To resolve this issue, create the following exceptions in your Endpoint Protection application to exclude SCP from being filtered or inspected:
Windows:
Directories including subdirectories (depending on the third-party software you use, you might need to add * to the end of the path):
- %PROGRAM FILES%\Common Files\McAfee\SystemCore\
(usually C:\Program Files\Common Files\McAfee\SystemCore\)
- C:\Program Files\McAfee\
- C:\ProgramData\McAfee\
Executables:
- C:\Windows\System32\mfevtps.exe
- C:\Windows\mfereboot.exe
- C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe"
- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe"
- C:\Program Files\Common Files\McAfee\SystemCore\mfehcs.exe
- C:\Program Files\Common Files\McAfee\SystemCore\vtpinfo.exe
- C:\Program Files\McAfee\Agent\masvc.exe" /ServiceStart
- C:\Program Files\McAfee\Agent\macmnsvc.exe" /ServiceStart
- C:\Program Files\McAfee\Agent\x86\macompatsvc.exe"
- C:\Program Files\McAfee\MCP\x64\mfehidin.exe
- C:\Program Files\McAfee\MCP\McpService.exe
- C:\Program Files\McAfee\MCP\MCPUninstallProtection.exe
If the removal fails after adding all the exceptions above, perform the following steps:
- Check if the VSCore framework has created the mfehidin.exe process in the \temp folder.
For example: C:\Users\USERNAME\AppData\Local\Temp\mfempt17400029\mfehidin.exe
- Create another exception for this process.
Or, exclude the following paths:
- "%temp%\mfempt"*
- "%windir%\temp\mfempt"*
- "C:\Users\AppData\Local\Temp\mfempt**"