ESET Online Help

Search English
Select the topic

Add or Edit detection exclusion

Exclude detection

A valid ESET detection name should be provided. For a valid detection name, see Log files and then select Detections from the Log files drop-down menu. This is useful when a false positive sample is being detected in ESET NOD32 Antivirus. Exclusions for real infiltrations are very dangerous, consider excluding only affected files / directories by clicking ... in the Path field and/or only for a temporary period of time. Exclusions apply also to Potentially unwanted applications, potentially unsafe applications and suspicious applications.

See also Path exclusion format.


example

Exclude URL address

The Path field can also include a URL or wildcard "*" character. To exclude the detection, type the supported URL format in the Path field, f.e. https://domain.com or *domain.com*.

DIALOG_EXCLUDE_THREAT

See the Detection exclusions example below.

Exclude hash

Excludes a file based on a specified SHA-1 hash, regardless of the file type, location, name, or extension.

DIALOG_EXCLUDE_HASH


example

Exclusions by detection name

To exclude a specific detection by its name, type the valid detection name:

Win32/Adware.Optmedia

You can also use the following format when you exclude a detection from the ESET NOD32 Antivirus alert window:

@NAME=Win32/Adware.Optmedia@TYPE=ApplicUnwnt
@NAME=Win32/TrojanDownloader.Delf.QQI@TYPE=Trojan
@NAME=Win32/Bagle.D@TYPE=worm


Control elements

Add—Excludes objects from detection.

Edit—Enables you to edit selected entries.

Delete—Removes selected entries (CTRL + click to select multiple entries).