Server - Microsoft Anti-Virus Exclusion List

here you can find a very interesting Microsoft Article that include majority Microsoft products that need to have some Antivirus exclusion.

http://social.technet.microsoft.com/wiki/contents/articles/953.microsoft-anti-virus-exclusion-list.aspx

Options

Subscribe to Article (RSS)

• Share this

Windows: 

• KB822158  Virus scanning recommendations for Enterprise computers that are running currently supported versions of Windows

Windows / Active Directory: 

• http://support.microsoft.com/kb/822158 
• http://support.microsoft.com/kb/837932 
• http://support.microsoft.com/kb/943556 

Cluster:

• http://support.microsoft.com/kb/250355 

Hyper-V, System Center Virtual Machine Manager (SCVMM):

• http://social.technet.microsoft.com/wiki/contents/articles/2179.aspx
•   http://support.microsoft.com/kb/961804/ 
• http://support.microsoft.com/kb/2628135 

Virtual PC / Virtual Server:

• http://blogs.msdn.com/b/virtual_pc_guy/archive/2005/09/14/466291.aspx 
• http://support.microsoft.com/kb/840193 

Forefront: Considerations when using antivirus software on FF Edge Products 

• http://support.microsoft.com/kb/943620 
• http://technet.microsoft.com/en-us/library/cc707727.aspx 

FRS:

• http://support.microsoft.com/kb/815263 

SQL:

• http://support.microsoft.com/kb/309422 

IIS:

• http://support.microsoft.com/kb/821749 
• http://support.microsoft.com/kb/817442 

DHCP:

• http://support.microsoft.com/kb/927059 

SCOM / MOM:

• http://support.microsoft.com/kb/975931 

Configuration Manager 2007:

• http://blogs.technet.com/b/configurationmgr/archive/2010/11/30/configmgr-2007-antivirus-scan-and-exclusion-recommendations.aspx  

Configuration Manager 2012:

• http://www.systemcenterblog.nl/2012/05/09/anti-virus-scan-exclusions-for-configuration-manager-2012/ 
• http://blogs.technet.com/b/systemcenterpfe/archive/2013/01/11/updated-system-center-2012-configuration-manager-antivirus-exclusions-with-more-details.aspx 

Orchestrator:

• http://social.technet.microsoft.com/wiki/contents/articles/26665.system-center-orchestrator-antivirus-exclusions.aspx

Exchange:

• Exchange 2013: http://technet.microsoft.com/en-us/library/bb332342%28v=exchg.150%29.aspx 
• Exchange 2010: http://technet.microsoft.com/en-us/library/bb332342%28v=exchg.141%29.aspx 
• Exchange 2007: http://technet.microsoft.com/en-us/library/bb332342%28EXCHG.80%29.aspx 
• http://support.microsoft.com/kb/328841 
• http://support.microsoft.com/kb/823166 
• http://support.microsoft.com/kb/245822 
• http://technet.microsoft.com/en-us/library/bb332342%28EXCHG.80%29.aspx 
• http://technet.microsoft.com/en-us/library/bb332342.aspx 

SharePoint:

• http://support.microsoft.com/kb/952167 
• http://support.microsoft.com/kb/320111 
• http://support.microsoft.com/kb/322941 
• FAST Search Server 2010 for SharePoint 

Team Foundation Server 2010/2012/2013:

• http://support.microsoft.com/kb/2636507   

Dynamics CRM:  

• http://msdynamicswiki.com/2012/03/26/antivirus-exclusion-considerations-for-microsoft-dynamics-crm/  

SMS

• http://support.microsoft.com/kb/327453 

ISA:

• http://support.microsoft.com/kb/887311 

Windows Update:

• http://support.microsoft.com/kb/900638 

WSUS (Windows Server Update Services):

• http://technet.microsoft.com/en-us/library/dd939908(WS.10).aspx#av     

SBS:

• http://support.microsoft.com/kb/885685 

 MED-V

• Recommended Anti-Virus exclusions for MED-V client and workspace installations

System Center:

• Recommendations for antivirus exclusions in MOM 2005 and Operations Manager 2007

Data Protection Manager:

• Running Antivirus Software on the DPM Server 

App-V

• http://support.microsoft.com/kb/2576031 

Lync 2010

• http://technet.microsoft.com/en-us/library/gg195736.aspx 

Lync 2013

• http://technet.microsoft.com/en-us/library/dn440138.aspx  

Dynamics AX 2009

For versions up to AX 2009 exclude:

• All the AOD, AOI, ADD, ADI, KHD & KHI files, or
• alternatively, the whole application folder

See for instance: http://blogs.msdn.com/b/czdaxsup/archive/2010/05/13/ax-application-files-locked-by-another-process.aspx 

Note
Doing this helps make sure that the files are not locked when the AOS must use them. However, if these files become infected, your antivirus software will not be able to detect the infection.

Dynamics AX 2012

During AOS startup XPPIL (CIL) files are generated to by default: C:\Program Files\Microsoft Dynamics AX\60\Server\MicrosoftDynamicsAX\bin\XppIL>

• Exclude XppIL and all subfolders
• alternatively, you may want to exclude C:\Program Files\Microsoft Dynamics AX\60\Server\MicrosoftDynamicsAX\bin\Application\Appl>, which is the local AOS store of the label files.
  
  

BizTalk Server

See recommendations in BizTalk performance optimization guides:

• http://msdn.microsoft.com/en-us/library/cc558617(BTS.10).aspx 
• http://msdn.microsoft.com/en-us/library/ee377064(BTS.70).aspx 

Mentioned executables used by BizTalk includes EntSSO.exe, MSDTC.exe, BTSNTSvc.exe, BTSNTSvc64.exe, SQLServr.exe, but also others as IIS, Customer WCF services, MSMQ, Rule Engine, SQL Agent, SSIS, SSNS and other applications used in integration scenarios.

Other great compilations

• http://blogs.technet.com/jeff_stokes/archive/2010/05/19/anti-virus-exclusions-and-you.aspx 
• http://support.microsoft.com/search/default.aspx?mode=r&query=antivirus+exclusions&spid=global&catalog=LCID%3D1033&1033comm=1&ast=25&ast=28&res=20
• If your antivirus is Microsoft Forefront Endpoint Protection (FEP) you may use the Preconfigured Policy Templates  for different server roles and Microsoft applications.
• Comprehensive AV Exclusion document - http://sdrv.ms/LES7gB