This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
David_Levine
Contributor
‎2020-06-30 11:51 AM

Anti-Ransomware and Behavioral Guard Settings Question

I am looking at the Anti-Ransomware and Behavioral Guard settings in our endpoint security policy, and noticed that there is an exclusion for C:\Windows\explorer.exe (process) along with a handful of certificate based exclusions for Symantec, TrendMicro, etc.

I don't come in here to mess with this policy setting, but I seem to recall that the certificate based exclusions are normal "out of the box" settings. I don't recall that an exclusion for the Explorer.exe process is a default though? Can anyone confirm if it is?

Thanks,

~D

Labels
0 Kudos
1 Reply
Roman_Zitzev
Employee Alumnus
Employee Alumnus
‎2020-07-01 02:33 AM

hi

 

explorer is exclude from Anti-Ransomware and Behavioral-Guard component.

if any additional help needed let know.

 

romanzit@checkpoitn.com 

 

ty

roman  

0 Kudos