EXAD杀毒排除项目 丿记性不太好丶 默认分类 2025-09-27 177 次浏览 0 次点赞 排除路径: D:\\ht-database E:\\ht-database C:\Program Files\Microsoft\Exchange Server\V15\ C:\Windows\System32\WindowsPowerShell\v1.0 排除文件名后缀: *.edb *.log .mfs .merge .state .@meta .mail.que .jfm .chk .mail.que trnres00001.jrs 排除进程: C:\Program Files\Microsoft\Exchange Server\V15\Bin\msexchangerepl.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\Search\Ceres\Runtime\1.0\noderunner.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\Microsoft.Exchange.Store.Worker.exe C:\Program Files\Microsoft\Exchange Server\V15\bin\Microsoft.Exchange.Store.Service.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\Search\Ceres\HostController\hostcontrollerservice.exe C:\Program Files\Microsoft\Exchange Server\V15\bin\Microsoft.Exchange.Search.Service.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeTransport.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeTransportLogSearch.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeDelivery.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeSubmission.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeMailboxReplication.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeMailboxAssistants.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeHMHost.exe C:\Program Files\Microsoft\Exchange Server\V15\Bin\MSExchangeHMRecovery.exe C:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\PopImap\Microsoft.Exchange.Imap4Service.exe C:\Program Files\Microsoft\Exchange Server\V15\ClientAccess\PopImap\Microsoft.Exchange.Imap4Service.exe C:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\PopImap\Microsoft.Exchange.Pop3Service.exe C:\Program Files\Microsoft\Exchange Server\V15\ClientAccess\PopImap\Microsoft.Exchange.Pop3Service.exe C:\Windows\Cluster\clussvc.exe https://blog.csdn.net/wenzhongxiang/article/details/86706238 AD排除 在域控服务器上安装杀毒软件时要排除对那些位置的扫描,以避免域控的崩溃呢?总结了下,有以下几点: 1.排除主 NTDS 数据库文件。默认位置是 %windir%\Ntds。 2.排除 Active Directory 事务日志文件。默认位置是 %windir%\Ntds。 3.关闭对 SYSVOL 文件的扫描:从该文件夹及其所有子文件夹中排除以下文件:*.adm、*.admx、*.adml、Registry.pol、*.aas、*.inf、Fdeploy.inf、Scripts.ini、*.ins、Oscfilter.ini 4.关闭对以下注册表项中指定的文件复制服务 (FRS) 工作文件夹中的文件的扫描。默认位置是 %windir%\Ntfrs。 5.关闭对以下注册表项中指定的 FRS 数据库日志文件的扫描。默认位置是%windir%\Ntfrs。 6.关闭对以下注册表项中指定的暂存文件夹的扫描。默认状态下,暂存文件使用以下位置:%systemroot%\Sysvol\Staging areas 7.关闭对 Sysvol\Sysvol 文件夹中的文件的扫描。%systemroot%\Sysvol\Domain 8.关闭对 DFSR 数据库和工作文件夹中的文件的扫描。位置由以下注册表项指定:默认位置为以下隐藏文件夹:%systemdrive%\System Volume Information\DFSR 进程排除项 C:\Windows\System32\dfsr.exe C:\Windows\System32\dfsrs.exe C:\Windows\System32\ntfrs.exe C:\Windows\System32\lsass.exe C:\Windows\System32\dns.exe 点赞 0
楼主残忍的关闭了评论