Solution for non-Upgrade of McAfee

I have been using macark 8.0 anti-virus software. Recently, after adding two new hard disks, macark cannot be upgraded. The system prompts that an error is returned for fffff95b @ 2. Uninstall the software and reinstall the software, during the upgrade, the system prompts "initialization of the general update program subsystem failed. Make sure that the McAfee franework service is running. McAfee Common Framework Returns Error 80040154 @ 1. Enter the service console to manually start the McAfee Common Framework Service.

When the service is being started, the installer message "error 1920" is displayed. Service McAfee Framework Service (McAfee Framework) failed to start. Make sure you have sufficient permissions to start the system service ." Click "ignore (I)" to continue the installation, but the upgrade is not allowed.

After constant exploration, go to the official website to query information and find the solution as follows:

Open the service console and disable the McAfee Framework Service.
Restart, start, and then process (open the Task Manager) to end updaterui.exe

Run regedit to delete the following:
HKEY_LOCAL_MACHINE/system/CurrentControlSet/services/McAfee Framework
HKEY_LOCAL_MACHINE/software/Network Associates/TVD
HKEY_LOCAL_MACHINE/software/Network Associates/ePolicy Orchestrator
The preceding three must be deleted.

Delete the following directory
C:/program files/Network Associates/Common Framework
C:/Documents and Settings/all users/Application Data/Network Associates
If you do not have the all users directory or the all users directory does not have the Network Associates directory, you can use the search function to delete the Network Associates directory!

Uninstall the service and restart the service before reinstalling the service.

If you encounter the same problem unfortunately, try the above method. It may take a long time to reinstall the system.

Other methods:

Some users may encounter an update failure when using McAfee in the Windows XP SP2 test version. To solve this problem, you need to make the following settings:
1. "Run"> mongodcomcnfg.exe"
2. Double-click "component service> Computer> my computer"
3. Expand "DCOM configuration" and open the properties of the "frameworkservice" item.
4. Select the "Security" tab in "frameworkservice properties ".
5. Select "Custom" under "launch and activation permissions" and click "edit.
6. In the pop-up "launch permission" dialog box, "add" your Windows Logon account and system user accounts, and grant "Local activation" permissions respectively.
7. OK. The problem is fixed. Now McAfee can be updated normally ~

Another method (thanks to thefirst Member of the tornado forum for providing ^_^ ):
1. Run: dcomcnfg.exe (enter dcomconfig in start-run and execute)
2. Component Services-computers-my computer-DCOM config
3. Find frameworkservice, select the Security tab in properties, and set launch and activation permissions to "User default ".

 

McAfee (coffee ee) process explanation + Setup Guide

 

First, introduce the processes generated after installation!
If no 8.1 firewall is installed, there should be a total of seven processes.
Updaterui.exe+shstat.exe%tbmon.exe %vstskmgr.exe %mcshield.exe %frameworkservice.exe %naprdmgr.exe
Updaterui.exe: automatic upgrade (once a week for coffee .)
Shstat.exe: The same icon as the shield in your system bar. The startup item is in the Registry. (after the system is restarted, the icon appears in the system taskbar. No
Even if no icon exists, VirusScan Enterprise is still running and your computer is still protected .)
You can check the following registry keys for confirmation:
HKEY_LOCAL_MACHINE/software/Microsoft/Windows/CurrentVersion/run shstatexe = "C:/program files/Network
Associates/VirusScan/shstat. EXE "/Standalone
Tbmon.exe: Error Reporting Program
Vstskmgr.exe (Network Associates Task Manager): this is a system service.
Mcshield.exe: the Core of coffee, system service!
Frameworkservice.exe (McAfee Framework Service, the shared component framework of McAfee products): the background framework process of coffee, which is a service. If it is disabled at ordinary times
The test will not affect normal use, but will affect the upgrade, and this process is different from vstskmgr.exe. He cannot start the service automatically. If you change it to manual, you have to start the service by yourself to run the Upgrade Program.
Naprdmgr.exe: This process is based on the previous steps. The progress is a combination of frameworkservice.exe. if frameworkservice.exe is stopped, it will never appear in the task manager.
Open your coffee below (right-click the system tray coffee icon and select VirusScan console)


Here is the simple network firewall function of coffee. You can set coffee to block the corresponding port. For example, after blocking port 25, you can disable some Trojans from sending emails like your password.
Bytes
For example, if a trojan is deployed on port 5000, port 5000 can be blocked. For example


You can set up your shared resources here, mainly below. There are already many built-in rules. You can disable creating files in the Windows directory to prevent Trojan damage and install software.
It is troublesome, but the security is indeed very good. By default, you cannot double-click the running file to open a compressed file.
Because some compressed Packages may have malicious code to run some malicious programs in the Temporary Folder.

This prevents some viruses from spreading through the buffer overflow vulnerability.

We recommend that you shut down the detection floppy disk during Shutdown. Otherwise, it will be annoying. The following scan time is a difficult setting to change. If the scan time is too short, the check may fail, if it is too long, large files will be slow.
But here is the longest detection time. The following options are good by default.


This is a very good setting. You can set different processes with high and low risks. For example, some viruses like to use the names of system processes, which is of course high risk.
In this case, you can relax the settings for low-risk processes to reduce the usage of system resources to scan files. Here, you can set the settings to only check when reading files, which can save some resources and of course give up security. If you are on a LAN, we recommend that you select the detection network
Drive. Scan file type. We recommend that you select the default type for Access Scanning. Generally, some types that are not commonly used, including some. BAK files, are not very harmful.
It does not run. If you are not particularly worried, select the default type. The following is the exclusion list, that is, the folder that is not scanned. For example, the cracked Serv-U is used as a virus.
Exclude the Serv-U folder. We recommend that you add the isolation folder of drive C to it. Otherwise, it may be annoying to delete the virus.

Here we will talk about whether to scan compressed files. My suggestion is not to scan, because scanning will take a lot of time, there is a virus in the instant, you also need to extract it first, that is, directly run
You need to decompress the package to a Temporary Folder. At this time, coffee EE will automatically detect the package.

The system can automatically scan the memory or some sensitive folders when the system is idle. Create an on-demand scan task with the target memory or sensitive folders (such as C:/Windows/), and then click schedule

Here, you can select the CPU usage during the detection. If it is too low, the detection speed may be slowed down. If you have set the memory to be scanned during idle time, you can lower it here.