Not sure what you mean. The KB article specifically suggests that we DON'T recommend exclusions by the executable process.
http://support.microsoft.com/kb/975931 We do recommend excluding the Health Service State folder, which includes a bunch of temporary folders containing vbscripts, the healthservice database (store), configuration XML files, etc. This is because there have been many issues in the past with antivirus programs locking these files and causing issues for agents, most specifically around script execution. Also - several folders are created, then deleted, by the monitoringhost.exe process, in that directory, so it is much simpler to exclude that directory and all subdirectories. If you are wary of these generic settings, you can test with your specific AV program to see if your does not interfere. It is possible that it won't. However, many, many cases have resolved by excluding this directory for failed script executions due to AV locking files or blocking cscript.exe activity. I'm sure some others have opinions on this as well, and can chime in with their own experience. From: [email protected] [mailto:[email protected]] On Behalf Of Henrik Andersen Sent: Monday, April 28, 2014 3:44 AM To: [email protected] Subject: [msmom] Anti Virus exclusion Hi! My security-colleagues are a bit paranoid(which is great) and they don't like the best practice for AV exclusions - Don't scan the Health Service State + sub directories. I too find it a bit odd that Microsoft recommends that you don't scan executable files. Do you (the list) have any opinions on that? /Henrik
