[英]Allow File Symantec Endpoint Protection from Command Line
exe file that, when executing, a window pops up (from the Heuristic Detection), and, when pressing "Allow this File" exe 文件,执行时会弹出 window(来自启发式检测),并且当按下“允许此文件”时
and then "OK",然后“确定”,
Then it is possible to execute the.exe.然后就可以执行.exe了。
It creates a rule here:它在这里创建了一个规则:
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Symantec\Symantec Endpoint Protection\AV\Exclusions\HeuristicScanning\FileHash\Client\<FILE_HASH>
How it is possible to add a file exclusion via command line?如何通过命令行添加文件排除?
Or either, move the file to a path where it is not Heuristicly scanned?或者,将文件移动到未进行启发式扫描的路径?
Regards问候
Solved:解决了:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Symantec\Symantec Endpoint Protection\AV\Exclusions\HeuristicScanning\Directory\Admin\1733004141]
"Owner"=dword:00000004
"ProtectionTechnology"=dword:00000002
"FirstAction"=dword:00000011
"SecondAction"=dword:00000011
"DirectoryName"="C:\\temp\\"
"ThreatName"="C:\\temp\\chisel_pezored.exe"
"ExcludeSubDirs"=dword:00000001
"ExtensionList"=""
"ScanCategories"=dword:ffffffff
reg import file.reg reg 导入文件.reg
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.