Threat type exclusion not working?

kerin444 · April 14, 2017

Hi all,

I recently updated to 6.5 to get one of the most awaited feature: threat type exclusion.

We are using an application that includes a remote desktop assistance that is detected as a threat by ESET: Win32/Proxy.MgComIP.A

Through ERA I created a test policy to exclude this threat from Antivirus detection. The configuration is applied to my test computer, but it's still being detected... Is this feature really working? I checked in the documentation and there is no update on this section so I don't know if my syntax is right.

Anyone managed to get it working?

MichalJ · April 14, 2017

Exclusion entry should be in the format:

@NAME=Win32/Proxy.MgComIP.A

Could you please confirm that it is working?

kerin444 · April 14, 2017

Hi Michal,

With this syntax it's working correctly, is it documented? Can we work with wildcards like ? and * ??

BR

Sign In

Threat type exclusion not working?

Recommended Posts

kerin444 0

Link to comment

Share on other sites

MichalJ 434

Link to comment

Share on other sites

kerin444 0

Link to comment

Share on other sites

Recently Browsing 0 members

Quick search

FAQ

Topics

Browse

Activity

My Activity Streams