Have you opened your McAfee UI and check Navigation/Quarantined Items to see if there is a detection there? In addition to ease your mind, you can run Malwarebytes (Free) for a second opinion. This and other Superb Tools can be obtained from Here: Anti-Spyware/Malware & Hijacker Tools and they are all (Free).
Hope this helps..
Hi CD. Sorry for not updating earlier but I am unsure as to what to do next.
I reported to Technical Support and sent them a Virustotal report of a sample of malware not detected by the manual scan, yet was detected by Webadvisor when malware downloaded from my webmail account rather than via Outlook client. McAfee under VT was also detecting it. Their reply was, eventually, that the malware is detected when executed, but not otherwise.
I did not have time to discuss this further with them, especially with someone with less than perfect English skills in India or wherever on that particular call. I think I understand them though...The malware is typically an MS Office file or pdf which has a macro. If and when the macro is executed then the next action is that it downloads the payload which is then executed and does the damage. So in itself, the trojan downloader Office file is not considered an immediate threat, until run. I don't personally agree, but that's what I think they were saying. The guys at Webroot told me something when I reported a similar non-detection on another PC.
But I am puzzled, because as an idle threat, it is neverthless correctly detected by Webadvisor and VT, but not a manual scan. Of course I am not going to launch the payload and experiment....well, not until I get some time over Christmas to play with virtual set up.
Anyway, I am still left with the thought that this Viruscan situation is perhaps not intended, not by design, and that there is a fault in Virusscan which someone should be aware of and fixing, at least to be consistent with the other scans?
(Updated with clarifications)
1 of 1 people found this helpful
Thank you for your correspondence and concerns. Evidently you must have the 15.1 Version\Build. Which includes the New Scanning engine (LAM). Please know you are indeed protected, as the New Build will detect it , as you stated when the file is accessed.
You will also notice when performing a Scan, there will be notably less number of items scanned as well. The over-all changes in the Next Generation Scanning Engine enhances performance, without lacking proper protection.
In addition other layers of protection ( Web Advisor ) kicks in also, blocking and prompting you of a Possibly Unwanted\Dangerous Download.
In other words, rather than constantly scanning files on your system, which has a negative impact on your System. It now detects/protects you once a file deemed unsafe is accessed. Most Security Vendors have taken this approach as well.
I hope this helped...
Thanks for the reassurance CD.
I am actually confused as to which version I have installed, or more specifically, despite downloading from my McAfee online account, different PCs each with Windows 10 appear to have different version numbers installed.
The one that I referred to, I can no longer check because I had to return the laptop for repair, but I think it was 15.1 and there were various .exe running that appeared to be the new lightweight ones.
Since then, on another laptop with McAfee AVP also installed freshly a couple of days ago, it's showing AVP as v 14.0 with Security Centre 15.0 and "Antivirus and Anti Spaware" v 19.0. I guess you were referring to the Security Centre version number?
How and when does it become updated to 15.1? Can I do it manually, if so, how?
1 of 1 people found this helpful
It is being slowly added usually for new installs but not all. It will come to all when McAfee sure it is stable which as far as I see it is.
Thanks PK I seem to have missed it..