Samker's Computer Forum - SCforum.info
World TOP Headlines: => Latest Security News & Alerts => New Updates => Topic started by: Samker on 03. March 2009., 10:38:09
-
(http://www.9down.com/pic/topic/mcafee.gif)
McAfee VirusScan Enterprise protects your desktop and file servers from a wide range of threats, including viruses, worms, Trojan horses, and potentially unwanted code and programs. McAfee VirusScan® 8 takes anti-virus protection to the next level, integrating elements of intrusion prevention and firewall technology into a single solution for PCs and file servers. This powerful combination delivers truly proactive protection from the newest of today’s threats-including buffer - overflow exploits and blended attacks - and features advanced outbreak management responses to reduce the damage and costs of outbreaks. Everything is managed by McAfee ePolicy Orchestrator® or ProtectionPilot™ for scalable security policy compliance and graphical reporting.
Release Notes for McAfee(R) VirusScan(R) Enterprise Version 8.5i Patch 8
Copyright (C) 2009 McAfee, Inc.
All Rights Reserved
==========================================================
Patch Release: January 27, 2009
This release was developed and tested with:
- VirusScan Enterprise: 8.5i
- DAT Version: 5474, December 24, 2008
- Engine Version: 5.3.00
Make sure you have installed these versions, or later,
before using this release.
==========================================================
Thank you for using VirusScan(R) Enterprise software.
This file contains important information regarding this
release. We strongly recommend that you read the entire
document.
__________________________________________________________
WHAT'S IN THIS FILE
- About This Release
- Purpose
- Improvements
- Resolved Issues
- Patch 8 Resolved Issues
- Patch 7 Resolved Issues
- Patch 6.1 Resolved Issues
- Patch 6 Resolved Issues
- Patch 5 Resolved Issues
- Patch 4 Resolved Issues
- Patch 3 Resolved Issues
- Patch 2 Resolved Issues
- Patch 1 Resolved Issues
- Known Issues
- Files Included With This Release
- Installation
- Installation Requirements
- Installation Steps
- Installation Steps via ePolicy Orchestrator
- HotFix/Patch Reporting
- Verifying the Installation
- Removing the Patch
- Copyright & Trademark Attributions
- License Information
__________________________________________________________
ABOUT THIS RELEASE
PURPOSE
This release contains updated binaries in a single
Microsoft Patch installer to address all items listed
in "Resolved Issues" below.
For the most up-to-date copy of this Readme
information, refer to McAfee Support KnowledgeBase
article 60415.
Patch 8 is a High Priority release. See McAfee Support
KnowledgeBase article 614038 for information on
ratings.
__________________________________________________________
IMPROVEMENTS
1. VirusScan Enterprise with the AntiSpyware Module
can now be set so that it no longer places cookie
detections in the quarantine folder. They instead
are deleted permanently as part of the clean
action.
NOTE:
By setting the DWORD "DisableCookieBackups"
registry entry to 1, cookie detection quarantines
no longer occur.
HKLM\SOFTWARE\McAfee\VSCore
2. The on-demand scanner has been updated to better
use the System Utilization setting throughout the
entire scanning process.
Refer to McAfee Support KnowledgeBase article
9197288 for further information.
3. This Patch contains a new Buffer Overflow and
Access Protection DAT (version 378), which adds an
Access Protection category for Virtual Machine
Protection. These rules provide access protection
functionality for virtual machines.
NOTE:
To manage the new Virtual Machine Protection
category with ePolicy Orchestrator 3.x or
ProtectionPilot, you must use the latest NAP file,
which is included in this Patch package, or
VirusScan 8.5i Repost Patch 5.
For ePolicy Orchestrator 4.x users, the Extension
update also contains the updated rule file. The
updated Extension package is available on the web
product download area under the Patches category.
__________________________________________________________
RESOLVED ISSUES
The resolved issues are divided into subsections per
patch, showing when each fix was added to the
compilation.
PATCH 8 RESOLVED ISSUES
1. ISSUE:
In Patch 7, the McShield resource files were
missing some string tables that were responsible
for On-Access Scan and On-Demand Scan status.
RESOLUTION:
McShield.dll has been corrected to include all the
proper strings for displaying information on
non-English installations.
2. ISSUE:
A timing issue could occur during the import of the
McAfee Installation Designer (MID) configuration.
During the installation of VirusScan Enterprise,
the temporary registry information sometimes was
not available before the registry editor attempted
to apply the settings. The process generated an
application event, ID 1006, while the registry
editor attempted to reapply the settings until it
was successful.
RESOLUTION:
The McAfee Installation Designer configuration
applicator was revised to no longer report the
error, because it does not represent a true failure
in the process.
NOTE:
To prevent the generation of this error, use the
repost package that includes this Patch release.
3. ISSUE:
On multi-processor systems that receive files from
remote clients, some instructions were being
executed frequently and unnecessarily, acquiring an
exclusive lock on all processors. This created a
bottleneck in the file I/O being written to disk.
RESOLUTION:
The link driver has been revised to eliminate the
described bottleneck.
4. ISSUE:
Access Protection block rules that were created for
USB devices sometimes did not handle removing and
reinserting the device multiple times.
RESOLUTION:
The Access Protection, Anti-Virus Filter, and Link
drivers have been updated to better handle
re-hooking the device.
5. ISSUE:
The On-Access Scanner was not properly utilizing
the "Scan files opened for Backup" option.
RESOLUTION:
The Anti-Virus Filter driver has been rectified to
properly interpret the flag being sent from the
On-Access Scanner.
6. ISSUE:
Certain detections with multiple infections or
clean actions were logging the action two times.
One entry was made during the middle of the
process, and the other during the final
resolution.
RESOLUTION:
The Common Shell scanner has been updated to report
only the final resolution of the detection.
7. ISSUE:
The repair option for McAfee AntiSpyware Enterprise
Module would execute during the patch process. This
caused the cookie and registry scan targets to be
re-added to On-Demand Scan tasks that were removed
by the user.
RESOLUTION:
The patch installer has been updated to preserve
the On-Demand Scan anti-spyware scan targets.
PATCH 7 RESOLVED ISSUES
1. ISSUE:
When installing a VirusScan Enterprise 8.5i patch,
the existing On-Access Scanner service might fail
to unload. This leads to two instances of the
service, with one consuming a high amount of CPU
usage.
RESOLUTION:
The On-Access Scanner service had been updated to
avoid a runaway thread scenario that caused the
service, being replaced, to not stop.
NOTE:
To avoid this issue while installing Patch 7 or
later, install HF427887 first. Refer to McAfee
Support KnowledgeBase article 616344 for further
information.
2. ISSUE:
Changes to the VirusScan Enterprise core subsystem
disabled performance optimization for handling
frequent write actions to INI and LOG files.
RESOLUTION:
The Anti-Virus Filter Driver was corrected to
ensure that scanning of specified file extensions
is optimized, as in previous versions.
3. ISSUE:
A three-party deadlock occurred, causing the
On-Access Scanner to become blocked until it times
out. This causes the scanner service to time out
and eventually self-terminate.
RESOLUTION:
The Common Shell scanner has been updated to
prevent the On-Access Scanner from becoming blocked
while the security libraries are loaded by the
system.
4. ISSUE:
The extended reports NAP contained some ePolicy
Orchestrator stored procedures that were needed to
add support for the VirusScan product line. The
ePolicy Orchestrator patches have since made new
modifications to the same stored procedures.
Therefore, when the VirusScan extended reports NAP
is checked in after the new ePolicy Orchestrator
modified procedures are in place, they are
overwritten and the newer functionality is lost.
RESOLUTION:
The VirusScan extended reports NAP has been revised
to no longer replace the ePolicy Orchestrator
stored procedures.
5. ISSUE:
If the Lotus Notes client is running during
uninstall of VirusScan Enterprise 8.5i, the Lotus
Notes Scanner entries might not be properly removed
from the NOTES.INI file. This can cause the Lotus
Notes client to crash on subsequent starts.
RESOLUTION:
The Lotus Notes Scanner module has been corrected
to remove its entries in the NOTES.INI file for all
scenarios.
6. ISSUE:
The VirusScan Enterprise Patch installer did not
correctly preserve the MIDFileTime registry value.
This caused the McAfee Installation Designer (MID)
.CAB files to be re-applied at the time of
installation.
RESOLUTION:
The Patch installer has been updated to correctly
preserve the binary value of MIDFileTime.
7. ISSUE:
Changes made in Microsoft Vista SP1 and later, in
how the operating system opens/views network files,
caused delays in opening new network paths, with
the On-Access Scanner’s Network Scanning feature
enabled.
RESOLUTION:
The link driver has been modified to use a
different method of accessing the network resources
that avoids the delays imposed by the operating
system change.
8. ISSUE:
A 7E bugcheck (blue screen) might occur if an
application shut down immediately after sending
data over the network.
RESOLUTION:
The link driver has been revised to better handle
data that is transmitted by applications after the
driver has stopped.
9. ISSUE:
When the VirusScan NAP is checked in, it runs a
script that enables anti-spyware settings in
policies and tasks, if the AntiSpyware 8.5 module
NAP is in the ePolicy Orchestrator repository. The
intended purpose of the script is similar to the
local AntiSpyware module installer, which enables
its settings when installed on a local system.
RESOLUTION:
The VirusScan NAP has been updated so that the
script is disabled during check-in of the VirusScan
NAP package. This prevents the anti-spyware
settings from being enabled when updating the
VirusScan NAP.
NOTE:
The McAfee AntiSpyware 8.5 module NAP has the same
script in it. This means that if the McAfee
AntiSpyware 8.5 module NAP is installed after the
VirusScan NAP, the anti-spyware settings are still
enabled.
10. ISSUE:
Servers that deal with many file writes were
becoming unresponsive.
RESOLUTION:
The anti-virus filter driver was revised to
correctly filter and dispatch scans on write.
PATCH 6.1 RESOLVED ISSUES
1. ISSUE:
An issue can occur when the 5300 engine is
installed prior to installing VirusScan 8.5i Patch
6. The scanner engine files are partially
overwritten with the previous 5200 version that is
stored in the MSI cache. This mismatch causes the
scanner engine to fail to initialize.
RESOLUTION:
The Patch installation package has been updated to
correct this issue, and does not overwrite the
engine files.
PATCH 6 RESOLVED ISSUES
1. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to only write to the registry if it
sees that it is different from the current policy.
This will prevent McShield from generating events
on policy enforcement, unless that policy has
changed.
This is an addendum to the original solution in
Patch 5, where the fix did not work when the
preferred language was set to something other than
automatic.
2. ISSUE:
A compatibility issue has been seen with
VirusScan’s port blocking feature, and Veritas
backup applications. This was causing the backup
software services to stop running.
RESOLUTION:
The VirusScan Anti-Virus Mini-Firewall Driver has
been updated to correct the compatibility issue.
3. ISSUE:
A race condition in the On-Access Scanner service
can cause high CPU utilization with high
performance systems.
RESOLUTION:
The On-Access Scanner service has been updated to
remedy multi-threading synchronization issues and
remove occurrences of runaway threads.
4. ISSUE:
The On-Access Scanner service sometimes crashes
during a system shutdown or during installation of
a Patch/HotFix.
RESOLUTION:
The On-Access Scanner service has been repaired to
correct a race condition in which a
critical-section synchronization object is deleted
before another thread has entered.
5. ISSUE:
A deadlock could occur on high end servers caused
by a race condition in VirusScan’s link driver.
RESOLUTION:
The link driver has been changed to properly handle
the release of system objects, while holding a lock
on resources.
6. ISSUE:
Port blocking fails on Microsoft Windows Vista
Service Pack 1.
RESOLUTION:
The McAfee Driver Installer has been update to
handle the changes in network stack load order.
7. ISSUE:
The On-Demand Scanner system utilization changes
that were put in patch 5 changed the memory
scanning function. This caused the process scanning
to only scan the first process ID.
RESOLUTION:
The change has been reversed so that all processes
are scanning irrespective of process ID.
8. ISSUE:
When applied to a client installation that was
customized by McAfee Installation Designer (MID),
the patch installer deletes the MidFileTime
registry value. This caused MID .CAB files to be
re-applied to the system.
RESOLUTION:
The patch installer has been updated to no longer
delete the MidFileTime registry value.
9. ISSUE:
A newly created user defined Unwanted Program
Policy, does not take effect immediately if the
file has been scanned by the On-Access Scanner
before the change occurred.
RESOLUTION:
The On-Access Scanner service has been updated to
properly recognize changes to the user defined
detections and clear the cache of files that have
already been scanned so that the new settings take
effect immediately.
10. ISSUE:
A trust relationship exists in McAfee drivers that
can be leveraged by McAfee processes to avoid
triggering access protection rules and other
compatibility symptoms. When the link driver was
updated to newer releases this trust relationship
was lost until a reboot occurred.
RESOLUTION:
The link driver has been modified to better handle
the process of future upgrades to itself without
the need for a reboot.
PATCH 5 RESOLVED ISSUES
1. ISSUE:
Disabling the On-Access Scanner from the console is
not always possible when users with sufficient
privileges belonged to large numbers of user
groups.
RESOLUTION:
VirusScan Statistics has been updated so that users
with sufficient privileges can now disable the
On-Access Scanner from the console regardless of
how many user groups they belong too.
2. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to write to the registry only if it
sees that it is different from the current policy.
This prevents McShield from generating events on
policy enforcement, unless that policy has
changed.
NOTE:
If the symptom persists, refer to McAfee Support
KnowledgeBase article 614077.
3. ISSUE:
With the VirusScan Policy set to "Display managed
tasks in the client console," the tasks sometimes
disappear in the VirusScan Console.
RESOLUTION:
The On-Demand Scanner and Update console plug-ins
have been updated so that when policy enforcement
occurs, the console now updates the list of tasks
to ensure an accurate display.
4. ISSUE:
When using system variables in the folder path for
the Quarantine Manager Policy, the list of
quarantined items is empty, even though items were
quarantined to the correct directory.
RESOLUTION:
The Quarantine Manager console plug-in has been
corrected so that the path specified in the folder
input field is now properly expanded and the system
variables are replaced before the list of
Quarantined items is requested.
NOTE:
For further information about this fix, refer to
McAfee Support KnowledgeBase article 614549.
5. ISSUE:
When a VirusScan Patch installation failed, the
Help "About" dialog box no longer displayed the
previous Patch number.
RESOLUTION:
The patch installer has been updated to write the
new Patch registry value only if the Patch
succeeds. If it fails and a rollback occurs, the
old Patch registry value remains.
6. ISSUE:
A 4E bugcheck (blue screen) can occur when
VirusScan Enterprise 8.5i is installed along side
SafeBoot Content Encryption 3.
RESOLUTION:
The link driver was updated to add supportability
for SafeBoot.
7. ISSUE:
On Windows Vista and later, On-Demand Scan function
"Save as Default" does not correctly save changes
made for future scan tasks.
RESOLUTION:
The On-Demand Scanner has been corrected to
properly save the registry data for the default
task.
8. ISSUE:
Access Protection port blocking rules that spanned
a range of ports could block all processes rather
than only those processes specified in the rule.
RESOLUTION:
The Access Protection driver has been updated to
better handle requests for process names.
9. ISSUE:
A 19 bugcheck (blue screen) occurred intermittently
when loading and unloading content into Link
Driver, for example, when configuration changes
were made or enforced.
RESOLUTION:
The link driver was corrected to resolve a race
condition that could lead to this issue.
PATCH 4 RESOLVED ISSUES
1. ISSUE:
A crash can occur on some systems when the
On-Demand Scan Task includes the "Memory for
rootkits" scan item.
RESOLUTION:
The root kit detection driver has been updated to
better handle different processor architectures.
2. ISSUE:
When a Quarantine Restore Task is run from ePolicy
Orchestrator without specifying a restore item, the
Scan32.exe process runs a full scan and does not
exit properly, leaving the process orphaned.
RESOLUTION:
The VirusScan plug-in has been updated to check if
a restore item is specified. If not, the restore
task does not run.
3. ISSUE:
The VirusScan On-Demand Scanner has no option to
disable cookie detection alerts in the user
interface or registry.
RESOLUTION:
Alerts for On-Demand Scan cookie detections can now
be disabled by setting the DWORD "bCookieAlerts"
registry entry to 0.
HKLM\SOFTWARE\McAfee\VSCore\Alert Client\VSE
4. ISSUE:
When a user is browsing the Internet, the On-Access
Scanner sometimes logs entries "Not scanned (The
file is encrypted)" on temporary files that are
locked for use by the browser.
RESOLUTION:
The reporting for these types of detections can now
be disabled by setting the DWORD
"DoNotReportSkippedFiles" registry entry to 1.
HKLM\SOFTWARE\McAfee\VSCore\On Access
Scanner\McShield\Configuration
NOTE:
If you previously installed VSE85HF328421, the
registry entry "DoNotReportSkippedFiles" is already
set to 1.
5. ISSUE:
In environments where the Lotus Notes data folder
is in a non-standard location, the VirusScan
Scanner for Lotus Notes installer might crash
during installation of VirusScan.
RESOLUTION:
The VirusScan Scanner for Lotus Notes installation
files have been updated so that the search behavior
for notes.ini is more resilient to custom Lotus
Notes client locations.
6. ISSUE:
A crash can occur, where the VirusScan Scanner for
Lotus Notes failed to initialize properly if the
first scanned attachment of a session was stored in
a non-standard attachment format.
RESOLUTION:
The VirusScan Scanner for Lotus Notes library was
changed so that the initialization code occurs
before the attachment prefixed file name handling
occurs.
7. ISSUE:
With Self Protection enabled, the ability to
unblock a connection from a remote computer is
grayed out, even though the logged-on user has
administrator privileges.
RESOLUTION:
VirusScan Statistics has been updated to check the
credentials of the logged-on user, rather than the
access level of our services, to determine if the
"Unblock All Connections Now" button should be
available.
8. ISSUE:
Installation of this Patch enables the option
"Enable on-access scanning at system startup" if it
was previously disabled.
RESOLUTION:
The Patch installer has been corrected to properly
preserve the setting.
9. ISSUE:
The Patch installer returns a success code, even if
the Patch failed to install.
RESOLUTION:
The Patch installer has been corrected so that it
only returns a success code if it is actually
successful.
10. ISSUE:
Installing the Patch on a system that had only one
Unwanted Programs exclusion causes that exclusion
to fail.
RESOLUTION:
The installer now corrects a problem where the
DetectionExclusions registry value was being
changed from REG_MULTI_SZ to REG_SZ if only one
value existed.
11. ISSUE:
On Windows Vista, the administrator cannot disable
the On-Access Scanner via the VirusScan system tray
icon.
RESOLUTION:
VirusScan Statistics has been updated to check the
user's logged on credentials, rather than the
service handle that was used to determine access to
the McShield service in older operating systems.
12. ISSUE:
A failed reinstallation of VirusScan or a failed
Patch installation can delete the license,
resulting in an inoperable product.
RESOLUTION:
The Patch installer has been updated to no longer
cause this state in the event of a failed
installation.
13. ISSUE:
An incorrect rule file was packaged with the
VirusScan NAP file included with Patch 3. This
caused some of the Access Protection rule
categories to not appear.
RESOLUTION:
A new VirusScan NAP file was created with a
corrected rule file.
14. ISSUE:
When Host IPS is installed with VirusScan
Enterprise, and IPS is disabled, the interface for
VirusScan Buffer Overflow Protection remains grayed
out, even though it is active.
RESOLUTION:
The Buffer Overflow console plug-in was updated to
check for the registry flag that is set by Host
IPS, to tell VirusScan Enterprise that IPS is
disabled.
15. ISSUE:
When Self Protection is enabled on a remote machine
and a user attempts open a remote console
connection to that machine, the user receives an
access denied message, and the remote console is
not opened.
RESOLUTION:
The VirusScan Console was updated to make the
connection to the remote console more robust.
PATCH 3 RESOLVED ISSUES
1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on heavily
loaded servers.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash Analysis
(OCA), showing a crash in an instruction that could
not ordinarily fail.
RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual behavior
on affected processors.
4. ISSUE:
A 7E bugcheck (blue screen) can occur with certain
low resource conditions.
RESOLUTION:
The Link Driver has been updated to better handle
scenarios where the system is low on resources.
5. ISSUE:
On 64-bit systems, VirusScan Statistics causes an
issue where the user cannot open more than one
Microsoft Virtual PC image. Virtual PC reports
insufficient memory.
RESOLUTION:
VirusScan Statistics has been updated to resolve a
memory utilization problem on 64-bit systems.
6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to use appropriate registry data.
7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to no longer request a certain level of
access to the service, which would be denied by the
higher level of Access Protection security.
8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are lost
after upgrading from ePolicy Orchestrator 3.5 to
3.6.x.
RESOLUTION:
The VirusScan NAP file has been updated to include
additional xml code for mapping policies between
ePolicy Orchestrator 3.5 and 3.6.x.
NOTE:
To migrate the policies correctly, follow the
instructions under "Installation Steps."
PATCH 2 RESOLVED ISSUES
1. ISSUE:
When an AutoUpdate task copies new DAT files into
the engine folder, VirusScan services and Microsoft
Outlook can spike CPU utilization in excess of one
minute.
RESOLUTION:
The McTaskManager service has been enhanced so that
it no longer issues multiple reload notifications
to the scanners after a DAT update.
NOTE:
Users who saw a smaller spike after the original
fix (HF320829) should see more improvement with
this fix.
2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy Orchestrator or
ProtectionPilot. A registry value was not being
updated correctly.
RESOLUTION:
VirusScan’s Management Plug-In has been updated to
correctly write the "RepairBackupDirectory"
registry entry.
3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
effect immediately. To enable the rule, the
McShield service must be stopped and restarted.
RESOLUTION:
The McShield service has been updated to improve
the monitoring of registry changes with the
Unwanted Programs policy.
4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system with
a clean floppy in its drive.
RESOLUTION:
The On-Access Scanner has been updated to better
handle the shutdown process.
5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
RESOLUTION:
The Link Driver was updated to correct
synchronization issues during the start of
processes.
6. ISSUE:
VirusScan does not correctly remove Buffer Overflow
Protection process exclusions that are introduced
by ePolicy Orchestrator or ProtectionPilot.
RESOLUTION:
The VirusScan plug-in has been updated to properly
remove old Buffer Overflow Protection registry
values when ePolicy Orchestrator or ProtectionPilot
policies are enforced.
7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
RESOLUTION:
The Anti-Virus Filter and Link drivers where
updated to properly remove the read-only attribute
when taking action on files on the EMC share.
8. ISSUE:
Detections on a network share may leave behind zero
byte files on the share.
RESOLUTION:
The Anti-Virus Filter and Link drivers were updated
to ensure proper cleanup of detections on a network
share.
9. ISSUE:
The On-Access Scanner functions in Console are not
updating properly when Access Protection is
disabled.
RESOLUTION:
The state of Self Protection is now correctly
tracked by the On-Access Scanner Console plug-in.
10. ISSUE:
The Self Protection feature of Access Protection is
disabled after removing a Patch from the system.
RESOLUTION:
The MSP installer has been updated to fix a
mismatched name between the custom action and
installer execution sequence tables in the cached
MSI file.
11. ISSUE:
Interacting with Remote Console On-Demand Scan and
AutoUpdate tasks caused the local tasks with the
same id to be acted upon, instead of the remote
task.
RESOLUTION:
The Update and On-Demand Scanner binaries were
updated to properly call the remote task instead of
the local one.
12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1 or
8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do not
display in the VirusScan console.
RESOLUTION:
The MSP Installer package has been updated to
initialize the console tasks that were not
previously initialized, so they display in the
VirusScan console.
NOTE:
This fix is for those who used the originally
released VirusScan Enterprise 8.5i. The current
8.5i repost package includes this fix.
13. ISSUE:
With the McAfee Installation Designer (MID) option
to "Allow Users to Uninstall" disabled, the
UninstallString registry value was removed to
prevent product removal. This registry value was
also used by ePolicy Orchestrator to determine that
VirusScan was installed.
RESOLUTION:
The VirusScan Detection Script has been updated to
check for the existence of the uninstall key,
instead of the UninstallString value, to determine
if the VirusScan Enterprise install package needs
to be pushed to the client.
14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
RESOLUTION:
The Common Shell Scanner binaries have been updated
to resolve this issue.
15. ISSUE:
If McShield and McTaskManager Services were stopped
and restarted in a specific order, the Access
Protection and Buffer Overflow features remained
disabled after the services started.
RESOLUTION:
The On-Access Scan Console plug-in has been updated
to recognize the last known state of Access
Protection and Buffer Overflow Protection when
McShield service is stopped.
16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
RESOLUTION:
The McShield service has been updated to properly
change states when altering configurations.
17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the user
to right-click and disable that feature. The
option to disable right-click ability is under the
"Other" category (Console and Miscellaneous).
RESOLUTION:
The password functionality has been moved to the
BehaviorBlocking console plug-in so that the
right-click option is now included with the Access
Protection password options.
18. ISSUE:
The Buffer Overflow Protection displays a detection
in the On-Access Messages window when the "Show the
messages when a buffer overflow is detected" option
is disabled.
RESOLUTION:
The On-Access Scan Statistics binary has been
updated to properly suppress the Buffer Overflow
detection when configured to do so.
19. ISSUE:
On-Access Scanner’s Network Drive Scanning causes
network copy times to increase, more then what is
normally expected, when this option is enabled.
RESOLUTION:
The Common Shell binaries have been updated to no
longer request a certain level of access to the
network file(s), which would always be denied.
PATCH 1 RESOLVED ISSUES
1. ISSUE:
Applications that perform operations with temporary
files, such as printing, generate a "file missing"
error.
RESOLUTION:
The link driver has been updated to correctly
handle file operations that use the DeleteOnClose
flag.
2. ISSUE:
When McAfee Policy Enforcer is pushed out to a
system with VirusScan Enterprise 8.5i, McAfee
trusted processes might trigger Access Protection
rules. A reboot is required to correct the
problem.
RESOLUTION:
The link driver has been revised to ensure trusted
policies are propagated between instances of loaded
drivers.
3. ISSUE:
Some files remain locked indefinitely. Third-party
tools indicate that McShield.exe was leaking
handles, thereby locking the file.
RESOLUTION:
The link driver has been updated to detect and
handle the oplock break-in-progress status code and
ensure file locks are released.
4. ISSUE:
Under certain conditions, VirusScan Enterprise
scanner for Lotus Notes can mistakenly deny access
to the Lotus Notes internal processes, if another
Note is being accessed by the user. The message
"You are not authorized to perform that operation"
is displayed for the user.
RESOLUTION:
The Lotus Notes scanner binaries have been updated
to resolve the issue.
5. ISSUE:
For non-English platforms, a control ID is
displayed in the Status field of the On-Access
Messages window, rather than the localized
strings.
RESOLUTION:
The resource binary for the On-Access Scanner
service has been updated to resolve this issue.
6. ISSUE:
When VirusScan Enterprise 8.5i is installed to
Windows Vista 32-bit platforms, the Buffer Overflow
Protection feature is not available.
RESOLUTION:
This Patch enables Buffer Overflow Protection for
Windows Vista 32-bit environments.
7. ISSUE:
When a scheduled On-Demand Scan task fails to
authenticate to a specified location, the user
receives an erroneous error asking that VirusScan
Enterprise be reinstalled.
RESOLUTION:
The localized binaries file has been updated to
handle the specific event.
8. ISSUE:
ePolicy Orchestrator could fail to replicate
distributed repositories when VirusScan Enterprise
8.5i is installed.
RESOLUTION:
The Common Shell binary has been updated to allow
sharing of files with other processes.
9. ISSUE:
Users without local administrative rights are not
able to use the Help file unless it was previously
downloaded by an administrator.
RESOLUTION:
Non-administrative users can now download and use
the current Help file.
10. ISSUE:
Not all VirusScan Enterprise events can be filtered
in ePolicy Orchestrator reporting.
RESOLUTION:
The extended reports NAP file has been updated to
allow filtering of all VirusScan Enterprise
events.
11. ISSUE:
In certain circumstances, when a state change
occurs with Access Protection, the On-Access
Scanner cannot be disabled/enabled, and some Access
Protection rules fail to log messages.
RESOLUTION:
The McTaskManager Service and Access Protection
binaries have been updated to resolve this issue.
12. ISSUE:
When resuming from the hibernate state, the system
tray icon might be in the disabled state,
reflecting the status of the On-Access Scanner.
However, the scanner service is functioning
normally.
RESOLUTION:
The system tray icon should always reflect the
correct state of the On-Access Scanner when
resuming from hibernation.
KNOWN ISSUES
1. The 5200 or later engine must be installed prior to
deploying Patch 5 or later. The Patch updates the
cached MSI tables to prevent a repair from
restoring an unusable version of the engine.
2. On-Access Scan Messages might fail to populate on
detections after Patch 8 is installed. A reboot
might be needed to resolve this issue. This does
not affect detection logging and alerting, or
reporting to ePolicy Orchestrator and
ProtectionPilot.
3. Some customers have reported seeing VirusScan
Statistics (VShield) crashing/disappearing from the
system tray. Refer to McAfee Support KnowledgeBase
article 613892 for more information on this issue.
4. If Host Intrusion Prevention 6.x or later is
installed and disabled prior to VirusScan
Enterprise, it is necessary to re-enable IPS and
disable it again in order for VirusScan Buffer
Overflow Protection to be properly enabled.
5. Sporadic crashes of the McShield Service have been
seen during the patch install, on systems running
McAfee AntiSpyware Enterprise Module. The service
recovers correctly at the end of the patch
process.
6. If you install this release interactively and
cancel the installation on a system where a
previous Patch was installed, after the rollback
completes, the previous Patch no longer reports to
ePolicy Orchestrator or appears in the "About
VirusScan Enterprise" window.
7. Installing the Patch and specifying a log file path
using the Microsoft Installer (MSI) switch "/L"
does not log to the specified path. A log file
capturing full data is logged to the folder
"McAfeeLogs" under the Temp folder.
8. If the Lotus Notes client is open when this release
is installed, the installation completes
successfully, but a reboot is required to replace
the McAfee Lotus scanner files. The new files are
not used until after a reboot.
9. Uninstalling VirusScan Enterprise Patches is now
possible for computers running Windows Installer
v3.x or later. This technology is not fully
integrated for Windows 2000 operating systems, so
there is no option to remove the Patch in
Add/Remove programs. Please see instructions under
"Removing the Patch" for removal via command-line
options.
10. Uninstalling VirusScan Patches is not available for
Windows NT platforms, because Windows Installer
v3.x is not supported on this platform. The Patch
still installs to all platforms supported by
VirusScan Enterprise 8.5i.
11. Patches for VirusScan Enterprise 8.5i can only be
uninstalled via Add/Remove programs, not via
ePolicy Orchestrator or ProtectionPilot.
FILES INCLUDED WITH THIS RELEASE
This release consists of a package called VSE85P8.ZIP,
which contains the following files:
PKGCATALOG.Z =
Package catalog file
PATCH8.TXT =
This text file
VSE850DET.MCS =
VirusScan Enterprise detection script
SETUP.EXE =
Installer for this release
SETUP.INI =
Initialization file for SETUP.EXE
PATCH8.MSP =
Microsoft Installer Patch file
VSE850.NAP =
Management NAP for VirusScan Enterprise
VSE850REPORTS.NAP =
Reporting NAP file
The following files are installed to client
systems:
STRINGS.BIN No version
MIDUTIL.DLL 8.5.0.156
CONDL.DLL 8.5.0.857
COPTCPL.DLL 8.5.0.857
MCAVDETECT.DLL 8.5.0.869
MCAVSCV.DLL 8.5.0.869
BBCPL.DLL 8.5.0.895
CONSL.DLL 8.5.0.895
MCCONSOL.EXE 8.5.0.895
SHUTIL.DLL 8.5.0.895
OASCPL.DLL 8.5.0.909
FTCFG.DLL 8.5.0.936
MCUPDATE.EXE 8.5.0.936
NAIANN.DLL 8.5.0.936
NCDAEMON.EXE 8.5.0.936
NCEXTMGR.DLL 8.5.0.936
NCINSTALL.DLL 8.5.0.936
NCMENU.DLL 8.5.0.936
NCSCAN.DLL 8.5.0.936
NCTRACE.DLL 8.5.0.936
QUARCPL.DLL 8.5.0.936
SCAN32.EXE 8.5.0.936
SCAN64.EXE 8.5.0.936
SCNCFG32.EXE 8.5.0.936
SHSTAT.EXE 8.5.0.936
VSODSCPL.DLL 8.5.0.936
VSTSKMGR.EXE 8.5.0.936
VSUPDCPL.DLL 8.5.0.936
VSPLUGIN.DLL 8.5.0.937
ENTSRV.DLL 13.3.0.169
MFEBOPA.DLL 13.3.0.169
MFEBOPK.SYS 13.3.0.169
MFEAPFA.DLL 13.3.0.169
MFEAPFK.SYS 13.3.0.169
MFEAVFA.DLL 13.3.0.169
MFEAVFK.SYS 13.3.0.169
MFEHIDA.DLL 13.3.0.169
MFEHIDN.EXE 13.3.0.169
MFEHIDK.SYS 13.3.0.169
MFERKDA.DLL 13.3.0.169
MFERKDK.SYS 13.3.0.169
MFETDIK.SYS 13.3.0.169
ADSLOKUU.DLL 13.3.2.137
CSSCAN.EXE 13.3.2.137
ENTVUTIL.EXE 13.3.2.137
FTL.DLL 13.3.2.137
LOCKDOWN.DLL 13.3.2.137
MCSHIELD.DLL 13.3.2.137
MCSHIELD.EXE 13.3.2.137
MCSHIELDPERFDATA.DLL 13.3.2.137
MCVSSNMP.DLL 13.3.2.137
MYTILUS.DLL 13.3.2.137
MYTILUS2.DLL 13.3.2.137
NAEVENT.DLL 13.3.2.137
NAIEVENT.DLL 13.3.2.137
SCANOTLK.DLL 13.3.2.137
SCRIPTCL.DLL 13.3.2.137
SCRIPTSV.DLL 13.3.2.137
LOGPARSER.EXE 1.2.0.131
The following files are checked in to the ePolicy
Orchestrator or ProtectionPilot repository:
VSE850.NAP 2.0.0.696
VSE850REPORTS.NAP 3.0.0.781
Download: http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar (http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar)
Download Mirror: http://www.megaupload.com/?d=GN9MP08R (http://www.megaupload.com/?d=GN9MP08R)
P.S.
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
Samker
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Gfalcoz
Is there any place where I can find the CMA patch 4 (upgrade to version 3.6.0.608)
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch.
ChK
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
Hi Samker,
thanks for patch 8. Please, send me the password.
Regards,
hepper
-
Thank you, Samker.
Just send the password for the file.
Regards.
-
Hi, Samker, thanks for the post!
Could you send me the password for the archive?
Thanks a lot!
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
Hi, can u please send me pass for patch 8, also need for patch 7....which I have also downloaded.
thanx.
-
Hi, can u please send me pass for patch 8, also need for patch 7....which I have also downloaded.
thanx.
-
@ gfalcoz, ChK, m_univ, hepper, NetRanger, marcelpicas & Mar-Man
As usual you will receive pass. via PM. ;)
@ Iscariah & kriki
Since we provide pass. only via PM, first you need is to finish your registration to SCforum Community and after that post your request.
Regards to all,
:bih:
Samker
-
Hi Samker,
Could you send me the password to open the archive ?
Tanks,
Regards,
Rabby :)
-
Samker,
Could you please send me the password?
Thanks!
Iggymed
-
Please send the password for download thanks
need to download file asap
-
No problem guy's. Check yours PMs.
All the Best,
Amker
-
Hi Samker,
Been waiting for this one :), may I request the password?
-
Hi Steve_53
please check your PM.
Regards,
Amker
-
Samker,
Could you please send me the password?
Thanks!
-
Kindly send me the password too.
Thank you!
-
I got my patch8 from Mcafee, no password needed. :thumbsup:
-
hey gimme the password
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
@ marcelobailo, Patto & kriki
As usual you will receive pass. via PM. ;)
@ gholi
Since we provide pass. only via PM, first you need is to finish your registration to SCforum Community and after that post your request.
Regards to all,
Samker
-
Hi Samker,
Thanks again for great service. Please would you PM the password.
Cheers
Ian
-
password~
-
can i have the password please. thanks
-
@ imckay, waterair & randomboy
As usual you will also receive pass. via PM.
Regards,
S.
-
Hi Samker,
As requested... I'm now registered! ;) You can send it to me via PM now... Thanks! :thumbsup:
-
Hi, could you sent me also the pass of the patch .... tanks!
-
Hello,
Would you please send me the password ?
Thanks :)
-
Hi
thx for the Mcafee patch 8
Can you send me the pass please.
-
requires password for subject sited patch
-
@ Iscariah, cyberspy, haz, punck4u, nk243 and All Other...
so sorry but SCF Team are decide to only SCF Members with at least 10 useful post will receive pass. for Patch 8.
Reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Regards,
SCF Team
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
luca
-
Hi Luca, please read carefully my post before...
After you make 10 post in SCforum, post here your request.
Regards,
S:
-
Could you send me the password please?
-
hi Samker! Thanks for your update of McAfee!
may i know the password for this?
thanks! more power!
-
thx for the patch !!
please send me the password
-
please can i have it too?
-
@ higonzalez, duomaxwell22, stvz, Adam86 and all other members which request pass. for Patch 8
Please go to Forum and post at least 10 useful post, after that post here your request. Finally You all will receive pass. via PM as usual.
http://scforum.info/index.php?action=forum
I really don't think to that is a some BIG problem for any member. Just take a look and you will see a lot of excellent themas for increasing post number, like:
The Best AntiVirus ?! http://scforum.info/index.php/topic,100.0.html
Test your AntiVirus Protection !!! (EICAR) http://scforum.info/index.php/topic,733.0.html
Recommend Firewall to SCForum Visitors http://scforum.info/index.php/topic,101.0.html
Test your Firewall Protection with HackerWatch (by McAfee) http://scforum.info/index.php/topic,743.0.html
General topic about AntiSpyware ! http://scforum.info/index.php/topic,102.0.html
*** Remote Assist *** http://scforum.info/index.php/topic,1242.0.html
PLAHO - "Healthy" New Search Engine http://scforum.info/index.php/topic,1780.0.html
Hacking Internet Cameras http://scforum.info/index.php/topic,1326.0.html
SCForum.info - NEW Super Toolbar http://scforum.info/index.php/topic,714.0.html
or just Visit some of main Category and post New Themas or Security News, Comment Topic started by other Members, Introduce your self, provide us Feedback about our work here...
Latest Security News & Alerts http://scforum.info/index.php/board,6.0.html
Around the Web http://scforum.info/index.php/board,21.0.html
New Members http://scforum.info/index.php/board,5.0.html
Feedback http://scforum.info/index.php/board,3.0.html
Mobile Phone Security http://scforum.info/index.php/board,28.0.html
Chit-Chat Caffe http://scforum.info/index.php/board,24.0.html
>>> PC Help Center !!! <<< http://scforum.info/index.php/board,16.0.html
AntiVirus http://scforum.info/index.php/board,10.0.html
Firewall http://scforum.info/index.php/board,13.0.html
All other Anti-Malware tools http://scforum.info/index.php/board,15.0.html
AntiSpyware http://scforum.info/index.php/board,12.0.html
Hope this suggestion will help you to get pass. as soon as possible.
All the Best,
Samker
-
Hi,
i also want to patch my security with 8! I need the pass and....more beer!
cheers
Hexer
-
password please ! :)
-
this helps a good kindly send me the password for the patch
-
can u send me the pass for this patch, thanks!!!!
-
@ Hexer, BGM, bdarshan & luis_lancho
It's look like you don't read this notice, so please take a look and start posting:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
thanks
-
can i have the password please. thanks
-
Hi Samker,
Can you also PM me the password of the VSE 8.5i patch 8.
Thank you in advance.
jake
-
Thanks for patch 8. Please, send me the password
-
Hi guys,
also please read this post related to McAffe Pass.:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
All the Best,
Samker
-
Can I have the password pls.
Thank you in advance...
-
Can u send me passoword ?
-
@ jake2pointzero
since you already have more than 10 post I was sent you pass. for Patch 8 before few minutes. :thumbsup:
@ cyberick, Asclus and all other Members who need pass. also
please read this post related to McAffe Pass. and be active like jake2pointzero:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
Could I please get the password
-
Could I please get the password
Hi Midias,
please read carefully my post above. Right now you need only 5-6 new useful post on the SCforum and you will also receive pass. like jake2pointzero. :thumbsup:
Regards,
Samker
-
Could I please get the password
Hi Midias,
please read carefully my post above. Right now you need only 5-6 new useful post on the SCforum and you will also receive pass. like jake2pointzero. :thumbsup:
Regards,
Samker
Sounds like a plan
-
Hello Sir, can i have the password for this..
thanks in advance! :bih:
-
hi guy
thank you
you can send me the password ???
best regards
-
i need the password of patch 8 mcafee 8.5i thanks for information about the patch
-
@ midias & duomaxwell22
since you now have a lot of posts in profiles :thumbsup: , you both will immediately receive pass. for Patch 8.
I hope that you will stay that much active in the future, Members with record number post will next time (Patch 9) receive link to Patch with included password.
@ sunsetcas & wazim
please read this post related to McAffe Pass. and be active like jake2pointzero, midias & duomaxwell22:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
hello, plz give us the patch 8 password
plzzzzzzzzzzzzzzzzzzzz
-
Hello,
need password to intall path 8
many thanks
-
@ lovelywithgirls & tango62
please read this post related to McAffe Pass. and be active like jake2pointzero, midias & duomaxwell22:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
Hi Samker,
Thanks for the info, and have taken your note on useful posts.
I'll have to get to work ................
Regards,
-
@ BGM
since you also increase post number to ten, I was sent you PM before few minutes.
Hope, that you will continue posting in the future, Members with record number post will next time (Patch 9) receive link to Patch with included password.
Regards,
S.
-
Hi, thanks, send me for patch8
-
rain,
please read this topic...
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards
-
Please also send me the password for patch 8.
-
Please also send me the password for patch 8.
Hi jip,
I was already send you PM with information about desired post number (at least 10).
cya
-
Kindly send me the password too.
Thank you!
-
Kindly send me the password too.
Thank you!
Hi Payam, you also need only 8 more post for receiving pass.
Regards,
S.
-
My dear...
Please also send me the password for patch 8.
-
My dear...
Please also send me the password for patch 8.
Ok Payam, I saw your posts...
Please check your PM.
S.
-
Hi,
Please, could you inform me how can I download and upgrade or update my antivirus, McAfee virusScan Enterprise Version 8.5i, aleardy installed when I bought my PC.
Thanks
-
Please Send The Password for Patch 8
-
thanks...password plz ::)
-
@ abera
first thing is to register your account at SCF Portal, after that go to first post in this topic and download Patch 8. Finally you need to make at least 10 useful post at SCforum and you will automatically receive pass. via PM service.
@ dev9jay & tiguigui2
you also need to increase your post number at least to 10...
Regards,
Samker
-
sorry, i do not speak english, sorry
-
I understand little English, i translate with google, please please give me the password?
-
Hi zaccqu,
you need to have at least 10 Forum post for receiving pass., related to that please read / translate this:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
thanks
pass pliz
-
Thanks all the same and apologize for calling
-
Thanks, please send me the password.
Alok
-
Please send me the password, thanks
-
I would like to know the password for the download.
-
Thank you, Samker.
Just send the password for the file please
-
@ zaccqu
I see that you now have more than 10 posts :thumbsup: so you will like a promise receive pass. via PM. in the next few minutes. ;)
@ gono, alsingh, ary, lvpvz & nyitgal
You all need at least 10 useful post at SCforum to receive pass. for Patch 8 (just like a zaccqu), please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
Hi,
I would like to know the password for the patch download.
Thanks alot for the patch.
Satish Jajoo
-
Hi,
I would like to know the password for the patch download.
Thanks alot for the patch.
Satish Jajoo
you also need to make at least 10 useful post through scForum to receive pass. via PM.
-
can i get the password for patch 8
-
can i have the password please for patch 8???????
-
@ canallb
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like other SCF Members), please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
Can u please send me the rar password
-
Can u please send me the rar password
Please, take a look my explanation related to pass. receiving above.
-
thx. i need now new password :)
-
Hi can you please send me the new Pass
-
@ jeffrey & Kdebian
you both need at least 10 post on SCforum for receiving pass. via PM.
please read more about this rule here: http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
Thank you, Samker.
Just send the password for the file.
King regards.
-
Hi Gosha,
you also need at least 10 post on SCforum for receiving pass. via PM.
please read more about this rule here: http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
hi, could i have the password please
-
Hi Samker,
Please send me the password for the patch.
-
@ firefox & futterplop
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like other SCF Members), please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
Samker
-
Thanks for the password. I also downloaded patch 7 and asked for that password too. If I can have both that'd be great as I have to work this out in the lab ...I have blue screening Win2K3 Servers ...reading SCForum!
Bo
O0
-
This is rediciolus. I am leaving...
-
@ bodarc
you need only Patch 8. Just keep on, you need only 4 post more.
@ ozgurerdogan
this isn't rediciolus, we now have this rule (10 post) only because Members (just like you)...
They came, download and disappear... until next Upgrade.
We only want loyal Members who have good will to talk with other Members, learn an share knowledge.
Please think again about this reason and just be more active at the SCF Portal.
Regards to both,
Samker
-
Thanks friend please send me the password of .rar file
thanks
Miguel
-
Cool! Now I am an official contributing member of SCforum! May I have the password to patch7 and patch8? I have some servers feeling "blue" as in screened ...Thanks!
-
@ bodarc
Yes of course my friend, you will receive pass. in the next few minutes. I was already notice your post and read most of them. What to said, it's obvious that you're Security Expert. :thumbsup: Thank you for excellent explanation related to "cleaning" with Portable Clam AV... Also hope that you will continue to visit more often SCforum and help our Community with your Knowledge.
@ mnunez
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like bodarc), please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Best Regards to both,
Samker
-
Hello Samker
please send me the password
thank you
-
I will do my best
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
how often should one scan the system for virus?
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
s4ck
-
hi please send password VSE85iP8_SCF.rar
Thanks :thumbsup:
-
Hi
Please PAssword for Arhive Patch 8 for McAfee 8.5i
Thanks
-
Hello, Its me again !
Can you please send the password ?
Thanks
-
@ Amraiy, s4ck & zosa
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like bodarc), please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
@ firefox
Please open new Topic related to your question about "Scanning" in Antivirus Category: http://scforum.info/index.php/board,10.0.html
@ Gosha TM & haz
since you now have enough forum posts you will immediately receive pass. via PM.
Regards to all of you,
Samker
-
Password please. thanks =)
-
Hello, again !
Can you send the password, please
Thanks
-
@ hmtilford
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like humbox), also please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
@ humbox
since you now have enough forum posts you will immediately receive pass. via PM.
Regards,
Samker
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please send me the password
-
Please send me the password for Mcafee vscan 8.5i patch 8.
Thank you very much
-
Windows 2003 Clustering:
We encountered problem where restarting Cluster service in Windows 2003 with error Event ID 1067. How can we solved this problem
-
@ namboodiri & canallb
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like other members), also please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Windows 2003 Clustering:
We encountered problem where restarting Cluster service in Windows 2003 with error Event ID 1067. How can we solved this problem
@ canallb
for help with resolving this problem please open new topic in SCF"PC Help Center": http://scforum.info/index.php/board,16.0.html
Regards,
Samker
-
Привет Как можно получить пароль Плиз ?
Пртсо написать 10 сообщений ?
-
Привет Как можно получить пароль Плиз ?
Пртсо написать 10 сообщений ?
Hi Z.,
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like other members), also please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
For help you can use Google Translate (on the left side of SCF Portal) just like me.
-
any chance i could have the password please?
i only updated to patch 7 last month, i was running unpatched for a long time :o
-
any chance i could have the password please?
i only updated to patch 7 last month, i was running unpatched for a long time :o
Yes of course my friend, I saw you post number.
Please check your PM in the next few min.
Also hope that you will continue your post / comment activity at SCF.
Regards,
Samker
-
Thanks Samker, much appreciated :)
-
Thank you for the download. May I please have the password to extract the files.
V/r
deadeye
-
Can you please send me the download and password if needed for the Patch 8?
Thanks
-
After reading your posts I discovered that you want us to be more active in the forum, if not we don't get the password. Well I started searching and found alot of great info and I love the toolbar. Not much of a toolbar guy but WOW this toolbar I would definetly recommend. Thanks again and may I please have the PASSWORD to Patch 8 for McAfee VirusScan Enterprise Version 8.5i. Thank you and please have a wonderful day.
Oh yea 1 quick question, how do you get karma.
V/r
deadeye
-
@ deadeye
Thank you my friend for understanding and very, very useful scForum contribution. You will receive pass. immediately so please check your PM.
When you look at some SCF Member forum profile you will see green and red darts. That's Karma UP and Karma Down buttons.
Hope we will see you often at SCF Portal.
@ pyrosdav
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like deadeye), also please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Best Regards,
Samker
-
Hi smaker,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
vikram
;D ;)
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
vikram
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
vikram
@ vikram
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like deadeye), also please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Best Regards,
Samker
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
s4ck
d
-
Pls give me VirusScan Enterprise 8.5i Patch 8
-
Please send the rar password to open the patch
-
@ lakshmi, paramveer & sasi_alr
All you need is at least 10 useful post at SCforum to receive pass. for Patch 8 (just like all other Members), also please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Best Regards,
Samker
-
Hi, can u please send me pass for patch 8, also need for patch 7....which I have also downloaded.
thanx2.
-
@ alcon
for pass. receive, all you need is at least 10 useful post (just like all other Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Best Regards,
Samker
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
-
Hi Samker..
please pm me the password..
thankss
-
Hi, can you plz provide me the password.
-
Hi, Samker, thanks for the post!
Could you send me the password for the archive?
Thanks a lot!
-
Can you please send me the password for the rar
Thanks
Rooney
-
@ cozy_dave
I saw that you have more than 10 posts in profile so you will receive pass. in the next few minutes
@ raeart, sathyan_sn, sasil_k & nova041280
for pass. receive, all you need is at least 10 useful post (just like cozy_dave), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Best Regards,
Samker
-
password loda aap tari mano bhoshado
-
hi...can u send me password for patch 8 plz...
-
wow.. the 10 posts clasue seems to have kept a lot of people stuck..lol
-
correction... clasue to be read as Clause
-
Hi sameer send me the password for patch 7 at the earliest
-
@ hiten, Shani2009 & sathyan_sn
for pass. receive, all you need is at least 10 useful post (just like all other SCF Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Best Regards,
Samker
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
OM
Is there any place where I can find the CMA patch 4 (upgrade to version 3.6.0.608)
[/quote]
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it :thumbsup: ;D
-
Re: McAfee VirusScan Enterprise Version 8.5i Patch 8 (Download)
« Reply #7 on: 03. March 2009., 16:40:23 » Quote
--------------------------------------------------------------------------------
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
@ om prakash, Tyo & byron_it
for pass. receive, all you need is at least 10 useful post (just like all other SCF Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
P.S. @ om prakash
Related to CMA patch 4, We have opened this Topic related to this Upgrade (please post there your request): http://scforum.info/index.php/topic,2136.0.html
Regards to all,
Samker
-
please send me the password anconur@gmail.com
-
Thank you, Samker.
Just send the password for the file.
thanx.
alcon
anconur@gmail.com
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
pleas send me pass......
-
@ alcon, p4h & ary
for pass. receive, all you need is at least 10 useful post (just like all other SCF Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
pah
-
hi,
thnx for this patch and please send me password for unzip this patch.
zahed_sh@yahoo.com
-
@ p4h & zahed
for pass. receive, you need to have at least 10 post at SCF Portal (just like all other SCF Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
thanks can you send me password
-
@ abdulazizmohd
for pass. receive, you need to have at least 10 post at SCF Portal (just like all other SCF Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Shuman
-
Hi shuman,
please read carefully my post above and take part in other SCF discussions.
Regards,
Samker
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Many thanks.
jhav
-
:) Thanks dude for patch 8...........rar password pls ? :)
-
thanks! yet another password request...
-
@ s3ducx0n, Soudip & avbohemen
for pass. receive, you need to have at least 10 post at SCF Portal (just like all other SCF Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
Hi, great post, pls send me the password?
Thanks
-
Greetings. Please send me the pass for Patch 8, as I am anxious to see the changes.
Thanks ahead of time for your time.
-
@ ibernal & Moorkus
for pass. receive, you need to have at least 10 post at SCF Portal (just like all other SCF Members), related to that please take a look to this post:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
hi, I downloaded the patch 8 please can send me the password thanks
-
samker budyy, pass plz... tnx in advance. keep up your good work.. :)
-
@ Patrick78 & tempe
I saw that you both have more than 10 posts in profile so you will receive pass. in the next few minutes
Best Regards,
Samker
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch.
ChK
-
;D i also need pass please O0
-
@ avdhesh & sar
for pass. receive, you need to have at least 10 post at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
ok thak u
-
Thank you, Samker.
Please, send me the password.
-
I have downloaded McAfee 8.5i patch 8, but need the password for the file, can you please send it to me.
-
Can u send me pass for patch 8, also need for patch 7 please....which I have also downloaded.
thankyou.
-
@ namboodiri
I saw that you have more than 10 posts in profile so you will receive pass. for Patch 8 in the next few minutes...
@ Stokkies18
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like namboodiri), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
please send me the password
-
Hi,
Could you give me the pass ? Please
Thanks
-
sen me pasword
-
@ portage, icemanbx74 & yrjc2004
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153
Regards,
S.
-
Hi,
Could you give me the pass by MP or mail ? Please
Thanks
-
Hi,
Could you give me the pass by MP or mail ? Please
Thanks
@ icemanbx74
I see that you now have more than 10 posts in profile so you will receive pass. for Patch 8 in the next few minutes...
Best Regards,
Samker
-
i would like to know the password kindly send it to me? tnx regards
-
Hi jhav,
please increase your posts number at SCforum at least to ten.
Best Regards,
Samker
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
@ alcon
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
Regards,
S.
-
Thanx
-
Hi, can u please send me pass for patch 8, also need for patch 7....which I have also downloaded.
-
@ DOREMIVICMAN
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
Regards,
S.
-
whats wrong if you tell us the pass???
-
Hello,
please send me the password
thank you
lince52
-
@ sokhmir & lince52
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Regards,
S.
-
Hello,
please send me the password
thank you
-
Hi, can u please send me pass for patch 8
-
pls send me pass for patch 7 and 8. thx alot
-
@ kacongjkt
since you have more that 10 posts at SCforum, you will receive pass. immediately.
@ belatza & mesmaily
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Regards,
S.
-
plzz send me both patch 7 & patch 8 password to
sasikanthkakarla@yahoo.co.in
if soo u're very helpful to mee..
-
please send pass.thanks
-
@ sasikanth
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
@ skitalec
since you now have more that 10 posts at SCforum, you will receive pass. in the next few minutes.
Regards to both,
Samker
-
Pls kindly send me pass for McAfee Patch 8.
Thanks
-
hi,
You can send me password, please
Thanks
-
Hi
Please send pass for Patch 8,
Thanks
-
@ anhpt312, xpto & Sarafraz
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this post and take a part in open discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
samker,
Is MVSE ver 8.7 is still in a beta stage? If not, is there a Anti-spyware version for it like the MVSE 8.5i?
jake
-
Gracias. Que honda.
-
password plz...
-
@ jake2pointzero
I was already write you answer here: http://scforum.info/index.php/topic,1806.msg5195.html#msg5195 (http://scforum.info/index.php/topic,1806.msg5195.html#msg5195)
Please take a look.
@ cj166 & abuadal
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards to all,
Samker
-
Password Please!!!
-
Hi,
I have downloaded Patch 8 for Mcafee 8.5i. But I need password. I am a simple computer user. What should share here at your site to get the password. I hardly know about all these things.
I was recommended to this site by one of my friend. But I am helpless without password.
Give clue reqarding the posts at your site.
Thanks and regards,
-
thanks alot for your share...
-
@ shadab.zaka & infanto
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
Samker,
sorry. Noted
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
-
Hi,samker
Thank you for the Mcafee vscan 8.5i patch 8. I am a foreign member
so i know a little English ,but i will attention this forum.
Regards
kjroy
-
Anyone please send me the password
email: guiguimru@hotmail.com
-
Hi Samker, can you please send me the key to the file, thanks. I already have 10 posts .... I have a doubt I have the patch 6, if I do a clean installation to install the new version 8 is enough? thank you hope your prompt response.
Pd: excuse my English, I speak is Spanish. :-\
-
@ kayjho
since you now have more than 10 posts at SCforum, you will receive pass. immediately. Hope you will stay active Member of SCF Community, because we will publish new upgrades in the next few weeks. ;)
(*this is a "cumulative" Patch, 99% that you need only this No.8 )
@ nayeb.61, kjroy, tiguigui2 & all other SCF Visitors and Members
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like kayjho), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
Thank you Samker :thumbsup:
-
che maskhare bazie dar ovordi !!!! booozineh
-
HEllo there can someone please send me the pass for the rar file?.
Thanks
-
HEllo there can someone please send me the pass for the rar file?.
Thanks
Hi mondolfo,
I'll send you PM with few question related to your request, please answer as soon as possible.
Regards,
Samker
-
hello i need the password for 8.5i patch 8
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Donatello
-
hello, it is possible receive for mcafee 8.5 patch 8??
thanks
Donatello
-
@ lsunar & donzoff
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
send me the password to open this file.
thx
ganesh
-
can i get the pass?????
-
@ ganeshkannanr & badangel
please read carefully my post above...
Regards,
S.
-
please can you send the password for me plz
-
thank you but rar password need
-
Hi,
I would like to know the password for the download...i need yhe 7 and 8 patch pass
Thanks alot for the patch
-
thanks need rar password
-
Hi
pls send me the pass to open the megaupload :-)
thx
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it or send it to my mail
ricg131284@hotmail.com Regards.
-
@ smith2100, smileboy, vicio12, thecrazykaktus & isaicolombo
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
May I have the password please. Thx
-
Hi couls u please send me the pass for Patch 8 and also patch 7
-
@ hmtilford
Yes of course my friend, I notice that you now have enough posts at SCforum... you will receive pass. immediately.
@ aniln2006
please read carefully my earlier post above about required post number...
Best Regards,
Samker
-
Gracias por este parche , se ve k sta mui bueno, pero bueno como comprenderan soi nuevo en esto i me e descargado el parche en fin, no se komo konseguir la contraseña, les agredeceria k me la enviaran a mi correo por favor, otra cosa io no soi niun politiko, lo digo por lo k dicen mas arriva. bueno gracias por su atencion y de verdad por favor si alguien kiere mandarme la cotraseña para abrir el archivo se los agradeceria mucho de antemano gracias de nuevo. aki dejo mi mail bryanjunior_@hotmail.com
---GRACIAS POR SU ATENCION--- :thumbsup:
-
please can you send me the password for patch 8
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it or send it to my mail
ricg131284@hotmail.com Regards.
-
Can you plz send me pwd.
-
Hello i need the password for VirusScan 8.5i Patch 8
-
@ hk3r, jacobo, isaicolombo, StofLE & Jak
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
Hello,
Thanks for this forum, it is a great resource.
-
Samker,
Can I please have the password for McAfee VirusScan Enterprise Version 8.5i Patch 8
Thanks!!
-
I have not yet received the password for this file. Can you please e-mail it to me?
-
Hi, Samker, thanks for the post!
Could you send me the password for the archive?
Thanks a lot!
-
Kind people, send please the password on archive VSE85iP8_SCF.rar, I will be very grateful!
Mail: demons75@mail.ru
-
@ HISNA
since you now have more than 10 posts, you will immediately receive pass.
@ netima9 & demons75
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
@ demons75
I just notice your new post number..., please check your PM for pass.
Regards,
S.
-
Many thanks Samker, the password has received. Now I will start to update an antivirus.
-
please send me the password
-
plz send to me tha passwoard
-
plz send to me the passwoard
-
can you send me the password please?
e-mail: jose.tedasquen@gmail.com
-
please PM me the password for mcafee patch 8...
thanks
-
@ shafivv, Compumaster, tedasquen & abuadal
please read carefully my post above..."We immediately provide pass. for ACTIVE SCF Member which write more than 10 useful posts in SCforum..."
Hope this is clear now?!
Best Regards,
S.
-
Dear Samker
can I please have the pass for both patch8 & patch7.
I'm currently on patch 6.1 and want to try out both on different computers.
delta
-
hi can i have password for the patch 8
PM me pls. Azty23 O0
-
hi sir
pls gave me password pls
thanks
azazur
-
@ delta_777 & azazur
since you both now have more than 10 posts, I was already send you pass. (via PM).
@ Ariel
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to that please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
Hi Samker,
Could you please send me the password too?
Greeetings, zocker!
-
mmmmmmm.. justo lo q estaba buscndo... buen aporte.
-
Could you please send me the password for the rar file VSE85iP8_SCF.rar
Tx
Klaus
-
@ zocker, felipon & klaus_zapatka
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
Could you please send me the passwd for the VSE85iP8_SCF.rar
Tx
Klaus
-
Hi Samker,
could you sent me the password for VSE 8.5 Patches 7 & 8 and the Link for the Hotfix? Thanks!
Greetings, zocker!
-
@ klaus_zapatka & zocker
since you both now have more than 10 posts, you will immediately receive pass. via PM
Best Regards,
S.
-
passs for patch 8 and 7~ thanks alot
-
Tx, can you give me the password for this rar?
Klaus
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
srinivas
Is there any place where I can find the CMA patch 4 (upgrade to version 3.6.0.608)
-
Tx, can you give me the password for this rar?
Klaus
Hi Klaus, I was already sent you pass. at 07:34:29 CET (Default Forum time). Please check again your PM.
@ jianbin & siri
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
@ klaus_zapatka & zocker
since you both now have more than 10 posts, you will immediately receive pass. via PM
Best Regards,
S.
Thank you very much Samker!
-
Tx, can you give me the password for this rar?
-
Hi Hamid,
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
Hi,
Can you pls. send me the passwd for patch 8? Thanks in advance
-
Tx, can you give me the password for this rar?
-
Password...
-
:bih:
please send me the password
cesar_cam_sp@yahoo.com.br
-
Hi nelodm06 & Cesar,
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
Samker
-
Thanks!
What is password?
vista01(kukac)freemail.hu
-
Hi Samker,
Could you please send me the password too ?
Thanks...
-
Thank you for the patch 8.
Please, send me the password to open it
Roberto Lucas
-
@ phare, shu7784 & Roberto Lucas
please read carefully my post above, related to required post number for pass. receive...
Regards,
Samker
-
Hello Samker!
Could you please send me the password for Patch 8?
Thanks a lot!
Best regards,
Igor
-
password, please! :-X
-
can someone tell me how good 8.5.0i patch8 is? does is resolve high cpu utilisation issues when doing auto updates ?
-
which the last supported patch for 8.0 version? does any one have the release notes?
-
@ Igors & mmutran
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
@ cmistry
can someone tell me how good 8.5.0i patch8 is? does is resolve high cpu utilisation issues when doing auto updates ?
You will find here explanation for this issue ;) : http://scforum.info/index.php/topic,2711.0.html (http://scforum.info/index.php/topic,2711.0.html)
which the last supported patch for 8.0 version? does any one have the release notes?
This's latest Patch (16.) which We have at SCF: http://scforum.info/index.php/topic,1300.0.html (http://scforum.info/index.php/topic,1300.0.html)
*No pass. required. As I remember you will find release notes "in inside" of Download.
Best Regards,
Samker
-
PLEASE PLEASE PLEASE I REALLY NEED TO INSTALL PATCH 8. CAN U SEND PASSWORD
rceronp :bih:
-
i am sorry to bother too much, but please send me password for Patch8 Thanks...
receronp :bih:
-
Hello, can you please send the password to me. thnx
-
Pls send me the Passwrd (system hangs sometimes) :'( :'(
BR
-
@ rceronp
so sorry for delay, I just notice your post number and will send you pass. immediately...
@ fblvi & NicolaasBsB
please read carefuly my post above... and increase your posts and activities at scForum...
Best Regards,
S.
-
hello Samker,
please send me the password
Thank you
-
what is th epasswor of
McAfee VirusScan Enterprise Version 8.5i Patch 8
hafeez_03@hotmail.com
hafeez_tele@yahoo.com
hafeez.03@gmail.com
-
Pls send me the Passwrd (system hangs sometimes)
BR
-
@ NicolaasBsB
I just notice your new post number... :thumbsup: hope you will stay Active SCF Member. Now please check your PM for pass. ;)
@ FERCHORIOS & abdul
please read carefully my explanation on page before... and increase your posts and activities at scForum...
Best Regards,
S.
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
Hello,
please send me the password for the download.
Thanks for the patch :)
-
hai, please me a password...
-
Hi,
I would like to know the password for the download.
Thanks a lot for the patch!
-
como obtengo el password
-
Hello,
Would you please send me the password ?
Thanks Smiley
-
@ markomilano, mpnet, zazou101 & aguilerazoj
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like "stations", which is already receive pass.), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
S.
-
thanks for McAfee VirusScan Enterprise Version 8.5i Patch 8 (Download) .
Please send the password for the file.
Regards
-
hay samker... dear how much you goona make me wait for patch 8 passowrd...
Please try to make it on 5 post plz...
-
Hi,
I would like to know the password for the download.
thx
-
can i have the password for patch 8? ... so sad that my posts are back to zero.. T_T tnx
-
@ adminvirus, abuadal & 88888888
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like "s3ducx0n", which is already receive pass.), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
S.
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
sathya
-
Password please
-
Can I have the password for patch 8?
Thanks
-
@ cerbero85
Since you now have more than 10 posts in SCF Profile, I'll send you pass. immediately...
@ sathya & starcodekei
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like "cerbero85"), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
S.
-
@ cerbero85
Since you now have more than 10 posts in SCF Profile, I'll send you pass. immediately...
Thanks
-
Hi..;
Thank's for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open
Med Lou.
-
can you send a newbie the password please
-
load of tosh :down:
-
Mcafee website says that Patch 7 must be installed before Patch 8, this site makes no mention of that and won't give you a password for the file unless you make 10 posts, pathetic really.
-
Mcafee website says that Patch 7 must be installed before Patch 8, this site makes no mention of that and won't give you a password for the file unless you make 10 posts, pathetic really.
Hi B.,
just one info. for you: SCF provide both Patchs ( 7 & 8 )... ;)
Best Regards,
S.
-
Hi can i please have the password
-
the passssworrrddd pllllllllllllllllllllllllllllllzzzzzzzzzz
plz
THnx
-
@ Dellfan & kasy
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
S.
-
send McAfee VirusScan Enterprise Version 8.5i Patch 8 password
at hafeez_03@hotmail.com
-
passwords please
-
my PC spec:
Celeron 3.0 Ghz
Ram 1 GB
VGA 256mb
when I install Mcafee8.7 the PC slowly
its any antivirus compatible with my Pc and very good Antivirus
-
pass please
-
my PC spec:
Celeron 3.0 Ghz
Ram 1 GB
VGA 256mb
when I install Mcafee8.7 the PC slowly
its any antivirus compatible with my Pc and very good Antivirus
Personally I use McAfee version 8.5 on "worse" PC configuration than your...
Maybe you should try:
NOD 32: http://scforum.info/index.php/topic,211.0.html (http://scforum.info/index.php/topic,211.0.html)
or
Panda "Cloud": http://scforum.info/index.php/topic,2708.0.html (http://scforum.info/index.php/topic,2708.0.html)
Regards,
S.
-
Hi Samker,
The pw does not seem to work. Can u please resend. Moreover does the same hold good for Patch 7 and 8?, if not can u please email them. Thank you in advance.
-
Hi Samker,
The pw does not seem to work. Can u please resend. Moreover does the same hold good for Patch 7 and 8?, if not can u please email them. Thank you in advance.
I think that, I was already send you pass. (which is different for every download) for version 8.7 Patch 1 and pass is 100% correct.
Please try to Copy-Paste them direct from PM.
For pass. for Patch 7 & 8 you will need to increase your post number at scForum to at least more than 10... ;)
Hope this is clear now?
Best Regards,
S.
-
Hi, can u please send me pass for patch 8 and patch 7 on my mail ID
Thanks............
How can find my password?
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
-
@ Pratik_m1
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
S.
-
Hey! (o;
Pls send me the password too! (((;
Greets Gizi
-
Thanks for patch....please send me the password to open the file
-
May i have the password ??
-
tnx
-
ok let me chk
-
@ chan7
I saw that you now have 10 post at scForum, so please check your PM for pass.
@ Gizmo, dhaval & skillpoint09
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Best Regards,
S.
-
Thx for the post!!
Could you send me the password for the archive? O0
-
Hi all.
anybody, pls send me pass. for this patch.
thank you very much ::)
-
Is the password still being provided? I would like it too please. :)
-
can I please have the pass for patch 8?, thank you
-
@ guardian63
of course G. you have 13 post right now... please check your PM
@ guztav, kawamiro & Scooby Do
please read my explanation about required post number (above)
-
Please can you give me the password for the McAfee VirusScan Enterprise Version 8.5i Patch 8
Thanks in adnvace
-
Please can you give me the password for the McAfee VirusScan Enterprise Version 8.5i Patch 8
Thanks in adnvace
So sorry my mistake, I was sent you pass. for Patch 1 McAfee version 8.7...
Please check again your PM.
Best Regards,
S.
-
Hi, is the password being provided for v8.5i patch 8? If so would anyone kindly send it to me please?
Thanks.
-
Hi, is the password being provided for v8.5i patch 8? If so would anyone kindly send it to me please?
Thanks.
My friend, you will need to increase your post number at SCforum to at least 10... just like "guardian63".
So please go ahead, browse scForum and take a part with your comments in opened discussions: http://scforum.info/index.php?action=forum (http://scforum.info/index.php?action=forum)
After all post your request again.
Best Regards,
Samker
-
Just send the password for the file.
Thanks alot for the patch
-
Hi Samker ,
Thanks for patch 8.
Please send me the password.
Regards
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
If I use this patch, do I still need to use the ones before. I already have used Patch 5. Will I need Patch 6 & 7 also? I am assuming that since this is cumulative, I won't need 6&7. Hope I am right.
-
If I use this patch, do I still need to use the ones before. I already have used Patch 5. Will I need Patch 6 & 7 also? I am assuming that since this is cumulative, I won't need 6&7. Hope I am right.
no, you can just patch straight to 8 :)
-
Hi Samker,
Thanks for patch 8
Please send me the password.
best Regards.
-
Thanks, Mashed.
-
Can i have the password for VSE8.5 Patch 8 that i had downloaded ?
I have downloaded the Host Intrusion Prevention 7.0 and the patch 4, how can install them if i use McAfee Desktop Firewall 8.5.591 without the Epo but with the Epo Agent 4 patch 1, and the HIP protection levels are the same of McAfee Desktop Firewall 8.5 ?
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
Hi,
I've increased my posts to 12 and I would like to know the password for the download.
Thanks alot for the patch
-
@ guztav, fiskosorg, Fahad & katoonthai
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
P.S.
I was already sent passwords to bam & stevebri... ;)
-
thx man, good job
-
hi Samker, I live in Guatemala Central America, I could help send the pass in this file will be grateful enough .. Ricardo
-
Hi,
Ialready have 13 posts and I would like to know the password for the download.
Thanks.
-
Thanks for the post. Please let me know the password for the RAR file
-
Hello Samker, I´m trying to know the password for the RAR file. Thanks
And I have a question. Why when I have installed VirusScan E 8.5i on a ASUS portatil with Windows Vista and I want to see/read something in the HDD or Memory Stick, the system get collapsed showing a blue screen and rebooting the system.
-
@ rcarrera60, zsaurabh & SpMurphy
please read carefully my post above and increase your post number to at least more than 10... just like "mike2009" (he's receive pass. before 3 days). ;)
@ SpMurphy
And I have a question. Why when I have installed VirusScan E 8.5i on a ASUS portatil with Windows Vista and I want to see/read something in the HDD or Memory Stick, the system get collapsed showing a blue screen and rebooting the system.
"Unfortunately, you've given us very little information to go on.. Which operating system? How much RAM is installed on the computer? Did you first uninstall all previous antivirus programs including previous version of VirusScan before installing the new one or you maybe install/reinstall some McAfee BETA products? Did you see any specific error messages? What EXACTLY do they say?
Was the computer scanned for malware BEFORE attempting to install McAfee? In other words, could it be infected?
Tried uninstalling McAfee from Safe Mode? If it won't uninstall from Safe Mode, you may need to manually remove it using the instructions in the link below:
https://kc.mcafee.com/corporate/index?page=content&id=KB50602 (https://kc.mcafee.com/corporate/index?page=content&id=KB50602)
Hope this helps and let us know more, and please open your own Topic at SCF "PC Help Center"": http://scforum.info/index.php/board,16.0.html (http://scforum.info/index.php/board,16.0.html)
S.
-
thank you for this please fogeve me my english is very little
can you give me the password
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the PASSWORD to open it
-
OH!thankx a lot for the patch,that`s very useful
and I would like to know the password for the download.
Thanks again for the patch
-
thanks..plz send password
-
Thanks a lot i download path 8 but i don't know rar password.
please send me the password.
thanks.
Sohail.
-
Hi,
iam facing problem in my office i have macafee 8.5 i alway's receive message Buffer overflow (BO:writable BO:stack ).
please help me in this matter.
as per your information i already download path 8 but i don't have password.
please help me in this matter and send me password as soon as possible because iam facing so much problerm.
Hoping for your early response.
thanks ,
M.SOHAIL TAI.
-
Hello, Samker, thanks for the post!
Could you send me the password for the archive?
Thank you :up:
-
Please send me the password... Thanks again
-
tnxs
-
@ ah3000, powlin, dimmortal, borraz & zsaurabh
for pass. receive, you need to have at least 10 useful posts at SCF Portal (just like all other SCF Members), related to this rule please take a look to this posts and take a part in opened discussions at SCF Portal:
http://scforum.info/index.php/topic,2394.msg4153.html#msg4153 (http://scforum.info/index.php/topic,2394.msg4153.html#msg4153)
and
http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
P.S.
I was already sent passwords to ravi_and & Gizew...
-
thank you once again for this patch for one of my favourite antivirus
-
hey what is the password guys????
-
Dear Smaker,
I am getting the follwoing message in Windows Security Center..
"VirusScan Enterprise + AntiSpyware Enterprise is on bu is reporting its status to Windows Security Center in a format that is no longer supported. Use the programme's automatic updating feature, or contact the program manufacturer for an updated version"
-
I use 8.5i (patch 5)...
Will updating to patch 8 solve the problem?
I have downloaded it, but no password !
-
I know I am not eligible for the password since I dont have 10 post in the forum..
But, how will you help the newbees like me who have real interest to continue with the forum..
I found this forum today only (after my system's warning message)...really a wonderful forum...
But am going to get help from the forum before something worse happen to my system..
Please send me the password..U wont regret it, i assure..
-
Hi Lancelot and Welcome to SCF Community.
I was already sent you pass. via PM so please check them and install.
If you still experience problem please open you own Topic at SCF "PC Help Center": http://scforum.info/index.php?action=forum (http://scforum.info/index.php?action=forum)
Best Regards,
Samker
P.S.
Gizew & Aguunk was also receive pass., since they both have more than 10 posts.
-
Thanx sam for the password and the great patch
i hope there will be more great software here
-
Hi Samker!!!
Could you please send me the Password to this file, thanks!!!!regards!!
Y Que la fuerza este contigo!!!Chido!!
-
Hi Samker!!!
Could you please send me the Password to this file, thanks
-
ok
-
for error on updating our mcafee 85.0.i, just check in any patch below patch 8 especially patch 4
-
for the error below:
Backing up file(s) Engine DAT
Pre-notifying for EngineDAT update.
Copying Engine.
Update failed to version Engine: 5301.4018 DAT: 5589.0000.
Update Finished
Closing the update session.
just install patch 4, then u are good to go....with the recent updates
-
u won't have need for any password as far as patch 8 is concern...
-
Thank you very much Samker, I appreciate it
-
Hi Can I have the password pleeeeeeeeeeeeaaaaaaaaaaaasssssssssssssssseeeeeeeeeeeeeeeeee.
thanks
-
Can I have the password please?
-
Hi Samker,
I have downloaded the patch 8. Can you kindly share me the password for Patch 8.
I am eagerly waiting for your reply.
Thanks,
Kiran.
-
I am still waiting for password for archive. Please provide me with Password. Thanks again
-
plish help pass master.......... sen too PM ... help my...:D
-
Hi,
I know i don't deserve to get the password yet, but i still have to ask, as a last way out.
Thank's for a great forum,
/Johan
-
[aeva]
(http://www.9down.com/pic/topic/mcafee.gif)
McAfee VirusScan Enterprise protects your desktop and file servers from a wide range of threats, including viruses, worms, Trojan horses, and potentially unwanted code and programs. McAfee VirusScan® 8 takes anti-virus protection to the next level, integrating elements of intrusion prevention and firewall technology into a single solution for PCs and file servers. This powerful combination delivers truly proactive protection from the newest of today’s threats-including buffer - overflow exploits and blended attacks - and features advanced outbreak management responses to reduce the damage and costs of outbreaks. Everything is managed by McAfee ePolicy Orchestrator® or ProtectionPilot™ for scalable security policy compliance and graphical reporting.
Release Notes for McAfee(R) VirusScan(R) Enterprise Version 8.5i Patch 8
Copyright (C) 2009 McAfee, Inc.
All Rights Reserved
==========================================================
Patch Release: January 27, 2009
This release was developed and tested with:
- VirusScan Enterprise: 8.5i
- DAT Version: 5474, December 24, 2008
- Engine Version: 5.3.00
Make sure you have installed these versions, or later,
before using this release.
==========================================================
Thank you for using VirusScan(R) Enterprise software.
This file contains important information regarding this
release. We strongly recommend that you read the entire
document.
__________________________________________________________
WHAT'S IN THIS FILE
- About This Release
- Purpose
- Improvements
- Resolved Issues
- Patch 8 Resolved Issues
- Patch 7 Resolved Issues
- Patch 6.1 Resolved Issues
- Patch 6 Resolved Issues
- Patch 5 Resolved Issues
- Patch 4 Resolved Issues
- Patch 3 Resolved Issues
- Patch 2 Resolved Issues
- Patch 1 Resolved Issues
- Known Issues
- Files Included With This Release
- Installation
- Installation Requirements
- Installation Steps
- Installation Steps via ePolicy Orchestrator
- HotFix/Patch Reporting
- Verifying the Installation
- Removing the Patch
- Copyright & Trademark Attributions
- License Information
__________________________________________________________
ABOUT THIS RELEASE
PURPOSE
This release contains updated binaries in a single
Microsoft Patch installer to address all items listed
in "Resolved Issues" below.
For the most up-to-date copy of this Readme
information, refer to McAfee Support KnowledgeBase
article 60415.
Patch 8 is a High Priority release. See McAfee Support
KnowledgeBase article 614038 for information on
ratings.
__________________________________________________________
IMPROVEMENTS
1. VirusScan Enterprise with the AntiSpyware Module
can now be set so that it no longer places cookie
detections in the quarantine folder. They instead
are deleted permanently as part of the clean
action.
NOTE:
By setting the DWORD "DisableCookieBackups"
registry entry to 1, cookie detection quarantines
no longer occur.
HKLM\SOFTWARE\McAfee\VSCore
2. The on-demand scanner has been updated to better
use the System Utilization setting throughout the
entire scanning process.
Refer to McAfee Support KnowledgeBase article
9197288 for further information.
3. This Patch contains a new Buffer Overflow and
Access Protection DAT (version 378), which adds an
Access Protection category for Virtual Machine
Protection. These rules provide access protection
functionality for virtual machines.
NOTE:
To manage the new Virtual Machine Protection
category with ePolicy Orchestrator 3.x or
ProtectionPilot, you must use the latest NAP file,
which is included in this Patch package, or
VirusScan 8.5i Repost Patch 5.
For ePolicy Orchestrator 4.x users, the Extension
update also contains the updated rule file. The
updated Extension package is available on the web
product download area under the Patches category.
__________________________________________________________
RESOLVED ISSUES
The resolved issues are divided into subsections per
patch, showing when each fix was added to the
compilation.
PATCH 8 RESOLVED ISSUES
1. ISSUE:
In Patch 7, the McShield resource files were
missing some string tables that were responsible
for On-Access Scan and On-Demand Scan status.
RESOLUTION:
McShield.dll has been corrected to include all the
proper strings for displaying information on
non-English installations.
2. ISSUE:
A timing issue could occur during the import of the
McAfee Installation Designer (MID) configuration.
During the installation of VirusScan Enterprise,
the temporary registry information sometimes was
not available before the registry editor attempted
to apply the settings. The process generated an
application event, ID 1006, while the registry
editor attempted to reapply the settings until it
was successful.
RESOLUTION:
The McAfee Installation Designer configuration
applicator was revised to no longer report the
error, because it does not represent a true failure
in the process.
NOTE:
To prevent the generation of this error, use the
repost package that includes this Patch release.
3. ISSUE:
On multi-processor systems that receive files from
remote clients, some instructions were being
executed frequently and unnecessarily, acquiring an
exclusive lock on all processors. This created a
bottleneck in the file I/O being written to disk.
RESOLUTION:
The link driver has been revised to eliminate the
described bottleneck.
4. ISSUE:
Access Protection block rules that were created for
USB devices sometimes did not handle removing and
reinserting the device multiple times.
RESOLUTION:
The Access Protection, Anti-Virus Filter, and Link
drivers have been updated to better handle
re-hooking the device.
5. ISSUE:
The On-Access Scanner was not properly utilizing
the "Scan files opened for Backup" option.
RESOLUTION:
The Anti-Virus Filter driver has been rectified to
properly interpret the flag being sent from the
On-Access Scanner.
6. ISSUE:
Certain detections with multiple infections or
clean actions were logging the action two times.
One entry was made during the middle of the
process, and the other during the final
resolution.
RESOLUTION:
The Common Shell scanner has been updated to report
only the final resolution of the detection.
7. ISSUE:
The repair option for McAfee AntiSpyware Enterprise
Module would execute during the patch process. This
caused the cookie and registry scan targets to be
re-added to On-Demand Scan tasks that were removed
by the user.
RESOLUTION:
The patch installer has been updated to preserve
the On-Demand Scan anti-spyware scan targets.
PATCH 7 RESOLVED ISSUES
1. ISSUE:
When installing a VirusScan Enterprise 8.5i patch,
the existing On-Access Scanner service might fail
to unload. This leads to two instances of the
service, with one consuming a high amount of CPU
usage.
RESOLUTION:
The On-Access Scanner service had been updated to
avoid a runaway thread scenario that caused the
service, being replaced, to not stop.
NOTE:
To avoid this issue while installing Patch 7 or
later, install HF427887 first. Refer to McAfee
Support KnowledgeBase article 616344 for further
information.
2. ISSUE:
Changes to the VirusScan Enterprise core subsystem
disabled performance optimization for handling
frequent write actions to INI and LOG files.
RESOLUTION:
The Anti-Virus Filter Driver was corrected to
ensure that scanning of specified file extensions
is optimized, as in previous versions.
3. ISSUE:
A three-party deadlock occurred, causing the
On-Access Scanner to become blocked until it times
out. This causes the scanner service to time out
and eventually self-terminate.
RESOLUTION:
The Common Shell scanner has been updated to
prevent the On-Access Scanner from becoming blocked
while the security libraries are loaded by the
system.
4. ISSUE:
The extended reports NAP contained some ePolicy
Orchestrator stored procedures that were needed to
add support for the VirusScan product line. The
ePolicy Orchestrator patches have since made new
modifications to the same stored procedures.
Therefore, when the VirusScan extended reports NAP
is checked in after the new ePolicy Orchestrator
modified procedures are in place, they are
overwritten and the newer functionality is lost.
RESOLUTION:
The VirusScan extended reports NAP has been revised
to no longer replace the ePolicy Orchestrator
stored procedures.
5. ISSUE:
If the Lotus Notes client is running during
uninstall of VirusScan Enterprise 8.5i, the Lotus
Notes Scanner entries might not be properly removed
from the NOTES.INI file. This can cause the Lotus
Notes client to crash on subsequent starts.
RESOLUTION:
The Lotus Notes Scanner module has been corrected
to remove its entries in the NOTES.INI file for all
scenarios.
6. ISSUE:
The VirusScan Enterprise Patch installer did not
correctly preserve the MIDFileTime registry value.
This caused the McAfee Installation Designer (MID)
.CAB files to be re-applied at the time of
installation.
RESOLUTION:
The Patch installer has been updated to correctly
preserve the binary value of MIDFileTime.
7. ISSUE:
Changes made in Microsoft Vista SP1 and later, in
how the operating system opens/views network files,
caused delays in opening new network paths, with
the On-Access Scanner’s Network Scanning feature
enabled.
RESOLUTION:
The link driver has been modified to use a
different method of accessing the network resources
that avoids the delays imposed by the operating
system change.
8. ISSUE:
A 7E bugcheck (blue screen) might occur if an
application shut down immediately after sending
data over the network.
RESOLUTION:
The link driver has been revised to better handle
data that is transmitted by applications after the
driver has stopped.
9. ISSUE:
When the VirusScan NAP is checked in, it runs a
script that enables anti-spyware settings in
policies and tasks, if the AntiSpyware 8.5 module
NAP is in the ePolicy Orchestrator repository. The
intended purpose of the script is similar to the
local AntiSpyware module installer, which enables
its settings when installed on a local system.
RESOLUTION:
The VirusScan NAP has been updated so that the
script is disabled during check-in of the VirusScan
NAP package. This prevents the anti-spyware
settings from being enabled when updating the
VirusScan NAP.
NOTE:
The McAfee AntiSpyware 8.5 module NAP has the same
script in it. This means that if the McAfee
AntiSpyware 8.5 module NAP is installed after the
VirusScan NAP, the anti-spyware settings are still
enabled.
10. ISSUE:
Servers that deal with many file writes were
becoming unresponsive.
RESOLUTION:
The anti-virus filter driver was revised to
correctly filter and dispatch scans on write.
PATCH 6.1 RESOLVED ISSUES
1. ISSUE:
An issue can occur when the 5300 engine is
installed prior to installing VirusScan 8.5i Patch
6. The scanner engine files are partially
overwritten with the previous 5200 version that is
stored in the MSI cache. This mismatch causes the
scanner engine to fail to initialize.
RESOLUTION:
The Patch installation package has been updated to
correct this issue, and does not overwrite the
engine files.
PATCH 6 RESOLVED ISSUES
1. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to only write to the registry if it
sees that it is different from the current policy.
This will prevent McShield from generating events
on policy enforcement, unless that policy has
changed.
This is an addendum to the original solution in
Patch 5, where the fix did not work when the
preferred language was set to something other than
automatic.
2. ISSUE:
A compatibility issue has been seen with
VirusScan’s port blocking feature, and Veritas
backup applications. This was causing the backup
software services to stop running.
RESOLUTION:
The VirusScan Anti-Virus Mini-Firewall Driver has
been updated to correct the compatibility issue.
3. ISSUE:
A race condition in the On-Access Scanner service
can cause high CPU utilization with high
performance systems.
RESOLUTION:
The On-Access Scanner service has been updated to
remedy multi-threading synchronization issues and
remove occurrences of runaway threads.
4. ISSUE:
The On-Access Scanner service sometimes crashes
during a system shutdown or during installation of
a Patch/HotFix.
RESOLUTION:
The On-Access Scanner service has been repaired to
correct a race condition in which a
critical-section synchronization object is deleted
before another thread has entered.
5. ISSUE:
A deadlock could occur on high end servers caused
by a race condition in VirusScan’s link driver.
RESOLUTION:
The link driver has been changed to properly handle
the release of system objects, while holding a lock
on resources.
6. ISSUE:
Port blocking fails on Microsoft Windows Vista
Service Pack 1.
RESOLUTION:
The McAfee Driver Installer has been update to
handle the changes in network stack load order.
7. ISSUE:
The On-Demand Scanner system utilization changes
that were put in patch 5 changed the memory
scanning function. This caused the process scanning
to only scan the first process ID.
RESOLUTION:
The change has been reversed so that all processes
are scanning irrespective of process ID.
8. ISSUE:
When applied to a client installation that was
customized by McAfee Installation Designer (MID),
the patch installer deletes the MidFileTime
registry value. This caused MID .CAB files to be
re-applied to the system.
RESOLUTION:
The patch installer has been updated to no longer
delete the MidFileTime registry value.
9. ISSUE:
A newly created user defined Unwanted Program
Policy, does not take effect immediately if the
file has been scanned by the On-Access Scanner
before the change occurred.
RESOLUTION:
The On-Access Scanner service has been updated to
properly recognize changes to the user defined
detections and clear the cache of files that have
already been scanned so that the new settings take
effect immediately.
10. ISSUE:
A trust relationship exists in McAfee drivers that
can be leveraged by McAfee processes to avoid
triggering access protection rules and other
compatibility symptoms. When the link driver was
updated to newer releases this trust relationship
was lost until a reboot occurred.
RESOLUTION:
The link driver has been modified to better handle
the process of future upgrades to itself without
the need for a reboot.
PATCH 5 RESOLVED ISSUES
1. ISSUE:
Disabling the On-Access Scanner from the console is
not always possible when users with sufficient
privileges belonged to large numbers of user
groups.
RESOLUTION:
VirusScan Statistics has been updated so that users
with sufficient privileges can now disable the
On-Access Scanner from the console regardless of
how many user groups they belong too.
2. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to write to the registry only if it
sees that it is different from the current policy.
This prevents McShield from generating events on
policy enforcement, unless that policy has
changed.
NOTE:
If the symptom persists, refer to McAfee Support
KnowledgeBase article 614077.
3. ISSUE:
With the VirusScan Policy set to "Display managed
tasks in the client console," the tasks sometimes
disappear in the VirusScan Console.
RESOLUTION:
The On-Demand Scanner and Update console plug-ins
have been updated so that when policy enforcement
occurs, the console now updates the list of tasks
to ensure an accurate display.
4. ISSUE:
When using system variables in the folder path for
the Quarantine Manager Policy, the list of
quarantined items is empty, even though items were
quarantined to the correct directory.
RESOLUTION:
The Quarantine Manager console plug-in has been
corrected so that the path specified in the folder
input field is now properly expanded and the system
variables are replaced before the list of
Quarantined items is requested.
NOTE:
For further information about this fix, refer to
McAfee Support KnowledgeBase article 614549.
5. ISSUE:
When a VirusScan Patch installation failed, the
Help "About" dialog box no longer displayed the
previous Patch number.
RESOLUTION:
The patch installer has been updated to write the
new Patch registry value only if the Patch
succeeds. If it fails and a rollback occurs, the
old Patch registry value remains.
6. ISSUE:
A 4E bugcheck (blue screen) can occur when
VirusScan Enterprise 8.5i is installed along side
SafeBoot Content Encryption 3.
RESOLUTION:
The link driver was updated to add supportability
for SafeBoot.
7. ISSUE:
On Windows Vista and later, On-Demand Scan function
"Save as Default" does not correctly save changes
made for future scan tasks.
RESOLUTION:
The On-Demand Scanner has been corrected to
properly save the registry data for the default
task.
8. ISSUE:
Access Protection port blocking rules that spanned
a range of ports could block all processes rather
than only those processes specified in the rule.
RESOLUTION:
The Access Protection driver has been updated to
better handle requests for process names.
9. ISSUE:
A 19 bugcheck (blue screen) occurred intermittently
when loading and unloading content into Link
Driver, for example, when configuration changes
were made or enforced.
RESOLUTION:
The link driver was corrected to resolve a race
condition that could lead to this issue.
PATCH 4 RESOLVED ISSUES
1. ISSUE:
A crash can occur on some systems when the
On-Demand Scan Task includes the "Memory for
rootkits" scan item.
RESOLUTION:
The root kit detection driver has been updated to
better handle different processor architectures.
2. ISSUE:
When a Quarantine Restore Task is run from ePolicy
Orchestrator without specifying a restore item, the
Scan32.exe process runs a full scan and does not
exit properly, leaving the process orphaned.
RESOLUTION:
The VirusScan plug-in has been updated to check if
a restore item is specified. If not, the restore
task does not run.
3. ISSUE:
The VirusScan On-Demand Scanner has no option to
disable cookie detection alerts in the user
interface or registry.
RESOLUTION:
Alerts for On-Demand Scan cookie detections can now
be disabled by setting the DWORD "bCookieAlerts"
registry entry to 0.
HKLM\SOFTWARE\McAfee\VSCore\Alert Client\VSE
4. ISSUE:
When a user is browsing the Internet, the On-Access
Scanner sometimes logs entries "Not scanned (The
file is encrypted)" on temporary files that are
locked for use by the browser.
RESOLUTION:
The reporting for these types of detections can now
be disabled by setting the DWORD
"DoNotReportSkippedFiles" registry entry to 1.
HKLM\SOFTWARE\McAfee\VSCore\On Access
Scanner\McShield\Configuration
NOTE:
If you previously installed VSE85HF328421, the
registry entry "DoNotReportSkippedFiles" is already
set to 1.
5. ISSUE:
In environments where the Lotus Notes data folder
is in a non-standard location, the VirusScan
Scanner for Lotus Notes installer might crash
during installation of VirusScan.
RESOLUTION:
The VirusScan Scanner for Lotus Notes installation
files have been updated so that the search behavior
for notes.ini is more resilient to custom Lotus
Notes client locations.
6. ISSUE:
A crash can occur, where the VirusScan Scanner for
Lotus Notes failed to initialize properly if the
first scanned attachment of a session was stored in
a non-standard attachment format.
RESOLUTION:
The VirusScan Scanner for Lotus Notes library was
changed so that the initialization code occurs
before the attachment prefixed file name handling
occurs.
7. ISSUE:
With Self Protection enabled, the ability to
unblock a connection from a remote computer is
grayed out, even though the logged-on user has
administrator privileges.
RESOLUTION:
VirusScan Statistics has been updated to check the
credentials of the logged-on user, rather than the
access level of our services, to determine if the
"Unblock All Connections Now" button should be
available.
8. ISSUE:
Installation of this Patch enables the option
"Enable on-access scanning at system startup" if it
was previously disabled.
RESOLUTION:
The Patch installer has been corrected to properly
preserve the setting.
9. ISSUE:
The Patch installer returns a success code, even if
the Patch failed to install.
RESOLUTION:
The Patch installer has been corrected so that it
only returns a success code if it is actually
successful.
10. ISSUE:
Installing the Patch on a system that had only one
Unwanted Programs exclusion causes that exclusion
to fail.
RESOLUTION:
The installer now corrects a problem where the
DetectionExclusions registry value was being
changed from REG_MULTI_SZ to REG_SZ if only one
value existed.
11. ISSUE:
On Windows Vista, the administrator cannot disable
the On-Access Scanner via the VirusScan system tray
icon.
RESOLUTION:
VirusScan Statistics has been updated to check the
user's logged on credentials, rather than the
service handle that was used to determine access to
the McShield service in older operating systems.
12. ISSUE:
A failed reinstallation of VirusScan or a failed
Patch installation can delete the license,
resulting in an inoperable product.
RESOLUTION:
The Patch installer has been updated to no longer
cause this state in the event of a failed
installation.
13. ISSUE:
An incorrect rule file was packaged with the
VirusScan NAP file included with Patch 3. This
caused some of the Access Protection rule
categories to not appear.
RESOLUTION:
A new VirusScan NAP file was created with a
corrected rule file.
14. ISSUE:
When Host IPS is installed with VirusScan
Enterprise, and IPS is disabled, the interface for
VirusScan Buffer Overflow Protection remains grayed
out, even though it is active.
RESOLUTION:
The Buffer Overflow console plug-in was updated to
check for the registry flag that is set by Host
IPS, to tell VirusScan Enterprise that IPS is
disabled.
15. ISSUE:
When Self Protection is enabled on a remote machine
and a user attempts open a remote console
connection to that machine, the user receives an
access denied message, and the remote console is
not opened.
RESOLUTION:
The VirusScan Console was updated to make the
connection to the remote console more robust.
PATCH 3 RESOLVED ISSUES
1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on heavily
loaded servers.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash Analysis
(OCA), showing a crash in an instruction that could
not ordinarily fail.
RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual behavior
on affected processors.
4. ISSUE:
A 7E bugcheck (blue screen) can occur with certain
low resource conditions.
RESOLUTION:
The Link Driver has been updated to better handle
scenarios where the system is low on resources.
5. ISSUE:
On 64-bit systems, VirusScan Statistics causes an
issue where the user cannot open more than one
Microsoft Virtual PC image. Virtual PC reports
insufficient memory.
RESOLUTION:
VirusScan Statistics has been updated to resolve a
memory utilization problem on 64-bit systems.
6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to use appropriate registry data.
7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to no longer request a certain level of
access to the service, which would be denied by the
higher level of Access Protection security.
8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are lost
after upgrading from ePolicy Orchestrator 3.5 to
3.6.x.
RESOLUTION:
The VirusScan NAP file has been updated to include
additional xml code for mapping policies between
ePolicy Orchestrator 3.5 and 3.6.x.
NOTE:
To migrate the policies correctly, follow the
instructions under "Installation Steps."
PATCH 2 RESOLVED ISSUES
1. ISSUE:
When an AutoUpdate task copies new DAT files into
the engine folder, VirusScan services and Microsoft
Outlook can spike CPU utilization in excess of one
minute.
RESOLUTION:
The McTaskManager service has been enhanced so that
it no longer issues multiple reload notifications
to the scanners after a DAT update.
NOTE:
Users who saw a smaller spike after the original
fix (HF320829) should see more improvement with
this fix.
2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy Orchestrator or
ProtectionPilot. A registry value was not being
updated correctly.
RESOLUTION:
VirusScan’s Management Plug-In has been updated to
correctly write the "RepairBackupDirectory"
registry entry.
3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
effect immediately. To enable the rule, the
McShield service must be stopped and restarted.
RESOLUTION:
The McShield service has been updated to improve
the monitoring of registry changes with the
Unwanted Programs policy.
4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system with
a clean floppy in its drive.
RESOLUTION:
The On-Access Scanner has been updated to better
handle the shutdown process.
5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
RESOLUTION:
The Link Driver was updated to correct
synchronization issues during the start of
processes.
6. ISSUE:
VirusScan does not correctly remove Buffer Overflow
Protection process exclusions that are introduced
by ePolicy Orchestrator or ProtectionPilot.
RESOLUTION:
The VirusScan plug-in has been updated to properly
remove old Buffer Overflow Protection registry
values when ePolicy Orchestrator or ProtectionPilot
policies are enforced.
7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
RESOLUTION:
The Anti-Virus Filter and Link drivers where
updated to properly remove the read-only attribute
when taking action on files on the EMC share.
8. ISSUE:
Detections on a network share may leave behind zero
byte files on the share.
RESOLUTION:
The Anti-Virus Filter and Link drivers were updated
to ensure proper cleanup of detections on a network
share.
9. ISSUE:
The On-Access Scanner functions in Console are not
updating properly when Access Protection is
disabled.
RESOLUTION:
The state of Self Protection is now correctly
tracked by the On-Access Scanner Console plug-in.
10. ISSUE:
The Self Protection feature of Access Protection is
disabled after removing a Patch from the system.
RESOLUTION:
The MSP installer has been updated to fix a
mismatched name between the custom action and
installer execution sequence tables in the cached
MSI file.
11. ISSUE:
Interacting with Remote Console On-Demand Scan and
AutoUpdate tasks caused the local tasks with the
same id to be acted upon, instead of the remote
task.
RESOLUTION:
The Update and On-Demand Scanner binaries were
updated to properly call the remote task instead of
the local one.
12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1 or
8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do not
display in the VirusScan console.
RESOLUTION:
The MSP Installer package has been updated to
initialize the console tasks that were not
previously initialized, so they display in the
VirusScan console.
NOTE:
This fix is for those who used the originally
released VirusScan Enterprise 8.5i. The current
8.5i repost package includes this fix.
13. ISSUE:
With the McAfee Installation Designer (MID) option
to "Allow Users to Uninstall" disabled, the
UninstallString registry value was removed to
prevent product removal. This registry value was
also used by ePolicy Orchestrator to determine that
VirusScan was installed.
RESOLUTION:
The VirusScan Detection Script has been updated to
check for the existence of the uninstall key,
instead of the UninstallString value, to determine
if the VirusScan Enterprise install package needs
to be pushed to the client.
14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
RESOLUTION:
The Common Shell Scanner binaries have been updated
to resolve this issue.
15. ISSUE:
If McShield and McTaskManager Services were stopped
and restarted in a specific order, the Access
Protection and Buffer Overflow features remained
disabled after the services started.
RESOLUTION:
The On-Access Scan Console plug-in has been updated
to recognize the last known state of Access
Protection and Buffer Overflow Protection when
McShield service is stopped.
16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
RESOLUTION:
The McShield service has been updated to properly
change states when altering configurations.
17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the user
to right-click and disable that feature. The
option to disable right-click ability is under the
"Other" category (Console and Miscellaneous).
RESOLUTION:
The password functionality has been moved to the
BehaviorBlocking console plug-in so that the
right-click option is now included with the Access
Protection password options.
18. ISSUE:
The Buffer Overflow Protection displays a detection
in the On-Access Messages window when the "Show the
messages when a buffer overflow is detected" option
is disabled.
RESOLUTION:
The On-Access Scan Statistics binary has been
updated to properly suppress the Buffer Overflow
detection when configured to do so.
19. ISSUE:
On-Access Scanner’s Network Drive Scanning causes
network copy times to increase, more then what is
normally expected, when this option is enabled.
RESOLUTION:
The Common Shell binaries have been updated to no
longer request a certain level of access to the
network file(s), which would always be denied.
PATCH 1 RESOLVED ISSUES
1. ISSUE:
Applications that perform operations with temporary
files, such as printing, generate a "file missing"
error.
RESOLUTION:
The link driver has been updated to correctly
handle file operations that use the DeleteOnClose
flag.
2. ISSUE:
When McAfee Policy Enforcer is pushed out to a
system with VirusScan Enterprise 8.5i, McAfee
trusted processes might trigger Access Protection
rules. A reboot is required to correct the
problem.
RESOLUTION:
The link driver has been revised to ensure trusted
policies are propagated between instances of loaded
drivers.
3. ISSUE:
Some files remain locked indefinitely. Third-party
tools indicate that McShield.exe was leaking
handles, thereby locking the file.
RESOLUTION:
The link driver has been updated to detect and
handle the oplock break-in-progress status code and
ensure file locks are released.
4. ISSUE:
Under certain conditions, VirusScan Enterprise
scanner for Lotus Notes can mistakenly deny access
to the Lotus Notes internal processes, if another
Note is being accessed by the user. The message
"You are not authorized to perform that operation"
is displayed for the user.
RESOLUTION:
The Lotus Notes scanner binaries have been updated
to resolve the issue.
5. ISSUE:
For non-English platforms, a control ID is
displayed in the Status field of the On-Access
Messages window, rather than the localized
strings.
RESOLUTION:
The resource binary for the On-Access Scanner
service has been updated to resolve this issue.
6. ISSUE:
When VirusScan Enterprise 8.5i is installed to
Windows Vista 32-bit platforms, the Buffer Overflow
Protection feature is not available.
RESOLUTION:
This Patch enables Buffer Overflow Protection for
Windows Vista 32-bit environments.
7. ISSUE:
When a scheduled On-Demand Scan task fails to
authenticate to a specified location, the user
receives an erroneous error asking that VirusScan
Enterprise be reinstalled.
RESOLUTION:
The localized binaries file has been updated to
handle the specific event.
8. ISSUE:
ePolicy Orchestrator could fail to replicate
distributed repositories when VirusScan Enterprise
8.5i is installed.
RESOLUTION:
The Common Shell binary has been updated to allow
sharing of files with other processes.
9. ISSUE:
Users without local administrative rights are not
able to use the Help file unless it was previously
downloaded by an administrator.
RESOLUTION:
Non-administrative users can now download and use
the current Help file.
10. ISSUE:
Not all VirusScan Enterprise events can be filtered
in ePolicy Orchestrator reporting.
RESOLUTION:
The extended reports NAP file has been updated to
allow filtering of all VirusScan Enterprise
events.
11. ISSUE:
In certain circumstances, when a state change
occurs with Access Protection, the On-Access
Scanner cannot be disabled/enabled, and some Access
Protection rules fail to log messages.
RESOLUTION:
The McTaskManager Service and Access Protection
binaries have been updated to resolve this issue.
12. ISSUE:
When resuming from the hibernate state, the system
tray icon might be in the disabled state,
reflecting the status of the On-Access Scanner.
However, the scanner service is functioning
normally.
RESOLUTION:
The system tray icon should always reflect the
correct state of the On-Access Scanner when
resuming from hibernation.
KNOWN ISSUES
1. The 5200 or later engine must be installed prior to
deploying Patch 5 or later. The Patch updates the
cached MSI tables to prevent a repair from
restoring an unusable version of the engine.
2. On-Access Scan Messages might fail to populate on
detections after Patch 8 is installed. A reboot
might be needed to resolve this issue. This does
not affect detection logging and alerting, or
reporting to ePolicy Orchestrator and
ProtectionPilot.
3. Some customers have reported seeing VirusScan
Statistics (VShield) crashing/disappearing from the
system tray. Refer to McAfee Support KnowledgeBase
article 613892 for more information on this issue.
4. If Host Intrusion Prevention 6.x or later is
installed and disabled prior to VirusScan
Enterprise, it is necessary to re-enable IPS and
disable it again in order for VirusScan Buffer
Overflow Protection to be properly enabled.
5. Sporadic crashes of the McShield Service have been
seen during the patch install, on systems running
McAfee AntiSpyware Enterprise Module. The service
recovers correctly at the end of the patch
process.
6. If you install this release interactively and
cancel the installation on a system where a
previous Patch was installed, after the rollback
completes, the previous Patch no longer reports to
ePolicy Orchestrator or appears in the "About
VirusScan Enterprise" window.
7. Installing the Patch and specifying a log file path
using the Microsoft Installer (MSI) switch "/L"
does not log to the specified path. A log file
capturing full data is logged to the folder
"McAfeeLogs" under the Temp folder.
8. If the Lotus Notes client is open when this release
is installed, the installation completes
successfully, but a reboot is required to replace
the McAfee Lotus scanner files. The new files are
not used until after a reboot.
9. Uninstalling VirusScan Enterprise Patches is now
possible for computers running Windows Installer
v3.x or later. This technology is not fully
integrated for Windows 2000 operating systems, so
there is no option to remove the Patch in
Add/Remove programs. Please see instructions under
"Removing the Patch" for removal via command-line
options.
10. Uninstalling VirusScan Patches is not available for
Windows NT platforms, because Windows Installer
v3.x is not supported on this platform. The Patch
still installs to all platforms supported by
VirusScan Enterprise 8.5i.
11. Patches for VirusScan Enterprise 8.5i can only be
uninstalled via Add/Remove programs, not via
ePolicy Orchestrator or ProtectionPilot.
FILES INCLUDED WITH THIS RELEASE
This release consists of a package called VSE85P8.ZIP,
which contains the following files:
PKGCATALOG.Z =
Package catalog file
PATCH8.TXT =
This text file
VSE850DET.MCS =
VirusScan Enterprise detection script
SETUP.EXE =
Installer for this release
SETUP.INI =
Initialization file for SETUP.EXE
PATCH8.MSP =
Microsoft Installer Patch file
VSE850.NAP =
Management NAP for VirusScan Enterprise
VSE850REPORTS.NAP =
Reporting NAP file
The following files are installed to client
systems:
STRINGS.BIN No version
MIDUTIL.DLL 8.5.0.156
CONDL.DLL 8.5.0.857
COPTCPL.DLL 8.5.0.857
MCAVDETECT.DLL 8.5.0.869
MCAVSCV.DLL 8.5.0.869
BBCPL.DLL 8.5.0.895
CONSL.DLL 8.5.0.895
MCCONSOL.EXE 8.5.0.895
SHUTIL.DLL 8.5.0.895
OASCPL.DLL 8.5.0.909
FTCFG.DLL 8.5.0.936
MCUPDATE.EXE 8.5.0.936
NAIANN.DLL 8.5.0.936
NCDAEMON.EXE 8.5.0.936
NCEXTMGR.DLL 8.5.0.936
NCINSTALL.DLL 8.5.0.936
NCMENU.DLL 8.5.0.936
NCSCAN.DLL 8.5.0.936
NCTRACE.DLL 8.5.0.936
QUARCPL.DLL 8.5.0.936
SCAN32.EXE 8.5.0.936
SCAN64.EXE 8.5.0.936
SCNCFG32.EXE 8.5.0.936
SHSTAT.EXE 8.5.0.936
VSODSCPL.DLL 8.5.0.936
VSTSKMGR.EXE 8.5.0.936
VSUPDCPL.DLL 8.5.0.936
VSPLUGIN.DLL 8.5.0.937
ENTSRV.DLL 13.3.0.169
MFEBOPA.DLL 13.3.0.169
MFEBOPK.SYS 13.3.0.169
MFEAPFA.DLL 13.3.0.169
MFEAPFK.SYS 13.3.0.169
MFEAVFA.DLL 13.3.0.169
MFEAVFK.SYS 13.3.0.169
MFEHIDA.DLL 13.3.0.169
MFEHIDN.EXE 13.3.0.169
MFEHIDK.SYS 13.3.0.169
MFERKDA.DLL 13.3.0.169
MFERKDK.SYS 13.3.0.169
MFETDIK.SYS 13.3.0.169
ADSLOKUU.DLL 13.3.2.137
CSSCAN.EXE 13.3.2.137
ENTVUTIL.EXE 13.3.2.137
FTL.DLL 13.3.2.137
LOCKDOWN.DLL 13.3.2.137
MCSHIELD.DLL 13.3.2.137
MCSHIELD.EXE 13.3.2.137
MCSHIELDPERFDATA.DLL 13.3.2.137
MCVSSNMP.DLL 13.3.2.137
MYTILUS.DLL 13.3.2.137
MYTILUS2.DLL 13.3.2.137
NAEVENT.DLL 13.3.2.137
NAIEVENT.DLL 13.3.2.137
SCANOTLK.DLL 13.3.2.137
SCRIPTCL.DLL 13.3.2.137
SCRIPTSV.DLL 13.3.2.137
LOGPARSER.EXE 1.2.0.131
The following files are checked in to the ePolicy
Orchestrator or ProtectionPilot repository:
VSE850.NAP 2.0.0.696
VSE850REPORTS.NAP 3.0.0.781
Download: http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar (http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar)
Download Mirror: http://www.megaupload.com/?d=GN9MP08R (http://www.megaupload.com/?d=GN9MP08R)
P.S.
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
Samker
[/aeva]kindly send me the unzip password for patch 8
Thanks
-
hi samker could you please send me the password for the rar file.. plllllzzzzzzzz...
-
Dear Samker ,
Hi ;
I am a new member in SCforum ;
I will send my useful posts about different discussions in future (Sure !) , but maybe it
takes a long time (For example several days) because :
I must find an opened discussions that I know something about it ,
and my ideas about it must be good (Or maybe better than another ideas) and they
must certainly be useful actually ;
I don`t like sending some posts that they aren`t useful (actually) for another members
and just I was sending them (at least 10 posts) for taking passwords ;
Thus whereas I downloaded patch 7 and patch 8 (For Mcafee 8.5 i) and I need them
very much now and I can`t wait several days ;
Please trust me and send me their passwords immediately . Please trust me ! ...
Thank you very much !
Best Regards ...
Arash .
-
Hi Dear Smaker,
Please send me the password of the file.
I do not know how to post.
Regards,
Ad
[aeva](http://www.9down.com/pic/topic/mcafee.gif)
McAfee VirusScan Enterprise protects your desktop and file servers from a wide range of threats, including viruses, worms, Trojan horses, and potentially unwanted code and programs. McAfee VirusScan® 8 takes anti-virus protection to the next level, integrating elements of intrusion prevention and firewall technology into a single solution for PCs and file servers. This powerful combination delivers truly proactive protection from the newest of today’s threats-including buffer - overflow exploits and blended attacks - and features advanced outbreak management responses to reduce the damage and costs of outbreaks. Everything is managed by McAfee ePolicy Orchestrator® or ProtectionPilot™ for scalable security policy compliance and graphical reporting.
Release Notes for McAfee(R) VirusScan(R) Enterprise Version 8.5i Patch 8
Copyright (C) 2009 McAfee, Inc.
All Rights Reserved
==========================================================
Patch Release: January 27, 2009
This release was developed and tested with:
- VirusScan Enterprise: 8.5i
- DAT Version: 5474, December 24, 2008
- Engine Version: 5.3.00
Make sure you have installed these versions, or later,
before using this release.
==========================================================
Thank you for using VirusScan(R) Enterprise software.
This file contains important information regarding this
release. We strongly recommend that you read the entire
document.
__________________________________________________________
WHAT'S IN THIS FILE
- About This Release
- Purpose
- Improvements
- Resolved Issues
- Patch 8 Resolved Issues
- Patch 7 Resolved Issues
- Patch 6.1 Resolved Issues
- Patch 6 Resolved Issues
- Patch 5 Resolved Issues
- Patch 4 Resolved Issues
- Patch 3 Resolved Issues
- Patch 2 Resolved Issues
- Patch 1 Resolved Issues
- Known Issues
- Files Included With This Release
- Installation
- Installation Requirements
- Installation Steps
- Installation Steps via ePolicy Orchestrator
- HotFix/Patch Reporting
- Verifying the Installation
- Removing the Patch
- Copyright & Trademark Attributions
- License Information
__________________________________________________________
ABOUT THIS RELEASE
PURPOSE
This release contains updated binaries in a single
Microsoft Patch installer to address all items listed
in "Resolved Issues" below.
For the most up-to-date copy of this Readme
information, refer to McAfee Support KnowledgeBase
article 60415.
Patch 8 is a High Priority release. See McAfee Support
KnowledgeBase article 614038 for information on
ratings.
__________________________________________________________
IMPROVEMENTS
1. VirusScan Enterprise with the AntiSpyware Module
can now be set so that it no longer places cookie
detections in the quarantine folder. They instead
are deleted permanently as part of the clean
action.
NOTE:
By setting the DWORD "DisableCookieBackups"
registry entry to 1, cookie detection quarantines
no longer occur.
HKLM\SOFTWARE\McAfee\VSCore
2. The on-demand scanner has been updated to better
use the System Utilization setting throughout the
entire scanning process.
Refer to McAfee Support KnowledgeBase article
9197288 for further information.
3. This Patch contains a new Buffer Overflow and
Access Protection DAT (version 378), which adds an
Access Protection category for Virtual Machine
Protection. These rules provide access protection
functionality for virtual machines.
NOTE:
To manage the new Virtual Machine Protection
category with ePolicy Orchestrator 3.x or
ProtectionPilot, you must use the latest NAP file,
which is included in this Patch package, or
VirusScan 8.5i Repost Patch 5.
For ePolicy Orchestrator 4.x users, the Extension
update also contains the updated rule file. The
updated Extension package is available on the web
product download area under the Patches category.
__________________________________________________________
RESOLVED ISSUES
The resolved issues are divided into subsections per
patch, showing when each fix was added to the
compilation.
PATCH 8 RESOLVED ISSUES
1. ISSUE:
In Patch 7, the McShield resource files were
missing some string tables that were responsible
for On-Access Scan and On-Demand Scan status.
RESOLUTION:
McShield.dll has been corrected to include all the
proper strings for displaying information on
non-English installations.
2. ISSUE:
A timing issue could occur during the import of the
McAfee Installation Designer (MID) configuration.
During the installation of VirusScan Enterprise,
the temporary registry information sometimes was
not available before the registry editor attempted
to apply the settings. The process generated an
application event, ID 1006, while the registry
editor attempted to reapply the settings until it
was successful.
RESOLUTION:
The McAfee Installation Designer configuration
applicator was revised to no longer report the
error, because it does not represent a true failure
in the process.
NOTE:
To prevent the generation of this error, use the
repost package that includes this Patch release.
3. ISSUE:
On multi-processor systems that receive files from
remote clients, some instructions were being
executed frequently and unnecessarily, acquiring an
exclusive lock on all processors. This created a
bottleneck in the file I/O being written to disk.
RESOLUTION:
The link driver has been revised to eliminate the
described bottleneck.
4. ISSUE:
Access Protection block rules that were created for
USB devices sometimes did not handle removing and
reinserting the device multiple times.
RESOLUTION:
The Access Protection, Anti-Virus Filter, and Link
drivers have been updated to better handle
re-hooking the device.
5. ISSUE:
The On-Access Scanner was not properly utilizing
the "Scan files opened for Backup" option.
RESOLUTION:
The Anti-Virus Filter driver has been rectified to
properly interpret the flag being sent from the
On-Access Scanner.
6. ISSUE:
Certain detections with multiple infections or
clean actions were logging the action two times.
One entry was made during the middle of the
process, and the other during the final
resolution.
RESOLUTION:
The Common Shell scanner has been updated to report
only the final resolution of the detection.
7. ISSUE:
The repair option for McAfee AntiSpyware Enterprise
Module would execute during the patch process. This
caused the cookie and registry scan targets to be
re-added to On-Demand Scan tasks that were removed
by the user.
RESOLUTION:
The patch installer has been updated to preserve
the On-Demand Scan anti-spyware scan targets.
PATCH 7 RESOLVED ISSUES
1. ISSUE:
When installing a VirusScan Enterprise 8.5i patch,
the existing On-Access Scanner service might fail
to unload. This leads to two instances of the
service, with one consuming a high amount of CPU
usage.
RESOLUTION:
The On-Access Scanner service had been updated to
avoid a runaway thread scenario that caused the
service, being replaced, to not stop.
NOTE:
To avoid this issue while installing Patch 7 or
later, install HF427887 first. Refer to McAfee
Support KnowledgeBase article 616344 for further
information.
2. ISSUE:
Changes to the VirusScan Enterprise core subsystem
disabled performance optimization for handling
frequent write actions to INI and LOG files.
RESOLUTION:
The Anti-Virus Filter Driver was corrected to
ensure that scanning of specified file extensions
is optimized, as in previous versions.
3. ISSUE:
A three-party deadlock occurred, causing the
On-Access Scanner to become blocked until it times
out. This causes the scanner service to time out
and eventually self-terminate.
RESOLUTION:
The Common Shell scanner has been updated to
prevent the On-Access Scanner from becoming blocked
while the security libraries are loaded by the
system.
4. ISSUE:
The extended reports NAP contained some ePolicy
Orchestrator stored procedures that were needed to
add support for the VirusScan product line. The
ePolicy Orchestrator patches have since made new
modifications to the same stored procedures.
Therefore, when the VirusScan extended reports NAP
is checked in after the new ePolicy Orchestrator
modified procedures are in place, they are
overwritten and the newer functionality is lost.
RESOLUTION:
The VirusScan extended reports NAP has been revised
to no longer replace the ePolicy Orchestrator
stored procedures.
5. ISSUE:
If the Lotus Notes client is running during
uninstall of VirusScan Enterprise 8.5i, the Lotus
Notes Scanner entries might not be properly removed
from the NOTES.INI file. This can cause the Lotus
Notes client to crash on subsequent starts.
RESOLUTION:
The Lotus Notes Scanner module has been corrected
to remove its entries in the NOTES.INI file for all
scenarios.
6. ISSUE:
The VirusScan Enterprise Patch installer did not
correctly preserve the MIDFileTime registry value.
This caused the McAfee Installation Designer (MID)
.CAB files to be re-applied at the time of
installation.
RESOLUTION:
The Patch installer has been updated to correctly
preserve the binary value of MIDFileTime.
7. ISSUE:
Changes made in Microsoft Vista SP1 and later, in
how the operating system opens/views network files,
caused delays in opening new network paths, with
the On-Access Scanner’s Network Scanning feature
enabled.
RESOLUTION:
The link driver has been modified to use a
different method of accessing the network resources
that avoids the delays imposed by the operating
system change.
8. ISSUE:
A 7E bugcheck (blue screen) might occur if an
application shut down immediately after sending
data over the network.
RESOLUTION:
The link driver has been revised to better handle
data that is transmitted by applications after the
driver has stopped.
9. ISSUE:
When the VirusScan NAP is checked in, it runs a
script that enables anti-spyware settings in
policies and tasks, if the AntiSpyware 8.5 module
NAP is in the ePolicy Orchestrator repository. The
intended purpose of the script is similar to the
local AntiSpyware module installer, which enables
its settings when installed on a local system.
RESOLUTION:
The VirusScan NAP has been updated so that the
script is disabled during check-in of the VirusScan
NAP package. This prevents the anti-spyware
settings from being enabled when updating the
VirusScan NAP.
NOTE:
The McAfee AntiSpyware 8.5 module NAP has the same
script in it. This means that if the McAfee
AntiSpyware 8.5 module NAP is installed after the
VirusScan NAP, the anti-spyware settings are still
enabled.
10. ISSUE:
Servers that deal with many file writes were
becoming unresponsive.
RESOLUTION:
The anti-virus filter driver was revised to
correctly filter and dispatch scans on write.
PATCH 6.1 RESOLVED ISSUES
1. ISSUE:
An issue can occur when the 5300 engine is
installed prior to installing VirusScan 8.5i Patch
6. The scanner engine files are partially
overwritten with the previous 5200 version that is
stored in the MSI cache. This mismatch causes the
scanner engine to fail to initialize.
RESOLUTION:
The Patch installation package has been updated to
correct this issue, and does not overwrite the
engine files.
PATCH 6 RESOLVED ISSUES
1. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to only write to the registry if it
sees that it is different from the current policy.
This will prevent McShield from generating events
on policy enforcement, unless that policy has
changed.
This is an addendum to the original solution in
Patch 5, where the fix did not work when the
preferred language was set to something other than
automatic.
2. ISSUE:
A compatibility issue has been seen with
VirusScan’s port blocking feature, and Veritas
backup applications. This was causing the backup
software services to stop running.
RESOLUTION:
The VirusScan Anti-Virus Mini-Firewall Driver has
been updated to correct the compatibility issue.
3. ISSUE:
A race condition in the On-Access Scanner service
can cause high CPU utilization with high
performance systems.
RESOLUTION:
The On-Access Scanner service has been updated to
remedy multi-threading synchronization issues and
remove occurrences of runaway threads.
4. ISSUE:
The On-Access Scanner service sometimes crashes
during a system shutdown or during installation of
a Patch/HotFix.
RESOLUTION:
The On-Access Scanner service has been repaired to
correct a race condition in which a
critical-section synchronization object is deleted
before another thread has entered.
5. ISSUE:
A deadlock could occur on high end servers caused
by a race condition in VirusScan’s link driver.
RESOLUTION:
The link driver has been changed to properly handle
the release of system objects, while holding a lock
on resources.
6. ISSUE:
Port blocking fails on Microsoft Windows Vista
Service Pack 1.
RESOLUTION:
The McAfee Driver Installer has been update to
handle the changes in network stack load order.
7. ISSUE:
The On-Demand Scanner system utilization changes
that were put in patch 5 changed the memory
scanning function. This caused the process scanning
to only scan the first process ID.
RESOLUTION:
The change has been reversed so that all processes
are scanning irrespective of process ID.
8. ISSUE:
When applied to a client installation that was
customized by McAfee Installation Designer (MID),
the patch installer deletes the MidFileTime
registry value. This caused MID .CAB files to be
re-applied to the system.
RESOLUTION:
The patch installer has been updated to no longer
delete the MidFileTime registry value.
9. ISSUE:
A newly created user defined Unwanted Program
Policy, does not take effect immediately if the
file has been scanned by the On-Access Scanner
before the change occurred.
RESOLUTION:
The On-Access Scanner service has been updated to
properly recognize changes to the user defined
detections and clear the cache of files that have
already been scanned so that the new settings take
effect immediately.
10. ISSUE:
A trust relationship exists in McAfee drivers that
can be leveraged by McAfee processes to avoid
triggering access protection rules and other
compatibility symptoms. When the link driver was
updated to newer releases this trust relationship
was lost until a reboot occurred.
RESOLUTION:
The link driver has been modified to better handle
the process of future upgrades to itself without
the need for a reboot.
PATCH 5 RESOLVED ISSUES
1. ISSUE:
Disabling the On-Access Scanner from the console is
not always possible when users with sufficient
privileges belonged to large numbers of user
groups.
RESOLUTION:
VirusScan Statistics has been updated so that users
with sufficient privileges can now disable the
On-Access Scanner from the console regardless of
how many user groups they belong too.
2. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to write to the registry only if it
sees that it is different from the current policy.
This prevents McShield from generating events on
policy enforcement, unless that policy has
changed.
NOTE:
If the symptom persists, refer to McAfee Support
KnowledgeBase article 614077.
3. ISSUE:
With the VirusScan Policy set to "Display managed
tasks in the client console," the tasks sometimes
disappear in the VirusScan Console.
RESOLUTION:
The On-Demand Scanner and Update console plug-ins
have been updated so that when policy enforcement
occurs, the console now updates the list of tasks
to ensure an accurate display.
4. ISSUE:
When using system variables in the folder path for
the Quarantine Manager Policy, the list of
quarantined items is empty, even though items were
quarantined to the correct directory.
RESOLUTION:
The Quarantine Manager console plug-in has been
corrected so that the path specified in the folder
input field is now properly expanded and the system
variables are replaced before the list of
Quarantined items is requested.
NOTE:
For further information about this fix, refer to
McAfee Support KnowledgeBase article 614549.
5. ISSUE:
When a VirusScan Patch installation failed, the
Help "About" dialog box no longer displayed the
previous Patch number.
RESOLUTION:
The patch installer has been updated to write the
new Patch registry value only if the Patch
succeeds. If it fails and a rollback occurs, the
old Patch registry value remains.
6. ISSUE:
A 4E bugcheck (blue screen) can occur when
VirusScan Enterprise 8.5i is installed along side
SafeBoot Content Encryption 3.
RESOLUTION:
The link driver was updated to add supportability
for SafeBoot.
7. ISSUE:
On Windows Vista and later, On-Demand Scan function
"Save as Default" does not correctly save changes
made for future scan tasks.
RESOLUTION:
The On-Demand Scanner has been corrected to
properly save the registry data for the default
task.
8. ISSUE:
Access Protection port blocking rules that spanned
a range of ports could block all processes rather
than only those processes specified in the rule.
RESOLUTION:
The Access Protection driver has been updated to
better handle requests for process names.
9. ISSUE:
A 19 bugcheck (blue screen) occurred intermittently
when loading and unloading content into Link
Driver, for example, when configuration changes
were made or enforced.
RESOLUTION:
The link driver was corrected to resolve a race
condition that could lead to this issue.
PATCH 4 RESOLVED ISSUES
1. ISSUE:
A crash can occur on some systems when the
On-Demand Scan Task includes the "Memory for
rootkits" scan item.
RESOLUTION:
The root kit detection driver has been updated to
better handle different processor architectures.
2. ISSUE:
When a Quarantine Restore Task is run from ePolicy
Orchestrator without specifying a restore item, the
Scan32.exe process runs a full scan and does not
exit properly, leaving the process orphaned.
RESOLUTION:
The VirusScan plug-in has been updated to check if
a restore item is specified. If not, the restore
task does not run.
3. ISSUE:
The VirusScan On-Demand Scanner has no option to
disable cookie detection alerts in the user
interface or registry.
RESOLUTION:
Alerts for On-Demand Scan cookie detections can now
be disabled by setting the DWORD "bCookieAlerts"
registry entry to 0.
HKLM\SOFTWARE\McAfee\VSCore\Alert Client\VSE
4. ISSUE:
When a user is browsing the Internet, the On-Access
Scanner sometimes logs entries "Not scanned (The
file is encrypted)" on temporary files that are
locked for use by the browser.
RESOLUTION:
The reporting for these types of detections can now
be disabled by setting the DWORD
"DoNotReportSkippedFiles" registry entry to 1.
HKLM\SOFTWARE\McAfee\VSCore\On Access
Scanner\McShield\Configuration
NOTE:
If you previously installed VSE85HF328421, the
registry entry "DoNotReportSkippedFiles" is already
set to 1.
5. ISSUE:
In environments where the Lotus Notes data folder
is in a non-standard location, the VirusScan
Scanner for Lotus Notes installer might crash
during installation of VirusScan.
RESOLUTION:
The VirusScan Scanner for Lotus Notes installation
files have been updated so that the search behavior
for notes.ini is more resilient to custom Lotus
Notes client locations.
6. ISSUE:
A crash can occur, where the VirusScan Scanner for
Lotus Notes failed to initialize properly if the
first scanned attachment of a session was stored in
a non-standard attachment format.
RESOLUTION:
The VirusScan Scanner for Lotus Notes library was
changed so that the initialization code occurs
before the attachment prefixed file name handling
occurs.
7. ISSUE:
With Self Protection enabled, the ability to
unblock a connection from a remote computer is
grayed out, even though the logged-on user has
administrator privileges.
RESOLUTION:
VirusScan Statistics has been updated to check the
credentials of the logged-on user, rather than the
access level of our services, to determine if the
"Unblock All Connections Now" button should be
available.
8. ISSUE:
Installation of this Patch enables the option
"Enable on-access scanning at system startup" if it
was previously disabled.
RESOLUTION:
The Patch installer has been corrected to properly
preserve the setting.
9. ISSUE:
The Patch installer returns a success code, even if
the Patch failed to install.
RESOLUTION:
The Patch installer has been corrected so that it
only returns a success code if it is actually
successful.
10. ISSUE:
Installing the Patch on a system that had only one
Unwanted Programs exclusion causes that exclusion
to fail.
RESOLUTION:
The installer now corrects a problem where the
DetectionExclusions registry value was being
changed from REG_MULTI_SZ to REG_SZ if only one
value existed.
11. ISSUE:
On Windows Vista, the administrator cannot disable
the On-Access Scanner via the VirusScan system tray
icon.
RESOLUTION:
VirusScan Statistics has been updated to check the
user's logged on credentials, rather than the
service handle that was used to determine access to
the McShield service in older operating systems.
12. ISSUE:
A failed reinstallation of VirusScan or a failed
Patch installation can delete the license,
resulting in an inoperable product.
RESOLUTION:
The Patch installer has been updated to no longer
cause this state in the event of a failed
installation.
13. ISSUE:
An incorrect rule file was packaged with the
VirusScan NAP file included with Patch 3. This
caused some of the Access Protection rule
categories to not appear.
RESOLUTION:
A new VirusScan NAP file was created with a
corrected rule file.
14. ISSUE:
When Host IPS is installed with VirusScan
Enterprise, and IPS is disabled, the interface for
VirusScan Buffer Overflow Protection remains grayed
out, even though it is active.
RESOLUTION:
The Buffer Overflow console plug-in was updated to
check for the registry flag that is set by Host
IPS, to tell VirusScan Enterprise that IPS is
disabled.
15. ISSUE:
When Self Protection is enabled on a remote machine
and a user attempts open a remote console
connection to that machine, the user receives an
access denied message, and the remote console is
not opened.
RESOLUTION:
The VirusScan Console was updated to make the
connection to the remote console more robust.
PATCH 3 RESOLVED ISSUES
1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on heavily
loaded servers.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash Analysis
(OCA), showing a crash in an instruction that could
not ordinarily fail.
RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual behavior
on affected processors.
4. ISSUE:
A 7E bugcheck (blue screen) can occur with certain
low resource conditions.
RESOLUTION:
The Link Driver has been updated to better handle
scenarios where the system is low on resources.
5. ISSUE:
On 64-bit systems, VirusScan Statistics causes an
issue where the user cannot open more than one
Microsoft Virtual PC image. Virtual PC reports
insufficient memory.
RESOLUTION:
VirusScan Statistics has been updated to resolve a
memory utilization problem on 64-bit systems.
6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to use appropriate registry data.
7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to no longer request a certain level of
access to the service, which would be denied by the
higher level of Access Protection security.
8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are lost
after upgrading from ePolicy Orchestrator 3.5 to
3.6.x.
RESOLUTION:
The VirusScan NAP file has been updated to include
additional xml code for mapping policies between
ePolicy Orchestrator 3.5 and 3.6.x.
NOTE:
To migrate the policies correctly, follow the
instructions under "Installation Steps."
PATCH 2 RESOLVED ISSUES
1. ISSUE:
When an AutoUpdate task copies new DAT files into
the engine folder, VirusScan services and Microsoft
Outlook can spike CPU utilization in excess of one
minute.
RESOLUTION:
The McTaskManager service has been enhanced so that
it no longer issues multiple reload notifications
to the scanners after a DAT update.
NOTE:
Users who saw a smaller spike after the original
fix (HF320829) should see more improvement with
this fix.
2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy Orchestrator or
ProtectionPilot. A registry value was not being
updated correctly.
RESOLUTION:
VirusScan’s Management Plug-In has been updated to
correctly write the "RepairBackupDirectory"
registry entry.
3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
effect immediately. To enable the rule, the
McShield service must be stopped and restarted.
RESOLUTION:
The McShield service has been updated to improve
the monitoring of registry changes with the
Unwanted Programs policy.
4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system with
a clean floppy in its drive.
RESOLUTION:
The On-Access Scanner has been updated to better
handle the shutdown process.
5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
RESOLUTION:
The Link Driver was updated to correct
synchronization issues during the start of
processes.
6. ISSUE:
VirusScan does not correctly remove Buffer Overflow
Protection process exclusions that are introduced
by ePolicy Orchestrator or ProtectionPilot.
RESOLUTION:
The VirusScan plug-in has been updated to properly
remove old Buffer Overflow Protection registry
values when ePolicy Orchestrator or ProtectionPilot
policies are enforced.
7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
RESOLUTION:
The Anti-Virus Filter and Link drivers where
updated to properly remove the read-only attribute
when taking action on files on the EMC share.
8. ISSUE:
Detections on a network share may leave behind zero
byte files on the share.
RESOLUTION:
The Anti-Virus Filter and Link drivers were updated
to ensure proper cleanup of detections on a network
share.
9. ISSUE:
The On-Access Scanner functions in Console are not
updating properly when Access Protection is
disabled.
RESOLUTION:
The state of Self Protection is now correctly
tracked by the On-Access Scanner Console plug-in.
10. ISSUE:
The Self Protection feature of Access Protection is
disabled after removing a Patch from the system.
RESOLUTION:
The MSP installer has been updated to fix a
mismatched name between the custom action and
installer execution sequence tables in the cached
MSI file.
11. ISSUE:
Interacting with Remote Console On-Demand Scan and
AutoUpdate tasks caused the local tasks with the
same id to be acted upon, instead of the remote
task.
RESOLUTION:
The Update and On-Demand Scanner binaries were
updated to properly call the remote task instead of
the local one.
12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1 or
8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do not
display in the VirusScan console.
RESOLUTION:
The MSP Installer package has been updated to
initialize the console tasks that were not
previously initialized, so they display in the
VirusScan console.
NOTE:
This fix is for those who used the originally
released VirusScan Enterprise 8.5i. The current
8.5i repost package includes this fix.
13. ISSUE:
With the McAfee Installation Designer (MID) option
to "Allow Users to Uninstall" disabled, the
UninstallString registry value was removed to
prevent product removal. This registry value was
also used by ePolicy Orchestrator to determine that
VirusScan was installed.
RESOLUTION:
The VirusScan Detection Script has been updated to
check for the existence of the uninstall key,
instead of the UninstallString value, to determine
if the VirusScan Enterprise install package needs
to be pushed to the client.
14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
RESOLUTION:
The Common Shell Scanner binaries have been updated
to resolve this issue.
15. ISSUE:
If McShield and McTaskManager Services were stopped
and restarted in a specific order, the Access
Protection and Buffer Overflow features remained
disabled after the services started.
RESOLUTION:
The On-Access Scan Console plug-in has been updated
to recognize the last known state of Access
Protection and Buffer Overflow Protection when
McShield service is stopped.
16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
RESOLUTION:
The McShield service has been updated to properly
change states when altering configurations.
17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the user
to right-click and disable that feature. The
option to disable right-click ability is under the
"Other" category (Console and Miscellaneous).
RESOLUTION:
The password functionality has been moved to the
BehaviorBlocking console plug-in so that the
right-click option is now included with the Access
Protection password options.
18. ISSUE:
The Buffer Overflow Protection displays a detection
in the On-Access Messages window when the "Show the
messages when a buffer overflow is detected" option
is disabled.
RESOLUTION:
The On-Access Scan Statistics binary has been
updated to properly suppress the Buffer Overflow
detection when configured to do so.
19. ISSUE:
On-Access Scanner’s Network Drive Scanning causes
network copy times to increase, more then what is
normally expected, when this option is enabled.
RESOLUTION:
The Common Shell binaries have been updated to no
longer request a certain level of access to the
network file(s), which would always be denied.
PATCH 1 RESOLVED ISSUES
1. ISSUE:
Applications that perform operations with temporary
files, such as printing, generate a "file missing"
error.
RESOLUTION:
The link driver has been updated to correctly
handle file operations that use the DeleteOnClose
flag.
2. ISSUE:
When McAfee Policy Enforcer is pushed out to a
system with VirusScan Enterprise 8.5i, McAfee
trusted processes might trigger Access Protection
rules. A reboot is required to correct the
problem.
RESOLUTION:
The link driver has been revised to ensure trusted
policies are propagated between instances of loaded
drivers.
3. ISSUE:
Some files remain locked indefinitely. Third-party
tools indicate that McShield.exe was leaking
handles, thereby locking the file.
RESOLUTION:
The link driver has been updated to detect and
handle the oplock break-in-progress status code and
ensure file locks are released.
4. ISSUE:
Under certain conditions, VirusScan Enterprise
scanner for Lotus Notes can mistakenly deny access
to the Lotus Notes internal processes, if another
Note is being accessed by the user. The message
"You are not authorized to perform that operation"
is displayed for the user.
RESOLUTION:
The Lotus Notes scanner binaries have been updated
to resolve the issue.
5. ISSUE:
For non-English platforms, a control ID is
displayed in the Status field of the On-Access
Messages window, rather than the localized
strings.
RESOLUTION:
The resource binary for the On-Access Scanner
service has been updated to resolve this issue.
6. ISSUE:
When VirusScan Enterprise 8.5i is installed to
Windows Vista 32-bit platforms, the Buffer Overflow
Protection feature is not available.
RESOLUTION:
This Patch enables Buffer Overflow Protection for
Windows Vista 32-bit environments.
7. ISSUE:
When a scheduled On-Demand Scan task fails to
authenticate to a specified location, the user
receives an erroneous error asking that VirusScan
Enterprise be reinstalled.
RESOLUTION:
The localized binaries file has been updated to
handle the specific event.
8. ISSUE:
ePolicy Orchestrator could fail to replicate
distributed repositories when VirusScan Enterprise
8.5i is installed.
RESOLUTION:
The Common Shell binary has been updated to allow
sharing of files with other processes.
9. ISSUE:
Users without local administrative rights are not
able to use the Help file unless it was previously
downloaded by an administrator.
RESOLUTION:
Non-administrative users can now download and use
the current Help file.
10. ISSUE:
Not all VirusScan Enterprise events can be filtered
in ePolicy Orchestrator reporting.
RESOLUTION:
The extended reports NAP file has been updated to
allow filtering of all VirusScan Enterprise
events.
11. ISSUE:
In certain circumstances, when a state change
occurs with Access Protection, the On-Access
Scanner cannot be disabled/enabled, and some Access
Protection rules fail to log messages.
RESOLUTION:
The McTaskManager Service and Access Protection
binaries have been updated to resolve this issue.
12. ISSUE:
When resuming from the hibernate state, the system
tray icon might be in the disabled state,
reflecting the status of the On-Access Scanner.
However, the scanner service is functioning
normally.
RESOLUTION:
The system tray icon should always reflect the
correct state of the On-Access Scanner when
resuming from hibernation.
KNOWN ISSUES
1. The 5200 or later engine must be installed prior to
deploying Patch 5 or later. The Patch updates the
cached MSI tables to prevent a repair from
restoring an unusable version of the engine.
2. On-Access Scan Messages might fail to populate on
detections after Patch 8 is installed. A reboot
might be needed to resolve this issue. This does
not affect detection logging and alerting, or
reporting to ePolicy Orchestrator and
ProtectionPilot.
3. Some customers have reported seeing VirusScan
Statistics (VShield) crashing/disappearing from the
system tray. Refer to McAfee Support KnowledgeBase
article 613892 for more information on this issue.
4. If Host Intrusion Prevention 6.x or later is
installed and disabled prior to VirusScan
Enterprise, it is necessary to re-enable IPS and
disable it again in order for VirusScan Buffer
Overflow Protection to be properly enabled.
5. Sporadic crashes of the McShield Service have been
seen during the patch install, on systems running
McAfee AntiSpyware Enterprise Module. The service
recovers correctly at the end of the patch
process.
6. If you install this release interactively and
cancel the installation on a system where a
previous Patch was installed, after the rollback
completes, the previous Patch no longer reports to
ePolicy Orchestrator or appears in the "About
VirusScan Enterprise" window.
7. Installing the Patch and specifying a log file path
using the Microsoft Installer (MSI) switch "/L"
does not log to the specified path. A log file
capturing full data is logged to the folder
"McAfeeLogs" under the Temp folder.
8. If the Lotus Notes client is open when this release
is installed, the installation completes
successfully, but a reboot is required to replace
the McAfee Lotus scanner files. The new files are
not used until after a reboot.
9. Uninstalling VirusScan Enterprise Patches is now
possible for computers running Windows Installer
v3.x or later. This technology is not fully
integrated for Windows 2000 operating systems, so
there is no option to remove the Patch in
Add/Remove programs. Please see instructions under
"Removing the Patch" for removal via command-line
options.
10. Uninstalling VirusScan Patches is not available for
Windows NT platforms, because Windows Installer
v3.x is not supported on this platform. The Patch
still installs to all platforms supported by
VirusScan Enterprise 8.5i.
11. Patches for VirusScan Enterprise 8.5i can only be
uninstalled via Add/Remove programs, not via
ePolicy Orchestrator or ProtectionPilot.
FILES INCLUDED WITH THIS RELEASE
This release consists of a package called VSE85P8.ZIP,
which contains the following files:
PKGCATALOG.Z =
Package catalog file
PATCH8.TXT =
This text file
VSE850DET.MCS =
VirusScan Enterprise detection script
SETUP.EXE =
Installer for this release
SETUP.INI =
Initialization file for SETUP.EXE
PATCH8.MSP =
Microsoft Installer Patch file
VSE850.NAP =
Management NAP for VirusScan Enterprise
VSE850REPORTS.NAP =
Reporting NAP file
The following files are installed to client
systems:
STRINGS.BIN No version
MIDUTIL.DLL 8.5.0.156
CONDL.DLL 8.5.0.857
COPTCPL.DLL 8.5.0.857
MCAVDETECT.DLL 8.5.0.869
MCAVSCV.DLL 8.5.0.869
BBCPL.DLL 8.5.0.895
CONSL.DLL 8.5.0.895
MCCONSOL.EXE 8.5.0.895
SHUTIL.DLL 8.5.0.895
OASCPL.DLL 8.5.0.909
FTCFG.DLL 8.5.0.936
MCUPDATE.EXE 8.5.0.936
NAIANN.DLL 8.5.0.936
NCDAEMON.EXE 8.5.0.936
NCEXTMGR.DLL 8.5.0.936
NCINSTALL.DLL 8.5.0.936
NCMENU.DLL 8.5.0.936
NCSCAN.DLL 8.5.0.936
NCTRACE.DLL 8.5.0.936
QUARCPL.DLL 8.5.0.936
SCAN32.EXE 8.5.0.936
SCAN64.EXE 8.5.0.936
SCNCFG32.EXE 8.5.0.936
SHSTAT.EXE 8.5.0.936
VSODSCPL.DLL 8.5.0.936
VSTSKMGR.EXE 8.5.0.936
VSUPDCPL.DLL 8.5.0.936
VSPLUGIN.DLL 8.5.0.937
ENTSRV.DLL 13.3.0.169
MFEBOPA.DLL 13.3.0.169
MFEBOPK.SYS 13.3.0.169
MFEAPFA.DLL 13.3.0.169
MFEAPFK.SYS 13.3.0.169
MFEAVFA.DLL 13.3.0.169
MFEAVFK.SYS 13.3.0.169
MFEHIDA.DLL 13.3.0.169
MFEHIDN.EXE 13.3.0.169
MFEHIDK.SYS 13.3.0.169
MFERKDA.DLL 13.3.0.169
MFERKDK.SYS 13.3.0.169
MFETDIK.SYS 13.3.0.169
ADSLOKUU.DLL 13.3.2.137
CSSCAN.EXE 13.3.2.137
ENTVUTIL.EXE 13.3.2.137
FTL.DLL 13.3.2.137
LOCKDOWN.DLL 13.3.2.137
MCSHIELD.DLL 13.3.2.137
MCSHIELD.EXE 13.3.2.137
MCSHIELDPERFDATA.DLL 13.3.2.137
MCVSSNMP.DLL 13.3.2.137
MYTILUS.DLL 13.3.2.137
MYTILUS2.DLL 13.3.2.137
NAEVENT.DLL 13.3.2.137
NAIEVENT.DLL 13.3.2.137
SCANOTLK.DLL 13.3.2.137
SCRIPTCL.DLL 13.3.2.137
SCRIPTSV.DLL 13.3.2.137
LOGPARSER.EXE 1.2.0.131
The following files are checked in to the ePolicy
Orchestrator or ProtectionPilot repository:
VSE850.NAP 2.0.0.696
VSE850REPORTS.NAP 3.0.0.781
Download: http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar (http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar)
Download Mirror: http://www.megaupload.com/?d=GN9MP08R (http://www.megaupload.com/?d=GN9MP08R)
P.S.
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
Samker
[/aeva]
-
[aeva]
(http://www.9down.com/pic/topic/mcafee.gif)
McAfee VirusScan Enterprise protects your desktop and file servers from a wide range of threats, including viruses, worms, Trojan horses, and potentially unwanted code and programs. McAfee VirusScan® 8 takes anti-virus protection to the next level, integrating elements of intrusion prevention and firewall technology into a single solution for PCs and file servers. This powerful combination delivers truly proactive protection from the newest of today’s threats-including buffer - overflow exploits and blended attacks - and features advanced outbreak management responses to reduce the damage and costs of outbreaks. Everything is managed by McAfee ePolicy Orchestrator® or ProtectionPilot™ for scalable security policy compliance and graphical reporting.
Release Notes for McAfee(R) VirusScan(R) Enterprise Version 8.5i Patch 8
Copyright (C) 2009 McAfee, Inc.
All Rights Reserved
==========================================================
Patch Release: January 27, 2009
This release was developed and tested with:
- VirusScan Enterprise: 8.5i
- DAT Version: 5474, December 24, 2008
- Engine Version: 5.3.00
Make sure you have installed these versions, or later,
before using this release.
==========================================================
Thank you for using VirusScan(R) Enterprise software.
This file contains important information regarding this
release. We strongly recommend that you read the entire
document.
__________________________________________________________
WHAT'S IN THIS FILE
- About This Release
- Purpose
- Improvements
- Resolved Issues
- Patch 8 Resolved Issues
- Patch 7 Resolved Issues
- Patch 6.1 Resolved Issues
- Patch 6 Resolved Issues
- Patch 5 Resolved Issues
- Patch 4 Resolved Issues
- Patch 3 Resolved Issues
- Patch 2 Resolved Issues
- Patch 1 Resolved Issues
- Known Issues
- Files Included With This Release
- Installation
- Installation Requirements
- Installation Steps
- Installation Steps via ePolicy Orchestrator
- HotFix/Patch Reporting
- Verifying the Installation
- Removing the Patch
- Copyright & Trademark Attributions
- License Information
__________________________________________________________
ABOUT THIS RELEASE
PURPOSE
This release contains updated binaries in a single
Microsoft Patch installer to address all items listed
in "Resolved Issues" below.
For the most up-to-date copy of this Readme
information, refer to McAfee Support KnowledgeBase
article 60415.
Patch 8 is a High Priority release. See McAfee Support
KnowledgeBase article 614038 for information on
ratings.
__________________________________________________________
IMPROVEMENTS
1. VirusScan Enterprise with the AntiSpyware Module
can now be set so that it no longer places cookie
detections in the quarantine folder. They instead
are deleted permanently as part of the clean
action.
NOTE:
By setting the DWORD "DisableCookieBackups"
registry entry to 1, cookie detection quarantines
no longer occur.
HKLM\SOFTWARE\McAfee\VSCore
2. The on-demand scanner has been updated to better
use the System Utilization setting throughout the
entire scanning process.
Refer to McAfee Support KnowledgeBase article
9197288 for further information.
3. This Patch contains a new Buffer Overflow and
Access Protection DAT (version 378), which adds an
Access Protection category for Virtual Machine
Protection. These rules provide access protection
functionality for virtual machines.
NOTE:
To manage the new Virtual Machine Protection
category with ePolicy Orchestrator 3.x or
ProtectionPilot, you must use the latest NAP file,
which is included in this Patch package, or
VirusScan 8.5i Repost Patch 5.
For ePolicy Orchestrator 4.x users, the Extension
update also contains the updated rule file. The
updated Extension package is available on the web
product download area under the Patches category.
__________________________________________________________
RESOLVED ISSUES
The resolved issues are divided into subsections per
patch, showing when each fix was added to the
compilation.
PATCH 8 RESOLVED ISSUES
1. ISSUE:
In Patch 7, the McShield resource files were
missing some string tables that were responsible
for On-Access Scan and On-Demand Scan status.
RESOLUTION:
McShield.dll has been corrected to include all the
proper strings for displaying information on
non-English installations.
2. ISSUE:
A timing issue could occur during the import of the
McAfee Installation Designer (MID) configuration.
During the installation of VirusScan Enterprise,
the temporary registry information sometimes was
not available before the registry editor attempted
to apply the settings. The process generated an
application event, ID 1006, while the registry
editor attempted to reapply the settings until it
was successful.
RESOLUTION:
The McAfee Installation Designer configuration
applicator was revised to no longer report the
error, because it does not represent a true failure
in the process.
NOTE:
To prevent the generation of this error, use the
repost package that includes this Patch release.
3. ISSUE:
On multi-processor systems that receive files from
remote clients, some instructions were being
executed frequently and unnecessarily, acquiring an
exclusive lock on all processors. This created a
bottleneck in the file I/O being written to disk.
RESOLUTION:
The link driver has been revised to eliminate the
described bottleneck.
4. ISSUE:
Access Protection block rules that were created for
USB devices sometimes did not handle removing and
reinserting the device multiple times.
RESOLUTION:
The Access Protection, Anti-Virus Filter, and Link
drivers have been updated to better handle
re-hooking the device.
5. ISSUE:
The On-Access Scanner was not properly utilizing
the "Scan files opened for Backup" option.
RESOLUTION:
The Anti-Virus Filter driver has been rectified to
properly interpret the flag being sent from the
On-Access Scanner.
6. ISSUE:
Certain detections with multiple infections or
clean actions were logging the action two times.
One entry was made during the middle of the
process, and the other during the final
resolution.
RESOLUTION:
The Common Shell scanner has been updated to report
only the final resolution of the detection.
7. ISSUE:
The repair option for McAfee AntiSpyware Enterprise
Module would execute during the patch process. This
caused the cookie and registry scan targets to be
re-added to On-Demand Scan tasks that were removed
by the user.
RESOLUTION:
The patch installer has been updated to preserve
the On-Demand Scan anti-spyware scan targets.
PATCH 7 RESOLVED ISSUES
1. ISSUE:
When installing a VirusScan Enterprise 8.5i patch,
the existing On-Access Scanner service might fail
to unload. This leads to two instances of the
service, with one consuming a high amount of CPU
usage.
RESOLUTION:
The On-Access Scanner service had been updated to
avoid a runaway thread scenario that caused the
service, being replaced, to not stop.
NOTE:
To avoid this issue while installing Patch 7 or
later, install HF427887 first. Refer to McAfee
Support KnowledgeBase article 616344 for further
information.
2. ISSUE:
Changes to the VirusScan Enterprise core subsystem
disabled performance optimization for handling
frequent write actions to INI and LOG files.
RESOLUTION:
The Anti-Virus Filter Driver was corrected to
ensure that scanning of specified file extensions
is optimized, as in previous versions.
3. ISSUE:
A three-party deadlock occurred, causing the
On-Access Scanner to become blocked until it times
out. This causes the scanner service to time out
and eventually self-terminate.
RESOLUTION:
The Common Shell scanner has been updated to
prevent the On-Access Scanner from becoming blocked
while the security libraries are loaded by the
system.
4. ISSUE:
The extended reports NAP contained some ePolicy
Orchestrator stored procedures that were needed to
add support for the VirusScan product line. The
ePolicy Orchestrator patches have since made new
modifications to the same stored procedures.
Therefore, when the VirusScan extended reports NAP
is checked in after the new ePolicy Orchestrator
modified procedures are in place, they are
overwritten and the newer functionality is lost.
RESOLUTION:
The VirusScan extended reports NAP has been revised
to no longer replace the ePolicy Orchestrator
stored procedures.
5. ISSUE:
If the Lotus Notes client is running during
uninstall of VirusScan Enterprise 8.5i, the Lotus
Notes Scanner entries might not be properly removed
from the NOTES.INI file. This can cause the Lotus
Notes client to crash on subsequent starts.
RESOLUTION:
The Lotus Notes Scanner module has been corrected
to remove its entries in the NOTES.INI file for all
scenarios.
6. ISSUE:
The VirusScan Enterprise Patch installer did not
correctly preserve the MIDFileTime registry value.
This caused the McAfee Installation Designer (MID)
.CAB files to be re-applied at the time of
installation.
RESOLUTION:
The Patch installer has been updated to correctly
preserve the binary value of MIDFileTime.
7. ISSUE:
Changes made in Microsoft Vista SP1 and later, in
how the operating system opens/views network files,
caused delays in opening new network paths, with
the On-Access Scanner’s Network Scanning feature
enabled.
RESOLUTION:
The link driver has been modified to use a
different method of accessing the network resources
that avoids the delays imposed by the operating
system change.
8. ISSUE:
A 7E bugcheck (blue screen) might occur if an
application shut down immediately after sending
data over the network.
RESOLUTION:
The link driver has been revised to better handle
data that is transmitted by applications after the
driver has stopped.
9. ISSUE:
When the VirusScan NAP is checked in, it runs a
script that enables anti-spyware settings in
policies and tasks, if the AntiSpyware 8.5 module
NAP is in the ePolicy Orchestrator repository. The
intended purpose of the script is similar to the
local AntiSpyware module installer, which enables
its settings when installed on a local system.
RESOLUTION:
The VirusScan NAP has been updated so that the
script is disabled during check-in of the VirusScan
NAP package. This prevents the anti-spyware
settings from being enabled when updating the
VirusScan NAP.
NOTE:
The McAfee AntiSpyware 8.5 module NAP has the same
script in it. This means that if the McAfee
AntiSpyware 8.5 module NAP is installed after the
VirusScan NAP, the anti-spyware settings are still
enabled.
10. ISSUE:
Servers that deal with many file writes were
becoming unresponsive.
RESOLUTION:
The anti-virus filter driver was revised to
correctly filter and dispatch scans on write.
PATCH 6.1 RESOLVED ISSUES
1. ISSUE:
An issue can occur when the 5300 engine is
installed prior to installing VirusScan 8.5i Patch
6. The scanner engine files are partially
overwritten with the previous 5200 version that is
stored in the MSI cache. This mismatch causes the
scanner engine to fail to initialize.
RESOLUTION:
The Patch installation package has been updated to
correct this issue, and does not overwrite the
engine files.
PATCH 6 RESOLVED ISSUES
1. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to only write to the registry if it
sees that it is different from the current policy.
This will prevent McShield from generating events
on policy enforcement, unless that policy has
changed.
This is an addendum to the original solution in
Patch 5, where the fix did not work when the
preferred language was set to something other than
automatic.
2. ISSUE:
A compatibility issue has been seen with
VirusScan’s port blocking feature, and Veritas
backup applications. This was causing the backup
software services to stop running.
RESOLUTION:
The VirusScan Anti-Virus Mini-Firewall Driver has
been updated to correct the compatibility issue.
3. ISSUE:
A race condition in the On-Access Scanner service
can cause high CPU utilization with high
performance systems.
RESOLUTION:
The On-Access Scanner service has been updated to
remedy multi-threading synchronization issues and
remove occurrences of runaway threads.
4. ISSUE:
The On-Access Scanner service sometimes crashes
during a system shutdown or during installation of
a Patch/HotFix.
RESOLUTION:
The On-Access Scanner service has been repaired to
correct a race condition in which a
critical-section synchronization object is deleted
before another thread has entered.
5. ISSUE:
A deadlock could occur on high end servers caused
by a race condition in VirusScan’s link driver.
RESOLUTION:
The link driver has been changed to properly handle
the release of system objects, while holding a lock
on resources.
6. ISSUE:
Port blocking fails on Microsoft Windows Vista
Service Pack 1.
RESOLUTION:
The McAfee Driver Installer has been update to
handle the changes in network stack load order.
7. ISSUE:
The On-Demand Scanner system utilization changes
that were put in patch 5 changed the memory
scanning function. This caused the process scanning
to only scan the first process ID.
RESOLUTION:
The change has been reversed so that all processes
are scanning irrespective of process ID.
8. ISSUE:
When applied to a client installation that was
customized by McAfee Installation Designer (MID),
the patch installer deletes the MidFileTime
registry value. This caused MID .CAB files to be
re-applied to the system.
RESOLUTION:
The patch installer has been updated to no longer
delete the MidFileTime registry value.
9. ISSUE:
A newly created user defined Unwanted Program
Policy, does not take effect immediately if the
file has been scanned by the On-Access Scanner
before the change occurred.
RESOLUTION:
The On-Access Scanner service has been updated to
properly recognize changes to the user defined
detections and clear the cache of files that have
already been scanned so that the new settings take
effect immediately.
10. ISSUE:
A trust relationship exists in McAfee drivers that
can be leveraged by McAfee processes to avoid
triggering access protection rules and other
compatibility symptoms. When the link driver was
updated to newer releases this trust relationship
was lost until a reboot occurred.
RESOLUTION:
The link driver has been modified to better handle
the process of future upgrades to itself without
the need for a reboot.
PATCH 5 RESOLVED ISSUES
1. ISSUE:
Disabling the On-Access Scanner from the console is
not always possible when users with sufficient
privileges belonged to large numbers of user
groups.
RESOLUTION:
VirusScan Statistics has been updated so that users
with sufficient privileges can now disable the
On-Access Scanner from the console regardless of
how many user groups they belong too.
2. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to write to the registry only if it
sees that it is different from the current policy.
This prevents McShield from generating events on
policy enforcement, unless that policy has
changed.
NOTE:
If the symptom persists, refer to McAfee Support
KnowledgeBase article 614077.
3. ISSUE:
With the VirusScan Policy set to "Display managed
tasks in the client console," the tasks sometimes
disappear in the VirusScan Console.
RESOLUTION:
The On-Demand Scanner and Update console plug-ins
have been updated so that when policy enforcement
occurs, the console now updates the list of tasks
to ensure an accurate display.
4. ISSUE:
When using system variables in the folder path for
the Quarantine Manager Policy, the list of
quarantined items is empty, even though items were
quarantined to the correct directory.
RESOLUTION:
The Quarantine Manager console plug-in has been
corrected so that the path specified in the folder
input field is now properly expanded and the system
variables are replaced before the list of
Quarantined items is requested.
NOTE:
For further information about this fix, refer to
McAfee Support KnowledgeBase article 614549.
5. ISSUE:
When a VirusScan Patch installation failed, the
Help "About" dialog box no longer displayed the
previous Patch number.
RESOLUTION:
The patch installer has been updated to write the
new Patch registry value only if the Patch
succeeds. If it fails and a rollback occurs, the
old Patch registry value remains.
6. ISSUE:
A 4E bugcheck (blue screen) can occur when
VirusScan Enterprise 8.5i is installed along side
SafeBoot Content Encryption 3.
RESOLUTION:
The link driver was updated to add supportability
for SafeBoot.
7. ISSUE:
On Windows Vista and later, On-Demand Scan function
"Save as Default" does not correctly save changes
made for future scan tasks.
RESOLUTION:
The On-Demand Scanner has been corrected to
properly save the registry data for the default
task.
8. ISSUE:
Access Protection port blocking rules that spanned
a range of ports could block all processes rather
than only those processes specified in the rule.
RESOLUTION:
The Access Protection driver has been updated to
better handle requests for process names.
9. ISSUE:
A 19 bugcheck (blue screen) occurred intermittently
when loading and unloading content into Link
Driver, for example, when configuration changes
were made or enforced.
RESOLUTION:
The link driver was corrected to resolve a race
condition that could lead to this issue.
PATCH 4 RESOLVED ISSUES
1. ISSUE:
A crash can occur on some systems when the
On-Demand Scan Task includes the "Memory for
rootkits" scan item.
RESOLUTION:
The root kit detection driver has been updated to
better handle different processor architectures.
2. ISSUE:
When a Quarantine Restore Task is run from ePolicy
Orchestrator without specifying a restore item, the
Scan32.exe process runs a full scan and does not
exit properly, leaving the process orphaned.
RESOLUTION:
The VirusScan plug-in has been updated to check if
a restore item is specified. If not, the restore
task does not run.
3. ISSUE:
The VirusScan On-Demand Scanner has no option to
disable cookie detection alerts in the user
interface or registry.
RESOLUTION:
Alerts for On-Demand Scan cookie detections can now
be disabled by setting the DWORD "bCookieAlerts"
registry entry to 0.
HKLM\SOFTWARE\McAfee\VSCore\Alert Client\VSE
4. ISSUE:
When a user is browsing the Internet, the On-Access
Scanner sometimes logs entries "Not scanned (The
file is encrypted)" on temporary files that are
locked for use by the browser.
RESOLUTION:
The reporting for these types of detections can now
be disabled by setting the DWORD
"DoNotReportSkippedFiles" registry entry to 1.
HKLM\SOFTWARE\McAfee\VSCore\On Access
Scanner\McShield\Configuration
NOTE:
If you previously installed VSE85HF328421, the
registry entry "DoNotReportSkippedFiles" is already
set to 1.
5. ISSUE:
In environments where the Lotus Notes data folder
is in a non-standard location, the VirusScan
Scanner for Lotus Notes installer might crash
during installation of VirusScan.
RESOLUTION:
The VirusScan Scanner for Lotus Notes installation
files have been updated so that the search behavior
for notes.ini is more resilient to custom Lotus
Notes client locations.
6. ISSUE:
A crash can occur, where the VirusScan Scanner for
Lotus Notes failed to initialize properly if the
first scanned attachment of a session was stored in
a non-standard attachment format.
RESOLUTION:
The VirusScan Scanner for Lotus Notes library was
changed so that the initialization code occurs
before the attachment prefixed file name handling
occurs.
7. ISSUE:
With Self Protection enabled, the ability to
unblock a connection from a remote computer is
grayed out, even though the logged-on user has
administrator privileges.
RESOLUTION:
VirusScan Statistics has been updated to check the
credentials of the logged-on user, rather than the
access level of our services, to determine if the
"Unblock All Connections Now" button should be
available.
8. ISSUE:
Installation of this Patch enables the option
"Enable on-access scanning at system startup" if it
was previously disabled.
RESOLUTION:
The Patch installer has been corrected to properly
preserve the setting.
9. ISSUE:
The Patch installer returns a success code, even if
the Patch failed to install.
RESOLUTION:
The Patch installer has been corrected so that it
only returns a success code if it is actually
successful.
10. ISSUE:
Installing the Patch on a system that had only one
Unwanted Programs exclusion causes that exclusion
to fail.
RESOLUTION:
The installer now corrects a problem where the
DetectionExclusions registry value was being
changed from REG_MULTI_SZ to REG_SZ if only one
value existed.
11. ISSUE:
On Windows Vista, the administrator cannot disable
the On-Access Scanner via the VirusScan system tray
icon.
RESOLUTION:
VirusScan Statistics has been updated to check the
user's logged on credentials, rather than the
service handle that was used to determine access to
the McShield service in older operating systems.
12. ISSUE:
A failed reinstallation of VirusScan or a failed
Patch installation can delete the license,
resulting in an inoperable product.
RESOLUTION:
The Patch installer has been updated to no longer
cause this state in the event of a failed
installation.
13. ISSUE:
An incorrect rule file was packaged with the
VirusScan NAP file included with Patch 3. This
caused some of the Access Protection rule
categories to not appear.
RESOLUTION:
A new VirusScan NAP file was created with a
corrected rule file.
14. ISSUE:
When Host IPS is installed with VirusScan
Enterprise, and IPS is disabled, the interface for
VirusScan Buffer Overflow Protection remains grayed
out, even though it is active.
RESOLUTION:
The Buffer Overflow console plug-in was updated to
check for the registry flag that is set by Host
IPS, to tell VirusScan Enterprise that IPS is
disabled.
15. ISSUE:
When Self Protection is enabled on a remote machine
and a user attempts open a remote console
connection to that machine, the user receives an
access denied message, and the remote console is
not opened.
RESOLUTION:
The VirusScan Console was updated to make the
connection to the remote console more robust.
PATCH 3 RESOLVED ISSUES
1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on heavily
loaded servers.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash Analysis
(OCA), showing a crash in an instruction that could
not ordinarily fail.
RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual behavior
on affected processors.
4. ISSUE:
A 7E bugcheck (blue screen) can occur with certain
low resource conditions.
RESOLUTION:
The Link Driver has been updated to better handle
scenarios where the system is low on resources.
5. ISSUE:
On 64-bit systems, VirusScan Statistics causes an
issue where the user cannot open more than one
Microsoft Virtual PC image. Virtual PC reports
insufficient memory.
RESOLUTION:
VirusScan Statistics has been updated to resolve a
memory utilization problem on 64-bit systems.
6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to use appropriate registry data.
7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to no longer request a certain level of
access to the service, which would be denied by the
higher level of Access Protection security.
8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are lost
after upgrading from ePolicy Orchestrator 3.5 to
3.6.x.
RESOLUTION:
The VirusScan NAP file has been updated to include
additional xml code for mapping policies between
ePolicy Orchestrator 3.5 and 3.6.x.
NOTE:
To migrate the policies correctly, follow the
instructions under "Installation Steps."
PATCH 2 RESOLVED ISSUES
1. ISSUE:
When an AutoUpdate task copies new DAT files into
the engine folder, VirusScan services and Microsoft
Outlook can spike CPU utilization in excess of one
minute.
RESOLUTION:
The McTaskManager service has been enhanced so that
it no longer issues multiple reload notifications
to the scanners after a DAT update.
NOTE:
Users who saw a smaller spike after the original
fix (HF320829) should see more improvement with
this fix.
2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy Orchestrator or
ProtectionPilot. A registry value was not being
updated correctly.
RESOLUTION:
VirusScan’s Management Plug-In has been updated to
correctly write the "RepairBackupDirectory"
registry entry.
3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
effect immediately. To enable the rule, the
McShield service must be stopped and restarted.
RESOLUTION:
The McShield service has been updated to improve
the monitoring of registry changes with the
Unwanted Programs policy.
4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system with
a clean floppy in its drive.
RESOLUTION:
The On-Access Scanner has been updated to better
handle the shutdown process.
5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
RESOLUTION:
The Link Driver was updated to correct
synchronization issues during the start of
processes.
6. ISSUE:
VirusScan does not correctly remove Buffer Overflow
Protection process exclusions that are introduced
by ePolicy Orchestrator or ProtectionPilot.
RESOLUTION:
The VirusScan plug-in has been updated to properly
remove old Buffer Overflow Protection registry
values when ePolicy Orchestrator or ProtectionPilot
policies are enforced.
7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
RESOLUTION:
The Anti-Virus Filter and Link drivers where
updated to properly remove the read-only attribute
when taking action on files on the EMC share.
8. ISSUE:
Detections on a network share may leave behind zero
byte files on the share.
RESOLUTION:
The Anti-Virus Filter and Link drivers were updated
to ensure proper cleanup of detections on a network
share.
9. ISSUE:
The On-Access Scanner functions in Console are not
updating properly when Access Protection is
disabled.
RESOLUTION:
The state of Self Protection is now correctly
tracked by the On-Access Scanner Console plug-in.
10. ISSUE:
The Self Protection feature of Access Protection is
disabled after removing a Patch from the system.
RESOLUTION:
The MSP installer has been updated to fix a
mismatched name between the custom action and
installer execution sequence tables in the cached
MSI file.
11. ISSUE:
Interacting with Remote Console On-Demand Scan and
AutoUpdate tasks caused the local tasks with the
same id to be acted upon, instead of the remote
task.
RESOLUTION:
The Update and On-Demand Scanner binaries were
updated to properly call the remote task instead of
the local one.
12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1 or
8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do not
display in the VirusScan console.
RESOLUTION:
The MSP Installer package has been updated to
initialize the console tasks that were not
previously initialized, so they display in the
VirusScan console.
NOTE:
This fix is for those who used the originally
released VirusScan Enterprise 8.5i. The current
8.5i repost package includes this fix.
13. ISSUE:
With the McAfee Installation Designer (MID) option
to "Allow Users to Uninstall" disabled, the
UninstallString registry value was removed to
prevent product removal. This registry value was
also used by ePolicy Orchestrator to determine that
VirusScan was installed.
RESOLUTION:
The VirusScan Detection Script has been updated to
check for the existence of the uninstall key,
instead of the UninstallString value, to determine
if the VirusScan Enterprise install package needs
to be pushed to the client.
14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
RESOLUTION:
The Common Shell Scanner binaries have been updated
to resolve this issue.
15. ISSUE:
If McShield and McTaskManager Services were stopped
and restarted in a specific order, the Access
Protection and Buffer Overflow features remained
disabled after the services started.
RESOLUTION:
The On-Access Scan Console plug-in has been updated
to recognize the last known state of Access
Protection and Buffer Overflow Protection when
McShield service is stopped.
16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
RESOLUTION:
The McShield service has been updated to properly
change states when altering configurations.
17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the user
to right-click and disable that feature. The
option to disable right-click ability is under the
"Other" category (Console and Miscellaneous).
RESOLUTION:
The password functionality has been moved to the
BehaviorBlocking console plug-in so that the
right-click option is now included with the Access
Protection password options.
18. ISSUE:
The Buffer Overflow Protection displays a detection
in the On-Access Messages window when the "Show the
messages when a buffer overflow is detected" option
is disabled.
RESOLUTION:
The On-Access Scan Statistics binary has been
updated to properly suppress the Buffer Overflow
detection when configured to do so.
19. ISSUE:
On-Access Scanner’s Network Drive Scanning causes
network copy times to increase, more then what is
normally expected, when this option is enabled.
RESOLUTION:
The Common Shell binaries have been updated to no
longer request a certain level of access to the
network file(s), which would always be denied.
PATCH 1 RESOLVED ISSUES
1. ISSUE:
Applications that perform operations with temporary
files, such as printing, generate a "file missing"
error.
RESOLUTION:
The link driver has been updated to correctly
handle file operations that use the DeleteOnClose
flag.
2. ISSUE:
When McAfee Policy Enforcer is pushed out to a
system with VirusScan Enterprise 8.5i, McAfee
trusted processes might trigger Access Protection
rules. A reboot is required to correct the
problem.
RESOLUTION:
The link driver has been revised to ensure trusted
policies are propagated between instances of loaded
drivers.
3. ISSUE:
Some files remain locked indefinitely. Third-party
tools indicate that McShield.exe was leaking
handles, thereby locking the file.
RESOLUTION:
The link driver has been updated to detect and
handle the oplock break-in-progress status code and
ensure file locks are released.
4. ISSUE:
Under certain conditions, VirusScan Enterprise
scanner for Lotus Notes can mistakenly deny access
to the Lotus Notes internal processes, if another
Note is being accessed by the user. The message
"You are not authorized to perform that operation"
is displayed for the user.
RESOLUTION:
The Lotus Notes scanner binaries have been updated
to resolve the issue.
5. ISSUE:
For non-English platforms, a control ID is
displayed in the Status field of the On-Access
Messages window, rather than the localized
strings.
RESOLUTION:
The resource binary for the On-Access Scanner
service has been updated to resolve this issue.
6. ISSUE:
When VirusScan Enterprise 8.5i is installed to
Windows Vista 32-bit platforms, the Buffer Overflow
Protection feature is not available.
RESOLUTION:
This Patch enables Buffer Overflow Protection for
Windows Vista 32-bit environments.
7. ISSUE:
When a scheduled On-Demand Scan task fails to
authenticate to a specified location, the user
receives an erroneous error asking that VirusScan
Enterprise be reinstalled.
RESOLUTION:
The localized binaries file has been updated to
handle the specific event.
8. ISSUE:
ePolicy Orchestrator could fail to replicate
distributed repositories when VirusScan Enterprise
8.5i is installed.
RESOLUTION:
The Common Shell binary has been updated to allow
sharing of files with other processes.
9. ISSUE:
Users without local administrative rights are not
able to use the Help file unless it was previously
downloaded by an administrator.
RESOLUTION:
Non-administrative users can now download and use
the current Help file.
10. ISSUE:
Not all VirusScan Enterprise events can be filtered
in ePolicy Orchestrator reporting.
RESOLUTION:
The extended reports NAP file has been updated to
allow filtering of all VirusScan Enterprise
events.
11. ISSUE:
In certain circumstances, when a state change
occurs with Access Protection, the On-Access
Scanner cannot be disabled/enabled, and some Access
Protection rules fail to log messages.
RESOLUTION:
The McTaskManager Service and Access Protection
binaries have been updated to resolve this issue.
12. ISSUE:
When resuming from the hibernate state, the system
tray icon might be in the disabled state,
reflecting the status of the On-Access Scanner.
However, the scanner service is functioning
normally.
RESOLUTION:
The system tray icon should always reflect the
correct state of the On-Access Scanner when
resuming from hibernation.
KNOWN ISSUES
1. The 5200 or later engine must be installed prior to
deploying Patch 5 or later. The Patch updates the
cached MSI tables to prevent a repair from
restoring an unusable version of the engine.
2. On-Access Scan Messages might fail to populate on
detections after Patch 8 is installed. A reboot
might be needed to resolve this issue. This does
not affect detection logging and alerting, or
reporting to ePolicy Orchestrator and
ProtectionPilot.
3. Some customers have reported seeing VirusScan
Statistics (VShield) crashing/disappearing from the
system tray. Refer to McAfee Support KnowledgeBase
article 613892 for more information on this issue.
4. If Host Intrusion Prevention 6.x or later is
installed and disabled prior to VirusScan
Enterprise, it is necessary to re-enable IPS and
disable it again in order for VirusScan Buffer
Overflow Protection to be properly enabled.
5. Sporadic crashes of the McShield Service have been
seen during the patch install, on systems running
McAfee AntiSpyware Enterprise Module. The service
recovers correctly at the end of the patch
process.
6. If you install this release interactively and
cancel the installation on a system where a
previous Patch was installed, after the rollback
completes, the previous Patch no longer reports to
ePolicy Orchestrator or appears in the "About
VirusScan Enterprise" window.
7. Installing the Patch and specifying a log file path
using the Microsoft Installer (MSI) switch "/L"
does not log to the specified path. A log file
capturing full data is logged to the folder
"McAfeeLogs" under the Temp folder.
8. If the Lotus Notes client is open when this release
is installed, the installation completes
successfully, but a reboot is required to replace
the McAfee Lotus scanner files. The new files are
not used until after a reboot.
9. Uninstalling VirusScan Enterprise Patches is now
possible for computers running Windows Installer
v3.x or later. This technology is not fully
integrated for Windows 2000 operating systems, so
there is no option to remove the Patch in
Add/Remove programs. Please see instructions under
"Removing the Patch" for removal via command-line
options.
10. Uninstalling VirusScan Patches is not available for
Windows NT platforms, because Windows Installer
v3.x is not supported on this platform. The Patch
still installs to all platforms supported by
VirusScan Enterprise 8.5i.
11. Patches for VirusScan Enterprise 8.5i can only be
uninstalled via Add/Remove programs, not via
ePolicy Orchestrator or ProtectionPilot.
FILES INCLUDED WITH THIS RELEASE
This release consists of a package called VSE85P8.ZIP,
which contains the following files:
PKGCATALOG.Z =
Package catalog file
PATCH8.TXT =
This text file
VSE850DET.MCS =
VirusScan Enterprise detection script
SETUP.EXE =
Installer for this release
SETUP.INI =
Initialization file for SETUP.EXE
PATCH8.MSP =
Microsoft Installer Patch file
VSE850.NAP =
Management NAP for VirusScan Enterprise
VSE850REPORTS.NAP =
Reporting NAP file
The following files are installed to client
systems:
STRINGS.BIN No version
MIDUTIL.DLL 8.5.0.156
CONDL.DLL 8.5.0.857
COPTCPL.DLL 8.5.0.857
MCAVDETECT.DLL 8.5.0.869
MCAVSCV.DLL 8.5.0.869
BBCPL.DLL 8.5.0.895
CONSL.DLL 8.5.0.895
MCCONSOL.EXE 8.5.0.895
SHUTIL.DLL 8.5.0.895
OASCPL.DLL 8.5.0.909
FTCFG.DLL 8.5.0.936
MCUPDATE.EXE 8.5.0.936
NAIANN.DLL 8.5.0.936
NCDAEMON.EXE 8.5.0.936
NCEXTMGR.DLL 8.5.0.936
NCINSTALL.DLL 8.5.0.936
NCMENU.DLL 8.5.0.936
NCSCAN.DLL 8.5.0.936
NCTRACE.DLL 8.5.0.936
QUARCPL.DLL 8.5.0.936
SCAN32.EXE 8.5.0.936
SCAN64.EXE 8.5.0.936
SCNCFG32.EXE 8.5.0.936
SHSTAT.EXE 8.5.0.936
VSODSCPL.DLL 8.5.0.936
VSTSKMGR.EXE 8.5.0.936
VSUPDCPL.DLL 8.5.0.936
VSPLUGIN.DLL 8.5.0.937
ENTSRV.DLL 13.3.0.169
MFEBOPA.DLL 13.3.0.169
MFEBOPK.SYS 13.3.0.169
MFEAPFA.DLL 13.3.0.169
MFEAPFK.SYS 13.3.0.169
MFEAVFA.DLL 13.3.0.169
MFEAVFK.SYS 13.3.0.169
MFEHIDA.DLL 13.3.0.169
MFEHIDN.EXE 13.3.0.169
MFEHIDK.SYS 13.3.0.169
MFERKDA.DLL 13.3.0.169
MFERKDK.SYS 13.3.0.169
MFETDIK.SYS 13.3.0.169
ADSLOKUU.DLL 13.3.2.137
CSSCAN.EXE 13.3.2.137
ENTVUTIL.EXE 13.3.2.137
FTL.DLL 13.3.2.137
LOCKDOWN.DLL 13.3.2.137
MCSHIELD.DLL 13.3.2.137
MCSHIELD.EXE 13.3.2.137
MCSHIELDPERFDATA.DLL 13.3.2.137
MCVSSNMP.DLL 13.3.2.137
MYTILUS.DLL 13.3.2.137
MYTILUS2.DLL 13.3.2.137
NAEVENT.DLL 13.3.2.137
NAIEVENT.DLL 13.3.2.137
SCANOTLK.DLL 13.3.2.137
SCRIPTCL.DLL 13.3.2.137
SCRIPTSV.DLL 13.3.2.137
LOGPARSER.EXE 1.2.0.131
The following files are checked in to the ePolicy
Orchestrator or ProtectionPilot repository:
VSE850.NAP 2.0.0.696
VSE850REPORTS.NAP 3.0.0.781
Download: http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar (http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar)
Download Mirror: http://www.megaupload.com/?d=GN9MP08R (http://www.megaupload.com/?d=GN9MP08R)
P.S.
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
Samker
[/aeva]
hello Dear Smaker,
Thanks for your post would you please send me the password of the file. I would be greatful to you.
ad
-
Wow I am already up to 10 posts :)
Samker, can I please have the password?
Thanks
-
please send me the password.
-
hello i need password for patch_7.rar and VSE85iP8_SCF.rar
-
I was already sent passwords to all requests from SCF Members with more than 10 posts...
All other will need to be more Active at the SCF Community.
-
Hi
Could you please send me the password
-
pls send me the password.
-
Hi Samker! Could u please PM me the password!!
Thanks :)
-
Hi Samker would you mind to send me the password
-
Thank you for helping with patch 8, and thank you for giving the password as soon as possible. Very good and loyal job!
-
I'd like to have patch 8 password for mcafee virus scan enterprise. Thank you for helping.
-
could i please get that password?
-
I was already sent passwords to: danbsfc & dimmortal (SCF Members with more than 10 useful posts...)
All other will need to be more Active at the SCF Community, just like this two guys...
-
Please send me password for the file.
I have already downloaded.
-
password Pls
-
I'll surely be qualified for the password. I really need it!
-
I know patience always wins, but I can't wait to have the password.
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Aviad
-
Hey...thanks for the patch.....can u send me the passowrd
-
sir can u send me the password for this patch 8? Thank you sir godbless :0 my email is moja212001@yahoo.com or private message me here.
-
Hello Boss, how can i download Pach 8?
-
I am new here, and I love what I have been reading. Came across this and was wondering if you would be willing to send me the password for this patch. Normally I wouldn't worry about it but I seem to be having trouble with my Mcafee and the solution seems to have to upgrade to lastest patch. I no longer have access to the Mcafee website, since I have changed jobs. I read that you are requiring people to post somethings, I am very knowledgable in computers, well not as much as I would like to be but I am decent. So if there are any topics people have trouble in I could solve them. I have two chooses either update the patch or change to sophos, thought I would try the patch first. Well again I hope you will send me the password and thank you for this blog. I have made it a favorite and will frequent this blog often.
-
please
pass rar ? thank
luengo.adison@gmail.com
or private message
-
[aeva]
(http://www.9down.com/pic/topic/mcafee.gif)
McAfee VirusScan Enterprise protects your desktop and file servers from a wide range of threats, including viruses, worms, Trojan horses, and potentially unwanted code and programs. McAfee VirusScan® 8 takes anti-virus protection to the next level, integrating elements of intrusion prevention and firewall technology into a single solution for PCs and file servers. This powerful combination delivers truly proactive protection from the newest of today’s threats-including buffer - overflow exploits and blended attacks - and features advanced outbreak management responses to reduce the damage and costs of outbreaks. Everything is managed by McAfee ePolicy Orchestrator® or ProtectionPilot™ for scalable security policy compliance and graphical reporting.
Release Notes for McAfee(R) VirusScan(R) Enterprise Version 8.5i Patch 8
Copyright (C) 2009 McAfee, Inc.
All Rights Reserved
==========================================================
Patch Release: January 27, 2009
This release was developed and tested with:
- VirusScan Enterprise: 8.5i
- DAT Version: 5474, December 24, 2008
- Engine Version: 5.3.00
Make sure you have installed these versions, or later,
before using this release.
==========================================================
Thank you for using VirusScan(R) Enterprise software.
This file contains important information regarding this
release. We strongly recommend that you read the entire
document.
__________________________________________________________
WHAT'S IN THIS FILE
- About This Release
- Purpose
- Improvements
- Resolved Issues
- Patch 8 Resolved Issues
- Patch 7 Resolved Issues
- Patch 6.1 Resolved Issues
- Patch 6 Resolved Issues
- Patch 5 Resolved Issues
- Patch 4 Resolved Issues
- Patch 3 Resolved Issues
- Patch 2 Resolved Issues
- Patch 1 Resolved Issues
- Known Issues
- Files Included With This Release
- Installation
- Installation Requirements
- Installation Steps
- Installation Steps via ePolicy Orchestrator
- HotFix/Patch Reporting
- Verifying the Installation
- Removing the Patch
- Copyright & Trademark Attributions
- License Information
__________________________________________________________
ABOUT THIS RELEASE
PURPOSE
This release contains updated binaries in a single
Microsoft Patch installer to address all items listed
in "Resolved Issues" below.
For the most up-to-date copy of this Readme
information, refer to McAfee Support KnowledgeBase
article 60415.
Patch 8 is a High Priority release. See McAfee Support
KnowledgeBase article 614038 for information on
ratings.
__________________________________________________________
IMPROVEMENTS
1. VirusScan Enterprise with the AntiSpyware Module
can now be set so that it no longer places cookie
detections in the quarantine folder. They instead
are deleted permanently as part of the clean
action.
NOTE:
By setting the DWORD "DisableCookieBackups"
registry entry to 1, cookie detection quarantines
no longer occur.
HKLM\SOFTWARE\McAfee\VSCore
2. The on-demand scanner has been updated to better
use the System Utilization setting throughout the
entire scanning process.
Refer to McAfee Support KnowledgeBase article
9197288 for further information.
3. This Patch contains a new Buffer Overflow and
Access Protection DAT (version 378), which adds an
Access Protection category for Virtual Machine
Protection. These rules provide access protection
functionality for virtual machines.
NOTE:
To manage the new Virtual Machine Protection
category with ePolicy Orchestrator 3.x or
ProtectionPilot, you must use the latest NAP file,
which is included in this Patch package, or
VirusScan 8.5i Repost Patch 5.
For ePolicy Orchestrator 4.x users, the Extension
update also contains the updated rule file. The
updated Extension package is available on the web
product download area under the Patches category.
__________________________________________________________
RESOLVED ISSUES
The resolved issues are divided into subsections per
patch, showing when each fix was added to the
compilation.
PATCH 8 RESOLVED ISSUES
1. ISSUE:
In Patch 7, the McShield resource files were
missing some string tables that were responsible
for On-Access Scan and On-Demand Scan status.
RESOLUTION:
McShield.dll has been corrected to include all the
proper strings for displaying information on
non-English installations.
2. ISSUE:
A timing issue could occur during the import of the
McAfee Installation Designer (MID) configuration.
During the installation of VirusScan Enterprise,
the temporary registry information sometimes was
not available before the registry editor attempted
to apply the settings. The process generated an
application event, ID 1006, while the registry
editor attempted to reapply the settings until it
was successful.
RESOLUTION:
The McAfee Installation Designer configuration
applicator was revised to no longer report the
error, because it does not represent a true failure
in the process.
NOTE:
To prevent the generation of this error, use the
repost package that includes this Patch release.
3. ISSUE:
On multi-processor systems that receive files from
remote clients, some instructions were being
executed frequently and unnecessarily, acquiring an
exclusive lock on all processors. This created a
bottleneck in the file I/O being written to disk.
RESOLUTION:
The link driver has been revised to eliminate the
described bottleneck.
4. ISSUE:
Access Protection block rules that were created for
USB devices sometimes did not handle removing and
reinserting the device multiple times.
RESOLUTION:
The Access Protection, Anti-Virus Filter, and Link
drivers have been updated to better handle
re-hooking the device.
5. ISSUE:
The On-Access Scanner was not properly utilizing
the "Scan files opened for Backup" option.
RESOLUTION:
The Anti-Virus Filter driver has been rectified to
properly interpret the flag being sent from the
On-Access Scanner.
6. ISSUE:
Certain detections with multiple infections or
clean actions were logging the action two times.
One entry was made during the middle of the
process, and the other during the final
resolution.
RESOLUTION:
The Common Shell scanner has been updated to report
only the final resolution of the detection.
7. ISSUE:
The repair option for McAfee AntiSpyware Enterprise
Module would execute during the patch process. This
caused the cookie and registry scan targets to be
re-added to On-Demand Scan tasks that were removed
by the user.
RESOLUTION:
The patch installer has been updated to preserve
the On-Demand Scan anti-spyware scan targets.
PATCH 7 RESOLVED ISSUES
1. ISSUE:
When installing a VirusScan Enterprise 8.5i patch,
the existing On-Access Scanner service might fail
to unload. This leads to two instances of the
service, with one consuming a high amount of CPU
usage.
RESOLUTION:
The On-Access Scanner service had been updated to
avoid a runaway thread scenario that caused the
service, being replaced, to not stop.
NOTE:
To avoid this issue while installing Patch 7 or
later, install HF427887 first. Refer to McAfee
Support KnowledgeBase article 616344 for further
information.
2. ISSUE:
Changes to the VirusScan Enterprise core subsystem
disabled performance optimization for handling
frequent write actions to INI and LOG files.
RESOLUTION:
The Anti-Virus Filter Driver was corrected to
ensure that scanning of specified file extensions
is optimized, as in previous versions.
3. ISSUE:
A three-party deadlock occurred, causing the
On-Access Scanner to become blocked until it times
out. This causes the scanner service to time out
and eventually self-terminate.
RESOLUTION:
The Common Shell scanner has been updated to
prevent the On-Access Scanner from becoming blocked
while the security libraries are loaded by the
system.
4. ISSUE:
The extended reports NAP contained some ePolicy
Orchestrator stored procedures that were needed to
add support for the VirusScan product line. The
ePolicy Orchestrator patches have since made new
modifications to the same stored procedures.
Therefore, when the VirusScan extended reports NAP
is checked in after the new ePolicy Orchestrator
modified procedures are in place, they are
overwritten and the newer functionality is lost.
RESOLUTION:
The VirusScan extended reports NAP has been revised
to no longer replace the ePolicy Orchestrator
stored procedures.
5. ISSUE:
If the Lotus Notes client is running during
uninstall of VirusScan Enterprise 8.5i, the Lotus
Notes Scanner entries might not be properly removed
from the NOTES.INI file. This can cause the Lotus
Notes client to crash on subsequent starts.
RESOLUTION:
The Lotus Notes Scanner module has been corrected
to remove its entries in the NOTES.INI file for all
scenarios.
6. ISSUE:
The VirusScan Enterprise Patch installer did not
correctly preserve the MIDFileTime registry value.
This caused the McAfee Installation Designer (MID)
.CAB files to be re-applied at the time of
installation.
RESOLUTION:
The Patch installer has been updated to correctly
preserve the binary value of MIDFileTime.
7. ISSUE:
Changes made in Microsoft Vista SP1 and later, in
how the operating system opens/views network files,
caused delays in opening new network paths, with
the On-Access Scanner’s Network Scanning feature
enabled.
RESOLUTION:
The link driver has been modified to use a
different method of accessing the network resources
that avoids the delays imposed by the operating
system change.
8. ISSUE:
A 7E bugcheck (blue screen) might occur if an
application shut down immediately after sending
data over the network.
RESOLUTION:
The link driver has been revised to better handle
data that is transmitted by applications after the
driver has stopped.
9. ISSUE:
When the VirusScan NAP is checked in, it runs a
script that enables anti-spyware settings in
policies and tasks, if the AntiSpyware 8.5 module
NAP is in the ePolicy Orchestrator repository. The
intended purpose of the script is similar to the
local AntiSpyware module installer, which enables
its settings when installed on a local system.
RESOLUTION:
The VirusScan NAP has been updated so that the
script is disabled during check-in of the VirusScan
NAP package. This prevents the anti-spyware
settings from being enabled when updating the
VirusScan NAP.
NOTE:
The McAfee AntiSpyware 8.5 module NAP has the same
script in it. This means that if the McAfee
AntiSpyware 8.5 module NAP is installed after the
VirusScan NAP, the anti-spyware settings are still
enabled.
10. ISSUE:
Servers that deal with many file writes were
becoming unresponsive.
RESOLUTION:
The anti-virus filter driver was revised to
correctly filter and dispatch scans on write.
PATCH 6.1 RESOLVED ISSUES
1. ISSUE:
An issue can occur when the 5300 engine is
installed prior to installing VirusScan 8.5i Patch
6. The scanner engine files are partially
overwritten with the previous 5200 version that is
stored in the MSI cache. This mismatch causes the
scanner engine to fail to initialize.
RESOLUTION:
The Patch installation package has been updated to
correct this issue, and does not overwrite the
engine files.
PATCH 6 RESOLVED ISSUES
1. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to only write to the registry if it
sees that it is different from the current policy.
This will prevent McShield from generating events
on policy enforcement, unless that policy has
changed.
This is an addendum to the original solution in
Patch 5, where the fix did not work when the
preferred language was set to something other than
automatic.
2. ISSUE:
A compatibility issue has been seen with
VirusScan’s port blocking feature, and Veritas
backup applications. This was causing the backup
software services to stop running.
RESOLUTION:
The VirusScan Anti-Virus Mini-Firewall Driver has
been updated to correct the compatibility issue.
3. ISSUE:
A race condition in the On-Access Scanner service
can cause high CPU utilization with high
performance systems.
RESOLUTION:
The On-Access Scanner service has been updated to
remedy multi-threading synchronization issues and
remove occurrences of runaway threads.
4. ISSUE:
The On-Access Scanner service sometimes crashes
during a system shutdown or during installation of
a Patch/HotFix.
RESOLUTION:
The On-Access Scanner service has been repaired to
correct a race condition in which a
critical-section synchronization object is deleted
before another thread has entered.
5. ISSUE:
A deadlock could occur on high end servers caused
by a race condition in VirusScan’s link driver.
RESOLUTION:
The link driver has been changed to properly handle
the release of system objects, while holding a lock
on resources.
6. ISSUE:
Port blocking fails on Microsoft Windows Vista
Service Pack 1.
RESOLUTION:
The McAfee Driver Installer has been update to
handle the changes in network stack load order.
7. ISSUE:
The On-Demand Scanner system utilization changes
that were put in patch 5 changed the memory
scanning function. This caused the process scanning
to only scan the first process ID.
RESOLUTION:
The change has been reversed so that all processes
are scanning irrespective of process ID.
8. ISSUE:
When applied to a client installation that was
customized by McAfee Installation Designer (MID),
the patch installer deletes the MidFileTime
registry value. This caused MID .CAB files to be
re-applied to the system.
RESOLUTION:
The patch installer has been updated to no longer
delete the MidFileTime registry value.
9. ISSUE:
A newly created user defined Unwanted Program
Policy, does not take effect immediately if the
file has been scanned by the On-Access Scanner
before the change occurred.
RESOLUTION:
The On-Access Scanner service has been updated to
properly recognize changes to the user defined
detections and clear the cache of files that have
already been scanned so that the new settings take
effect immediately.
10. ISSUE:
A trust relationship exists in McAfee drivers that
can be leveraged by McAfee processes to avoid
triggering access protection rules and other
compatibility symptoms. When the link driver was
updated to newer releases this trust relationship
was lost until a reboot occurred.
RESOLUTION:
The link driver has been modified to better handle
the process of future upgrades to itself without
the need for a reboot.
PATCH 5 RESOLVED ISSUES
1. ISSUE:
Disabling the On-Access Scanner from the console is
not always possible when users with sufficient
privileges belonged to large numbers of user
groups.
RESOLUTION:
VirusScan Statistics has been updated so that users
with sufficient privileges can now disable the
On-Access Scanner from the console regardless of
how many user groups they belong too.
2. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to write to the registry only if it
sees that it is different from the current policy.
This prevents McShield from generating events on
policy enforcement, unless that policy has
changed.
NOTE:
If the symptom persists, refer to McAfee Support
KnowledgeBase article 614077.
3. ISSUE:
With the VirusScan Policy set to "Display managed
tasks in the client console," the tasks sometimes
disappear in the VirusScan Console.
RESOLUTION:
The On-Demand Scanner and Update console plug-ins
have been updated so that when policy enforcement
occurs, the console now updates the list of tasks
to ensure an accurate display.
4. ISSUE:
When using system variables in the folder path for
the Quarantine Manager Policy, the list of
quarantined items is empty, even though items were
quarantined to the correct directory.
RESOLUTION:
The Quarantine Manager console plug-in has been
corrected so that the path specified in the folder
input field is now properly expanded and the system
variables are replaced before the list of
Quarantined items is requested.
NOTE:
For further information about this fix, refer to
McAfee Support KnowledgeBase article 614549.
5. ISSUE:
When a VirusScan Patch installation failed, the
Help "About" dialog box no longer displayed the
previous Patch number.
RESOLUTION:
The patch installer has been updated to write the
new Patch registry value only if the Patch
succeeds. If it fails and a rollback occurs, the
old Patch registry value remains.
6. ISSUE:
A 4E bugcheck (blue screen) can occur when
VirusScan Enterprise 8.5i is installed along side
SafeBoot Content Encryption 3.
RESOLUTION:
The link driver was updated to add supportability
for SafeBoot.
7. ISSUE:
On Windows Vista and later, On-Demand Scan function
"Save as Default" does not correctly save changes
made for future scan tasks.
RESOLUTION:
The On-Demand Scanner has been corrected to
properly save the registry data for the default
task.
8. ISSUE:
Access Protection port blocking rules that spanned
a range of ports could block all processes rather
than only those processes specified in the rule.
RESOLUTION:
The Access Protection driver has been updated to
better handle requests for process names.
9. ISSUE:
A 19 bugcheck (blue screen) occurred intermittently
when loading and unloading content into Link
Driver, for example, when configuration changes
were made or enforced.
RESOLUTION:
The link driver was corrected to resolve a race
condition that could lead to this issue.
PATCH 4 RESOLVED ISSUES
1. ISSUE:
A crash can occur on some systems when the
On-Demand Scan Task includes the "Memory for
rootkits" scan item.
RESOLUTION:
The root kit detection driver has been updated to
better handle different processor architectures.
2. ISSUE:
When a Quarantine Restore Task is run from ePolicy
Orchestrator without specifying a restore item, the
Scan32.exe process runs a full scan and does not
exit properly, leaving the process orphaned.
RESOLUTION:
The VirusScan plug-in has been updated to check if
a restore item is specified. If not, the restore
task does not run.
3. ISSUE:
The VirusScan On-Demand Scanner has no option to
disable cookie detection alerts in the user
interface or registry.
RESOLUTION:
Alerts for On-Demand Scan cookie detections can now
be disabled by setting the DWORD "bCookieAlerts"
registry entry to 0.
HKLM\SOFTWARE\McAfee\VSCore\Alert Client\VSE
4. ISSUE:
When a user is browsing the Internet, the On-Access
Scanner sometimes logs entries "Not scanned (The
file is encrypted)" on temporary files that are
locked for use by the browser.
RESOLUTION:
The reporting for these types of detections can now
be disabled by setting the DWORD
"DoNotReportSkippedFiles" registry entry to 1.
HKLM\SOFTWARE\McAfee\VSCore\On Access
Scanner\McShield\Configuration
NOTE:
If you previously installed VSE85HF328421, the
registry entry "DoNotReportSkippedFiles" is already
set to 1.
5. ISSUE:
In environments where the Lotus Notes data folder
is in a non-standard location, the VirusScan
Scanner for Lotus Notes installer might crash
during installation of VirusScan.
RESOLUTION:
The VirusScan Scanner for Lotus Notes installation
files have been updated so that the search behavior
for notes.ini is more resilient to custom Lotus
Notes client locations.
6. ISSUE:
A crash can occur, where the VirusScan Scanner for
Lotus Notes failed to initialize properly if the
first scanned attachment of a session was stored in
a non-standard attachment format.
RESOLUTION:
The VirusScan Scanner for Lotus Notes library was
changed so that the initialization code occurs
before the attachment prefixed file name handling
occurs.
7. ISSUE:
With Self Protection enabled, the ability to
unblock a connection from a remote computer is
grayed out, even though the logged-on user has
administrator privileges.
RESOLUTION:
VirusScan Statistics has been updated to check the
credentials of the logged-on user, rather than the
access level of our services, to determine if the
"Unblock All Connections Now" button should be
available.
8. ISSUE:
Installation of this Patch enables the option
"Enable on-access scanning at system startup" if it
was previously disabled.
RESOLUTION:
The Patch installer has been corrected to properly
preserve the setting.
9. ISSUE:
The Patch installer returns a success code, even if
the Patch failed to install.
RESOLUTION:
The Patch installer has been corrected so that it
only returns a success code if it is actually
successful.
10. ISSUE:
Installing the Patch on a system that had only one
Unwanted Programs exclusion causes that exclusion
to fail.
RESOLUTION:
The installer now corrects a problem where the
DetectionExclusions registry value was being
changed from REG_MULTI_SZ to REG_SZ if only one
value existed.
11. ISSUE:
On Windows Vista, the administrator cannot disable
the On-Access Scanner via the VirusScan system tray
icon.
RESOLUTION:
VirusScan Statistics has been updated to check the
user's logged on credentials, rather than the
service handle that was used to determine access to
the McShield service in older operating systems.
12. ISSUE:
A failed reinstallation of VirusScan or a failed
Patch installation can delete the license,
resulting in an inoperable product.
RESOLUTION:
The Patch installer has been updated to no longer
cause this state in the event of a failed
installation.
13. ISSUE:
An incorrect rule file was packaged with the
VirusScan NAP file included with Patch 3. This
caused some of the Access Protection rule
categories to not appear.
RESOLUTION:
A new VirusScan NAP file was created with a
corrected rule file.
14. ISSUE:
When Host IPS is installed with VirusScan
Enterprise, and IPS is disabled, the interface for
VirusScan Buffer Overflow Protection remains grayed
out, even though it is active.
RESOLUTION:
The Buffer Overflow console plug-in was updated to
check for the registry flag that is set by Host
IPS, to tell VirusScan Enterprise that IPS is
disabled.
15. ISSUE:
When Self Protection is enabled on a remote machine
and a user attempts open a remote console
connection to that machine, the user receives an
access denied message, and the remote console is
not opened.
RESOLUTION:
The VirusScan Console was updated to make the
connection to the remote console more robust.
PATCH 3 RESOLVED ISSUES
1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on heavily
loaded servers.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash Analysis
(OCA), showing a crash in an instruction that could
not ordinarily fail.
RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual behavior
on affected processors.
4. ISSUE:
A 7E bugcheck (blue screen) can occur with certain
low resource conditions.
RESOLUTION:
The Link Driver has been updated to better handle
scenarios where the system is low on resources.
5. ISSUE:
On 64-bit systems, VirusScan Statistics causes an
issue where the user cannot open more than one
Microsoft Virtual PC image. Virtual PC reports
insufficient memory.
RESOLUTION:
VirusScan Statistics has been updated to resolve a
memory utilization problem on 64-bit systems.
6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to use appropriate registry data.
7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to no longer request a certain level of
access to the service, which would be denied by the
higher level of Access Protection security.
8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are lost
after upgrading from ePolicy Orchestrator 3.5 to
3.6.x.
RESOLUTION:
The VirusScan NAP file has been updated to include
additional xml code for mapping policies between
ePolicy Orchestrator 3.5 and 3.6.x.
NOTE:
To migrate the policies correctly, follow the
instructions under "Installation Steps."
PATCH 2 RESOLVED ISSUES
1. ISSUE:
When an AutoUpdate task copies new DAT files into
the engine folder, VirusScan services and Microsoft
Outlook can spike CPU utilization in excess of one
minute.
RESOLUTION:
The McTaskManager service has been enhanced so that
it no longer issues multiple reload notifications
to the scanners after a DAT update.
NOTE:
Users who saw a smaller spike after the original
fix (HF320829) should see more improvement with
this fix.
2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy Orchestrator or
ProtectionPilot. A registry value was not being
updated correctly.
RESOLUTION:
VirusScan’s Management Plug-In has been updated to
correctly write the "RepairBackupDirectory"
registry entry.
3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
effect immediately. To enable the rule, the
McShield service must be stopped and restarted.
RESOLUTION:
The McShield service has been updated to improve
the monitoring of registry changes with the
Unwanted Programs policy.
4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system with
a clean floppy in its drive.
RESOLUTION:
The On-Access Scanner has been updated to better
handle the shutdown process.
5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
RESOLUTION:
The Link Driver was updated to correct
synchronization issues during the start of
processes.
6. ISSUE:
VirusScan does not correctly remove Buffer Overflow
Protection process exclusions that are introduced
by ePolicy Orchestrator or ProtectionPilot.
RESOLUTION:
The VirusScan plug-in has been updated to properly
remove old Buffer Overflow Protection registry
values when ePolicy Orchestrator or ProtectionPilot
policies are enforced.
7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
RESOLUTION:
The Anti-Virus Filter and Link drivers where
updated to properly remove the read-only attribute
when taking action on files on the EMC share.
8. ISSUE:
Detections on a network share may leave behind zero
byte files on the share.
RESOLUTION:
The Anti-Virus Filter and Link drivers were updated
to ensure proper cleanup of detections on a network
share.
9. ISSUE:
The On-Access Scanner functions in Console are not
updating properly when Access Protection is
disabled.
RESOLUTION:
The state of Self Protection is now correctly
tracked by the On-Access Scanner Console plug-in.
10. ISSUE:
The Self Protection feature of Access Protection is
disabled after removing a Patch from the system.
RESOLUTION:
The MSP installer has been updated to fix a
mismatched name between the custom action and
installer execution sequence tables in the cached
MSI file.
11. ISSUE:
Interacting with Remote Console On-Demand Scan and
AutoUpdate tasks caused the local tasks with the
same id to be acted upon, instead of the remote
task.
RESOLUTION:
The Update and On-Demand Scanner binaries were
updated to properly call the remote task instead of
the local one.
12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1 or
8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do not
display in the VirusScan console.
RESOLUTION:
The MSP Installer package has been updated to
initialize the console tasks that were not
previously initialized, so they display in the
VirusScan console.
NOTE:
This fix is for those who used the originally
released VirusScan Enterprise 8.5i. The current
8.5i repost package includes this fix.
13. ISSUE:
With the McAfee Installation Designer (MID) option
to "Allow Users to Uninstall" disabled, the
UninstallString registry value was removed to
prevent product removal. This registry value was
also used by ePolicy Orchestrator to determine that
VirusScan was installed.
RESOLUTION:
The VirusScan Detection Script has been updated to
check for the existence of the uninstall key,
instead of the UninstallString value, to determine
if the VirusScan Enterprise install package needs
to be pushed to the client.
14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
RESOLUTION:
The Common Shell Scanner binaries have been updated
to resolve this issue.
15. ISSUE:
If McShield and McTaskManager Services were stopped
and restarted in a specific order, the Access
Protection and Buffer Overflow features remained
disabled after the services started.
RESOLUTION:
The On-Access Scan Console plug-in has been updated
to recognize the last known state of Access
Protection and Buffer Overflow Protection when
McShield service is stopped.
16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
RESOLUTION:
The McShield service has been updated to properly
change states when altering configurations.
17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the user
to right-click and disable that feature. The
option to disable right-click ability is under the
"Other" category (Console and Miscellaneous).
RESOLUTION:
The password functionality has been moved to the
BehaviorBlocking console plug-in so that the
right-click option is now included with the Access
Protection password options.
18. ISSUE:
The Buffer Overflow Protection displays a detection
in the On-Access Messages window when the "Show the
messages when a buffer overflow is detected" option
is disabled.
RESOLUTION:
The On-Access Scan Statistics binary has been
updated to properly suppress the Buffer Overflow
detection when configured to do so.
19. ISSUE:
On-Access Scanner’s Network Drive Scanning causes
network copy times to increase, more then what is
normally expected, when this option is enabled.
RESOLUTION:
The Common Shell binaries have been updated to no
longer request a certain level of access to the
network file(s), which would always be denied.
PATCH 1 RESOLVED ISSUES
1. ISSUE:
Applications that perform operations with temporary
files, such as printing, generate a "file missing"
error.
RESOLUTION:
The link driver has been updated to correctly
handle file operations that use the DeleteOnClose
flag.
2. ISSUE:
When McAfee Policy Enforcer is pushed out to a
system with VirusScan Enterprise 8.5i, McAfee
trusted processes might trigger Access Protection
rules. A reboot is required to correct the
problem.
RESOLUTION:
The link driver has been revised to ensure trusted
policies are propagated between instances of loaded
drivers.
3. ISSUE:
Some files remain locked indefinitely. Third-party
tools indicate that McShield.exe was leaking
handles, thereby locking the file.
RESOLUTION:
The link driver has been updated to detect and
handle the oplock break-in-progress status code and
ensure file locks are released.
4. ISSUE:
Under certain conditions, VirusScan Enterprise
scanner for Lotus Notes can mistakenly deny access
to the Lotus Notes internal processes, if another
Note is being accessed by the user. The message
"You are not authorized to perform that operation"
is displayed for the user.
RESOLUTION:
The Lotus Notes scanner binaries have been updated
to resolve the issue.
5. ISSUE:
For non-English platforms, a control ID is
displayed in the Status field of the On-Access
Messages window, rather than the localized
strings.
RESOLUTION:
The resource binary for the On-Access Scanner
service has been updated to resolve this issue.
6. ISSUE:
When VirusScan Enterprise 8.5i is installed to
Windows Vista 32-bit platforms, the Buffer Overflow
Protection feature is not available.
RESOLUTION:
This Patch enables Buffer Overflow Protection for
Windows Vista 32-bit environments.
7. ISSUE:
When a scheduled On-Demand Scan task fails to
authenticate to a specified location, the user
receives an erroneous error asking that VirusScan
Enterprise be reinstalled.
RESOLUTION:
The localized binaries file has been updated to
handle the specific event.
8. ISSUE:
ePolicy Orchestrator could fail to replicate
distributed repositories when VirusScan Enterprise
8.5i is installed.
RESOLUTION:
The Common Shell binary has been updated to allow
sharing of files with other processes.
9. ISSUE:
Users without local administrative rights are not
able to use the Help file unless it was previously
downloaded by an administrator.
RESOLUTION:
Non-administrative users can now download and use
the current Help file.
10. ISSUE:
Not all VirusScan Enterprise events can be filtered
in ePolicy Orchestrator reporting.
RESOLUTION:
The extended reports NAP file has been updated to
allow filtering of all VirusScan Enterprise
events.
11. ISSUE:
In certain circumstances, when a state change
occurs with Access Protection, the On-Access
Scanner cannot be disabled/enabled, and some Access
Protection rules fail to log messages.
RESOLUTION:
The McTaskManager Service and Access Protection
binaries have been updated to resolve this issue.
12. ISSUE:
When resuming from the hibernate state, the system
tray icon might be in the disabled state,
reflecting the status of the On-Access Scanner.
However, the scanner service is functioning
normally.
RESOLUTION:
The system tray icon should always reflect the
correct state of the On-Access Scanner when
resuming from hibernation.
KNOWN ISSUES
1. The 5200 or later engine must be installed prior to
deploying Patch 5 or later. The Patch updates the
cached MSI tables to prevent a repair from
restoring an unusable version of the engine.
2. On-Access Scan Messages might fail to populate on
detections after Patch 8 is installed. A reboot
might be needed to resolve this issue. This does
not affect detection logging and alerting, or
reporting to ePolicy Orchestrator and
ProtectionPilot.
3. Some customers have reported seeing VirusScan
Statistics (VShield) crashing/disappearing from the
system tray. Refer to McAfee Support KnowledgeBase
article 613892 for more information on this issue.
4. If Host Intrusion Prevention 6.x or later is
installed and disabled prior to VirusScan
Enterprise, it is necessary to re-enable IPS and
disable it again in order for VirusScan Buffer
Overflow Protection to be properly enabled.
5. Sporadic crashes of the McShield Service have been
seen during the patch install, on systems running
McAfee AntiSpyware Enterprise Module. The service
recovers correctly at the end of the patch
process.
6. If you install this release interactively and
cancel the installation on a system where a
previous Patch was installed, after the rollback
completes, the previous Patch no longer reports to
ePolicy Orchestrator or appears in the "About
VirusScan Enterprise" window.
7. Installing the Patch and specifying a log file path
using the Microsoft Installer (MSI) switch "/L"
does not log to the specified path. A log file
capturing full data is logged to the folder
"McAfeeLogs" under the Temp folder.
8. If the Lotus Notes client is open when this release
is installed, the installation completes
successfully, but a reboot is required to replace
the McAfee Lotus scanner files. The new files are
not used until after a reboot.
9. Uninstalling VirusScan Enterprise Patches is now
possible for computers running Windows Installer
v3.x or later. This technology is not fully
integrated for Windows 2000 operating systems, so
there is no option to remove the Patch in
Add/Remove programs. Please see instructions under
"Removing the Patch" for removal via command-line
options.
10. Uninstalling VirusScan Patches is not available for
Windows NT platforms, because Windows Installer
v3.x is not supported on this platform. The Patch
still installs to all platforms supported by
VirusScan Enterprise 8.5i.
11. Patches for VirusScan Enterprise 8.5i can only be
uninstalled via Add/Remove programs, not via
ePolicy Orchestrator or ProtectionPilot.
FILES INCLUDED WITH THIS RELEASE
This release consists of a package called VSE85P8.ZIP,
which contains the following files:
PKGCATALOG.Z =
Package catalog file
PATCH8.TXT =
This text file
VSE850DET.MCS =
VirusScan Enterprise detection script
SETUP.EXE =
Installer for this release
SETUP.INI =
Initialization file for SETUP.EXE
PATCH8.MSP =
Microsoft Installer Patch file
VSE850.NAP =
Management NAP for VirusScan Enterprise
VSE850REPORTS.NAP =
Reporting NAP file
The following files are installed to client
systems:
STRINGS.BIN No version
MIDUTIL.DLL 8.5.0.156
CONDL.DLL 8.5.0.857
COPTCPL.DLL 8.5.0.857
MCAVDETECT.DLL 8.5.0.869
MCAVSCV.DLL 8.5.0.869
BBCPL.DLL 8.5.0.895
CONSL.DLL 8.5.0.895
MCCONSOL.EXE 8.5.0.895
SHUTIL.DLL 8.5.0.895
OASCPL.DLL 8.5.0.909
FTCFG.DLL 8.5.0.936
MCUPDATE.EXE 8.5.0.936
NAIANN.DLL 8.5.0.936
NCDAEMON.EXE 8.5.0.936
NCEXTMGR.DLL 8.5.0.936
NCINSTALL.DLL 8.5.0.936
NCMENU.DLL 8.5.0.936
NCSCAN.DLL 8.5.0.936
NCTRACE.DLL 8.5.0.936
QUARCPL.DLL 8.5.0.936
SCAN32.EXE 8.5.0.936
SCAN64.EXE 8.5.0.936
SCNCFG32.EXE 8.5.0.936
SHSTAT.EXE 8.5.0.936
VSODSCPL.DLL 8.5.0.936
VSTSKMGR.EXE 8.5.0.936
VSUPDCPL.DLL 8.5.0.936
VSPLUGIN.DLL 8.5.0.937
ENTSRV.DLL 13.3.0.169
MFEBOPA.DLL 13.3.0.169
MFEBOPK.SYS 13.3.0.169
MFEAPFA.DLL 13.3.0.169
MFEAPFK.SYS 13.3.0.169
MFEAVFA.DLL 13.3.0.169
MFEAVFK.SYS 13.3.0.169
MFEHIDA.DLL 13.3.0.169
MFEHIDN.EXE 13.3.0.169
MFEHIDK.SYS 13.3.0.169
MFERKDA.DLL 13.3.0.169
MFERKDK.SYS 13.3.0.169
MFETDIK.SYS 13.3.0.169
ADSLOKUU.DLL 13.3.2.137
CSSCAN.EXE 13.3.2.137
ENTVUTIL.EXE 13.3.2.137
FTL.DLL 13.3.2.137
LOCKDOWN.DLL 13.3.2.137
MCSHIELD.DLL 13.3.2.137
MCSHIELD.EXE 13.3.2.137
MCSHIELDPERFDATA.DLL 13.3.2.137
MCVSSNMP.DLL 13.3.2.137
MYTILUS.DLL 13.3.2.137
MYTILUS2.DLL 13.3.2.137
NAEVENT.DLL 13.3.2.137
NAIEVENT.DLL 13.3.2.137
SCANOTLK.DLL 13.3.2.137
SCRIPTCL.DLL 13.3.2.137
SCRIPTSV.DLL 13.3.2.137
LOGPARSER.EXE 1.2.0.131
The following files are checked in to the ePolicy
Orchestrator or ProtectionPilot repository:
VSE850.NAP 2.0.0.696
VSE850REPORTS.NAP 3.0.0.781
Download: http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar (http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar)
Download Mirror: http://www.megaupload.com/?d=GN9MP08R (http://www.megaupload.com/?d=GN9MP08R)
P.S.
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
Samker
[/aeva]thanks alot pls send to the password for path 8 asnd want to ask i have to doanload all paths from 1 to 8 or path 8 only is good
-
thanks alot pls send to the password for path 8 asnd want to ask i have to doanload all paths from 1 to 8 or path 8 only is good
Patch is Cumulative. You need only them. ;)
-
i need the password for rar file Q for update when you wil send to me i install pro & need to install patch
-
Thank you very much for patch 8 password Samker
you are the man
-
Dear Samker
I have register to this forum because of your post about this subject after searching through Google. Kindly send me the password and I accept my apology of not complying with your term but I will try to be a good member.
Thanks
-
considering switching back from 8.7i to 8.5i, a couple problems in the RC I hope isn't in 8.5i. Think I could get the pass?
-
considering switching back from 8.7i to 8.5i, a couple problems in the RC I hope isn't in 8.5i. Think I could get the pass?
For which version you need pass.??
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
-
[aeva]
(http://www.9down.com/pic/topic/mcafee.gif)
McAfee VirusScan Enterprise protects your desktop and file servers from a wide range of threats, including viruses, worms, Trojan horses, and potentially unwanted code and programs. McAfee VirusScan® 8 takes anti-virus protection to the next level, integrating elements of intrusion prevention and firewall technology into a single solution for PCs and file servers. This powerful combination delivers truly proactive protection from the newest of today’s threats-including buffer - overflow exploits and blended attacks - and features advanced outbreak management responses to reduce the damage and costs of outbreaks. Everything is managed by McAfee ePolicy Orchestrator® or ProtectionPilot™ for scalable security policy compliance and graphical reporting.
Release Notes for McAfee(R) VirusScan(R) Enterprise Version 8.5i Patch 8
Copyright (C) 2009 McAfee, Inc.
All Rights Reserved
==========================================================
Patch Release: January 27, 2009
This release was developed and tested with:
- VirusScan Enterprise: 8.5i
- DAT Version: 5474, December 24, 2008
- Engine Version: 5.3.00
Make sure you have installed these versions, or later,
before using this release.
==========================================================
Thank you for using VirusScan(R) Enterprise software.
This file contains important information regarding this
release. We strongly recommend that you read the entire
document.
__________________________________________________________
WHAT'S IN THIS FILE
- About This Release
- Purpose
- Improvements
- Resolved Issues
- Patch 8 Resolved Issues
- Patch 7 Resolved Issues
- Patch 6.1 Resolved Issues
- Patch 6 Resolved Issues
- Patch 5 Resolved Issues
- Patch 4 Resolved Issues
- Patch 3 Resolved Issues
- Patch 2 Resolved Issues
- Patch 1 Resolved Issues
- Known Issues
- Files Included With This Release
- Installation
- Installation Requirements
- Installation Steps
- Installation Steps via ePolicy Orchestrator
- HotFix/Patch Reporting
- Verifying the Installation
- Removing the Patch
- Copyright & Trademark Attributions
- License Information
__________________________________________________________
ABOUT THIS RELEASE
PURPOSE
This release contains updated binaries in a single
Microsoft Patch installer to address all items listed
in "Resolved Issues" below.
For the most up-to-date copy of this Readme
information, refer to McAfee Support KnowledgeBase
article 60415.
Patch 8 is a High Priority release. See McAfee Support
KnowledgeBase article 614038 for information on
ratings.
__________________________________________________________
IMPROVEMENTS
1. VirusScan Enterprise with the AntiSpyware Module
can now be set so that it no longer places cookie
detections in the quarantine folder. They instead
are deleted permanently as part of the clean
action.
NOTE:
By setting the DWORD "DisableCookieBackups"
registry entry to 1, cookie detection quarantines
no longer occur.
HKLM\SOFTWARE\McAfee\VSCore
2. The on-demand scanner has been updated to better
use the System Utilization setting throughout the
entire scanning process.
Refer to McAfee Support KnowledgeBase article
9197288 for further information.
3. This Patch contains a new Buffer Overflow and
Access Protection DAT (version 378), which adds an
Access Protection category for Virtual Machine
Protection. These rules provide access protection
functionality for virtual machines.
NOTE:
To manage the new Virtual Machine Protection
category with ePolicy Orchestrator 3.x or
ProtectionPilot, you must use the latest NAP file,
which is included in this Patch package, or
VirusScan 8.5i Repost Patch 5.
For ePolicy Orchestrator 4.x users, the Extension
update also contains the updated rule file. The
updated Extension package is available on the web
product download area under the Patches category.
__________________________________________________________
RESOLVED ISSUES
The resolved issues are divided into subsections per
patch, showing when each fix was added to the
compilation.
PATCH 8 RESOLVED ISSUES
1. ISSUE:
In Patch 7, the McShield resource files were
missing some string tables that were responsible
for On-Access Scan and On-Demand Scan status.
RESOLUTION:
McShield.dll has been corrected to include all the
proper strings for displaying information on
non-English installations.
2. ISSUE:
A timing issue could occur during the import of the
McAfee Installation Designer (MID) configuration.
During the installation of VirusScan Enterprise,
the temporary registry information sometimes was
not available before the registry editor attempted
to apply the settings. The process generated an
application event, ID 1006, while the registry
editor attempted to reapply the settings until it
was successful.
RESOLUTION:
The McAfee Installation Designer configuration
applicator was revised to no longer report the
error, because it does not represent a true failure
in the process.
NOTE:
To prevent the generation of this error, use the
repost package that includes this Patch release.
3. ISSUE:
On multi-processor systems that receive files from
remote clients, some instructions were being
executed frequently and unnecessarily, acquiring an
exclusive lock on all processors. This created a
bottleneck in the file I/O being written to disk.
RESOLUTION:
The link driver has been revised to eliminate the
described bottleneck.
4. ISSUE:
Access Protection block rules that were created for
USB devices sometimes did not handle removing and
reinserting the device multiple times.
RESOLUTION:
The Access Protection, Anti-Virus Filter, and Link
drivers have been updated to better handle
re-hooking the device.
5. ISSUE:
The On-Access Scanner was not properly utilizing
the "Scan files opened for Backup" option.
RESOLUTION:
The Anti-Virus Filter driver has been rectified to
properly interpret the flag being sent from the
On-Access Scanner.
6. ISSUE:
Certain detections with multiple infections or
clean actions were logging the action two times.
One entry was made during the middle of the
process, and the other during the final
resolution.
RESOLUTION:
The Common Shell scanner has been updated to report
only the final resolution of the detection.
7. ISSUE:
The repair option for McAfee AntiSpyware Enterprise
Module would execute during the patch process. This
caused the cookie and registry scan targets to be
re-added to On-Demand Scan tasks that were removed
by the user.
RESOLUTION:
The patch installer has been updated to preserve
the On-Demand Scan anti-spyware scan targets.
PATCH 7 RESOLVED ISSUES
1. ISSUE:
When installing a VirusScan Enterprise 8.5i patch,
the existing On-Access Scanner service might fail
to unload. This leads to two instances of the
service, with one consuming a high amount of CPU
usage.
RESOLUTION:
The On-Access Scanner service had been updated to
avoid a runaway thread scenario that caused the
service, being replaced, to not stop.
NOTE:
To avoid this issue while installing Patch 7 or
later, install HF427887 first. Refer to McAfee
Support KnowledgeBase article 616344 for further
information.
2. ISSUE:
Changes to the VirusScan Enterprise core subsystem
disabled performance optimization for handling
frequent write actions to INI and LOG files.
RESOLUTION:
The Anti-Virus Filter Driver was corrected to
ensure that scanning of specified file extensions
is optimized, as in previous versions.
3. ISSUE:
A three-party deadlock occurred, causing the
On-Access Scanner to become blocked until it times
out. This causes the scanner service to time out
and eventually self-terminate.
RESOLUTION:
The Common Shell scanner has been updated to
prevent the On-Access Scanner from becoming blocked
while the security libraries are loaded by the
system.
4. ISSUE:
The extended reports NAP contained some ePolicy
Orchestrator stored procedures that were needed to
add support for the VirusScan product line. The
ePolicy Orchestrator patches have since made new
modifications to the same stored procedures.
Therefore, when the VirusScan extended reports NAP
is checked in after the new ePolicy Orchestrator
modified procedures are in place, they are
overwritten and the newer functionality is lost.
RESOLUTION:
The VirusScan extended reports NAP has been revised
to no longer replace the ePolicy Orchestrator
stored procedures.
5. ISSUE:
If the Lotus Notes client is running during
uninstall of VirusScan Enterprise 8.5i, the Lotus
Notes Scanner entries might not be properly removed
from the NOTES.INI file. This can cause the Lotus
Notes client to crash on subsequent starts.
RESOLUTION:
The Lotus Notes Scanner module has been corrected
to remove its entries in the NOTES.INI file for all
scenarios.
6. ISSUE:
The VirusScan Enterprise Patch installer did not
correctly preserve the MIDFileTime registry value.
This caused the McAfee Installation Designer (MID)
.CAB files to be re-applied at the time of
installation.
RESOLUTION:
The Patch installer has been updated to correctly
preserve the binary value of MIDFileTime.
7. ISSUE:
Changes made in Microsoft Vista SP1 and later, in
how the operating system opens/views network files,
caused delays in opening new network paths, with
the On-Access Scanner’s Network Scanning feature
enabled.
RESOLUTION:
The link driver has been modified to use a
different method of accessing the network resources
that avoids the delays imposed by the operating
system change.
8. ISSUE:
A 7E bugcheck (blue screen) might occur if an
application shut down immediately after sending
data over the network.
RESOLUTION:
The link driver has been revised to better handle
data that is transmitted by applications after the
driver has stopped.
9. ISSUE:
When the VirusScan NAP is checked in, it runs a
script that enables anti-spyware settings in
policies and tasks, if the AntiSpyware 8.5 module
NAP is in the ePolicy Orchestrator repository. The
intended purpose of the script is similar to the
local AntiSpyware module installer, which enables
its settings when installed on a local system.
RESOLUTION:
The VirusScan NAP has been updated so that the
script is disabled during check-in of the VirusScan
NAP package. This prevents the anti-spyware
settings from being enabled when updating the
VirusScan NAP.
NOTE:
The McAfee AntiSpyware 8.5 module NAP has the same
script in it. This means that if the McAfee
AntiSpyware 8.5 module NAP is installed after the
VirusScan NAP, the anti-spyware settings are still
enabled.
10. ISSUE:
Servers that deal with many file writes were
becoming unresponsive.
RESOLUTION:
The anti-virus filter driver was revised to
correctly filter and dispatch scans on write.
PATCH 6.1 RESOLVED ISSUES
1. ISSUE:
An issue can occur when the 5300 engine is
installed prior to installing VirusScan 8.5i Patch
6. The scanner engine files are partially
overwritten with the previous 5200 version that is
stored in the MSI cache. This mismatch causes the
scanner engine to fail to initialize.
RESOLUTION:
The Patch installation package has been updated to
correct this issue, and does not overwrite the
engine files.
PATCH 6 RESOLVED ISSUES
1. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to only write to the registry if it
sees that it is different from the current policy.
This will prevent McShield from generating events
on policy enforcement, unless that policy has
changed.
This is an addendum to the original solution in
Patch 5, where the fix did not work when the
preferred language was set to something other than
automatic.
2. ISSUE:
A compatibility issue has been seen with
VirusScan’s port blocking feature, and Veritas
backup applications. This was causing the backup
software services to stop running.
RESOLUTION:
The VirusScan Anti-Virus Mini-Firewall Driver has
been updated to correct the compatibility issue.
3. ISSUE:
A race condition in the On-Access Scanner service
can cause high CPU utilization with high
performance systems.
RESOLUTION:
The On-Access Scanner service has been updated to
remedy multi-threading synchronization issues and
remove occurrences of runaway threads.
4. ISSUE:
The On-Access Scanner service sometimes crashes
during a system shutdown or during installation of
a Patch/HotFix.
RESOLUTION:
The On-Access Scanner service has been repaired to
correct a race condition in which a
critical-section synchronization object is deleted
before another thread has entered.
5. ISSUE:
A deadlock could occur on high end servers caused
by a race condition in VirusScan’s link driver.
RESOLUTION:
The link driver has been changed to properly handle
the release of system objects, while holding a lock
on resources.
6. ISSUE:
Port blocking fails on Microsoft Windows Vista
Service Pack 1.
RESOLUTION:
The McAfee Driver Installer has been update to
handle the changes in network stack load order.
7. ISSUE:
The On-Demand Scanner system utilization changes
that were put in patch 5 changed the memory
scanning function. This caused the process scanning
to only scan the first process ID.
RESOLUTION:
The change has been reversed so that all processes
are scanning irrespective of process ID.
8. ISSUE:
When applied to a client installation that was
customized by McAfee Installation Designer (MID),
the patch installer deletes the MidFileTime
registry value. This caused MID .CAB files to be
re-applied to the system.
RESOLUTION:
The patch installer has been updated to no longer
delete the MidFileTime registry value.
9. ISSUE:
A newly created user defined Unwanted Program
Policy, does not take effect immediately if the
file has been scanned by the On-Access Scanner
before the change occurred.
RESOLUTION:
The On-Access Scanner service has been updated to
properly recognize changes to the user defined
detections and clear the cache of files that have
already been scanned so that the new settings take
effect immediately.
10. ISSUE:
A trust relationship exists in McAfee drivers that
can be leveraged by McAfee processes to avoid
triggering access protection rules and other
compatibility symptoms. When the link driver was
updated to newer releases this trust relationship
was lost until a reboot occurred.
RESOLUTION:
The link driver has been modified to better handle
the process of future upgrades to itself without
the need for a reboot.
PATCH 5 RESOLVED ISSUES
1. ISSUE:
Disabling the On-Access Scanner from the console is
not always possible when users with sufficient
privileges belonged to large numbers of user
groups.
RESOLUTION:
VirusScan Statistics has been updated so that users
with sufficient privileges can now disable the
On-Access Scanner from the console regardless of
how many user groups they belong too.
2. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to write to the registry only if it
sees that it is different from the current policy.
This prevents McShield from generating events on
policy enforcement, unless that policy has
changed.
NOTE:
If the symptom persists, refer to McAfee Support
KnowledgeBase article 614077.
3. ISSUE:
With the VirusScan Policy set to "Display managed
tasks in the client console," the tasks sometimes
disappear in the VirusScan Console.
RESOLUTION:
The On-Demand Scanner and Update console plug-ins
have been updated so that when policy enforcement
occurs, the console now updates the list of tasks
to ensure an accurate display.
4. ISSUE:
When using system variables in the folder path for
the Quarantine Manager Policy, the list of
quarantined items is empty, even though items were
quarantined to the correct directory.
RESOLUTION:
The Quarantine Manager console plug-in has been
corrected so that the path specified in the folder
input field is now properly expanded and the system
variables are replaced before the list of
Quarantined items is requested.
NOTE:
For further information about this fix, refer to
McAfee Support KnowledgeBase article 614549.
5. ISSUE:
When a VirusScan Patch installation failed, the
Help "About" dialog box no longer displayed the
previous Patch number.
RESOLUTION:
The patch installer has been updated to write the
new Patch registry value only if the Patch
succeeds. If it fails and a rollback occurs, the
old Patch registry value remains.
6. ISSUE:
A 4E bugcheck (blue screen) can occur when
VirusScan Enterprise 8.5i is installed along side
SafeBoot Content Encryption 3.
RESOLUTION:
The link driver was updated to add supportability
for SafeBoot.
7. ISSUE:
On Windows Vista and later, On-Demand Scan function
"Save as Default" does not correctly save changes
made for future scan tasks.
RESOLUTION:
The On-Demand Scanner has been corrected to
properly save the registry data for the default
task.
8. ISSUE:
Access Protection port blocking rules that spanned
a range of ports could block all processes rather
than only those processes specified in the rule.
RESOLUTION:
The Access Protection driver has been updated to
better handle requests for process names.
9. ISSUE:
A 19 bugcheck (blue screen) occurred intermittently
when loading and unloading content into Link
Driver, for example, when configuration changes
were made or enforced.
RESOLUTION:
The link driver was corrected to resolve a race
condition that could lead to this issue.
PATCH 4 RESOLVED ISSUES
1. ISSUE:
A crash can occur on some systems when the
On-Demand Scan Task includes the "Memory for
rootkits" scan item.
RESOLUTION:
The root kit detection driver has been updated to
better handle different processor architectures.
2. ISSUE:
When a Quarantine Restore Task is run from ePolicy
Orchestrator without specifying a restore item, the
Scan32.exe process runs a full scan and does not
exit properly, leaving the process orphaned.
RESOLUTION:
The VirusScan plug-in has been updated to check if
a restore item is specified. If not, the restore
task does not run.
3. ISSUE:
The VirusScan On-Demand Scanner has no option to
disable cookie detection alerts in the user
interface or registry.
RESOLUTION:
Alerts for On-Demand Scan cookie detections can now
be disabled by setting the DWORD "bCookieAlerts"
registry entry to 0.
HKLM\SOFTWARE\McAfee\VSCore\Alert Client\VSE
4. ISSUE:
When a user is browsing the Internet, the On-Access
Scanner sometimes logs entries "Not scanned (The
file is encrypted)" on temporary files that are
locked for use by the browser.
RESOLUTION:
The reporting for these types of detections can now
be disabled by setting the DWORD
"DoNotReportSkippedFiles" registry entry to 1.
HKLM\SOFTWARE\McAfee\VSCore\On Access
Scanner\McShield\Configuration
NOTE:
If you previously installed VSE85HF328421, the
registry entry "DoNotReportSkippedFiles" is already
set to 1.
5. ISSUE:
In environments where the Lotus Notes data folder
is in a non-standard location, the VirusScan
Scanner for Lotus Notes installer might crash
during installation of VirusScan.
RESOLUTION:
The VirusScan Scanner for Lotus Notes installation
files have been updated so that the search behavior
for notes.ini is more resilient to custom Lotus
Notes client locations.
6. ISSUE:
A crash can occur, where the VirusScan Scanner for
Lotus Notes failed to initialize properly if the
first scanned attachment of a session was stored in
a non-standard attachment format.
RESOLUTION:
The VirusScan Scanner for Lotus Notes library was
changed so that the initialization code occurs
before the attachment prefixed file name handling
occurs.
7. ISSUE:
With Self Protection enabled, the ability to
unblock a connection from a remote computer is
grayed out, even though the logged-on user has
administrator privileges.
RESOLUTION:
VirusScan Statistics has been updated to check the
credentials of the logged-on user, rather than the
access level of our services, to determine if the
"Unblock All Connections Now" button should be
available.
8. ISSUE:
Installation of this Patch enables the option
"Enable on-access scanning at system startup" if it
was previously disabled.
RESOLUTION:
The Patch installer has been corrected to properly
preserve the setting.
9. ISSUE:
The Patch installer returns a success code, even if
the Patch failed to install.
RESOLUTION:
The Patch installer has been corrected so that it
only returns a success code if it is actually
successful.
10. ISSUE:
Installing the Patch on a system that had only one
Unwanted Programs exclusion causes that exclusion
to fail.
RESOLUTION:
The installer now corrects a problem where the
DetectionExclusions registry value was being
changed from REG_MULTI_SZ to REG_SZ if only one
value existed.
11. ISSUE:
On Windows Vista, the administrator cannot disable
the On-Access Scanner via the VirusScan system tray
icon.
RESOLUTION:
VirusScan Statistics has been updated to check the
user's logged on credentials, rather than the
service handle that was used to determine access to
the McShield service in older operating systems.
12. ISSUE:
A failed reinstallation of VirusScan or a failed
Patch installation can delete the license,
resulting in an inoperable product.
RESOLUTION:
The Patch installer has been updated to no longer
cause this state in the event of a failed
installation.
13. ISSUE:
An incorrect rule file was packaged with the
VirusScan NAP file included with Patch 3. This
caused some of the Access Protection rule
categories to not appear.
RESOLUTION:
A new VirusScan NAP file was created with a
corrected rule file.
14. ISSUE:
When Host IPS is installed with VirusScan
Enterprise, and IPS is disabled, the interface for
VirusScan Buffer Overflow Protection remains grayed
out, even though it is active.
RESOLUTION:
The Buffer Overflow console plug-in was updated to
check for the registry flag that is set by Host
IPS, to tell VirusScan Enterprise that IPS is
disabled.
15. ISSUE:
When Self Protection is enabled on a remote machine
and a user attempts open a remote console
connection to that machine, the user receives an
access denied message, and the remote console is
not opened.
RESOLUTION:
The VirusScan Console was updated to make the
connection to the remote console more robust.
PATCH 3 RESOLVED ISSUES
1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on heavily
loaded servers.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash Analysis
(OCA), showing a crash in an instruction that could
not ordinarily fail.
RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual behavior
on affected processors.
4. ISSUE:
A 7E bugcheck (blue screen) can occur with certain
low resource conditions.
RESOLUTION:
The Link Driver has been updated to better handle
scenarios where the system is low on resources.
5. ISSUE:
On 64-bit systems, VirusScan Statistics causes an
issue where the user cannot open more than one
Microsoft Virtual PC image. Virtual PC reports
insufficient memory.
RESOLUTION:
VirusScan Statistics has been updated to resolve a
memory utilization problem on 64-bit systems.
6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to use appropriate registry data.
7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to no longer request a certain level of
access to the service, which would be denied by the
higher level of Access Protection security.
8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are lost
after upgrading from ePolicy Orchestrator 3.5 to
3.6.x.
RESOLUTION:
The VirusScan NAP file has been updated to include
additional xml code for mapping policies between
ePolicy Orchestrator 3.5 and 3.6.x.
NOTE:
To migrate the policies correctly, follow the
instructions under "Installation Steps."
PATCH 2 RESOLVED ISSUES
1. ISSUE:
When an AutoUpdate task copies new DAT files into
the engine folder, VirusScan services and Microsoft
Outlook can spike CPU utilization in excess of one
minute.
RESOLUTION:
The McTaskManager service has been enhanced so that
it no longer issues multiple reload notifications
to the scanners after a DAT update.
NOTE:
Users who saw a smaller spike after the original
fix (HF320829) should see more improvement with
this fix.
2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy Orchestrator or
ProtectionPilot. A registry value was not being
updated correctly.
RESOLUTION:
VirusScan’s Management Plug-In has been updated to
correctly write the "RepairBackupDirectory"
registry entry.
3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
effect immediately. To enable the rule, the
McShield service must be stopped and restarted.
RESOLUTION:
The McShield service has been updated to improve
the monitoring of registry changes with the
Unwanted Programs policy.
4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system with
a clean floppy in its drive.
RESOLUTION:
The On-Access Scanner has been updated to better
handle the shutdown process.
5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
RESOLUTION:
The Link Driver was updated to correct
synchronization issues during the start of
processes.
6. ISSUE:
VirusScan does not correctly remove Buffer Overflow
Protection process exclusions that are introduced
by ePolicy Orchestrator or ProtectionPilot.
RESOLUTION:
The VirusScan plug-in has been updated to properly
remove old Buffer Overflow Protection registry
values when ePolicy Orchestrator or ProtectionPilot
policies are enforced.
7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
RESOLUTION:
The Anti-Virus Filter and Link drivers where
updated to properly remove the read-only attribute
when taking action on files on the EMC share.
8. ISSUE:
Detections on a network share may leave behind zero
byte files on the share.
RESOLUTION:
The Anti-Virus Filter and Link drivers were updated
to ensure proper cleanup of detections on a network
share.
9. ISSUE:
The On-Access Scanner functions in Console are not
updating properly when Access Protection is
disabled.
RESOLUTION:
The state of Self Protection is now correctly
tracked by the On-Access Scanner Console plug-in.
10. ISSUE:
The Self Protection feature of Access Protection is
disabled after removing a Patch from the system.
RESOLUTION:
The MSP installer has been updated to fix a
mismatched name between the custom action and
installer execution sequence tables in the cached
MSI file.
11. ISSUE:
Interacting with Remote Console On-Demand Scan and
AutoUpdate tasks caused the local tasks with the
same id to be acted upon, instead of the remote
task.
RESOLUTION:
The Update and On-Demand Scanner binaries were
updated to properly call the remote task instead of
the local one.
12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1 or
8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do not
display in the VirusScan console.
RESOLUTION:
The MSP Installer package has been updated to
initialize the console tasks that were not
previously initialized, so they display in the
VirusScan console.
NOTE:
This fix is for those who used the originally
released VirusScan Enterprise 8.5i. The current
8.5i repost package includes this fix.
13. ISSUE:
With the McAfee Installation Designer (MID) option
to "Allow Users to Uninstall" disabled, the
UninstallString registry value was removed to
prevent product removal. This registry value was
also used by ePolicy Orchestrator to determine that
VirusScan was installed.
RESOLUTION:
The VirusScan Detection Script has been updated to
check for the existence of the uninstall key,
instead of the UninstallString value, to determine
if the VirusScan Enterprise install package needs
to be pushed to the client.
14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
RESOLUTION:
The Common Shell Scanner binaries have been updated
to resolve this issue.
15. ISSUE:
If McShield and McTaskManager Services were stopped
and restarted in a specific order, the Access
Protection and Buffer Overflow features remained
disabled after the services started.
RESOLUTION:
The On-Access Scan Console plug-in has been updated
to recognize the last known state of Access
Protection and Buffer Overflow Protection when
McShield service is stopped.
16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
RESOLUTION:
The McShield service has been updated to properly
change states when altering configurations.
17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the user
to right-click and disable that feature. The
option to disable right-click ability is under the
"Other" category (Console and Miscellaneous).
RESOLUTION:
The password functionality has been moved to the
BehaviorBlocking console plug-in so that the
right-click option is now included with the Access
Protection password options.
18. ISSUE:
The Buffer Overflow Protection displays a detection
in the On-Access Messages window when the "Show the
messages when a buffer overflow is detected" option
is disabled.
RESOLUTION:
The On-Access Scan Statistics binary has been
updated to properly suppress the Buffer Overflow
detection when configured to do so.
19. ISSUE:
On-Access Scanner’s Network Drive Scanning causes
network copy times to increase, more then what is
normally expected, when this option is enabled.
RESOLUTION:
The Common Shell binaries have been updated to no
longer request a certain level of access to the
network file(s), which would always be denied.
PATCH 1 RESOLVED ISSUES
1. ISSUE:
Applications that perform operations with temporary
files, such as printing, generate a "file missing"
error.
RESOLUTION:
The link driver has been updated to correctly
handle file operations that use the DeleteOnClose
flag.
2. ISSUE:
When McAfee Policy Enforcer is pushed out to a
system with VirusScan Enterprise 8.5i, McAfee
trusted processes might trigger Access Protection
rules. A reboot is required to correct the
problem.
RESOLUTION:
The link driver has been revised to ensure trusted
policies are propagated between instances of loaded
drivers.
3. ISSUE:
Some files remain locked indefinitely. Third-party
tools indicate that McShield.exe was leaking
handles, thereby locking the file.
RESOLUTION:
The link driver has been updated to detect and
handle the oplock break-in-progress status code and
ensure file locks are released.
4. ISSUE:
Under certain conditions, VirusScan Enterprise
scanner for Lotus Notes can mistakenly deny access
to the Lotus Notes internal processes, if another
Note is being accessed by the user. The message
"You are not authorized to perform that operation"
is displayed for the user.
RESOLUTION:
The Lotus Notes scanner binaries have been updated
to resolve the issue.
5. ISSUE:
For non-English platforms, a control ID is
displayed in the Status field of the On-Access
Messages window, rather than the localized
strings.
RESOLUTION:
The resource binary for the On-Access Scanner
service has been updated to resolve this issue.
6. ISSUE:
When VirusScan Enterprise 8.5i is installed to
Windows Vista 32-bit platforms, the Buffer Overflow
Protection feature is not available.
RESOLUTION:
This Patch enables Buffer Overflow Protection for
Windows Vista 32-bit environments.
7. ISSUE:
When a scheduled On-Demand Scan task fails to
authenticate to a specified location, the user
receives an erroneous error asking that VirusScan
Enterprise be reinstalled.
RESOLUTION:
The localized binaries file has been updated to
handle the specific event.
8. ISSUE:
ePolicy Orchestrator could fail to replicate
distributed repositories when VirusScan Enterprise
8.5i is installed.
RESOLUTION:
The Common Shell binary has been updated to allow
sharing of files with other processes.
9. ISSUE:
Users without local administrative rights are not
able to use the Help file unless it was previously
downloaded by an administrator.
RESOLUTION:
Non-administrative users can now download and use
the current Help file.
10. ISSUE:
Not all VirusScan Enterprise events can be filtered
in ePolicy Orchestrator reporting.
RESOLUTION:
The extended reports NAP file has been updated to
allow filtering of all VirusScan Enterprise
events.
11. ISSUE:
In certain circumstances, when a state change
occurs with Access Protection, the On-Access
Scanner cannot be disabled/enabled, and some Access
Protection rules fail to log messages.
RESOLUTION:
The McTaskManager Service and Access Protection
binaries have been updated to resolve this issue.
12. ISSUE:
When resuming from the hibernate state, the system
tray icon might be in the disabled state,
reflecting the status of the On-Access Scanner.
However, the scanner service is functioning
normally.
RESOLUTION:
The system tray icon should always reflect the
correct state of the On-Access Scanner when
resuming from hibernation.
KNOWN ISSUES
1. The 5200 or later engine must be installed prior to
deploying Patch 5 or later. The Patch updates the
cached MSI tables to prevent a repair from
restoring an unusable version of the engine.
2. On-Access Scan Messages might fail to populate on
detections after Patch 8 is installed. A reboot
might be needed to resolve this issue. This does
not affect detection logging and alerting, or
reporting to ePolicy Orchestrator and
ProtectionPilot.
3. Some customers have reported seeing VirusScan
Statistics (VShield) crashing/disappearing from the
system tray. Refer to McAfee Support KnowledgeBase
article 613892 for more information on this issue.
4. If Host Intrusion Prevention 6.x or later is
installed and disabled prior to VirusScan
Enterprise, it is necessary to re-enable IPS and
disable it again in order for VirusScan Buffer
Overflow Protection to be properly enabled.
5. Sporadic crashes of the McShield Service have been
seen during the patch install, on systems running
McAfee AntiSpyware Enterprise Module. The service
recovers correctly at the end of the patch
process.
6. If you install this release interactively and
cancel the installation on a system where a
previous Patch was installed, after the rollback
completes, the previous Patch no longer reports to
ePolicy Orchestrator or appears in the "About
VirusScan Enterprise" window.
7. Installing the Patch and specifying a log file path
using the Microsoft Installer (MSI) switch "/L"
does not log to the specified path. A log file
capturing full data is logged to the folder
"McAfeeLogs" under the Temp folder.
8. If the Lotus Notes client is open when this release
is installed, the installation completes
successfully, but a reboot is required to replace
the McAfee Lotus scanner files. The new files are
not used until after a reboot.
9. Uninstalling VirusScan Enterprise Patches is now
possible for computers running Windows Installer
v3.x or later. This technology is not fully
integrated for Windows 2000 operating systems, so
there is no option to remove the Patch in
Add/Remove programs. Please see instructions under
"Removing the Patch" for removal via command-line
options.
10. Uninstalling VirusScan Patches is not available for
Windows NT platforms, because Windows Installer
v3.x is not supported on this platform. The Patch
still installs to all platforms supported by
VirusScan Enterprise 8.5i.
11. Patches for VirusScan Enterprise 8.5i can only be
uninstalled via Add/Remove programs, not via
ePolicy Orchestrator or ProtectionPilot.
FILES INCLUDED WITH THIS RELEASE
This release consists of a package called VSE85P8.ZIP,
which contains the following files:
PKGCATALOG.Z =
Package catalog file
PATCH8.TXT =
This text file
VSE850DET.MCS =
VirusScan Enterprise detection script
SETUP.EXE =
Installer for this release
SETUP.INI =
Initialization file for SETUP.EXE
PATCH8.MSP =
Microsoft Installer Patch file
VSE850.NAP =
Management NAP for VirusScan Enterprise
VSE850REPORTS.NAP =
Reporting NAP file
The following files are installed to client
systems:
STRINGS.BIN No version
MIDUTIL.DLL 8.5.0.156
CONDL.DLL 8.5.0.857
COPTCPL.DLL 8.5.0.857
MCAVDETECT.DLL 8.5.0.869
MCAVSCV.DLL 8.5.0.869
BBCPL.DLL 8.5.0.895
CONSL.DLL 8.5.0.895
MCCONSOL.EXE 8.5.0.895
SHUTIL.DLL 8.5.0.895
OASCPL.DLL 8.5.0.909
FTCFG.DLL 8.5.0.936
MCUPDATE.EXE 8.5.0.936
NAIANN.DLL 8.5.0.936
NCDAEMON.EXE 8.5.0.936
NCEXTMGR.DLL 8.5.0.936
NCINSTALL.DLL 8.5.0.936
NCMENU.DLL 8.5.0.936
NCSCAN.DLL 8.5.0.936
NCTRACE.DLL 8.5.0.936
QUARCPL.DLL 8.5.0.936
SCAN32.EXE 8.5.0.936
SCAN64.EXE 8.5.0.936
SCNCFG32.EXE 8.5.0.936
SHSTAT.EXE 8.5.0.936
VSODSCPL.DLL 8.5.0.936
VSTSKMGR.EXE 8.5.0.936
VSUPDCPL.DLL 8.5.0.936
VSPLUGIN.DLL 8.5.0.937
ENTSRV.DLL 13.3.0.169
MFEBOPA.DLL 13.3.0.169
MFEBOPK.SYS 13.3.0.169
MFEAPFA.DLL 13.3.0.169
MFEAPFK.SYS 13.3.0.169
MFEAVFA.DLL 13.3.0.169
MFEAVFK.SYS 13.3.0.169
MFEHIDA.DLL 13.3.0.169
MFEHIDN.EXE 13.3.0.169
MFEHIDK.SYS 13.3.0.169
MFERKDA.DLL 13.3.0.169
MFERKDK.SYS 13.3.0.169
MFETDIK.SYS 13.3.0.169
ADSLOKUU.DLL 13.3.2.137
CSSCAN.EXE 13.3.2.137
ENTVUTIL.EXE 13.3.2.137
FTL.DLL 13.3.2.137
LOCKDOWN.DLL 13.3.2.137
MCSHIELD.DLL 13.3.2.137
MCSHIELD.EXE 13.3.2.137
MCSHIELDPERFDATA.DLL 13.3.2.137
MCVSSNMP.DLL 13.3.2.137
MYTILUS.DLL 13.3.2.137
MYTILUS2.DLL 13.3.2.137
NAEVENT.DLL 13.3.2.137
NAIEVENT.DLL 13.3.2.137
SCANOTLK.DLL 13.3.2.137
SCRIPTCL.DLL 13.3.2.137
SCRIPTSV.DLL 13.3.2.137
LOGPARSER.EXE 1.2.0.131
The following files are checked in to the ePolicy
Orchestrator or ProtectionPilot repository:
VSE850.NAP 2.0.0.696
VSE850REPORTS.NAP 3.0.0.781
Download: http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar (http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar)
Download Mirror: http://www.megaupload.com/?d=GN9MP08R (http://www.megaupload.com/?d=GN9MP08R)
P.S.
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
Samker
Thank you, Samker.
Just send the password for the file.
Daniel
[/aeva]
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
For which version you need pass.??
This one, 8.5i patch 8. Or does it make a difference which patch 8.5i version I get?
-
For which version you need pass.??
This one, 8.5i patch 8. Or does it make a difference which patch 8.5i version I get?
Yes, you need last one... I'll send you pass. via PM. ;)
Regards
-
Thanks a lot for the link to patch 8.
Can I get the password to open it.
Many thanks inadvance.
kant5420
-
Please , i need a password
(T.T)
-
hey dude, could you pleae give the password, and if possible along with password give the link for the 8.5i with patch
-
I feel my system has become more sluggish and slow after installing this patch, especially after putting the Hotfix recommended. Can you see any reasons that i can consider investigating.
-
Thank
-
Hi Samker,
thanks for patch 8. Please, send me the password.
By
Shipon
-
Hello Boss,
thanks for patch 8. Please, send me the password. i need Password.
-
I feel my system has become more sluggish and slow after installing this patch, especially after putting the Hotfix recommended. Can you see any reasons that i can consider investigating.
Hi G.,
please check your AV configuration, maybe some settings are changed after installing this Updates??
Regards,
S.
-
Hi, Samker, thanks for the post!
Could you please send me the password?
Thanks alot for the patch
-
Hi Samker,
Can you sen me the pass fot the rar file please.
Thanks. :)
-
Hi Samker,
I installed Virusscan enterprise 8.5i patch one on my vista 64 bit machine. After that it has become very slow. I downloaded patch 8 as McAfee states you need at least version 5, but it is encrypted. Would you be able to tell me the password?
Thanks a million.
Ali
-
Hi Samker,
Can you sen me the pass fot the rar file please.
Thanks.
-
Hello
Can you send me the password? Please?
Best regards
-
hello, can i request for the password please. thanks so much.
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Best Regards ;)
-
Hi, can u please send me password of file "Patch 8"....
thanks
-
i need the password!!! thank
-
Thanks Pls 8.5i patch 8 password
-
Thanks for your patch 8 dowload. Please send to the mcafee patch 8 password. Please................................................
-
thanks for the patch. can you send me the password
-
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
-
Hey thanks for the latest patch....Can you please send me the password....
-
Thank you, Samker.
send the password for the file.
please
Regards.
-
Hi, Can you PM the rar password to me please :thumbsup:
Thanks Samker
-
Hello CloneClinic please, check your PM
Regards,
Amker
-
Thx..Pass please.. ;D
-
check your PM trgilpin
Regards,
Amker
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Best Regards ;)
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Neeraj
-
Neeraj please check your PM
Regards,
Amker
-
dear mr/ miss
thank you. Please, send me the password patch 7 & 8.
best regards
m.e.jafari
info@chakad-sanat.com
-
5panj5 please check your PM
Regards,
Amker
-
Hey guys!
I know I'm new here and you want loyal users but I really need the patch 8 fork work. the reason we have no grant# @mcafee is that there is some strange school-contract where a sub-company only has access to the patches and serves installation packages themselves... which sucks since we have our own installation system and they don't supply any patches. so please would you be so kind and pm me the password needed for decompression?
cheers
chris
-
Hello.
Please send me a password patch 8 mcafee 8.5i.
Thank you
-
check your PM serpiente
Regards,
Amker
-
please send me patch 8 password, thanks
-
check your PM serpiente
Regards,
Amker
Hi Amker!
Can I have the password too, pleeeease?
thanks, chris
-
Hi pls send password
Thanks
Vaasjoe@hotmail.com
-
i tried macfee 8.5i patch but it did't work. so i download patch 8. can some one tell me the password for extracting winrar for patch 8
-
May I have the password for this file please?
-
portage,punshme,vaasjoe,cool_budy007,tstennes check your PM
Regards,
Amker
-
May I please have the password for the patch 8? Thank you for the patch.
-
2-miller-4 check your PM
Regards,
Amker
-
can i get pleas the password of patch 7 arhive thanks
-
Hello bolocanm check your PM
Regards,
Amker
-
please send me the password for patch 8 with the name VSE85iP8_SCF thanks AmKer
-
check your PM bolocanm
Regards,
Amker
-
Please send me the password for patch 8.
Thanks.
-
Well your tactics did work, although I should have registered a long time ago. I'm a lurker and use your forums for a lot of good info. I agree now that I registered I'm more likely to respond to help people (only reason I didn't before is yet another forum login name/password, ugh! hehe). Anyway, if you wouldn't mind I would appreciate the password to the patch 8 rar as well. Thanks!
-
Triden,BAG check your PM
Regards,
Amker
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
E-manuele
-
what is the pasw of "VSE8.7P1 by SCF" ?
-
PM me the pasword of patch 8 thnx in advance :)
-
E-manuele,uzairsattar check your PM
Regards,
Amker
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Shezipk
-
shezipk check your PM
Regards,
Amker
-
Hi,
I was wondering if it would be possible to get the password for this McAfee VirusScan 8.5i patch 8.
Thank you in advance for your help and also thanks for having such an informative site.
Sincerely,
VampireBeatnik
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
I have another question: Right now I have installed McAfee vscan 8.5i, including Patch 4.
Is it sufficient to install this patch 8, or do I also have to install the previous patches before?
And can I install this Patch 8, directly, or do I first have to uninstall my current version (vscan 8.5i, including Patch 4)
Regards
Ret
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Hatta
-
[aeva]
(http://www.9down.com/pic/topic/mcafee.gif)
McAfee VirusScan Enterprise protects your desktop and file servers from a wide range of threats, including viruses, worms, Trojan horses, and potentially unwanted code and programs. McAfee VirusScan® 8 takes anti-virus protection to the next level, integrating elements of intrusion prevention and firewall technology into a single solution for PCs and file servers. This powerful combination delivers truly proactive protection from the newest of today’s threats-including buffer - overflow exploits and blended attacks - and features advanced outbreak management responses to reduce the damage and costs of outbreaks. Everything is managed by McAfee ePolicy Orchestrator® or ProtectionPilot™ for scalable security policy compliance and graphical reporting.
Release Notes for McAfee(R) VirusScan(R) Enterprise Version 8.5i Patch 8
Copyright (C) 2009 McAfee, Inc.
All Rights Reserved
==========================================================
Patch Release: January 27, 2009
This release was developed and tested with:
- VirusScan Enterprise: 8.5i
- DAT Version: 5474, December 24, 2008
- Engine Version: 5.3.00
Make sure you have installed these versions, or later,
before using this release.
==========================================================
Thank you for using VirusScan(R) Enterprise software.
This file contains important information regarding this
release. We strongly recommend that you read the entire
document.
__________________________________________________________
WHAT'S IN THIS FILE
- About This Release
- Purpose
- Improvements
- Resolved Issues
- Patch 8 Resolved Issues
- Patch 7 Resolved Issues
- Patch 6.1 Resolved Issues
- Patch 6 Resolved Issues
- Patch 5 Resolved Issues
- Patch 4 Resolved Issues
- Patch 3 Resolved Issues
- Patch 2 Resolved Issues
- Patch 1 Resolved Issues
- Known Issues
- Files Included With This Release
- Installation
- Installation Requirements
- Installation Steps
- Installation Steps via ePolicy Orchestrator
- HotFix/Patch Reporting
- Verifying the Installation
- Removing the Patch
- Copyright & Trademark Attributions
- License Information
__________________________________________________________
ABOUT THIS RELEASE
PURPOSE
This release contains updated binaries in a single
Microsoft Patch installer to address all items listed
in "Resolved Issues" below.
For the most up-to-date copy of this Readme
information, refer to McAfee Support KnowledgeBase
article 60415.
Patch 8 is a High Priority release. See McAfee Support
KnowledgeBase article 614038 for information on
ratings.
__________________________________________________________
IMPROVEMENTS
1. VirusScan Enterprise with the AntiSpyware Module
can now be set so that it no longer places cookie
detections in the quarantine folder. They instead
are deleted permanently as part of the clean
action.
NOTE:
By setting the DWORD "DisableCookieBackups"
registry entry to 1, cookie detection quarantines
no longer occur.
HKLM\SOFTWARE\McAfee\VSCore
2. The on-demand scanner has been updated to better
use the System Utilization setting throughout the
entire scanning process.
Refer to McAfee Support KnowledgeBase article
9197288 for further information.
3. This Patch contains a new Buffer Overflow and
Access Protection DAT (version 378), which adds an
Access Protection category for Virtual Machine
Protection. These rules provide access protection
functionality for virtual machines.
NOTE:
To manage the new Virtual Machine Protection
category with ePolicy Orchestrator 3.x or
ProtectionPilot, you must use the latest NAP file,
which is included in this Patch package, or
VirusScan 8.5i Repost Patch 5.
For ePolicy Orchestrator 4.x users, the Extension
update also contains the updated rule file. The
updated Extension package is available on the web
product download area under the Patches category.
__________________________________________________________
RESOLVED ISSUES
The resolved issues are divided into subsections per
patch, showing when each fix was added to the
compilation.
PATCH 8 RESOLVED ISSUES
1. ISSUE:
In Patch 7, the McShield resource files were
missing some string tables that were responsible
for On-Access Scan and On-Demand Scan status.
RESOLUTION:
McShield.dll has been corrected to include all the
proper strings for displaying information on
non-English installations.
2. ISSUE:
A timing issue could occur during the import of the
McAfee Installation Designer (MID) configuration.
During the installation of VirusScan Enterprise,
the temporary registry information sometimes was
not available before the registry editor attempted
to apply the settings. The process generated an
application event, ID 1006, while the registry
editor attempted to reapply the settings until it
was successful.
RESOLUTION:
The McAfee Installation Designer configuration
applicator was revised to no longer report the
error, because it does not represent a true failure
in the process.
NOTE:
To prevent the generation of this error, use the
repost package that includes this Patch release.
3. ISSUE:
On multi-processor systems that receive files from
remote clients, some instructions were being
executed frequently and unnecessarily, acquiring an
exclusive lock on all processors. This created a
bottleneck in the file I/O being written to disk.
RESOLUTION:
The link driver has been revised to eliminate the
described bottleneck.
4. ISSUE:
Access Protection block rules that were created for
USB devices sometimes did not handle removing and
reinserting the device multiple times.
RESOLUTION:
The Access Protection, Anti-Virus Filter, and Link
drivers have been updated to better handle
re-hooking the device.
5. ISSUE:
The On-Access Scanner was not properly utilizing
the "Scan files opened for Backup" option.
RESOLUTION:
The Anti-Virus Filter driver has been rectified to
properly interpret the flag being sent from the
On-Access Scanner.
6. ISSUE:
Certain detections with multiple infections or
clean actions were logging the action two times.
One entry was made during the middle of the
process, and the other during the final
resolution.
RESOLUTION:
The Common Shell scanner has been updated to report
only the final resolution of the detection.
7. ISSUE:
The repair option for McAfee AntiSpyware Enterprise
Module would execute during the patch process. This
caused the cookie and registry scan targets to be
re-added to On-Demand Scan tasks that were removed
by the user.
RESOLUTION:
The patch installer has been updated to preserve
the On-Demand Scan anti-spyware scan targets.
PATCH 7 RESOLVED ISSUES
1. ISSUE:
When installing a VirusScan Enterprise 8.5i patch,
the existing On-Access Scanner service might fail
to unload. This leads to two instances of the
service, with one consuming a high amount of CPU
usage.
RESOLUTION:
The On-Access Scanner service had been updated to
avoid a runaway thread scenario that caused the
service, being replaced, to not stop.
NOTE:
To avoid this issue while installing Patch 7 or
later, install HF427887 first. Refer to McAfee
Support KnowledgeBase article 616344 for further
information.
2. ISSUE:
Changes to the VirusScan Enterprise core subsystem
disabled performance optimization for handling
frequent write actions to INI and LOG files.
RESOLUTION:
The Anti-Virus Filter Driver was corrected to
ensure that scanning of specified file extensions
is optimized, as in previous versions.
3. ISSUE:
A three-party deadlock occurred, causing the
On-Access Scanner to become blocked until it times
out. This causes the scanner service to time out
and eventually self-terminate.
RESOLUTION:
The Common Shell scanner has been updated to
prevent the On-Access Scanner from becoming blocked
while the security libraries are loaded by the
system.
4. ISSUE:
The extended reports NAP contained some ePolicy
Orchestrator stored procedures that were needed to
add support for the VirusScan product line. The
ePolicy Orchestrator patches have since made new
modifications to the same stored procedures.
Therefore, when the VirusScan extended reports NAP
is checked in after the new ePolicy Orchestrator
modified procedures are in place, they are
overwritten and the newer functionality is lost.
RESOLUTION:
The VirusScan extended reports NAP has been revised
to no longer replace the ePolicy Orchestrator
stored procedures.
5. ISSUE:
If the Lotus Notes client is running during
uninstall of VirusScan Enterprise 8.5i, the Lotus
Notes Scanner entries might not be properly removed
from the NOTES.INI file. This can cause the Lotus
Notes client to crash on subsequent starts.
RESOLUTION:
The Lotus Notes Scanner module has been corrected
to remove its entries in the NOTES.INI file for all
scenarios.
6. ISSUE:
The VirusScan Enterprise Patch installer did not
correctly preserve the MIDFileTime registry value.
This caused the McAfee Installation Designer (MID)
.CAB files to be re-applied at the time of
installation.
RESOLUTION:
The Patch installer has been updated to correctly
preserve the binary value of MIDFileTime.
7. ISSUE:
Changes made in Microsoft Vista SP1 and later, in
how the operating system opens/views network files,
caused delays in opening new network paths, with
the On-Access Scanner’s Network Scanning feature
enabled.
RESOLUTION:
The link driver has been modified to use a
different method of accessing the network resources
that avoids the delays imposed by the operating
system change.
8. ISSUE:
A 7E bugcheck (blue screen) might occur if an
application shut down immediately after sending
data over the network.
RESOLUTION:
The link driver has been revised to better handle
data that is transmitted by applications after the
driver has stopped.
9. ISSUE:
When the VirusScan NAP is checked in, it runs a
script that enables anti-spyware settings in
policies and tasks, if the AntiSpyware 8.5 module
NAP is in the ePolicy Orchestrator repository. The
intended purpose of the script is similar to the
local AntiSpyware module installer, which enables
its settings when installed on a local system.
RESOLUTION:
The VirusScan NAP has been updated so that the
script is disabled during check-in of the VirusScan
NAP package. This prevents the anti-spyware
settings from being enabled when updating the
VirusScan NAP.
NOTE:
The McAfee AntiSpyware 8.5 module NAP has the same
script in it. This means that if the McAfee
AntiSpyware 8.5 module NAP is installed after the
VirusScan NAP, the anti-spyware settings are still
enabled.
10. ISSUE:
Servers that deal with many file writes were
becoming unresponsive.
RESOLUTION:
The anti-virus filter driver was revised to
correctly filter and dispatch scans on write.
PATCH 6.1 RESOLVED ISSUES
1. ISSUE:
An issue can occur when the 5300 engine is
installed prior to installing VirusScan 8.5i Patch
6. The scanner engine files are partially
overwritten with the previous 5200 version that is
stored in the MSI cache. This mismatch causes the
scanner engine to fail to initialize.
RESOLUTION:
The Patch installation package has been updated to
correct this issue, and does not overwrite the
engine files.
PATCH 6 RESOLVED ISSUES
1. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to only write to the registry if it
sees that it is different from the current policy.
This will prevent McShield from generating events
on policy enforcement, unless that policy has
changed.
This is an addendum to the original solution in
Patch 5, where the fix did not work when the
preferred language was set to something other than
automatic.
2. ISSUE:
A compatibility issue has been seen with
VirusScan’s port blocking feature, and Veritas
backup applications. This was causing the backup
software services to stop running.
RESOLUTION:
The VirusScan Anti-Virus Mini-Firewall Driver has
been updated to correct the compatibility issue.
3. ISSUE:
A race condition in the On-Access Scanner service
can cause high CPU utilization with high
performance systems.
RESOLUTION:
The On-Access Scanner service has been updated to
remedy multi-threading synchronization issues and
remove occurrences of runaway threads.
4. ISSUE:
The On-Access Scanner service sometimes crashes
during a system shutdown or during installation of
a Patch/HotFix.
RESOLUTION:
The On-Access Scanner service has been repaired to
correct a race condition in which a
critical-section synchronization object is deleted
before another thread has entered.
5. ISSUE:
A deadlock could occur on high end servers caused
by a race condition in VirusScan’s link driver.
RESOLUTION:
The link driver has been changed to properly handle
the release of system objects, while holding a lock
on resources.
6. ISSUE:
Port blocking fails on Microsoft Windows Vista
Service Pack 1.
RESOLUTION:
The McAfee Driver Installer has been update to
handle the changes in network stack load order.
7. ISSUE:
The On-Demand Scanner system utilization changes
that were put in patch 5 changed the memory
scanning function. This caused the process scanning
to only scan the first process ID.
RESOLUTION:
The change has been reversed so that all processes
are scanning irrespective of process ID.
8. ISSUE:
When applied to a client installation that was
customized by McAfee Installation Designer (MID),
the patch installer deletes the MidFileTime
registry value. This caused MID .CAB files to be
re-applied to the system.
RESOLUTION:
The patch installer has been updated to no longer
delete the MidFileTime registry value.
9. ISSUE:
A newly created user defined Unwanted Program
Policy, does not take effect immediately if the
file has been scanned by the On-Access Scanner
before the change occurred.
RESOLUTION:
The On-Access Scanner service has been updated to
properly recognize changes to the user defined
detections and clear the cache of files that have
already been scanned so that the new settings take
effect immediately.
10. ISSUE:
A trust relationship exists in McAfee drivers that
can be leveraged by McAfee processes to avoid
triggering access protection rules and other
compatibility symptoms. When the link driver was
updated to newer releases this trust relationship
was lost until a reboot occurred.
RESOLUTION:
The link driver has been modified to better handle
the process of future upgrades to itself without
the need for a reboot.
PATCH 5 RESOLVED ISSUES
1. ISSUE:
Disabling the On-Access Scanner from the console is
not always possible when users with sufficient
privileges belonged to large numbers of user
groups.
RESOLUTION:
VirusScan Statistics has been updated so that users
with sufficient privileges can now disable the
On-Access Scanner from the console regardless of
how many user groups they belong too.
2. ISSUE:
The VirusScan Enterprise management plug-in writes
all settings to the registry on every policy
enforcement. McShield service monitors the
registry and reloads whenever the settings are
written, generating frequent pause events in the
Windows System log.
RESOLUTION:
The VirusScan Enterprise management plug-in has
been updated to write to the registry only if it
sees that it is different from the current policy.
This prevents McShield from generating events on
policy enforcement, unless that policy has
changed.
NOTE:
If the symptom persists, refer to McAfee Support
KnowledgeBase article 614077.
3. ISSUE:
With the VirusScan Policy set to "Display managed
tasks in the client console," the tasks sometimes
disappear in the VirusScan Console.
RESOLUTION:
The On-Demand Scanner and Update console plug-ins
have been updated so that when policy enforcement
occurs, the console now updates the list of tasks
to ensure an accurate display.
4. ISSUE:
When using system variables in the folder path for
the Quarantine Manager Policy, the list of
quarantined items is empty, even though items were
quarantined to the correct directory.
RESOLUTION:
The Quarantine Manager console plug-in has been
corrected so that the path specified in the folder
input field is now properly expanded and the system
variables are replaced before the list of
Quarantined items is requested.
NOTE:
For further information about this fix, refer to
McAfee Support KnowledgeBase article 614549.
5. ISSUE:
When a VirusScan Patch installation failed, the
Help "About" dialog box no longer displayed the
previous Patch number.
RESOLUTION:
The patch installer has been updated to write the
new Patch registry value only if the Patch
succeeds. If it fails and a rollback occurs, the
old Patch registry value remains.
6. ISSUE:
A 4E bugcheck (blue screen) can occur when
VirusScan Enterprise 8.5i is installed along side
SafeBoot Content Encryption 3.
RESOLUTION:
The link driver was updated to add supportability
for SafeBoot.
7. ISSUE:
On Windows Vista and later, On-Demand Scan function
"Save as Default" does not correctly save changes
made for future scan tasks.
RESOLUTION:
The On-Demand Scanner has been corrected to
properly save the registry data for the default
task.
8. ISSUE:
Access Protection port blocking rules that spanned
a range of ports could block all processes rather
than only those processes specified in the rule.
RESOLUTION:
The Access Protection driver has been updated to
better handle requests for process names.
9. ISSUE:
A 19 bugcheck (blue screen) occurred intermittently
when loading and unloading content into Link
Driver, for example, when configuration changes
were made or enforced.
RESOLUTION:
The link driver was corrected to resolve a race
condition that could lead to this issue.
PATCH 4 RESOLVED ISSUES
1. ISSUE:
A crash can occur on some systems when the
On-Demand Scan Task includes the "Memory for
rootkits" scan item.
RESOLUTION:
The root kit detection driver has been updated to
better handle different processor architectures.
2. ISSUE:
When a Quarantine Restore Task is run from ePolicy
Orchestrator without specifying a restore item, the
Scan32.exe process runs a full scan and does not
exit properly, leaving the process orphaned.
RESOLUTION:
The VirusScan plug-in has been updated to check if
a restore item is specified. If not, the restore
task does not run.
3. ISSUE:
The VirusScan On-Demand Scanner has no option to
disable cookie detection alerts in the user
interface or registry.
RESOLUTION:
Alerts for On-Demand Scan cookie detections can now
be disabled by setting the DWORD "bCookieAlerts"
registry entry to 0.
HKLM\SOFTWARE\McAfee\VSCore\Alert Client\VSE
4. ISSUE:
When a user is browsing the Internet, the On-Access
Scanner sometimes logs entries "Not scanned (The
file is encrypted)" on temporary files that are
locked for use by the browser.
RESOLUTION:
The reporting for these types of detections can now
be disabled by setting the DWORD
"DoNotReportSkippedFiles" registry entry to 1.
HKLM\SOFTWARE\McAfee\VSCore\On Access
Scanner\McShield\Configuration
NOTE:
If you previously installed VSE85HF328421, the
registry entry "DoNotReportSkippedFiles" is already
set to 1.
5. ISSUE:
In environments where the Lotus Notes data folder
is in a non-standard location, the VirusScan
Scanner for Lotus Notes installer might crash
during installation of VirusScan.
RESOLUTION:
The VirusScan Scanner for Lotus Notes installation
files have been updated so that the search behavior
for notes.ini is more resilient to custom Lotus
Notes client locations.
6. ISSUE:
A crash can occur, where the VirusScan Scanner for
Lotus Notes failed to initialize properly if the
first scanned attachment of a session was stored in
a non-standard attachment format.
RESOLUTION:
The VirusScan Scanner for Lotus Notes library was
changed so that the initialization code occurs
before the attachment prefixed file name handling
occurs.
7. ISSUE:
With Self Protection enabled, the ability to
unblock a connection from a remote computer is
grayed out, even though the logged-on user has
administrator privileges.
RESOLUTION:
VirusScan Statistics has been updated to check the
credentials of the logged-on user, rather than the
access level of our services, to determine if the
"Unblock All Connections Now" button should be
available.
8. ISSUE:
Installation of this Patch enables the option
"Enable on-access scanning at system startup" if it
was previously disabled.
RESOLUTION:
The Patch installer has been corrected to properly
preserve the setting.
9. ISSUE:
The Patch installer returns a success code, even if
the Patch failed to install.
RESOLUTION:
The Patch installer has been corrected so that it
only returns a success code if it is actually
successful.
10. ISSUE:
Installing the Patch on a system that had only one
Unwanted Programs exclusion causes that exclusion
to fail.
RESOLUTION:
The installer now corrects a problem where the
DetectionExclusions registry value was being
changed from REG_MULTI_SZ to REG_SZ if only one
value existed.
11. ISSUE:
On Windows Vista, the administrator cannot disable
the On-Access Scanner via the VirusScan system tray
icon.
RESOLUTION:
VirusScan Statistics has been updated to check the
user's logged on credentials, rather than the
service handle that was used to determine access to
the McShield service in older operating systems.
12. ISSUE:
A failed reinstallation of VirusScan or a failed
Patch installation can delete the license,
resulting in an inoperable product.
RESOLUTION:
The Patch installer has been updated to no longer
cause this state in the event of a failed
installation.
13. ISSUE:
An incorrect rule file was packaged with the
VirusScan NAP file included with Patch 3. This
caused some of the Access Protection rule
categories to not appear.
RESOLUTION:
A new VirusScan NAP file was created with a
corrected rule file.
14. ISSUE:
When Host IPS is installed with VirusScan
Enterprise, and IPS is disabled, the interface for
VirusScan Buffer Overflow Protection remains grayed
out, even though it is active.
RESOLUTION:
The Buffer Overflow console plug-in was updated to
check for the registry flag that is set by Host
IPS, to tell VirusScan Enterprise that IPS is
disabled.
15. ISSUE:
When Self Protection is enabled on a remote machine
and a user attempts open a remote console
connection to that machine, the user receives an
access denied message, and the remote console is
not opened.
RESOLUTION:
The VirusScan Console was updated to make the
connection to the remote console more robust.
PATCH 3 RESOLVED ISSUES
1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on heavily
loaded servers.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash Analysis
(OCA), showing a crash in an instruction that could
not ordinarily fail.
RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual behavior
on affected processors.
4. ISSUE:
A 7E bugcheck (blue screen) can occur with certain
low resource conditions.
RESOLUTION:
The Link Driver has been updated to better handle
scenarios where the system is low on resources.
5. ISSUE:
On 64-bit systems, VirusScan Statistics causes an
issue where the user cannot open more than one
Microsoft Virtual PC image. Virtual PC reports
insufficient memory.
RESOLUTION:
VirusScan Statistics has been updated to resolve a
memory utilization problem on 64-bit systems.
6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to use appropriate registry data.
7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
RESOLUTION:
The binaries for Checkpoint integration have been
updated to no longer request a certain level of
access to the service, which would be denied by the
higher level of Access Protection security.
8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are lost
after upgrading from ePolicy Orchestrator 3.5 to
3.6.x.
RESOLUTION:
The VirusScan NAP file has been updated to include
additional xml code for mapping policies between
ePolicy Orchestrator 3.5 and 3.6.x.
NOTE:
To migrate the policies correctly, follow the
instructions under "Installation Steps."
PATCH 2 RESOLVED ISSUES
1. ISSUE:
When an AutoUpdate task copies new DAT files into
the engine folder, VirusScan services and Microsoft
Outlook can spike CPU utilization in excess of one
minute.
RESOLUTION:
The McTaskManager service has been enhanced so that
it no longer issues multiple reload notifications
to the scanners after a DAT update.
NOTE:
Users who saw a smaller spike after the original
fix (HF320829) should see more improvement with
this fix.
2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy Orchestrator or
ProtectionPilot. A registry value was not being
updated correctly.
RESOLUTION:
VirusScan’s Management Plug-In has been updated to
correctly write the "RepairBackupDirectory"
registry entry.
3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
effect immediately. To enable the rule, the
McShield service must be stopped and restarted.
RESOLUTION:
The McShield service has been updated to improve
the monitoring of registry changes with the
Unwanted Programs policy.
4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system with
a clean floppy in its drive.
RESOLUTION:
The On-Access Scanner has been updated to better
handle the shutdown process.
5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
RESOLUTION:
The Link Driver was updated to correct
synchronization issues during the start of
processes.
6. ISSUE:
VirusScan does not correctly remove Buffer Overflow
Protection process exclusions that are introduced
by ePolicy Orchestrator or ProtectionPilot.
RESOLUTION:
The VirusScan plug-in has been updated to properly
remove old Buffer Overflow Protection registry
values when ePolicy Orchestrator or ProtectionPilot
policies are enforced.
7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
RESOLUTION:
The Anti-Virus Filter and Link drivers where
updated to properly remove the read-only attribute
when taking action on files on the EMC share.
8. ISSUE:
Detections on a network share may leave behind zero
byte files on the share.
RESOLUTION:
The Anti-Virus Filter and Link drivers were updated
to ensure proper cleanup of detections on a network
share.
9. ISSUE:
The On-Access Scanner functions in Console are not
updating properly when Access Protection is
disabled.
RESOLUTION:
The state of Self Protection is now correctly
tracked by the On-Access Scanner Console plug-in.
10. ISSUE:
The Self Protection feature of Access Protection is
disabled after removing a Patch from the system.
RESOLUTION:
The MSP installer has been updated to fix a
mismatched name between the custom action and
installer execution sequence tables in the cached
MSI file.
11. ISSUE:
Interacting with Remote Console On-Demand Scan and
AutoUpdate tasks caused the local tasks with the
same id to be acted upon, instead of the remote
task.
RESOLUTION:
The Update and On-Demand Scanner binaries were
updated to properly call the remote task instead of
the local one.
12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1 or
8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do not
display in the VirusScan console.
RESOLUTION:
The MSP Installer package has been updated to
initialize the console tasks that were not
previously initialized, so they display in the
VirusScan console.
NOTE:
This fix is for those who used the originally
released VirusScan Enterprise 8.5i. The current
8.5i repost package includes this fix.
13. ISSUE:
With the McAfee Installation Designer (MID) option
to "Allow Users to Uninstall" disabled, the
UninstallString registry value was removed to
prevent product removal. This registry value was
also used by ePolicy Orchestrator to determine that
VirusScan was installed.
RESOLUTION:
The VirusScan Detection Script has been updated to
check for the existence of the uninstall key,
instead of the UninstallString value, to determine
if the VirusScan Enterprise install package needs
to be pushed to the client.
14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
RESOLUTION:
The Common Shell Scanner binaries have been updated
to resolve this issue.
15. ISSUE:
If McShield and McTaskManager Services were stopped
and restarted in a specific order, the Access
Protection and Buffer Overflow features remained
disabled after the services started.
RESOLUTION:
The On-Access Scan Console plug-in has been updated
to recognize the last known state of Access
Protection and Buffer Overflow Protection when
McShield service is stopped.
16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
RESOLUTION:
The McShield service has been updated to properly
change states when altering configurations.
17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the user
to right-click and disable that feature. The
option to disable right-click ability is under the
"Other" category (Console and Miscellaneous).
RESOLUTION:
The password functionality has been moved to the
BehaviorBlocking console plug-in so that the
right-click option is now included with the Access
Protection password options.
18. ISSUE:
The Buffer Overflow Protection displays a detection
in the On-Access Messages window when the "Show the
messages when a buffer overflow is detected" option
is disabled.
RESOLUTION:
The On-Access Scan Statistics binary has been
updated to properly suppress the Buffer Overflow
detection when configured to do so.
19. ISSUE:
On-Access Scanner’s Network Drive Scanning causes
network copy times to increase, more then what is
normally expected, when this option is enabled.
RESOLUTION:
The Common Shell binaries have been updated to no
longer request a certain level of access to the
network file(s), which would always be denied.
PATCH 1 RESOLVED ISSUES
1. ISSUE:
Applications that perform operations with temporary
files, such as printing, generate a "file missing"
error.
RESOLUTION:
The link driver has been updated to correctly
handle file operations that use the DeleteOnClose
flag.
2. ISSUE:
When McAfee Policy Enforcer is pushed out to a
system with VirusScan Enterprise 8.5i, McAfee
trusted processes might trigger Access Protection
rules. A reboot is required to correct the
problem.
RESOLUTION:
The link driver has been revised to ensure trusted
policies are propagated between instances of loaded
drivers.
3. ISSUE:
Some files remain locked indefinitely. Third-party
tools indicate that McShield.exe was leaking
handles, thereby locking the file.
RESOLUTION:
The link driver has been updated to detect and
handle the oplock break-in-progress status code and
ensure file locks are released.
4. ISSUE:
Under certain conditions, VirusScan Enterprise
scanner for Lotus Notes can mistakenly deny access
to the Lotus Notes internal processes, if another
Note is being accessed by the user. The message
"You are not authorized to perform that operation"
is displayed for the user.
RESOLUTION:
The Lotus Notes scanner binaries have been updated
to resolve the issue.
5. ISSUE:
For non-English platforms, a control ID is
displayed in the Status field of the On-Access
Messages window, rather than the localized
strings.
RESOLUTION:
The resource binary for the On-Access Scanner
service has been updated to resolve this issue.
6. ISSUE:
When VirusScan Enterprise 8.5i is installed to
Windows Vista 32-bit platforms, the Buffer Overflow
Protection feature is not available.
RESOLUTION:
This Patch enables Buffer Overflow Protection for
Windows Vista 32-bit environments.
7. ISSUE:
When a scheduled On-Demand Scan task fails to
authenticate to a specified location, the user
receives an erroneous error asking that VirusScan
Enterprise be reinstalled.
RESOLUTION:
The localized binaries file has been updated to
handle the specific event.
8. ISSUE:
ePolicy Orchestrator could fail to replicate
distributed repositories when VirusScan Enterprise
8.5i is installed.
RESOLUTION:
The Common Shell binary has been updated to allow
sharing of files with other processes.
9. ISSUE:
Users without local administrative rights are not
able to use the Help file unless it was previously
downloaded by an administrator.
RESOLUTION:
Non-administrative users can now download and use
the current Help file.
10. ISSUE:
Not all VirusScan Enterprise events can be filtered
in ePolicy Orchestrator reporting.
RESOLUTION:
The extended reports NAP file has been updated to
allow filtering of all VirusScan Enterprise
events.
11. ISSUE:
In certain circumstances, when a state change
occurs with Access Protection, the On-Access
Scanner cannot be disabled/enabled, and some Access
Protection rules fail to log messages.
RESOLUTION:
The McTaskManager Service and Access Protection
binaries have been updated to resolve this issue.
12. ISSUE:
When resuming from the hibernate state, the system
tray icon might be in the disabled state,
reflecting the status of the On-Access Scanner.
However, the scanner service is functioning
normally.
RESOLUTION:
The system tray icon should always reflect the
correct state of the On-Access Scanner when
resuming from hibernation.
KNOWN ISSUES
1. The 5200 or later engine must be installed prior to
deploying Patch 5 or later. The Patch updates the
cached MSI tables to prevent a repair from
restoring an unusable version of the engine.
2. On-Access Scan Messages might fail to populate on
detections after Patch 8 is installed. A reboot
might be needed to resolve this issue. This does
not affect detection logging and alerting, or
reporting to ePolicy Orchestrator and
ProtectionPilot.
3. Some customers have reported seeing VirusScan
Statistics (VShield) crashing/disappearing from the
system tray. Refer to McAfee Support KnowledgeBase
article 613892 for more information on this issue.
4. If Host Intrusion Prevention 6.x or later is
installed and disabled prior to VirusScan
Enterprise, it is necessary to re-enable IPS and
disable it again in order for VirusScan Buffer
Overflow Protection to be properly enabled.
5. Sporadic crashes of the McShield Service have been
seen during the patch install, on systems running
McAfee AntiSpyware Enterprise Module. The service
recovers correctly at the end of the patch
process.
6. If you install this release interactively and
cancel the installation on a system where a
previous Patch was installed, after the rollback
completes, the previous Patch no longer reports to
ePolicy Orchestrator or appears in the "About
VirusScan Enterprise" window.
7. Installing the Patch and specifying a log file path
using the Microsoft Installer (MSI) switch "/L"
does not log to the specified path. A log file
capturing full data is logged to the folder
"McAfeeLogs" under the Temp folder.
8. If the Lotus Notes client is open when this release
is installed, the installation completes
successfully, but a reboot is required to replace
the McAfee Lotus scanner files. The new files are
not used until after a reboot.
9. Uninstalling VirusScan Enterprise Patches is now
possible for computers running Windows Installer
v3.x or later. This technology is not fully
integrated for Windows 2000 operating systems, so
there is no option to remove the Patch in
Add/Remove programs. Please see instructions under
"Removing the Patch" for removal via command-line
options.
10. Uninstalling VirusScan Patches is not available for
Windows NT platforms, because Windows Installer
v3.x is not supported on this platform. The Patch
still installs to all platforms supported by
VirusScan Enterprise 8.5i.
11. Patches for VirusScan Enterprise 8.5i can only be
uninstalled via Add/Remove programs, not via
ePolicy Orchestrator or ProtectionPilot.
FILES INCLUDED WITH THIS RELEASE
This release consists of a package called VSE85P8.ZIP,
which contains the following files:
PKGCATALOG.Z =
Package catalog file
PATCH8.TXT =
This text file
VSE850DET.MCS =
VirusScan Enterprise detection script
SETUP.EXE =
Installer for this release
SETUP.INI =
Initialization file for SETUP.EXE
PATCH8.MSP =
Microsoft Installer Patch file
VSE850.NAP =
Management NAP for VirusScan Enterprise
VSE850REPORTS.NAP =
Reporting NAP file
The following files are installed to client
systems:
STRINGS.BIN No version
MIDUTIL.DLL 8.5.0.156
CONDL.DLL 8.5.0.857
COPTCPL.DLL 8.5.0.857
MCAVDETECT.DLL 8.5.0.869
MCAVSCV.DLL 8.5.0.869
BBCPL.DLL 8.5.0.895
CONSL.DLL 8.5.0.895
MCCONSOL.EXE 8.5.0.895
SHUTIL.DLL 8.5.0.895
OASCPL.DLL 8.5.0.909
FTCFG.DLL 8.5.0.936
MCUPDATE.EXE 8.5.0.936
NAIANN.DLL 8.5.0.936
NCDAEMON.EXE 8.5.0.936
NCEXTMGR.DLL 8.5.0.936
NCINSTALL.DLL 8.5.0.936
NCMENU.DLL 8.5.0.936
NCSCAN.DLL 8.5.0.936
NCTRACE.DLL 8.5.0.936
QUARCPL.DLL 8.5.0.936
SCAN32.EXE 8.5.0.936
SCAN64.EXE 8.5.0.936
SCNCFG32.EXE 8.5.0.936
SHSTAT.EXE 8.5.0.936
VSODSCPL.DLL 8.5.0.936
VSTSKMGR.EXE 8.5.0.936
VSUPDCPL.DLL 8.5.0.936
VSPLUGIN.DLL 8.5.0.937
ENTSRV.DLL 13.3.0.169
MFEBOPA.DLL 13.3.0.169
MFEBOPK.SYS 13.3.0.169
MFEAPFA.DLL 13.3.0.169
MFEAPFK.SYS 13.3.0.169
MFEAVFA.DLL 13.3.0.169
MFEAVFK.SYS 13.3.0.169
MFEHIDA.DLL 13.3.0.169
MFEHIDN.EXE 13.3.0.169
MFEHIDK.SYS 13.3.0.169
MFERKDA.DLL 13.3.0.169
MFERKDK.SYS 13.3.0.169
MFETDIK.SYS 13.3.0.169
ADSLOKUU.DLL 13.3.2.137
CSSCAN.EXE 13.3.2.137
ENTVUTIL.EXE 13.3.2.137
FTL.DLL 13.3.2.137
LOCKDOWN.DLL 13.3.2.137
MCSHIELD.DLL 13.3.2.137
MCSHIELD.EXE 13.3.2.137
MCSHIELDPERFDATA.DLL 13.3.2.137
MCVSSNMP.DLL 13.3.2.137
MYTILUS.DLL 13.3.2.137
MYTILUS2.DLL 13.3.2.137
NAEVENT.DLL 13.3.2.137
NAIEVENT.DLL 13.3.2.137
SCANOTLK.DLL 13.3.2.137
SCRIPTCL.DLL 13.3.2.137
SCRIPTSV.DLL 13.3.2.137
LOGPARSER.EXE 1.2.0.131
The following files are checked in to the ePolicy
Orchestrator or ProtectionPilot repository:
VSE850.NAP 2.0.0.696
VSE850REPORTS.NAP 3.0.0.781
Download: http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar (http://rapidshare.com/files/204744835/VSE85iP8_SCF.rar)
Download Mirror: http://www.megaupload.com/?d=GN9MP08R (http://www.megaupload.com/?d=GN9MP08R)
P.S.
Only SCF Members with at least 10 useful Forum posts can request password in reply to this Topic!
Real reason for this is that some Members only visit SCforum, download Patch and never show again until new Update.
We want loyal Members who want to Learn and Share Knowledge with others.
Hope you all will agree with this reasons & decisions.
Best Regards,
Samker
Send me the Password...please
[/aeva]
-
Good Job Dude !!!! Send me the Password
-
Ret,VampireBeatnik,hatta,dhaval3976,check your PM
Regards,
Amker
-
Fantastic work... Please send me the password...
Thanks...
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
:)
-
Hi,
please send me password for patch 7 and 8 to irshadstars@gmail.com
regards,
muhammed irshad
-
pls help me,
regards,
irshad
-
niz180sx,Siculo75,irshadhcl,check your PM
Regards,
Amker
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Thanks agian
JB :thumbsup:
-
jbutler,check your PM
Regards,
Amker
-
Yes, PM me too!
Thanks a lot!
PietJan
-
Hi,
Please send me the password.
Thanks,
-
dtv,PietJan,check your PM
Regards,
Amker
-
Thankz guyz
I need the PAtch Badly. Please help
I am new to these forum but i need it
Plz reply with the password.
Thankz again
Nilay
-
Dear Samker
Please send me the patch.
-
nilaypandya,check your PM
Regards,
Amker
-
I hope this patch solve my problem. Thanks to uploaded.
so i think i need the pass for rar, it would be great if you have the amability to send me.
thank you in advanced.
RM
-
Can you please send me the password for
McAfee VirusScan Enterprise Version 8.5i Patch 8
thanks in advance,
bert
-
maicillito,bert_w,check your PM
Regards,
Amker
-
Hi,
Could you please email me the password for the .rar file - many thanks!
Tim
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
Regards
soren M
-
Hi Pls send me password the patch 8
-
Hi,
Would you please send me the password ?
Thanks
Pingo
-
Dear Moderator,
I discover your site today which is far better documented than "official" ones.
If you read this message, could you please send me the password for McAfee VirusScan Enterprise Version 8.5i Patch 8 ?
Thanks in any case.
Regards.
-
G12ALE,pingo,mkk,chao22000,check your PM
Regards,
Amker
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
G12ALE,pingo,mkk,chao22000,check your PM
Regards,
Amker
Hi dear moderator
I wanna password to . please pm me :)
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
-
Thank you, Samker.
Just send the password for the file.
Regards.
-
Please May I get the password I am new here I did not add a lot of posts yet
-
hey dude i already got it but lost it plzz send me the pass for this patch
-
Can i get the password for the download please?
-
Hey...good Job man!!
Do you think i´m able to receive this password.If so, could send me please??
Thanx!!
-
Hi Samker,
Could you send me the password to open the archive ?
Thanks,
-Stan
-
Hi,
Could i get the password to open the archive?
Thank you
Regards
-
Can u plz send the pass...
-
ManyThanxs for send me a pass!!!
Grato!!
-
Hi, first... congratulations for the site, please send me the pass to use the patch.
Thanks for your support.
Regards,
Edgaran
-
Hey!
Thanks for the patch!
Regards
-
Could I get teh password for the patch?
Thanks!
-
Could I also get the password to the archive
Thanks!
-
Hey!
Thanks for the patch!
Could i get the password?
thanks!
-
Dear Samker., thanx
Just send the password for the file.
Regards.
kamal kr
-
how to download the patch yaaarr.......
where is the link.......
and how to get the password......
i downloaded patach7 but coudn't be able to get the password......
plz help me.....
from where can i download patch8
sathya
-
what is this PM yaaar.....
can anybody tell..?
-
please can you send the password for me plz
-
Hi, Mr. Samkar
thanks for the kind post
Please, send me the password. so that i can use it.
Thanks alot for the patch.
regards
email- prabhatprakashsingh@gmail.com
-
Hello, thnx for uploading vse 8.7i patch8. please send me the password, thanx in advance
-
Hey, much appreciated for the patch. :D
Please send me password, thanks again.
-
Sweet, Okay, can you please send me the password. Thanks a bunch.
-
i m new comer to this forum . so how can i obtain the pass ?
-
i m new comer to this forum . so how can i obtain the pass ?
Hi and welcome, for pass. receive just be active at SCforum and post your comments/opinions...
-
ok can u tell me for patch 8 requirements . like patch 7 must be installed ?
-
ok can u tell me for patch 8 requirements . like patch 7 must be installed ?
Patch 8 is cumulative so you don't need any earlier version (as I know). ;)
-
whats the pass for patch 7 and 8 ?
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
-
Hi, could i have the package password please ??
for the patch 8
-
Por favor me podiais facilitar el password.
Gracias
-
ya recibi el MP, gracias por todo
-
Hi
May i have the password?
and do i need to install patch 7 before installing this patch?
Thanks
-
Por facor me envie a senha para descompactar o arquivo Patch 8 McAfee 8.5i
OBRIGADO
-
can someone PM me the password for patch 8 ?
Thanks !
-
Hi
Thanks for the patch
Can i have the password plz?
-
Por facor me envie a senha para descompactar o arquivo Patch 8 McAfee 8.5i
OBRIGADO
Faça apenas 15 comentários e voce irá conseguir o seu!!!
Não tem mistério....apenas 15 comentários.
Boa sorte!!
-
Thanks for the patch
Can i have the password plz?
-
Thanks Samker! - this patch should fix an issue I am having with the On Access Scanner - I hope...
:o
password please~
-
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
WHAT IS MY PM
-
Hello,
Please send me the password. Thank you for posting this. 8.5i is great and can't wait to move to 8.7i.
;D
-
Hi, Samker! How are you? I'm from Brazil. Could you send me the password for the archive?
My e-mail is: antonio.santos@infolink.com.br
Thanks a lot!
Tony_RJ
-
Hi, Samker! Thanks a lot. I like to know, if you have the password for patch 7?
Thanky you!
Regard,
Tony_RJ
-
Hi, Samker! Thanks a lot. I like to know, if you have the password for patch 7?
Thanky you!
Regard,
Tony_RJ
Sorry Tony, since out there is Patch 8 We're stop distribution of P7...
Regards,
S.
-
password plz
-
Hello asuivre check your PM
Regards,
Amker
-
I know I'm a n00b but any chance I can get the PWD too ::)
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch. nice post
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
uthaik
-
thanks for the kind post
Please, send me the password. so that i can use it.
Thanks a lot for the patch.
regards
-
Hi Samker,
me too, thank you very much for patch 8, i have patch 8 rar file but i'm not have pass for this file. please send to me password. tks!
BR,
-
please send password for VSE85iP8_SCF.rar
-
Hi,
I would like to know the password for the VSE85iP8_SCF.rar download.
Thanks alot for the patch. nice post
-
hello Samker,
Could you please send me the password for patch8 of Mcafee?
Thanks!
Henri0
-
Hi,
Thanks for the Patch, Please send the password.
BR//
Jewel
-
@Samker: thank you for your PM notification.
-
Hey could you PM me the Pass for the Mcafee patch please??
Thanks
-
Hi
I have already download patch 8 :thumbsup:
Could u send me the password for archive please...
Thanks for the update patches...
-
Hi
I have already download patch 8 :thumbsup:
Could u send me the password for archive please...
Thanks for the update patches...
No problem my friend, please check your PM... ;)
Regards,
S.
-
Hi, can u please send me pass for patch 8, also need for patch 7....which I have also downloaded.
thanx.
-
When I am updating my Mcafee online I am getting error every time that "updates were not applied because packages are not in repository" but dat version is getting updated.
Can anyone tell me what exactly the issue is?
-
hi samkar,
please send mcafee 8.5i patch 8 rar files password to me
thank you
-
@ arvind79
Please check your PM for pass.
@ yogesh.badhe
I was also sent you pass., but for v. 8.7.
If that doesn't help you, please check which McAfee version you use and after that post new topic with help request in SCF "PC Help Center": http://scforum.info/index.php/board,16.0.html (http://scforum.info/index.php/board,16.0.html)
Best Regards,
S.
-
Hi, can you please send me a pass for patch 8. I would really appreciate it!!!!!!!!!
Thank you
-
Hi
I have already download patch 7
Could u send me the password for archive please...
Thanks for the update patches...
-
sir if u could plz send me the passcode for patch 7
-
sir if u could plz send me the passcode for patch 7
Sorry but no since No.7 is outdated, anyway Patch 8 is cumulative and include all fixes from earlier versions. ;)
-
sir could u send me the downloading link as well as the passcode for mcafee 8.5 i patch 16
-
I need the password for this rar pls
-
Kindly send me the password too
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Gfalcoz
Is there any place where I can find the CMA patch 4 (upgrade to version 3.6.0.608)
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it file
Regards
jampuero
Is there any place where I can find the CMA patch 4 (upgrade to version 3.6.0.608)
[/quote]
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it file
Regards
jampuero
Is there any place where I can find the CMA patch 4 (upgrade to version 3.6.0.608)
[/quote]
Hi pal, I was already sent you PM with pass. for P8.
Also, please take a look here: http://scforum.info/index.php/board,8.0.html (http://scforum.info/index.php/board,8.0.html) I'm 99% sure that you'll there find a "McAfee Common Management Agent (CMA) v3.6.0 Patch 4"... ;)
Regards,
S.
-
If you don't mind, please send the password for Patch 8 to me.
Thank you.
-
Hi,
I would like to know the password for the download.
Thanks a lot for the patch.
-
Please send me the password for the rar file. Thanks
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
Hi,
Dear Samker
Thank you very much for the Mcafee VSE 8.5i patch 8. I request to please, send me the password to open it
Regards
Peer jee
-
Hi, much appreciated if you can send me the password. Thanks
-
Hello thank you very much for this patch,
can you send me the password
-
Thanks for the post! Please send me the password! please! please! please!
thanks again :D
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
McAfee 8.5i dose not work on Win 7
Should I go to 8.7i ?
-
I just dcownloaded the patch. Does it help with CPU hogging by McAfee? Hope so.
-
I downloaded the patch. Will you please PM me the password to install?
Thanks a bunch,
CB
-
McAfee 8.5i dose not work on Win 7
Should I go to 8.7i ?
Yes, for Win 7 you'll need to have version 8.7 with Patch 2.
I just dcownloaded the patch. Does it help with CPU hogging by McAfee? Hope so.
Yes Patch 8 and latest Hotfix will resolve this issue, I was already sent you PM with both... ;)
-
Definitely better! Thanks for the help and password.
CB
-
Which Antivirus good for win 7 ?
Mcafee 8.7 dose not clean newfolder.exe from USB drive.
-
Which Antivirus good for win 7 ?
Mcafee 8.7 dose not clean newfolder.exe from USB drive.
As I see McAfee cover W32/Atin.worm with "definitions": http://home.mcafee.com/VirusInfo/VirusProfile.aspx?key=144072#none (http://home.mcafee.com/VirusInfo/VirusProfile.aspx?key=144072#none)
Probably it's some new variant or worm was disable auto-protection.
Anyway, my second suggestion after McAfee is Kaspersky AV: http://www.kaspersky.com/ (http://www.kaspersky.com/)
Also Fungus, if you need any kind of help with removing this worm, please open New Topic at SCF "PC Help Center": http://scforum.info/index.php?action=forum (http://scforum.info/index.php?action=forum)
and provide us information how this infection occur with logs from BitDefender and HijackThis: http://scforum.info/index.php/topic,734.0.html (http://scforum.info/index.php/topic,734.0.html)
We'll do our Best to help you. ;)
Regards,
S.
-
Hi,
Can i have the password ??? please... i promise i will be a active user here. :angel:
-
Which Antivirus good for win 7 ?
Mcafee 8.7 dose not clean newfolder.exe from USB drive.
As I see McAfee cover W32/Atin.worm with "definitions": http://home.mcafee.com/VirusInfo/VirusProfile.aspx?key=144072#none (http://home.mcafee.com/VirusInfo/VirusProfile.aspx?key=144072#none)
Probably it's some new variant or worm was disable auto-protection.
Anyway, my second suggestion after McAfee is Kaspersky AV: http://www.kaspersky.com/ (http://www.kaspersky.com/)
Also Fungus, if you need any kind of help with removing this worm, please open New Topic at SCF "PC Help Center": http://scforum.info/index.php?action=forum (http://scforum.info/index.php?action=forum)
and provide us information how this infection occur with logs from BitDefender and HijackThis: http://scforum.info/index.php/topic,734.0.html (http://scforum.info/index.php/topic,734.0.html)
We'll do our Best to help you. ;)
Regards,
S.
I've found Kaspersky Anti-Virus 2010 9.0.0.736
Is this the new version ?
-
I've found Kaspersky Anti-Virus 2010 9.0.0.736
Is this the new version ?
I'm not sure about latest build version, but you can always find them here: http://www.kaspersky.com/trials (http://www.kaspersky.com/trials)
-
Dear Samker,
Please send me the Password.
Regards,
Adil.
-
Please Send The Password for Patch 8
-
thanks for the link! how about the password of the archive! BTW! thanks again! :up:
-
Hi, please send pw for VSE85iP8.
Thank you.
-
Thanks - what is the password?
-
Hello,
Could you please send the password
Thanks
M
-
Samker,
Could you please send me the password?
Thank you!
-
Please, Can you send me a password .. ;)
Thank you so much for that,
-
ahhmm, im looking for the password for the patch 8, i ill be glad if you send the password to me...im first time here.. i'm a fan of mcafee.. i really need ur help...
Thanks for the consideration!!!
-
Hi,
Thank you for the Mcafee vscan 8.5.0i patch 8.
Please, send me the password to open it
Regards
Rajesh
-
how can i get password for any file downloaded from your website...
plz help me...
thanks
-
password pls..
-
Hi Samker.. i finished installed the patch 8 then i install next the hotfix 472021.. my os is vista home premium.. first time i installed it there were crashes(w/ antispyware module) in mcafee..keeps on disappearing on system tray.. then crash cant open.... but when i reinstalled the whole thing..(this time i didnt include the anti-spyware module).. it works.. now my vista has buffer overflow protection.. BUT. still mcafee cant report to windows security center (it says not compatible).. but still im sure im protected 100%.. again thanks.. looking forward to this forum.. ;D
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it. thanks a lot
-
Hello,
Could you please send the password
Thanks
-
Could you please send the password
Thanks
-
Hello Dear Please Send me the Patch 8 Password.
Thanks alot
-
kindly send me the password
-
Hi,
Thank you for the Mcafee vscan 8.5i patch 8.
Please, send me the password to open it
Regards
Ragh
-
i m using 8.5i with patch 7.. i m getting some problem pls send password
1) when my system start it hangs up for some time(25)
2)CPU usage is sudden raise to 100%
3)Even i remove from start up
4)winlogon take 80% of cpu usage
5)AV detect and delete some malicious code at next it detects again
Wl pls send d password
-
i m using 8.5i with patch 7.. i m getting some problem pls send password
1) when my system start it hangs up for some time(25)
2)CPU usage is sudden raise to 100%
3)Even i remove from start up
4)winlogon take 80% of cpu usage
5)AV detect and delete some malicious code at next it detects again
Wl pls send d password
Hi vishwanath99, just a info's that I was sent you PM with pass. for Patch 8 and download Link for latest Hotfix. I hope that it will resolve your problem with CPU usage... but I'm afraid that your problem with "malicious code" isn't related with that.
For help with viruses, worms, trojans, spyware... please visit SCF "PC Help Center": http://scforum.info/index.php?action=forum (http://scforum.info/index.php?action=forum) and open your own Topic with help request.
Best Regards,
Samker
-
Could I have the file password.
-
please send mcafee 8.5i patch 8 rar files password to me
thank you
-
Hi,
For McAfee 8.5i
can i get the path of desktop firewall and alert manger trail version
-
Hi,
For McAfee 8.5i
can i get the path of desktop firewall and alert manger trail version
No problem vishwanath99, I'll send (via PM) you Patch 4 for McAfee Desktop Firewall v. 8.5... but don't know what is this "alert manger trail version"??
-
I need the password for McAfee 8.5i patch8...
-
password
-
plz can u send me da password
-
Pls Send me a password
Thanks
-
hi guys,
I am new to this forum & I want to share my knowledge with you all.
what would i have to do to get the password.
would you send me the password?
thanks & ragards
-
hi guys,
I am new to this forum & I want to share my knowledge with you all.
what would i have to do to get the password.
would you send me the password?
thanks & ragards
Hi navnix2003 and Welcome to SCF Community.
Simply be active, browse scForum and post reply's. More info's: http://scforum.info/index.php/topic,2394.0.html (http://scforum.info/index.php/topic,2394.0.html)
Regards,
S.
-
I want to download McAfee virusScan which can be updated by sdat files
-
Thanks
please send me the password?
-
Please send password for VSE 8.58 patch 8
-
How long does it take to get the password by pm?
-
thanks for patch, please give password for the same.... on trivediyagnesh@live.in
-
it is great if password given
-
Hi, Samker thanks for post!
Can you send me Pass the archive?
-
plz send me the password for the rar-file
thx
-
Please send me the password thanks :D
-
please, send password Patch McAfee 8,5i
thank u
atta
-
Hi,
I would like to know the password for the download.
Thanks alot for the patch
-
password please....Thanks O0 :up:
-
Hi,
can you please send the password to this file
regards
Dave
-
I would like to know the password
Tanks for the patch
-
Samker. Thanks
but. can you send me password....
-
Hi,
Password please.
Thanks
-
Thanks for giving me the password to decompress the patch.
Kind regards.
-
I need zip password Please could you sen it to me Thanks .
Mcafee vscan 8.5i patch 8 password
-
Could you send me the password for the archive?
Thanks.
-
Could you send me the password for the rar file?
-
Thanks for giving me the password to decompress.
-
感謝您提供檔案..這個我滿需要的...開機時.
cpu都跑到100%好幾分鐘..看看能不能把它改善..
請寄密碼給我..謝謝
-
感謝您提供檔案..這個我滿需要的...開機時.
cpu都跑到100%好幾分鐘..看看能不能把它改善..
請寄密碼給我..謝謝
没问题朋友,请检查您的悄悄话...
如果您遇到问题后曲面的应用,请在超临界流体的PC帮助中心开放的新课题:http://scforum.info/index.php/board,16.0.html
并且请使用谷歌翻译,就像我一样:http://translate.google.com/
-------------------------------------------------------------------------
No problem pal, please check your PM...
If you experience problem after Patch applying, please open New Topic in SCF's PC Help Center: http://scforum.info/index.php/board,16.0.html (http://scforum.info/index.php/board,16.0.html)
and please use Google Translate, just like me: http://translate.google.com/ (http://translate.google.com/)
-
Dear
Please anyone can send me the patch 8 rar password.
Regards
Mohd Ahmad
-
Greetings,
McAfee disabled at windows XP startup, hope patch 8 can solve it.
Please send me the password for the rar file.
Thank you very much, Samker.
-
Greetings,
McAfee disabled at windows XP startup, hope patch 8 can solve it.
Please send me the password for the rar file.
Thank you very much, Samker.
Hi Hoyakerrii and Welcome to SCF Community.
So sorry, but We don't support this version anymore... here is my explanation for that: http://scforum.info/index.php/topic,1697.msg15658.html#msg15658 (http://scforum.info/index.php/topic,1697.msg15658.html#msg15658)
However, I think that your problem with McAfee isn't related to Patch 8... I suppose, that this cause some malware "infection". :(
My advice is:
1. Go to SCF's "PC Help Center": http://scforum.info/index.php/board,16.0.html (http://scforum.info/index.php/board,16.0.html) , Open New Topic and provide us all possible details related to your problem
2. Run BitDefender or Panda Online AntiVirus Scan: http://scforum.info/index.php/topic,734.0.html (http://scforum.info/index.php/topic,734.0.html)
3. Download & run HijackThis: http://scforum.info/index.php/topic,785.0.html (http://scforum.info/index.php/topic,785.0.html)
4. Provide us logs from HijackThis & AntiVirus Online Scan
Best Regards,
Samker
P.S.
I'll lock this Topic now.