Knowledge Center

Recommended exclusions for Endpoint Security/VirusScan Enterprise on DHCP and WINS servers
Technical Articles ID:   KB58146
Last Modified:  7/19/2018


McAfee Endpoint Security (ENS) Threat Prevention 10.x
McAfee VirusScan Enterprise 8.x 
Microsoft Windows Server 2012
Microsoft Windows Server 2008
Microsoft Windows Server 2003


It is recommended that you exclude the following locations in the Default Processes for the On-Access Scanner to ensure that the DHCP and WINS databases function correctly:

For DHCP servers:
Exclude the DHCP directory under \WINDOWS\System32\
For WINS servers:
Exclude the Wins directory under \WINDOWS\System32\

How to configure exclusions in ENS/VSE:

When configuring exclusions, always apply the principle that the more precise the exclusion, the smaller the potential security risk. For instructions to configure exclusions, refer to the following documentation:
  • ENS: "Configuring exclusions" section of the Endpoint Security 10.5 Product Guide (PD26799)
  • VSE:
    • KB66909 - Consolidated list of Endpoint Security/VirusScan Enterprise exclusion articles
    • KB55898 - Understanding VirusScan Enterprise Exclusions
    • KB67544 - How to create low-risk and high-risk process exclusions for VirusScan Enterprise 8.x in ePolicy Orchestrator
    • KB50998 - How to manage file and folder exclusions in VirusScan Enterprise 8.x using wildcards
    • KB61000 - VirusScan Enterprise exclusions and hardware paths (physical address versus logical address)

Rate this document

Glossary of Technical Terms

 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.