McAfee AVM85M User Manual
VirusScan® for Mac
Version 8.6
User Guide
Revision 1.0
McAfee®
System Protection
Proven security
COPYRIGHT
Copyright © 2007 McAfee, Inc. All Rights Reserved.
No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form
or by any means without the written permission of McAfee, Inc., or its suppliers or affiliate companies.
TRADEMARK ATTRIBUTIONS
ACTIVE FIREWALL, ACTIVE SECURITY, ACTIVESECURITY (AND IN KATAKANA), ACTIVESHIELD, CLEAN-UP, DESIGN (STYLIZED E), DESIGN
(STYLIZED N), ENTERCEPT, EPOLICY ORCHESTRATOR, FIRST AID, FOUNDSTONE, GROUPSHIELD, GROUPSHIELD (AND IN KATAKANA),
INTRUSHIELD, INTRUSION PREVENTION THROUGH INNOVATION, MCAFEE, MCAFEE (AND IN KATAKANA), MCAFEE AND DESIGN,
MCAFEE.COM, MCAFEE VIRUSSCAN, NET TOOLS, NET TOOLS (AND IN KATAKANA), NETSCAN, NETSHIELD, NUTS & BOLTS, OIL CHANGE,
PRIMESUPPORT, SPAMKILLER, THREATSCAN, TOTAL VIRUS DEFENSE, VIREX, VIRUS FORUM, VIRUSCAN, VIRUSSCAN, VIRUSSCAN (AND IN
KATAKANA), WEBSCAN, WEBSHIELD, WEBSHIELD (AND IN KATAKANA) are registered trademarks or trademarks of McAfee, Inc. and/or its
affiliates in the US and/or other countries. The color red in connection with security is distinctive of McAfee brand products. All other registered
and unregistered trademarks herein are the sole property of their respective owners.
LICENSE INFORMATION
License Agreement
NOTICE TO ALL USERS: CAREFULLY READ THE APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO THE LICENSE YOU PURCHASED, WHICH SETS FORTH THE
GENERAL TERMS AND CONDITIONS FOR THE USE OF THE LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH TYPE OF LICENSE YOU HAVE ACQUIRED, PLEASE
CONSULT THE SALES AND OTHER RELATED LICENSE GRANT OR PURCHASE ORDER DOCUMENTS THAT ACCOMPANIES YOUR SOFTWARE PACKAGING OR THAT YOU
HAVE RECEIVED SEPARATELY AS PART OF THE PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE AVAILABLE ON THE WEB SITE FROM WHICH YOU
DOWNLOADED THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE. IF
APPLICABLE, YOU MAY RETURN THE PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A FULL REFUND.
Attributions
This product includes or may include:
• Software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/). • Cryptographic software written by Eric
A. Young and software written by Tim J. Hudson. • Some software programs that are licensed (or sublicensed) to the user under the GNU
General Public License (GPL) or other similar Free Software licenses which, among other rights, permit the user to copy, modify and redistribute
certain programs, or portions thereof, and have access to the source code. The GPL requires that for any software covered under the GPL which
is distributed to someone in an executable binary format, that the source code also be made available to those users. For any such software
covered under the GPL, the source code is made available on this CD. If any Free Software licenses require that McAfee provide rights to use,
copy or modify a software program that are broader than the rights granted in this agreement, then such rights shall take precedence over the
rights and restrictions herein. • Software originally written by Henry Spencer, Copyright 1992, 1993, 1994, 1997 Henry Spencer. • Software
originally written by Robert Nordier, Copyright © 1996-7 Robert Nordier. • Software written by Douglas W. Sauder. • Software developed by the
Apache Software Foundation (http://www.apache.org/). A copy of the license agreement for this software can be found at
www.apache.org/licenses/LICENSE-2.0.txt. • International Components for Unicode ("ICU") Copyright ©1995-2002 International Business
Machines Corporation and others. • Software developed by CrystalClear Software, Inc., Copyright ©2000 CrystalClear Software, Inc. • FEAD
Optimizer
Outside In
© 1998, 1999, 2000. • Software copyrighted by Expat maintainers. • Software copyrighted by The Regents of the University of California, © 1996,
1989, 1998-2000. • Software copyrighted by Gunnar Ritter. • Software copyrighted by Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
California 95054, U.S.A., © 2003. • Software copyrighted by Gisle Aas. © 1995-2003. • Software copyrighted by Michael A. Chase, © 1999-2000.
• Software copyrighted by Neil Winton, ©1995-1996. • Software copyrighted by RSA Data Security, Inc., © 1990-1992. • Software copyrighted by
Sean M. Burke, © 1999, 2000. • Software copyrighted by Martijn Koster, © 1995. • Software copyrighted by Brad Appleton, © 1996-1999.
• Software copyrighted by Michael G. Schwern, ©2001. • Software copyrighted by Graham Barr, © 1998. • Software copyrighted by Larry Wall
and Clark Cooper, © 1998-2000. • Software copyrighted by Frodo Looijaard, © 1997. • Software copyrighted by the Python Software Foundation,
Copyright © 2001, 2002, 2003. A copy of the license agreement for this software can be found at www.python.org. • Software copyrighted by
Beman Dawes, © 1994-1999, 2002. • Software written by Andrew Lumsdaine, Lie-Quan Lee, Jeremy G. Siek © 1997-2000 University of Notre
Dame. • Software copyrighted by Simone Bordet & Marco Cravero, © 2002. • Software copyrighted by Stephen Purcell, © 2001. • Software
developed by the Indiana University Extreme! Lab (http://www.extreme.indiana.edu/). • Software copyrighted by International Business
Machines Corporation and others, © 1995-2003. • Software developed by the University of California, Berkeley and its contributors. • Software
developed by Ralf S. Engelschall <rse@engelschall.com> for use in the mod_ssl project (http:// www.modssl.org/). • Software copyrighted by
Kevlin Henney, © 2000-2002. • Software copyrighted by Peter Dimov and Multi Media Ltd. © 2001, 2002. • Software copyrighted by David
Abrahams, © 2001, 2002. See http://www.boost.org/libs/bind/bind.html for documentation. • Software copyrighted by Steve Cleary, Beman
Dawes, Howard Hinnant & John Maddock, © 2000. • Software copyrighted by Boost.org, © 1999-2002. • Software copyrighted by Nicolai M.
Josuttis, © 1999. • Software copyrighted by Jeremy Siek, © 1999-2001. • Software copyrighted by Daryle Walker, © 2001. • Software copyrighted
by Chuck Allison and Jeremy Siek, © 2001, 2002. • Software copyrighted by Samuel Krempp, © 2001. See http://www.boost.org for updates,
documentation, and revision history. • Software copyrighted by Doug Gregor (gregod@cs.rpi.edu), © 2001, 2002. • Software copyrighted by
Cadenza New Zealand Ltd., © 2000. • Software copyrighted by Jens Maurer, ©2000, 20 01. • Software copyrighted by Jaakko Järvi
(jaakko.jarvi@cs.utu.fi), ©1999, 2000. • Software copyrighted by Ronald Garcia, © 2002. • Software copyrighted by David Abrahams, Jeremy
Siek, and Daryle Walker, ©1999-2001. • Software copyrighted by Stephen Cleary (shammah@voyager.net), ©20 00. • Software copyrighted by
Housemarque Oy <http://www.housemarque.com>, © 2001. • Software copyrighted by Paul Moore, © 1999. • Software copyrighted by Dr. John
Maddock, © 1998-2002. • Software copyrighted by Greg Colvin and Beman Dawes, © 1998, 1999. • Software copyrighted by Peter Dimov,
© 2001, 2002. • Software copyrighted by Jeremy Siek and John R. Bandela, © 2001. • Software copyrighted by Joerg Walter and Mathias Koch,
© 200 0-2002. • Software copyrighted by Carnegie Mellon University © 1989, 1991, 1992. • Software copyrighted by Cambridge Broadband Ltd.,
© 2001-2003. • Software copyrighted by Sparta, Inc., © 2003-2004. • Software copyrighted by Cisco, Inc. and Information Network Center of
Beijing University of Posts and Telecommunications, © 2004. • Software copyrighted by Simon Josefsson, © 2003. • Software copyrighted by
Thomas Jacob, © 2003-2004. • Software copyrighted by Advanced Software Engineering Limited, © 2004. • Software copyrighted by Todd C.
Miller, © 1998. • Software copyrighted by The Regents of the University of California, © 1990, 1993, with code derived from software contributed
to Berkeley by Chris Torek.
®
technology, Copyright Netopsystems AG, Berlin, Germany. • Outside In® Viewer Technology ©1992-2001 Stellent Chicago, Inc. and/or
®
HTML Export, © 2001 Stellent Chicago, Inc. • Software copyrighted by Thai Open Source Software Center Ltd. and Clark Cooper,
®
Issued November 2007 / VirusScan® for Mac software version 8.6
DBN-001-EN
Contents
1 Introducing VirusScan for Mac 5
What’s in this guide? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
What is VirusScan? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
What you can do with VirusScan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
What’s new in this release . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
VirusScan features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
VirusScan console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
On-Demand scanner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
On-Access scanner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
VirusScan Schedule Editor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
eUpdate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
ePolicy Orchestrator Manageability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8
Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8
Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8
Getting product information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
Standard documentation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
VirusScan Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .10
Submit a sample . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Technical Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .10
Virus Information Library . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .10
Contact information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
2 Installing VirusScan for Mac 13
System requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13
ePolicy Orchestrator requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13
Installing VirusScan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13
Standard installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .14
Command-line (silent) installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .14
Upgrade installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .14
Testing your installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .15
Uninstalling VirusScan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .15
3 Getting Started 17
Using the VirusScan console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
The VirusScan console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .17
Configuring the scanners . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .19
Configuring general preferences . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .19
Configuring the On-Demand scanner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
Configuring the On-Access scanner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Using the On-Demand scanner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
Using the On-Access scanner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Updating DAT files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Configuring eUpdate settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Using the VirusScan Schedule Editor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
Scheduling eUpdates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
4 Integrating with ePolicy Orchestrator 3.6 31
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Prerequisites for using ePolicy Orchestrator to manage VirusScan for Mac . 32
3
VirusScan® 8.6 for Mac User Guide Contents
Introducing ePolicy Orchestrator console . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Checking in NAP files to manage VirusScan . . . . . . . . . . . . . . . . . . . . . . . . . 33
Installing the ePolicy Orchestrator agent for Macintosh computers . . . . . . . 35
Installing VirusScan for Mac . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Uninstallation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Removing VirusScan for Mac from the ePolicy Orchestrator server . . . . . . . 37
Removing ePolicy Orchestrator Agent for Mac OS X from ePolicy Orchestrator
server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Removing ePolicy Orchestrator Agent from VirusScan for Mac . . . . . . . . . . 38
Setting policies within ePolicy Orchestrator . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
General tab . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
eUpdate tab . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Customizing eUpdate settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
On-Access scanner tab . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
On-Demand scanner tab . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Scheduling scans and eUpdates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
On-Demand scans . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
eUpdate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
Viewing ePolicy Orchestrator properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Configuring reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
5 Integrating with ePolicy Orchestrator 4.0 49
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Extensions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Introducing ePolicy Orchestrator 4.0 Dashboard . . . . . . . . . . . . . . . . . . . . . . . . . 50
Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Client tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52
Uninstallation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Removing the product extension . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Removing the report extension . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
6 Troubleshooting 55
Frequently asked questions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55
Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55
Scanning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55
Viruses and detection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56
General information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56
Advanced troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57
Error messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57
Glossary 59
Index 65
4
Introducing VirusScan for Mac
1
What’s in this guide?
This guide introduces VirusScan for Mac 8.6 and provides the following information on
how to keep your computer free of viruses:
Overview of the product.
Descriptions of product features.
Descriptions of all new features in this release of the software.
Detailed instructions for installing the software.
Detailed instructions for configuring and deploying the software.
Procedures for performing tasks.
Troubleshooting information.
Integration with ePolicy Orchestrator 3.6 (Patch 2), 3.6.1, and 4.0.
What is VirusScan?
VirusScan for Mac is an anti-virus application that helps you keep your Macintosh
computer free of viruses, Trojan horses and other malware. VirusScan features
On-Demand scanning, Apple Mail scanning, eUpdate scheduling, online Help,
On-Access scanning and drag-and-drop scanning. In addition, you are only one click
away from the comprehensive online Virus Information Library which will keep you
informed of all new threats.
VirusScan protects your system from viruses that may reside on other computers such
as Macintosh computers, Windows computers, UNIX computers, and externally
mounted volumes such as USB device, Firewire devices and CDs/DVDs.
This version of VirusScan also provides anti-virus support for Mac OS X 10.5 (Leopard)
operating system.
What you can do with VirusScan
VirusScan detects and cleans program viruses, macro viruses, and Trojan horses for all
types of Macintosh, Windows, and UNIX files, including compressed files and OLE
compound documents.
5
VirusScan® 8.6 for Mac User Guide Introducing VirusScan for Mac
VirusScan features
With VirusScan, you can scan a single file, a file directory, your whole drive, or mounted
volumes such as CDs, .DMG files, network mounted files, Apple Mail messages, and
USB devices such as pen drives, iPods and cameras. Advanced heuristic scanning
detects previously unknown macro and program viruses.
What’s new in this release
Support for Mac OS X Leopard (10.5)
On-Access scanning performance optimization
On-Demand scanning performance optimization
Support for ePolicy Orchestrator 4.0
Incremental DAT updates
5200 scanning engine support
VirusScan features
VirusScan incorporates its previous powerful features with new safeguards and tools
for you to protect your computer system. The online Help system provides you with
troubleshooting assistance and procedures for tasks.
1
VirusScan console
The VirusScan console enables you to configure VirusScan through an easy-to-use
interface.
Using the console, you can configure the On-Demand scanner as well as perform
On-Demand scans through the drop-zone (an area on the VirusScan console that allows
you to drag and drop files that you want to scan). You can also click
to open the
Select a file or folders to Scan & Clean dialog box to select the file(s) or folder(s)
for the On-Demand scan and clean.
Also, you can configure and enable the On-Access scanner from the VirusScan console
and enable automatic updating of your virus definitions using eUpdate.
To access the VirusScan console, double-click the
Applications folder.
On-Demand scanner
The On-Demand scanner allows you to initiate a scan at any time by dragging and
dropping selected file(s) into the console. You can also click
open the
perform scan and clean.
With the On-Demand scanner, you can select multiple files, directories, or volumes.
Scan results are summarized in a report that can be saved or printed. You can configure
what the scanner looks for and how it responds to infected files. The scanner notifies
you when it finds a virus and generates a log of its actions.
Select a file or folders to Scan & Clean dialog box to select the file(s) or folder(s) to
Drop items or click here
VirusScan icon in your computer's
Drop items or click here to
6
VirusScan® 8.6 for Mac User Guide Introducing VirusScan for Mac
To access the On-Demand scanner, drag the file(s) you want to scan and drop them into
the
VirusScan icon or into the drop-zone in the console.
VirusScan features
On-Access scanner
The On-Access scanner provides continuous monitoring of all files in use to determine
if a virus or other potentially unwanted code is present. A scan takes place
automatically every time a file is read from the disk, and/or written to the disk, either
by the user or by system processes.
With the On-Access scanner, continuous policy enforcement is provided for multiple
files, directories or volumes, including volumes on remote computers connected
through the network. You can configure what the scanner looks for and how it responds
to infected files. The scanner notifies you, in the
virus or other malware.
You enable the On-Access scanner from the VirusScan console.
Reporter pop-up window, if it finds a
VirusScan Schedule Editor
The VirusScan Schedule Editor enables you to schedule automated scans and updates
for the anti-virus definitions (DAT) files that are available online. You can schedule scans
and updates through the
updates can be set on a daily, weekly, or monthly basis. To access the VirusScan
Schedule Editor, do any one of these tasks:
VirusScan Schedule Editor console. Automated scans and
1
eUpdate
Click Scheduler on the VirusScan console.
Select Scheduled Tasks under View in the main menu.
Open VirusScan Schedule Editor directly from the /Applications/Utilities
folder.
eUpdate allows you to update DAT files and the anti-virus engine. eUpdate continuously
updates your anti-virus software with new information on viruses and scanning
capabilities. eUpdate automatically checks for new updates when there is an Internet
connection, and updates the virus definitions when new ones are available. You can
also use VirusScan Schedule Editor to configure eUpdate to check for updates
according to your own schedule.
To initiate an eUpdate manually, click the
Start button. Support for eUpdate is provided using the FTP protocol.
eUpdate tab on the VirusScan console, then the
7
VirusScan® 8.6 for Mac User Guide Introducing VirusScan for Mac
Audience
ePolicy Orchestrator Manageability
VirusScan integrates with McAfee ePolicy Orchestrator versions 3.6 (patch 2), 3.6.1,
and 4.0 allowing you to use this software in a managed environment. The ePolicy
Orchestrator software provides a central hub of McAfee System Protection Solutions.
Administrators can mitigate the risk of rogue, non-compliant systems, keep protection
up-to-date, configure and enforce protection policies, and monitor security status from
one centralized, enterprise-scalable console. Using ePolicy Orchestrator, you can
configure VirusScan for Mac on the target systems across your network; you do not
need to configure these computers individually from the
The use of ePolicy Orchestrator is optional and you can use all the functionalities of
Note
VirusScan as a standalone product.
You will be able to use ePolicy Orchestrator related functionality only if you have
ePolicy Orchestrator and Non-Windows Agent installed and configured to manage
VirusScan in an enterprise environment.
Preferences window.
Audience
This information is intended for network administrators who are responsible for their
company’s anti-virus and security program.
1
Conventions
This guide uses the following conventions:
Bold
Condensed
Courier The path of a folder or program; text that represents something the user
Italic For emphasis or when introducing a new term; for names of product
Blue A web address (
<TERM> Angle brackets enclose a generic term.
All words from the interface, including options, menus, buttons, and dialog
box names.
Example:
Type the
types exactly (for example, a command at the system prompt).
Examples:
The default location for the program is:
Run this command on the client computer:
documentation and topics (headings) within the material.
Example:
Refer to the VirusScan Enterprise Product Guide for more information.
Example:
Visit the McAfee website at:
Example:
In the console tree, right-click <
User name and Password of the appropriate account.
/Applications/Utilities
scan --help
URL) and/or a live link.
http://www.mcafee.com
SERVER>.
8
VirusScan® 8.6 for Mac User Guide Introducing VirusScan for Mac
Note: Supplemental information; for example, another method of
Note
Tip
Caution
executing the same command.
Tip: Suggestions for best practices and recommendations from McAfee for
threat prevention, performance and efficiency.
Caution: Important advice to protect your computer system, enterprise,
software installation, or data.
Warning: Important advice to protect a user from bodily harm when using
a hardware product.
Warning
Getting product information
Getting product information
Unless otherwise noted, product documentation comes as Adobe Acrobat .PDF files,
available on the product CD or from the McAfee download site.
Standard documentation
User Guide — This guide introduces the product, describes its features, and gives
details on how to install and configure the software, ongoing operation and
maintenance. It also introduces ePolicy Orchestrator manageability features for
VirusScan, and provides detailed instructions for installing, configuring and managing
the software in an enterprise environment.This guide (VirusScan User Guide) is
available in .PDF in the
Documentation folder of the product package.
1
Help — High-level and detailed information accessed from the software application.
VirusScan for Mac Release Notes — This file describes the product features,
last-minute additions or changes to the documentation, lists any known behavior or
other issues with the product release, and describes the installation process. This file
is available in the
Documentation folder of the product package.
License — The McAfee License Agreement (.PDF) booklet that includes all of the
license types you can purchase for your product. The License Agreement gives general
terms and conditions for the use of the licensed product. Read it carefully. If you install
the product, you agree to the license terms. This McAfee Software License agreement
is available in the
Documentation folder of the product package.
9
VirusScan® 8.6 for Mac User Guide Introducing VirusScan for Mac
Getting product information
Links from within the product
The Help menu in the product provides links to some useful resources:
VirusScan Help
Submit a Sample
Technical Support
Virus Information Library
VirusScan Help
Use this link to access the online Help topics for the product.
Submit a sample
Use this link to submit potentially infected files to McAfee for analysis. You will receive
information about your files, including solutions and real-time fixes, if required.
Technical Support
Use this link to access the McAfee Technical Support website for product
documentation, FAQs, or troubleshooting hints and tips.
1
Virus Information Library
Use the Virus Information Library link to access the McAfee® Avert® Labs Virus
Information Library. This website has detailed information on where viruses come
from, how they infect your system, and how to remove them.
In addition to genuine viruses, the Virus Information Library contains useful information
on virus hoaxes, such as those virus warnings that you receive via email. A Virtual Card
For You and SULFNBK are two of the best-known hoaxes, but there are many others.
Next time you receive a well-meaning virus warning, we recommend you view our
hoax page before you pass the message on to your friends or colleagues.
To access the Virus Information Library:
1 Open VirusScan.
2 From the
Help menu, select Virus Information Library.
10
VirusScan® 8.6 for Mac User Guide Introducing VirusScan for Mac
Contact information
Contact information
Threat Center: McAfee Avert® Labs http://www.mcafee.com/us/threat_center/default.asp
Avert Labs Threat Library
http://vil.nai.com
Avert Labs WebImmune & Submit a Sample (Logon credentials required)
https://www.webimmune.net/default.asp
Avert Labs DAT Notification Service
http://vil.nai.com/vil/signup_DAT_notification.aspx
Download Site http://www.mcafee.com/us/downloads/
Product Upgrades (Valid grant number required)
Security Updates (DATs, engine)
HotFix and Patch Releases
For Security Vulnerabilities (Available to the public)
For Products (ServicePortal account and valid grant number required)
Product Evaluation
McAfee Beta Program
Technical Support http://www.mcafee.com/us/support/
KnowledgeBase Search
http://knowledge.mcafee.com/
McAfee Technical Support ServicePortal (Logon credentials required)
https://mysupport.mcafee.com/eservice_enu/start.swe
1
Customer Service
Web
http://www.mcafee.com/us/support/index.html
http://www.mcafee.com/us/about/contact/index.html
Phone — US, Canada, and Latin America toll-free:
+1-888-VIRUS NO or +1-888-847-8766 Monday – Friday, 8 a.m. – 8 p.m., Central Time
Professional Services
Enterprise: http://www.mcafee.com/us/enterprise/services/index.html
Small and Medium Business: http://www.mcafee.com/us/smb/services/index.html
11
VirusScan® 8.6 for Mac User Guide Introducing VirusScan for Mac
Contact information
1
12
Installing VirusScan for Mac
2
This section gives information on installing the VirusScan software and includes details
on:
System requirements
Installing VirusScan
Upgrade installation
Testing your installation
Uninstalling VirusScan
System requirements
To install VirusScan for Mac software, you require PowerPC or Intel based Mac
computer, Mac OS X Tiger (10.4.6 or later) or Mac OS X Leopard (10.5) operating
system, 512 MB (or higher) RAM, minimum 45 MB of free disk space.
ePolicy Orchestrator requirements
VirusScan integrates with ePolicy Orchestrator versions 3.6 (patch 2), 3.6.1, and 4.0.
However, please note that the use of ePolicy Orchestrator is optional and VirusScan for
Mac can be used as a standalone product.
You will be able to use ePolicy Orchestrator related functionality only if you have
Note
ePolicy Orchestrator and Non-Windows Agent installed and configured to manage
VirusScan in an enterprise environment.
Installing VirusScan
VirusScan for Mac can be installed through either a standard (graphical interface)
installation or a command-line (silent) installation. Once you have installed the product,
its ReadMe file is available in the
this file for known issues, online resources, and other useful information.
Documentation folder of the product package. Refer to
13
VirusScan® 8.6 for Mac User Guide Installing VirusScan for Mac
Upgrade installation
With VirusScan you use the eUpdate feature to connect to a Web location and
download new DAT files. To find out more about eUpdate and other VirusScan features,
see Getting Started on page 17.
2
Note
You must have administrative privileges to install this product.
Standard installation
You can install VirusScan using the VirusScan install file, either on the product CD or in
the installation .ZIP file downloaded from the McAfee website and saved to a
temporary folder.
To install VirusScan:
1 Double-click the
2 Follow the on-screen steps to install the software.
3 Read and accept the license agreement. If you do not accept the license agreement,
the installation cannot continue.
4 Click Install to perform the installation. The Authentication dialog box appears.
5 Type your user name and administrator password and click OK . A message notifies
you when the installation finishes. Click
The VirusScan for Mac installer installs the VirusScan application inside the
Applications folder and the VirusScan Schedule Editor application inside the
Application/Utilities folder of your computer.
You need not restart your computer after installing VirusScan for Mac 8.6 (unlike the
Note
earlier versions).
VirusScan.pkg file to start the Installer.
Close.
Command-line (silent) installation
1 Locate the VirusScan.pkg file, either on the product CD or in the installation .ZIP
downloaded from the McAfee web site, and save it to a temporary location.
2 Open the
VirusScan.pkg file is located.
Terminal window and change the working folder to the one where the
3 In the Terminal window, execute:
sudo installer -pkg VirusScan.pkg -target /
4 Enter your system password when prompted to do so.
5 A message notifies you when the installation finishes. Close the Terminal window.
Upgrade installation
You can upgrade to VirusScan for Mac v8.6 from earlier VirusScan versions (8.0 and
8.5). After the upgrade, the preferences are migrated from the earlier versions to the
current version (v8.6).
14
VirusScan® 8.6 for Mac User Guide Installing VirusScan for Mac
Testing your installation
Testing you r ins tallation
You can test VirusScan by using the European Institute of Computer Anti-Virus
Research (EICAR) standard anti-virus test file. This file is a combined effort by anti-virus
vendors throughout the world to implement one standard by which customers can
verify their anti-virus software.
To test your installation:
1 Go to the EICAR.ORG website
test file, Eicar.zip.
2 Run the On-Demand Scanner on the downloaded ZIP file. VirusScan will report
finding the EICAR test file.
This file is not a virus and is available for testing anti-virus software. You can delete this
Note
file when you have finished testing the software to avoid alarming unsuspecting
users.
If the test is successful, you are now ready to start using the VirusScan software.
http://www.eicar.org and download the AntiVirus
2
Uninstalling VirusScan
You can uninstall VirusScan by using an uninstall file (VirusScan Uninstall.command), either
on the product CD, or in the installation .ZIP file downloaded from the McAfee website
and saved to a temporary folder. You can also execute uninstall command from
terminal.
To unins tall V i r usSc a n :
1 Do one of the following:
Double-click the VirusScan Uninstall.command icon.
Drag the VirusScan Uninstall.command icon, drop it in the Terminal window and press
Enter.
In the Terminal window, change the directory to /usr/local/vscanx, then
execute
Note
The
2 Type your administrator password and click
Note
VirusScan Uninstall.command.
To open the Terminal application, double-click the application located under
/Applications/Utilities.
Terminal window prompts you for your administrator password.
Your administrator password will not be displayed in the Terminal window.
Enter.
When the uninstallation process finishes successfully, a message appears in the
Terminal window to show the VirusScan software has been removed from your
computer.
15
VirusScan® 8.6 for Mac User Guide Installing VirusScan for Mac
Uninstalling VirusScan
2
16
Getting Started
3
This chapter describes VirusScan, and how it helps keep your computer free of viruses.
It includes the following topics:
Using the VirusScan console
Configuring the scanners
Using the On-Demand scanner
Using the On-Access scanner
Updating DAT files
Using the VirusScan Schedule Editor
Using the VirusScan console
The VirusScan console allows you to use and configure On-Demand scanning and
On-Access scanning. The console connects you to the McAfee Virus Information
Library, does eUpdates, and prints and saves virus scan reports.
The VirusScan console also contains a drag-and-drop pane for On-Demand scanning.
You can initiate an On-Demand scan at any time by dragging files into the center pane
of the console, dropping them into the drag-and-drop pane, then clicking the
button. If you add another file after the scan has completed, the new file will replace
the first scan.
The VirusScan console
The VirusScan console displays standard Macintosh and specialized anti-virus
components, including:
Title bar displaying the name of the program that is currently running.
Start
17
VirusScan® 8.6 for Mac User Guide Getting Started
Using the VirusScan console
Close, minimize, maximize, and hide tool bar buttons to resize or hide the interface.
Figure 3-1 VirusScan console
Toolbar
The toolbar displays these buttons:
3
Saves the virus scan report as a Rich Text File (.RTF).
Clears the current report showing on the status panel.
Prints the current report.
Allows you to schedule a scan task and an eUpdate task.
Opens the
Set preferences for the On-Demand scanner.
Set preferences for the On-Access scanner.
Set preferences for the action to take if a virus is found.
Log results to a file.
Configure eUpdate server settings.
Configure the exclusion list.
Automatically check for virus definitions updates.
Preferences dialog box, allowing you to:
Opens your default browser and directs you to the McAfee Virus
Information Library.
Menu bar
The menu bar shows standard drop-down menus common to all screens: File, Edit, View,
Window, and Help.
18
VirusScan® 8.6 for Mac User Guide Getting Started
Configuring the scanners
Configuring the scanners
You can configure the settings for both the On-Demand scanner and the On-Access
scanner using the
one for configuring the On-Demand scanner, the other for the On-Access scanner. Both
scanners have the same general preferences, while advanced scanning options are
scanner-specific.
Preferences dialog box. Two versions of this dialog box are available;
3
Note
Scanner preferences are global settings that apply to all users.
The preferences are saved automatically when you select them.
Note
You need administrative privileges to modify preferences.
Configuring general preferences
General preferences apply to both the On-Demand scanner and the On-Access
scanner. They are the same for both.
To configure general preferences:
1 Click
Preferences on the tool bar to display the Preferences dialog box. The top
panel in this dialog box contains general preferences options that apply to both the
On-Demand scanner and the On-Access scanner.
19
VirusScan® 8.6 for Mac User Guide Getting Started
Configuring the scanners
Figure 3-2 General preferences
3
2 Select your general scanning preferences for the On-Demand and On-Access
scanners; Table 3-1 shows the available general preferences.
Table 3-1 General preferences for On-Demand and On-Access scanners
Automatically check for virus definition
updates
On-Access Scanning Enables/disables On-Access scanning.
Log results to file Enables/disables logging results to a file.
Enables/disables automatic eUpdates.
20
VirusScan® 8.6 for Mac User Guide Getting Started
Table 3-1 General preferences for On-Demand and On-Access scanners
Customize eUpdate Server Settings Manages your update server with user name and
password. Click
settings for eUpdate.
Exclude specific disks, files and folders Configures your scanning exclusions. If this is not
selected, you will not have any exclusions set.
Customize to modify the FTP
Configuring the scanners
To add an exclusion:
Click Add in the Exclude File or Folder list. Select
the file or folder from the
Open dialog box.
To remove an exclusion:
Select the file or folder from the Exclude File or
list. Click Remove.
Folder
To modify an exclusion:
Select the file or folder from the Excluded File or
Folder
list. Click Modify. The Open dialog box
appears. Select the file or folder to replace the
existing exclusion.
3 Set the advanced preferences you require. These are shown in the lower pane in the
Preferences dialog box. Two different sets of preferences are available; one for the
On-Demand scanner, the other for the On-Access scanner. See Configuring the
On-Demand scanner on page 21 and Configuring the On-Access scanner on
page 23 for details.
3
4 Click
Lock to prevent changes to the preferences.
5 Click Close in the upper left-hand corner to exit the Preferences dialog box.
Configuring the On-Demand scanner
The On-Demand scanner allows you to initiate a scan at any time. You configure the
On-Demand scanner advanced preferences using options available in the lower pane of
the Preferences dialog.
To configure the On-Demand scanner:
1 Click
2 Click
3 Select
Preferences on the tool bar to display the Preferences dialog box.
More Options in the lower right-hand corner of the dialog box to reveal Advanced
Preferences.
On-Demand Scanner from the drop-down menu (if not already selected) to
display the On-Demand scanning version of this dialog box.
21
Loading...