Endpoint Security mfetp.exe crashes at module MSVCR100.dll
Last Modified: 2022-02-15 13:57:36 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Endpoint Security mfetp.exe crashes at module MSVCR100.dll
Technical Articles ID:
KB91409
Last Modified: 2022-02-15 13:57:36 Etc/GMT Environment
Endpoint Security (ENS) Threat Prevention 10.x
Problem
The application The following is an example of an event from the Windows Application Event Log: Category: Application Crashing Events Event ID: 1000 Data: Version: <ENS_version> Time stamp: <time_stamp> Faulting module name: MSVCR100.dll. Version: <VC_Version>. Time stamp: <time_stamp> Exception code: 0xc0000005 Fault offset: 0x000000000005a2f3 Faulting process id: 0x299c Cause
The Exploit Prevention module in ENS Threat Prevention has a limit of 50 executables configured for each Exploit Prevention application protection rule. When it exceeds 50 executables, it causes the SolutionTechnical Support is investigating this issue. As a temporary measure, implement the following workaround.
To receive email notification when this article is updated, click Subscribe on the right side of the page. You must be logged on to subscribe.
Workaround
Modify the Exploit Prevention application protection rule so that it has a maximum of 50 executables.
Affected ProductsLanguages:This article is available in the following languages: |
|