Create an on-demand scan with McAfee GTI enabled

Enable McAfee GTI file detection for the scheduled scans wherever required.


  1. Log on to the system as root user.
  2. Navigate to the directory.
    cd /opt/isec/ens/threatprevention/bin
  3. Run the command.
    ./isecav --addodstask --name <task_name> --parameter1 <value> --parameter2 <value> --gti --state enable --sensitivity veryhigh

    The available sensitivity levels are:

    • verylow — The detections and risk of false positives are the same as with regular DAT content files. A detection is made available to Threat Prevention when McAfee Labs publishes it instead of waiting for the next DAT content file update.
    • low — This setting is the minimum recommendation for systems with a strong security footprint.
    • medium — Use this level when the regular risk of exposure to malware is greater than the risk of a false positive. McAfee Labs proprietary, heuristic checks result in detections that are likely to be malware. However, some detections might result in a false positive. With this setting, McAfee Labs checks that popular applications and operating system files don't result in a false positive.
    • high — Use this setting for deployment to systems or areas which are regularly infected.
    • veryhigh — Detections found with this level are presumed malicious, but haven't been fully tested to determine if they are false positives. McAfee recommends to use this level for systems that require highest security.

    The default sensitivity level for on-demand scanning is veryhigh.

    Note: For standalone systems, you can't change the existing on-demand scan settings. For managed systems, you can change the on-demand scan policies for the policy-based on-demand scans such as Full Scan and Quick Scan.