The EDR Sensor performs reads and writes to the sensor's installation root directories. With AV products continually scanning the directory contents, these exclusions will help eliminate interoperability that can cause performance issue and ensure proper coexistence.
Some vendors require a trailing asterisk (*) when entering exclusions. Sub-folders should be included in the exclusion. Please refer to the vendor's documentation.
Windows Defender is enabled by default on Windows machines and also requires these exclusions.
If you are utilizing a custom Sensor Process Name add the customized process name to the AV application exclusions list.
Please review vendor documentation for exclusions implementation steps.
For McAfee EPO you may also need to exclude c:\windows\carbonblack\cb.exe from its "Prevent creation of new executable files in the Windows folder" option