Event ID Name Severity 1092 Access Protection rule violation detected and blocked Minor
I had this same problem with VSE 8.7 on Windows 2008 R2 (only x64 if I remember correctly). The events were generated when the McAfee services were queried for the status. I modified the default Access Protection rules in ePO in the past, and because of that some specific rules to block these events, that are installed by VSE 8.7, are not loaded.
I just filtered out the events and removed them from the database using SQL.
I think the larger overarching issue is event control.
I would create a dash to monitor all threat events, perhaps broken out by threat name, over a given period of time (hour, day, week, month). It is necessary so you can avoid things like this from happening. When events go unchecked, databases fill up, and things go awry quickly within ePO, especially in a large environment.