Resources For IT Professionals
Post an article
Wikis - Page Details
  • First published by
  • When: 19 May 2010 9:02 AM
  • Last revision by (Microsoft)
  • When: 21 Mar 2013 10:47 AM
  • Revisions: 63
  • Comments: 33
Options
RSSSubscribe to Article (RSS)
Can You Improve This Article?
Positively! Click Sign In to add the tip, solution, correction or comment that will help other users.

Report inappropriate content using these instructions.
Wiki  >  TechNet Articles  >  Microsoft Anti-Virus Exclusion List

Microsoft Anti-Virus Exclusion List

Microsoft Anti-Virus Exclusion List

One place on the web where you can find an updated list of ALL the AV exclusions you might want to configure for Windows Server. Feel free to add to the list, it is the wiki way!

HINT: Subscribe to the RSS feed for this wiki page to get auto-notification when it is updated!

Enterprise Configuration Recommendations:

Windows: 

  • KB822158 Virus scanning recommendations for Enterprise computers that are running currently supported versions of Windows

Windows / Active Directory: 

Cluster:

Hyper-V, System Center Virtual Machine Manager (SCVMM):

Virtual PC / Virtual Server:

Forefront: Considerations when using antivirus software on FF Edge Products

FRS:

SQL:

IIS:

DHCP:

SCOM / MOM:

Configuration Manager 2007:

Configuration Manager 2012:

Exchange:

SharePoint:

SMS:

ISA:

Windows Update:

WSUS (Windows Server Update Services):

SBS:

 MED-V

System Center:

Data Protection Manager:

App-V

Lync 2010
Dynamics AX

        For versions up to AX 2009 exclude:
  1. All the AOD, AOI, ADD, ADI, KHD & KHI files, or
  2. alternatively, the whole application folder

       See for instance:        http://blogs.msdn.com/b/czdaxsup/archive/2010/05/13/ax-application-files-locked-by-another-process.aspx

Note: Doing this helps make sure that the files are not locked when the AOS must use them. However, if these files become infected, your antivirus software will not be able to detect the infection.
   
BizTalk Server
See recommendations in BizTalk performance optimization guides:

Mentioned executables used by BizTalk includes EntSSO.exe, MSDTC.exe, BTSNTSvc.exe, BTSNTSvc64.exe, SQLServr.exe, but also others as IIS, Customer WCF services, MSMQ, Rule Engine, SQL Agent, SSIS, SSNS and other applications used in integration scenarios.



Other great compilations

 

, , , , , , , , , , , , , , , , , , , , , , , , ,
Sort by: Published Date | Most Recent | Most Useful
Comments
  • 24 Apr 2013 12:52 AM

    What about exclusion for System Center 2012 Orchestrator?

  • 21 Mar 2013 12:20 PM

    Will this site be updated with the latest technologies soon (SharePoint 2013, Exchange 2013)?

  • 1 Jan 2013 3:02 AM

    Awesome

  • 11 Dec 2012 12:19 PM

    Good list

  • 8 Nov 2012 2:02 AM

    Thanks, very useful!

  • 24 Feb 2012 2:06 AM

    Antivirus scanning for Outlook 2010

    technet.microsoft.com/.../hh550032.aspx

  • 28 Nov 2011 4:21 AM

    An Anti-virus vendor told me that, since they're using the Microsoft API's (the same used by MS Anti virus products), there is no longer a real need for exclusions. How far can I go into trusing this API implementation to avoid application crashes/problems?

  • 19 Nov 2011 10:48 AM

    nice, thanks.

  • 19 Oct 2011 2:25 PM

    %programfiles%\Citrix

  • 19 Oct 2011 8:03 AM

    For Service Manager 2010/2012 I would recommand the following excpetions:

    By folder exceptions:

    %programfiles%\Microsoft System Center\Service Manager 2010 or

    %programfiles%\Microsoft System Center\Service Manager 2012

    By proces exceptions:

    Microsoft.Mom.SDK.Servicehost.exe (Microsoft System Center Data Access Service)

    Microsoft.Mom.ConfigServicehost.exe (Microsoft System Center Configuration Service)

    HealthService.exe (System Center Management)

Page 1 of 2 (12 items) 12