This content has been marked as final. Show 4 replies
The on-access exclusion list has no influence on the access protection bit. You need to modify the appropriate access protection rules in order to get rid of this behaviour.
In the first event:
- vstskmgr.exe is trying to delete sitelist.xml
- SiteList.xml is protected by the access protection rule "Prevent modification of McAfee Common Management Agent files and settings"
- This rule is a part of the Access Protection rule group "Common Standard Protection"
- Open this access protection rule and add vstskmgr.exe to the list of excluded processes, or disable the rule completely during your upgrade process.
Now see if you can interpret the second event correctly yourself wink
I'm going to try your solution. Ha, you're making me think on the last one. Well my initial thought is do the same thing as the first event except allow explore.exe to the exclusion list?
Thanks again for your assistance. I'm in the process right now of testing the rebuild. So far it looks okay.