Manualshelf

Product guide

ManualsBrandsMcAfee ManualsComputer equipmentSAV85E - Active VirusScan - PC
11121314151617181920
To schedule automatic DAT and engine updates, refer to 8. Configuring DAT files and Engine
updates.
5. Enabling "Artemis"
Artemis, the heuristic network check feature, looks for suspicious programs and DLLs running
on VirusScan Enterprise protected client systems. The Artemis feature catches malware before
the regular DATs are deployed. It has been deployed successfully to more than 27 million
endpoints and should be enabled at all times.
With Artemis enabled, when VirusScan Enterprise detects a suspicious file it sends a DNS request
containing a fingerprint of the suspicious file to a central database server hosted by McAfee
Avert Labs. In less than a second, if the fingerprint is identified as known malware, an appropriate
response is sent to the user to block or quarantine the file.
Configure the sensitivity level you wish to use when determining if a detected sample is malware.
There are five sensitivity levels, between Very low and Very high, plus Disabled. The higher the
sensitivity level you choose, the higher the number of malware detections. However, by allowing
more detections, you might also get more false positive results.
To configure Artemis using ePolicy Orchestrator, access VirusScan Enterprise 8.8.0, On-Access
General Policies, and click the General tab.
Find the Artemis (Heuristic network check for suspicious files) settings list and confirm
the Sensitivity level is set to a minimum of Low.
NOTE: Consider moving the sensitivity level to Medium depending on the number of false
positive malware detections found.
The following ePolicy Orchestrator 4.5 display shows Artemis configured.
Configuring Essential Security
5. Enabling "Artemis"
11McAfee VirusScan Enterprise 8.8