Yes. tnx that one i found but that is MS recommendations and im after Mcafees.
I find MS recommendations always exclude way to much as they are only lokking out for their own applications and not looking at the security overall.
Ok, so what I would try would be put all these processes in Low Risk Processes and exclude SQL as shown here:
McAfee has no recommendations for IIS except excluding its processes (or putting them in Low Risk) so you can start with this and see if it's fine