In D+,I set some softwares trusted,but I still see XX Intrusions in D+ . Does that mean that I exclude those softwares uncorrectly and they are still supervised by comodo? And could help me to exclude correctly and how to set up exclusion rules ?
What you are seeing are probably memory access attempts to protected files like f.e. the files belonging to CIS its self. It is an added layer of (self) protection and even Trusted Files are not allowed to access protected files in memory.
I see it’s truly that memory access are attempts to protected files. So what should I do? Just ignore them?
You can ignore them. Or if you don’t want them logged follow ‘Access memory’ event log entries - how can I suppress these? [v5].
Thanks a lot.