Common Standard Protection:Prevent termination of McAfee Processes Ccmexec.exe

Written by Allen White on April 29, 2015. Posted in General

Had this issue on a Mcafee Epolicy installation recently, deployed Virus Scan 8.8 to all clients then after a few hours checked to see if there where any detection’s. Sure enough there where detection’s from the following files that had tried to shut down the mcafee services (which I disabled via access protection).

– Smsexec.exe
– Ccmexec.exe
– CmRcService.exe

I excluded these from being scanned as the client uses SCCM intensively.It was not enough, the error renamed. What I had to do was modify the Access Protection rule.

Once in your policy, edit the prevent termination of Mcafee processes rule.

You will then see the following screen, simply added the exe files that are being picked up incorrectly.

Then simply click ok and save, remember to allow the clients to either pull the new policy or you can push it out again with a wake-up agent call. You can see the official article mcafee published here.

https://kc.mcafee.com/corporate/index?page=content&id=KB71970&actp=LIST_RECENT

Tags: mcafee

Allen White

Allen is an IT Consultant and holds the following accreditations. MCSA, MCSE, MCTS, MCITP, CCA, CCSP, VCP 4,5, 6 and HP ASE, AIS - Network Infrastructure.

Leave a comment

Next
Prev

Categories

Search

Our partnership with @DJIGlobal is sending drones up to monitor crops, helping farmers to make real-time decisions… twitter.com/i/web/status/9…

Open in Twitter

Tweets of the day
Microsoft
FarmBeats sensors and @DJIGlobal drones unearth important agricultural data, planting new seeds of discovery for pr… twitter.com/i/web/status/9…

Open in Twitter

Tweets of the day
Microsoft
Here's why a 12-year-old’s invention more than 200 years ago serves as an inspiration for our work using AI to empo… twitter.com/i/web/status/9…

Open in Twitter

Tweets of the day
Microsoft
Thanks for joining us for #MSBuild this week. The conference may be over, but you can relive all the excitement fro… twitter.com/i/web/status/9…

Open in Twitter

Tweets of the day
Microsoft
Experience, learn and code the latest breakthrough #AI innovations in the Microsoft AI.lab: msft.social/82Y6Sq

Open in Twitter

Tweets of the day
Microsoft

Read Me

Read Me

Setup failed while installing sub-component Exchange ActiveSync

When installing exchange 2003 service pack 2 you see the following error – Setup failed while installing sub-component Exchange ActiveSync with error code 0xC0070643.This is a problem with MSXML3. Solution inside.

Read more
Xbox Live or PSN Down and Cannot Play Games Offline

How to play your Xbox One games when Xbox Live is down and how to play PS4 games when PSN is down.

Read more
Enable Copy / Paste in Vsphere 4-1

If you try to copy and paste something into your vshpere console session you will find you cannot paste anything to it. here is how to enable copying and pastng of itemd in vshpere 4.1 and onwards.

Read more
Change The Resolution On An IGEL Thin With The Universal Management Suite

Read more
Windows 7 No Burn ISO Option

You need to burn an ISO in windows 7 but the burn to iso option is not there when right click the ISO. How to burn an iso in windows 7

Read more
Remove Comments Function From Page In WordPress

A simple guide on how to remove the comments function / option from pages within wordpress. Also how to disable comments from post. Solution here!

Read more