Knowledge Center

VirusScan Enterprise 8.8 Patch 1, 2, and 3 Hotfix 820636
Technical Articles ID:   KB77043
Last Modified:  4/7/2017


McAfee VirusScan Enterprise 8.8 Patch 1, 2, and 3 Hotfix 820636


This hotfix is included in VSE 8.8 Patch 4.

Patches are cumulative; Technical Support recommends that you install the latest one. For information about the latest releases, see KB51111.

McAfee product software, upgrades, maintenance releases, and documentation are available from the Product Downloads site at: http://www.mcafee.com/us/downloads/downloads.aspx.

NOTE: You need a valid Grant Number for access. KB56057 provides additional information about the Product Downloads site, and alternate locations for some products.

Hotfix Release Date: Jan 8, 2013

  • The hotfix and Release Notes are attached to this article.
  • This release was developed for use with:
    • VirusScan Enterprise 8.8.0 Patch 1
    • VirusScan Enterprise 8.8.0 Patch 2
    • VirusScan Enterprise 8.8.0 Patch 3
  • Rating: This release is considered a High Priority rating. McAfee recommends this release for all environments. For information on ratings, see KB51560. Failure to apply a High Priority update may result in potential business impact.  
  • In addition to the state of the service, you can leverage two registry values to qualify the state of scanning. If required, contact Technical Support, to obtain the registry values.
Issue resolved by VSE 8.8 Hotfix 820636
Reference Number Related Article Resolved Issue Description
  Issue: Client system properties in ePolicy Orchestrator report that On Access Scanner was running even when certain conditions on client system prevent scanning.
Resolution: During system property collection, the VirusScan plugin to the McAfee Agent queries On Access Scanner services and registry to report status with increased accuracy.

Additional background Information
The dynamic link library interfacing with the McAfee Agent for VSE property collection would only query the status of the McShield service, and interpret Running as being enabled. This is not necessarily an accurate assumption, as the service might be running despite a failure of some kind that leads to an inability to scan for threats.

The bEnabled property is used to reflect the status of the On-Access scanner of VSE on end nodes within the ePolicy Orchestrator console. In earlier releases (VSE 8.7i and earlier) the status could be accurately obtained by checking the state of the McShield service, whether it is running or not. In version 8.8 and later, checking the state of the McShield service alone is insufficient. VSE 8.8 Hotfix 820636 has been created to improve the logic of what is examined to determine the On-Access scanner status, and report it accordingly via the same bEnabled property.  
bEnabled status:
  • 1 = enabled
  • 0 = disabled (or system is unhealthy)


218K • < 1 minute @ broadband

Rate this document

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms

 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.