I know this is an old post, but how is HIPS 6.1 going in terms of blue screens?
We have about 20 testers, and one blue screen so far. The user did not capture the debug info so we don't know if it is McAfe related. We have his computer in full mem dump mode should it happen again.
My company has engaged both McAfee and Cisco to solve the blue screen issue but I do have a work around.
The Cisco VPN client comes bundled with the Zone Alarm firewall. There is a conflict with HIPS and the Zone Alarm FW driver vsdatant.sys.
The funny thing is that Zone Alarm is a CheckPoint product who is a competitor of Cisco.
I simply removed the driver/firewall component from the VPN client and rebooted. No more blue screens. Also, the firewall menu option in the client is now gone as well.
I do not know of any large enterprises that would use the Cisco unmanaged firewall in the VPN client in lieu of products like McAfee, ISS, etc. You cannot configure the FW in any way so I do not see the point. What is worse, if your laptop is in a Starbuck's using 802.11, you have no firewall protection unless you are on VPN.
------------------------------ The following section provides instructions for disabling the Cisco VPN Client Firewall component. This will resolve conflicts and subsequent Blue Screen crashes.
1 Open the Device Management console (Control Panel > Administrative Tools * > Computer Management > Device Manager node) * If this icon is not visible, select the Switch to Classic View option in the left pane of the Control Panel window.
2 From the drop down menu select View > Show hidden devices
3 Expand the Non-Plug and Play Drivers node and scroll down to the vsdatant device.
4 Right click on vsdatant and select uninstall. If prompted, click OK to remove the device. You will need to restart Windows for the changes to take effect, however it should auto reboot after removing the device.