Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
220 Views 3 Replies Latest reply: Feb 19, 2014 10:45 AM by rothman RSS
francist Newcomer 2 posts since
Feb 17, 2014
Currently Being Moderated

Feb 17, 2014 5:28 AM

Selectively disabling on-access scanning

Hi,

 

We are looking at some recording/playback software for a client and need some advice on how to tailor AV settings for best performance. Initial testing has shown that the software, especially on playback, is sensitive to any AV scanning taking place.

 

The client is running 32 bit Windows 7 with VirusScan Enterprise 8.7i (8.7.0.570) installed.

 

What settings should we be looking at, beyond the normal directory/process exclusions, to prevent an AV scan from interuptiing the software and any system components (e.g. Microsoft SilverLight) it uses?

  • rothman Newcomer 27 posts since
    Jul 23, 2013
    Currently Being Moderated
    1. Feb 19, 2014 10:08 AM (in response to francist)
    Re: Selectively disabling on-access scanning

    You're probably going about it in the right way by excluding specific directories / processes, but you may not be hitting all of the sub-processes that this software uses.  My suggestion would be to search for the required/suggested AV exclusions documentation either online or directly from the software developer.  Whenever one of my clients requests assistance to get software working, that is likely being blocked by McAfee, from me... one of the very first things I ask them is to provide me with the software requirements documentation so that I can be sure all necessary exclusions are made.

  • rothman Newcomer 27 posts since
    Jul 23, 2013
    Currently Being Moderated
    3. Feb 19, 2014 10:45 AM (in response to francist)
    Re: Selectively disabling on-access scanning

    francist wrote:

     

    I've not had a chance to look at the settings myself but you seem to imply that marking a process as trusted does not mean that any processes launched by that process are also trusted by default?

     

    This is exactly the case and the reasoning behind it is you wouldn't want to have a policy which lets process 'virus.exe' to launch just because its parent (hijacked) process, 'recorder.exe', was allowed.

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points