Manualshelf

Product guide

ManualsBrandsMcAfee ManualsOtherVIRUSSCAN ENTERPRISE
51525354555657585960
When scanning Default + additional file types, the scanner examines a list of specific files
based on the file types you select.
Default file types: The on-access scanner examines the specified file type only for threats
that attack that file type.
Additional file types: The on-access scanner examines the files with matching extensions
for all possible threats.
Specified files types: The on-access scanner examines the user defined list of file extensions
for all possible threats.
Script scanning and how it works
The script scanner operates as a proxy component to the real Windows scripting host component.
It intercepts scripts, then scans them before they are executed.
For example, the script scanner confirms:
If the script is clean, it is passed on to the real scripting host component.
If the script contains a potential threat, the script is not executed.
Trusted processes and also websites that utilize scripts can be excluded from inspection.
NOTE: On Windows Server 2008 systems, Script Scan URL exclusions do not work with Windows
Internet Explorer unless you click the checkbox Enable third-party browser extensions to
enable the setting and restart Windows Server 2008. For details, see
https://kc.mcafee.com/corporate/index?page=content&id=KB69526.
How Artemis works
The Artemis feature uses heuristics to check for suspicious files. It provides users with
Windows-based McAfee anti-virus products that have the most up-to-date real-time detections
for certain malware.
Artemis does not provide protection for entire classes of malware; just for suspicious samples.
The benefit of protecting against specific threats is the capability to protect users with McAfee
security at virtually the same time that McAfee Labs determines a sample is malicious.
You can configure the administrator-configured sensitivity levels Artemis uses to look for
suspicious programs and DLLs running on client systems protected by VirusScan Enterprise.
When Artemis detects a suspicious program, it sends a DNS request containing a fingerprint of
the suspicious file to a central database server hosted by McAfee Labs.
NOTE: In this release, the Artemis feature is enabled by default, with the sensitivity level set
to very low.
Part II - Detection: Finding Threats
Scanning items on-access
53McAfee VirusScan Enterprise 8.8 Product Guide