Dear,
We are an hosting company, we are using SEP12, In SEP12 is any option to block upload of .exe and .bat file via FTP(port 20/21)
It can block access ftp ( based on active mode or passive mode)
https://www-secure.symantec.com/connect/forums/setup-ftp-access-using-network-threat-protection
but it cannot block just .exe , bat , upload you should consider Data loss prevention from symantec for that.