We have a user that is experiencing problems with McAfee and Toad version 10.5. When loading and closing Toad it takes a very long time and you can see that the McAfee process sparks of for this duration. I have added the following:
VirusScan Enterprise 8.7.0 > On-Access Default Processes Policies > My Default
But this still does not solve the issue. Anything else I can do?
Your help is much appreciated!
You may have to use process monitor to see what mcafee is scanning. - Check McAfee Knowlegebase for instructions on how to use it
If you simply can't figure the procmon out and have lost all hope.. You could try using the on-access statistic window..
Double click the mcafee virus scan icon (instead of right-clicking to bring up the console) it brings up the On-Access scan statistics windows. With some luck you can "catch" what the on-access scanner is scanning. - But this method puts you real close to one of those end-users.
McAfee profiler might also help determine what is occuring.
Instructions are here: https://kc.mcafee.com/corporate/index?page=content&id=PD22737
Message was edited by: mjmurra on 17/09/10 12:54:34 PMMessage was edited by: mjmurra on 17/09/10 12:55:02 PM
Excellent tip mjmurra,
I have asked McAfee for some time to develop a tool to do just this..
and to think they just release one.!
I am in the process of evaluting this tool..
Again,, Excellent tip
We had the same issue with Toad taking a looong time to load. We created the exclusion folder path exclusion in the On-Access Default Processes Policies too but that wasn't working.
After a bit of process monitoring a colleague found that toad was "calling" explorer.exe which is a high-risk process (we have separate low and high-risk on-access process policies).
We added the %programfiles%\QuestSoftware\ exclusion to the On-Access High-Risk Processes Policies and that did the trick for us.
There's a KB article up now regarding 10.5.1.3
The recommendation is to exempt toad.exe only (or install an extra.dat which I assume prevents VSE from scanning toad.exe)