Default SettingsConfigured (if different)
No password On
Glonal Scan Setting Tab
Default SettingsConfigured (if different)
Scan Cache:
Enable saving scan data across reboots On
Allow On-Demand scans to utilize the scan cache On

 

Add/Remove Options

Default SettingsConfigured (if different)
Allow user to uninstall On
Allow user to modify features On
Show on control Panel On

 

DAT and Engine Files

Default SettingsConfigured (if different)
Same DAT and engine files as original installation On
Separate Zip files for DAT files and engine files Off
Include EXTRA.DAT in the installation package Off

 

Patch Files

Default SettingsConfigured (if different)
Nothing set

 

AutoUpdate Configuration

Default SettingsConfigured (if different)
Existing Common Management Agent Installer On
Display McAfee Security Agent icon On
Edit AutoUpdate repository list... button
Default SettingsConfigured (if different)
NAIHttp On (Enabled)
NAIFtp On (Enabled)
Proxy Settings Tab
Default Settings Configured (if different)
Don't use a proxy Off
Use Internet Explorer proxy settings On
Manually configure the proxy settings Off
Use authentication for HTTP Off
Use authentication for FTP Off

Programs

Default SettingsConfigured (if different)
Nothing set

 

Additional Files

Default SettingsConfigured (if different)
Nothing set

 

Registry Settings

Default SettingsConfigured (if different)
Nothing set

 

Installation Designer Password

Default SettingsConfigured (if different)
Enter a new password to secure the configurations On (Passord blank)

 

Upgrade License

Default SettingsConfigured (if different)
All options Off

 

Post-Installation Options

Default SettingsConfigured (if different)
Force reboot after installation Off
Always display warning message when reboot required Off
Start On-Access Scanner after installation On
Perform a system scam after installation On Off
Update definition files after installation On

It should be noted that the 'Scan all fixed disks' option under the VirusScan console has been left in it's default state - not scheduled.