Now I realise its been a while since I posted Part 2 of this series, however, finally we are looking at the Hub Transport Servers and this will hopefully be followed by the CAS, UM & Edge shortly thereafter.

Im just going to delve straight into the exclusions here, so you need to set the following File Level AV Exclusions on your Exchange 2007 Hub Transport Servers:

Directory Level Exclusions:

• General Log Files (Powershell: Get-TransportServer <servername>| fl *logpath*,*tracingpath*)
• Message Paths (Powershell: Get-TransportServer <servername>| fl *dir*path*)
• Queue Database, Checkpoint & Log Files (%Program Files%\Microsoft\Exchange Server\TransportRoles\Data\Queue)
• Sender Reputation Database (%Program Files%\Microsoft\Exchange Server\TransportRoles\Data\SenderReputation)
• IP Filter Database (%Program Files%\Microsoft\Exchange Server\TransportRoles\Data\IpFilter)
• OLE Converter Folder (%Program Files%\Microsoft\Exchange Server\Working\OleConvertor)
• Server's Temp Folders

Process Level Exceptions:

• Store.exe
• CDB.exe
• CiDaemon.exe
• Cluster.exe
• InetInfo.exe
• Mad.exe
• Microsoft.Exchange.Cluster.ReplayService.exe
• Microsoft.Exchange.InfoWorker.Assistants.exe
• Microsoft.Exchange.Search.ExSearch.exe
• Microsoft.Exchange.ServiceHost.exe
• MicrosoftExchangeADTopologyService.exe
• MicrosoftExchangeTransportLogSearch.exe
• MsfteSQL.exe
• OleConverter.exe
• PowerShell.exe
• Dsamain.exe
• Msexchangefds.exe
• Msexchangemailsubmission.exe
• Msexchangetransport.exe
• Msexchangetransportlogsearch.exe
• Microsoft.Exchange.Imap4.exe
• Microsoft.Exchange.Imap4service.exe
• Sesworker.exe
• Powershell.exe
• Microsoft.Exchange.Monitoring.exe
• Microsoft.Exchange.Pop3.exe
• Microsoft.Exchange.Pop3service.exe
• W3wp.exe

File Level Exceptoions

• .chk
• .log
• .edb
• .jrs
• .que
• .lzx
• .ci
• .dir
• .wid
• .000
• .001
• .002
• .dia
• .wsb
• .config

So that's it, in Part 4, we will look into the CAS Server AV Exclusions