File Level Antivirus Scanning Exclusions for MS - Products and latest FF Updates

Apr 20

Written by:
Friday, April 20, 2012 11:18 AM  RssIcon

To avoid problems and also for performance reasons it's important to define the right exclusions (file / folder / processes) for your File Level Antivirus Scanner.

Here I publish a list of links for MS - Products:

Exchange 2010
http://technet.microsoft.com/en-us/library/bb332342.aspx

ForeFront Edge Products (TMG / UAG)
http://technet.microsoft.com/en-us/library/cc707727.aspx

HyperV
http://support.microsoft.com/kb/961804

  1. Install antivirus and set up the following exclusions (most antivirus programs allow you to exclude specific directories, files and processes from scanning to help deal with issues such as these):
  2. Default virtual machine configuration directory (C:\ProgramData\Microsoft\Windows\Hyper-V)
  3. Custom virtual machine configuration directories
    Default virtual hard disk drive directory (C:\Users\Public\Documents\Hyper-V\Virtual Hard Disks)
    Custom virtual hard disk drive directories
    Snapshot directories
    Vmms.exe (Note: May need to be configured as process exclusions within the antivirus software)
    Vmwp.exe (Note: May need to be configured as process exclusions within the antivirus software)

    Additionally, when you use Live Migration together with Cluster Shared Volumes on Windows Server 2008 R2, exclude the CSV path "C:\Clusterstorage" and all its subdirectories.
Server OS Exclusions (SYSVOL / DHCP / WINS / EDB.....)
http://support.microsoft.com/kb/822158


Updates for Microsoft Forefront and Related Technologies:
The following link is a summary of the latest updates for all the products in the Forefront suite:

  • Forefront Client Security
  • Forefront for Exchange Server
  • Forefront for SharePoint
  • Forefront for Office Communications Server
  • Forefront Server Security Management Console
  • Antigen
  • Forefront Unified Access Gateway (UAG)
  • Forefront Threat Management Gateway (TMG)
  • Internet Security and Acceleration (ISA) Server
  • Intelligent Application Gateway (IAG)

  • http://technet.microsoft.com/en-us/forefront/ff899332