Automatic exclusions

The developers of server applications and operating systems recommend excluding sets of critical working files and folders from malware scan for most of their products. Malware scan may have a negative influence on a server's performance, which may lead to conflicts and even prevent some applications from running on the server. Exclusions help minimize the risk of potential conflicts and increase the overall performance of the server when running Anti-Malware software. See the complete list of files excluded exlink from scanning for ESET server products.

ESET Mail Security identifies critical server applications and server operating system files, and automatically adds them to the list of Exclusions. All automatic exclusions are enabled by default. You can disable/enable each server application exclusions using the slider bar with the following result:

When enabled, any of its critical files and folders will be added to the list of files excluded from scanning. Every time the server is restarted, the system performs an automatic check of exclusions and updates the list if there were system or application changes (for example when a new server application was installed). This setting ensures the recommended Automatic exclusions are always applied.

When disabled, automatically excluded files and folders will be removed from the list. Any user-defined exclusions entered manually will not be affected.

The Automatic exclusions for Exchange Servers are based on Microsoft's recommendations. ESET Mail Security applies "Directory/Folder exclusions" only ("Process exclusions" and "File name extension exclusions" are not applied). See the following Microsoft Knowledge Base articles for details:

Virus scanning recommendations for Enterprise computers that are running currently supported versions of Windows exlink

Recommendations for troubleshooting an Exchange Server computer with antivirus software installed exlink

File-Level Antivirus Scanning on Exchange 2007 exlink

File-Level Antivirus Scanning on Exchange 2010 exlink

Anti-Virus Software in the Operating System on Exchange Servers (Exchange 2013) exlink

Running Windows antivirus software on Exchange 2016 servers exlink


There are also Exchange database file exclusions for Active and Passive databases in DAG (Database Availability Group) hosted on local server. List of Automatic exclusions is updated every 30 minutes. If there is a new Exchange database file created, it will automatically get excluded regardless of its state, whether it is Active or Passive.

To identify and generate automatic exclusions, ESET Mail Security uses dedicated application eAutoExclusions.exe, located in the installation folder. No interaction is needed from your side, but you can use command line to list detected server applications on your system by executing eAutoExclusions.exe -servers. To display full syntax, use eAutoExclusions.exe -?.