Allow File Symantec Endpoint Protection from Command Line
Question
exe file that, when executing, a window pops up (from the Heuristic Detection), and, when pressing "Allow this File"
and then "OK",
Then it is possible to execute the.exe.
It creates a rule here:
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Symantec\Symantec Endpoint Protection\AV\Exclusions\HeuristicScanning\FileHash\Client\<FILE_HASH>
How it is possible to add a file exclusion via command line?
Or either, move the file to a path where it is not Heuristicly scanned?
Regards
1 answers
solution1
0 2021-03-26 13:02:59
Solved:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Symantec\Symantec Endpoint Protection\AV\Exclusions\HeuristicScanning\Directory\Admin\1733004141]
"Owner"=dword:00000004
"ProtectionTechnology"=dword:00000002
"FirstAction"=dword:00000011
"SecondAction"=dword:00000011
"DirectoryName"="C:\\temp\\"
"ThreatName"="C:\\temp\\chisel_pezored.exe"
"ExcludeSubDirs"=dword:00000001
"ExtensionList"=""
"ScanCategories"=dword:ffffffff
reg import file.reg
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Run Symantec End Point DoScan.exe from command line using JAVA
How can I Stop / Start AVG antivirus protection from command line
Antivirus (Symantec Endpoint) configuration for developer machine
Send files to Symantec AV Scan Engine from a C# Application
Wait until Symantec End Point DoScan.exe finishes scanning the file
Symantec ScanEngine API clarification about StreamScanRequest
Issue in secure file upload script using command line AV
FileUpload virus protection of server
How to pass the Windows Defender SmartScreen Protection?
Anyone has Avast reporting false positive on web protection?
Related Tags