Vikram, I did mention this above so your post is not new information. That second link is the one I already posted. And the one on top is almost identical information.
But I don't know that it's crossed anyone's mind that NTUSER.DAT is HKCU? So by excluding it, does that also exclude SEP from detecting registry tampering for that user?