Administration Adware Spyware Apache Bluetooth DOS Commands Edge General Internet Connection Internet Explorer Media Center Media Player Mozilla Firefox MS Access Performance PHP Programming Security Silverlight Tips Tools Tutorials Windows 10 Windows 7 Windows 8 Windows Phone Windows Server 2008 Windows Server 2012 Windows Server 2016 Windows Vista Windows XP

"mcdatrep.exe" Process on Windows 7

Q

What is the "mcdatrep.exe" process on windows 7? Is the "mcdatrep.exe" process a virus? Can I terminate the "mcdatrep.exe" process?

✍: FYIcenter.com

A

"mcdatrep.exe" process represents "McAfee DAT Reputation Agent" program.

"mcdatrep.exe" process is normally launched by "taskeng" as shown in the process tree below: 

Boot
   wininit
      services
         svchost
            taskeng
               mcdatrep

On the Processes tab of "Task Manager", "mcdatrep.exe" process may be listed as: 

Image Name                 Memory   Description
--------------------   ----------   -----------
mcdatrep.exe             10,592 K   McAfee DAT Reputation Agent

Additional information about "mcdatrep.exe" process: 

Command line:
   "C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe" 
   /script=mcnrdhck.lua /periodicRunCount=1

Programe file information:
   Name: mcdatrep.exe
   Location: C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe
   Description: McAfee DAT Reputation Agent
   Version: 1.1.0.001
   Size: 1779568 bytes
   Last modified: 1/27/2016 4:32:42 PM
   Company Name: McAfee, Inc.
   
Some data files used:
C:\Windows
C:\Windows\SysWOW64
C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\SystemCertificates\My
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat

Some registry keys used:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
HKLM\SYSTEM\ControlSet001\Control\Nls\Sorting\Versions
HKLM\SYSTEM\ControlSet001\Control\SESSION MANAGER
HKLM\SYSTEM\ControlSet001\Control\Nls\CustomLocale
HKLM\SYSTEM\ControlSet001\services\crypt32
HKLM\SOFTWARE\Microsoft\Cryptography\OID\EncodingType 0\CertDllCreateCertificateChainEngine\Config
HKLM\SOFTWRE\Microsoft\SystemCertificates\ROOT
HKU\.DEFAULT\Software\Microsoft\SystemCertificates\My
HKU\.DEFAULT\Software\Microsoft\SystemCertificates\CA

Some DLL libraries used:
C:\windows\SYSTEM32\ntdll.dll
C:\windows\SYSTEM32\wow64.dll
C:\windows\SYSTEM32\wow64win.dll
C:\windows\SYSTEM32\wow64cpu.dll
C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe
C:\windows\SysWOW64\ntdll.dll
C:\windows\syswow64\kernel32.dll
C:\windows\syswow64\KERNELBASE.dll
C:\windows\SysWOW64\VERSION.dll
C:\windows\syswow64\msvcrt.dll

"mcdatrep.exe" process is not a virus. You should not terminate "mcdatrep.exe" process.

 

⇒McAfee Program Processes on Windows 7

⇒⇒Windows 7 Processes Tutorials

2016-12-24, 4502👍, 0💬

Administration Adware Spyware Apache Bluetooth DOS Commands Edge General Internet Connection Internet Explorer Media Center Media Player Mozilla Firefox MS Access Performance PHP Programming Security Silverlight Tips Tools Tutorials Windows 10 Windows 7 Windows 8 Windows Phone Windows Server 2008 Windows Server 2012 Windows Server 2016 Windows Vista Windows XP