Recommended exceptions for Endpoint Protection on Hyper-V hosts
search cancel

Recommended exceptions for Endpoint Protection on Hyper-V hosts

book

Article ID: 152543

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

You wish to know which files, folders and applications should be excluded from scanning on your Hyper-V host(s).

Environment

  • Windows Server 2008 or higher with the Hyper-V role
  • Microsoft Hyper-V Server 2008 or higher

Resolution

The recommended exceptions include:

  • Default virtual machine configuration directory (C:\ProgramData\Microsoft\Windows\Hyper-V)
  • Custom virtual machine configuration directories
  • Default virtual hard disk drive directory (C:\Users\Public\Documents\Hyper-V\Virtual Hard Disks)
  • Custom virtual hard disk drive directories
  • Snapshot directories
  • Vmms.exe (Needs to be added to Auto-Protect Custom Process List)
  • Vmwp.exe (Needs to be added to Auto-Protect Custom Process List)
  • If you use Live Migration together with Cluster Shared Volumes, exclude the CSV path "C:\Clusterstorage" and all its subdirectories.

For a detailed, up-to-date list of the required folder, application and file exceptions, see Microsoft's Recommended antivirus exclusions for Hyper-V hosts.

Please refer to the related articles below on how to set up file, folder and application exceptions.