Details

When scanning for malware, excluding specific files will increase the risk of a malware-infected file going undetected. By configuring antivirus software without any exclusions, the scanner has a higher success rate at detecting and eradicating malware.

Solution

Access the local VirusScan console by clicking Start->All Programs->McAfee->VirusScan Console.
In the console window, under Task, with the assistance of the System Administrator, identify the weekly on-demand client scan task.
Right-click on the Task and select Properties.

Under the Exclusions tab, locate the ‘What not to scan:’ label, remove any items.

Click OK to Save.

Supportive Information

The following resource is also helpful.

• https://iasecontent.disa.mil/stigs/zip/U_McAfee_VirusScan88_Local_Client_V5R16_STIG.ziphttps://iasecontent.disa.mil/stigs/zip/U_McAfee_VirusScan88_Local_Client_V5R16_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Windows.

References

• 800-53|SI-3c.1.
• CAT|II
• CCI|CCI-001241
• Rule-ID|SV-56401r2_rule
• STIG-ID|DTAM050
• Vuln-ID|V-6604

Source

• Tenable.com/audits