Knowledge Center

Removing Host Intrusion Prevention 8.0 on a server running IIS 7.0 does not remove the ISAPI references
Technical Articles ID:  KB72677
Last Modified:  6/19/2014


McAfee Host Intrusion Prevention 8.0

Microsoft Server 2008 with IIS 7.0


If you remove Host Intrusion Prevention (Host IPS) 8.0 from a Microsoft Server 2008 running with IIS 7.0, the ISAPI filter references are not removed from the IIS applicationHost.config file.


This issue is being evaluated for consideration in a future release or patched version of the product. If this issue significantly impacts your business operations, contact Technical Support and quote this article number to help us assess the need for a Product Enhancement Request (PER).

This article will be updated as newer information becomes available.

The Product Enhancement Request (PER) system is currently unavailable. For additional information on PERs, see KB60021.


Edit the IIS 7.0 applicationHost.config file and remove the following configuration lines:

  1. Click Start, Run, type explorer and click OK.
  2. Navigate to: %windir%\system32\inetsrv\config
  3. Open the file applicationHost.config as Administrator for editing in Notepad.
  4. Edit the <globalModules> section and remove the following line:

    <add name="MfeEngine" image="%windir%\System32\inetsrv\HipIISEngineStub.dll" />
  5. Edit the <modules> section and remove the following line:

    <add name="MfeEngine" />
  6. After you have finished editing the applicationHost.config file, save the file, then restart the IIS server using iisreset or by restarting the system.

Rate this document

Did this article resolve your issue?

Please provide any comments below


This article is available in the following languages:

English United States
Portuguese Brasileiro

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms

Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.