Hi intsec,
Thanks for your reply.
Here's the full sequence of events:
Open iTunes.
There is a new version, would you like to install it?
...with an iTunes download listed as 98.06MB.
OK.
Up comes the progress bar for the first download of 20.40MB ...and it stops at 19..90MB.
Plus or minus at the same time that the download stops, NIS intercepts Apple updater tickling the NIS file ccsvchst.exe - and blocks it.
The download drops dead just before the first download completes. NIS history makes no comment about blocking the download, there is only the single msg about updater.exe being blocked from having a go at ccsvchst.exe.
I also have a hardware firewall: logs show nothing blocked by the firewall to this machine anywhere near the time of the Apple update run.
I have repeated this exercise several times over several days, always with the same result: that single warning from NIS, nothing dropped at the hardware firewall, and the first Apple download stops just short of completion.
Baffled!
WHY is Apple updater messing with NIS process ccsvchst.exe?
Is it a legitimate thing for Apple updater to want to do?
Your question about the french stuff.
Top:
Severity: Medium.
Activity: Unauthorised access blocked (open the process token).
Status: Blocked.
Recommended Action: No action necessary.
Left:
Action: Open process token.
Reaction: Unauthorised access blocked.
Right:
Actions: No actions available for this element.
Which is all just fine except one small detail: I don't get my iTunes update
...so I can't answer your first question about the update installing correctly or not.
Chris