Showing results for 
Search instead for 
Did you mean: 

McAfee agent 5.0.3 ASCI communication continuous

We recently upgraded our servers from McAfee agent to  We found that on six of them (out of a few hundred) which are VM's (VMware) running W2K8 R2 Enterprise that the McAfee agent is running the ASCI communication continuously.  When viewing the agent activity in the McAfee Agent Monitor the information is filling up so fast that it is just scrolling non-stop.  Much like what is described in McAfee KB85352, however the debug logs do not show a loopback address .  Unfortunately, that KB says the solution is upgrading to 5.0.3...and that's the version we are running.  We found that in EPO the IP address for these servers is showing an IPv6 address, and we could stop the continuous communication with the EPO server when we disabled IPv6 in the network connection settings.  However, I have verified with our network engineer that we are not running IPv6 on our network. 

Has anybody else seen the continuous ASCI communication with the 5.0.3 agent??

VM's running W2K8 R2 Enterprise

McAfee agent 5.0.3

Some servers were running Move 3.6.1, some VScan w/Patch 5

Windows updates are current

NIC configurations are all the same except for one

I have removed, and reinstalled the McAfee agent via EPO (5.3.1 Build 188)

5 Replies

Re: McAfee agent 5.0.3 ASCI communication continuous

Sorry to say i have used up-to Agent 5.0.2. So i can' t suggest you .whether it does or not ?

Re: McAfee agent 5.0.3 ASCI communication continuous

Same issue. Working with MS cluster and multiple IP addresses.

The problem has started after agent upgrade from 4.8 to 5.0.2.

Upgrade to 5.0.3 didn't solve it.

The most terrible thing is that  continuous ASCI communication cause the endless growing of RAM consumption by masvc.exe


Re: McAfee agent 5.0.3 ASCI communication continuous

I would like to see Agent log of one the impacted.

Re: Re: McAfee agent 5.0.3 ASCI communication continuous

masvc debug log is attached from an affected system.  All sensitive info has been edited.

Level 11
Report Inappropriate Content
Message 6 of 6

Re: McAfee agent 5.0.3 ASCI communication continuous

Any chance you are running DXL?

We had simmilar issue's in the past after upgrade/reinstall of the McAfee Agent on systems with DXL installed.

In our case DXL started to generate about 1 event per second, which was then send to ePo trough ASCII

If this is the case, should be resolved in latest version:

10927612. If you migrate a system with DXL installed from the current ePolicy Orchestrator server to a different ePolicy Orchestrator server and redeploy McAfee Agent from the new ePolicy Orchestrator server, DXL does not regenerate certificates. Consequently, DXL is unable to connect to the new DXL Broker.
Workaround: Reinstall DXL to resolve this issue.
Resolution: This issue is resolved in DXL 2.0.1.
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community