McAfee VIRUSSCAN ENTERPRISE User's Guide Page 51
- Page / 166
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
Part II - Detection: Finding Threats
Finding threats is the second step in a protection strategy to detect malware attempting to gain
access to your system.
Contents
Scanning items on-access
Scanning items on-demand
Scanning email on-delivery and on-demand
Scanning items on-access
The on-access scanner examines files on your computer as they are accessed, which provides
continuous, real-time detection of threats. Both the Access Protection and Buffer Overflow
Protection features also use the on-access scanner to detect access violations and buffer overflow
exploits respectively.
Contents
On-access scanning and how it works
Scanning comparison: writing to disk vs. reading from disk
Scanning comparison: scanning all files vs. scanning default + additional file types
Script scanning and how it works
Determine the number of scanning policies
How Artemis works
How general and process settings are configured
On-access scanning and how it works
The on-access scanner hooks into the system at the lowest levels (File-System Filter Driver), it
scans files where they first enter your system. The on-access scanner acts as part of the system
(System Service), and delivers notifications via the interface when detections occur.
When an attempt is made to open, close, or rename a file, the scanner intercepts the operation
and takes these actions.
1 The scanner determines if the file should be scanned based on this criteria:
• The file’s extension matches the configuration.
• The file has not been cached.
• The file has not been excluded.
• The file has not been previously scanned.
51McAfee VirusScan Enterprise 8.8 Product Guide
- Product Guide 1
- Contents 3
- Audience 6
- Conventions 6
- How this guide is organized 7
- Finding product documentation 8
- Getting Started 10
- Using right-click features 14
- What to do first 17
- Quarantined items 18
- Access protection 19
- MyProgram.exe is not malware 20
- VirusScan Console 23
- Rule type descriptions 24
- Protection level descriptions 24
- Types of user-defined rules 25
- Port blocking rule options 31
- Removing user-defined rules 33
- Configuring unwanted programs 38
- DAT files and how they work 43
- Configuring the mirror task 46
- Framework 47
- Excluding scan items 48
- Using scheduled tasks 49
- Scheduling tasks 50
- Configuring the task schedule 50
- Scanning items on-access 51
- Enabling on-network drives 52
- How Artemis works 53
- Configuring general settings 54
- Configuring process settings 58
- Scanning items on-demand 62
- How scan deferral works 64
- How system utilization works 64
- Detections and responses 72
- Buffer overflow detections 73
- Unwanted program detections 73
- On-access scan detections 74
- On-demand scan detections 75
- Email scan detections 75
- Managing quarantined items 77
- Configuring alerts 78
- Access queries and dashboards 80
- Configuring emergency DATs 81
- Downloading a SuperDAT file 82
- Fine-Tuning Your Protection 84
- Running an example query 85
- Analyzing your protection 86
- Appendix 89
- SCAN32.EXE 91
- MCUPDATE.EXE 93
- MCUPDATE 93
- Connecting to remote systems 94
- Troubleshooting 95
- REINSTALLMODE 96
- Property 96
- McAfee VirusScan Enterprise 100
- 8.8, Installation Guide 100
- Frequently asked questions 101
- 00000000.ie 102
- CATALOG.Z 103
- Access Protection tab 104
- Configuring predefined rules 105
- Option definitions 106
- Alerts tab 107
- Reports tab 108
- Blocking tab 109
- Display Options tab 112
- Actions tab 113
- Scan Items tab 117
- General tab 120
- Default = very low 121
- Messages tab 122
- Notes Scanner Settings tab 123
- Exclusions tab 126
- Task tab 134
- Password Options tab 135
- Processes tab 136
- Quarantine Policy tab 140
- Policy tab 141
- Manager tab 142
- Scan Locations tab 144
- Performance tab 146
- DefinitionOption 147
- ScriptScan tab 148
- User-Defined Detection tab 149
- Repositories tab 150
- Proxy settings tab 153
- Mirror task 154
- AutoUpdate task 155
- Schedule tab 156
- Advanced schedule options 160
- Global Scan Settings tab 161
- (continued) 164
© 2020, manymanuals.com. All rights reserved. | 1.468 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals