These are some of the ones I use. Most are blankit policy's and may not appy to your setup

Remacc.Radmin
JKDefrag.exe
Program files\office\office11\MSaccess.exe
Program files\Spiceworks\pkg\gems\spiceworks_common-2.0.17490\productkey.exe
Program files\Sunbelt Software\CounterSpy\Agent\SBCSESVC.exe
Program files\NovaNet-Web Backup.  "The Whole folder
hww "whole folder
.mdb

Hope that helps some.

ym

Message Edited by ym1 on 02-26-2008 04:01 PM

Although this isn't a Centralized Exception as such, it's 'sort-of related' and may be of some use...

We use Real VNC here - and before everyone starts shouting at me: yes, the users do know about it, and no we're not spying on people. But we do have 3 different offices on 3 different floors of 2 different buildings so it does save a lot of legwork.

But SEP (v11.0.1000.1375) keeps flagging Real VNC up as a Commercial App (well, duh!) so we're trying out the disable logging option in SEPM to see if we can kill those annoying pop-ups that appear on the client PCs.

In SEPM console go to Policies > View Policies > Antivirus and Antispyware.
Double click in the right-hand pane to open a new window > Click Proactive Threat Scan > Select Detecting Commercial Apps > Set your preferred option and click on the little padlock icon when you're done.

Message Edited by WebAdmin on 02-28-2008 01:23 PM

a few things to mention here:

With SEP Client pre MR2, we automatically excluded all the correct Exchange folders for Exchange 2000 - 2007, if we detected Mail Security installed, we put exclusions in for that too. There are no other automatic exclusions in SEP Client prior to MR2. Its worthwhile contacting the supplier or vendor of your applications for their AV recommendations.

With SEP Client post MR2, we have added a few more things... not only do we exclude Exchange and SMS as before, but also:

If the SEP client is installed on a SEPM with an embedded database, we exclude the database
If the SEP client is installed on a Domain Controller, we exclude the specific DC files and folders as recommended by Microsoft in their KB.

All this is automatic in the client if you have MR2 installed.

More are coming too, we thought that these were the big ones for MR2 though...

I have looked through the admin guide and cannot find a list of "embedded" exceptions - could someone kindly point it out to me. 

I would also find it useful to have a list of generic windows server & Ms server apps recommended exceptions to cover those not included in the first list.

Thanks

(reusing the topic to ask its questions again)

Do I need to create a Centralized Exception policy to exclude the scan of the pagefile.sys file? And what about the spool folder?
And the feature of auto excluding Exchange folders is still valid in MR4, right?

Is there any other recommended system file or folder exclusion?

Thanks ;)

Greetings to all:

I have a group of computers that send mass mail and Symantec endpoint protection prevents mass mailing. Is there a way to create policy to apply only to thos group of computers but not to all computers? Thank you in advance.