Hello Again,
This blog will show the Microsoft Support recommended
antivirus (AV) setting for SQL Server. Each version of SQL Server will be
listed below with different setting for each version. Below are the directories
and file-name extensions that must be exclude from AV scanning.
Common
AV Settings for all versions of SQL Server
Regardless of the version of SQL Sever the exclusion
below will apply.
SQL Server data files
These files usually have one of the following file-name extensions:
These files usually have one of the following file-name extensions:
- .mdf
- .ldf
- .ndf
SQL Server backup files
These files frequently have one of the following file-name extensions:
These files frequently have one of the following file-name extensions:
- .bak
- .trn
Full-Text catalog files
Default instance: Program
Files\Microsoft SQL Server\MSSQL\FTDATA
Named instance: Program
Files\Microsoft SQL Server\MSSQL$instancename\FTDATA
Trace files
- .trc
These files usually have the .trc
file-name extension. These files can be generated either when you configure
profiler tracing manually or when you enable C2 auditing.
SQL audit files (for SQL Server 2008 or later versions)
- .sqlaudit
These files have the .sqlaudit
file-name extension. For more information, see the following topic in SQL
Server Books Online
SQL query files
- .sql
These
files typically have the .sql file-name extension and contain Transact-SQL
statements.
The directory
that holds Analysis Services data
Default location C:\Program Files\Microsoft SQL
Server\MSSQL.X\OLAP\Data
For more specifics contact the DBA team for actual
locations as this can change based on the installation and requirements.
Clustering
Setting
Exclude
the following locations from being scanned
- Quorum drive letter
- C:\Windows\Cluster
- DTC drive letter
SQL Server 2012
Apply
the recommendation mentioned in the Common
AV Settings for all versions of SQL Server section and the exclusions
below.
%ProgramFiles%\Microsoft SQL
Server\MSSQL11.<Instance Name>\MSSQL\Binn\SQLServr.exe
%ProgramFiles%\Microsoft SQL
Server\MSRS11.<InstanceName>\ReportingServices\ReportServer
\Bin\ReportingServicesService.exe
%ProgramFiles%\Microsoft SQL
Server\MSAS11.<Instance Name>\OLAP\Bin\MSMDSrv.exe\Bin\ReportingServicesService.exe
SQL Server 2008 R2
Apply the recommendation mentioned in the Common AV Settings for all versions of
SQL Server section and the exclusions below.
%ProgramFiles%\Microsoft SQL Server\MSSQL10_50.<Instance Name>\MSSQL\Binn\SQLServr.exe %ProgramFiles%\Microsoft SQL Server\MSSQL10_50.<Instance Name>\ReportingServices\ReportServer
\Bin\ReportingServicesService.exe
%ProgramFiles%\Microsoft SQL Server\MSSQL10_50.<Instance Name>\OLAP\Bin\MSMDSrv.exe
%ProgramFiles%\Microsoft SQL Server\MSSQL10_50.<Instance Name>\MSSQL\Binn\SQLServr.exe %ProgramFiles%\Microsoft SQL Server\MSSQL10_50.<Instance Name>\ReportingServices\ReportServer
\Bin\ReportingServicesService.exe
%ProgramFiles%\Microsoft SQL Server\MSSQL10_50.<Instance Name>\OLAP\Bin\MSMDSrv.exe
SQL Server 2008
Apply the recommendation mentioned in the Common AV Settings for all versions of
SQL Server section and the exclusions below.
%ProgramFiles%\Microsoft SQL
Server\MSSQL10.<Instance Name>\MSSQL\Binn\SQLServr.exe
%ProgramFiles%\Microsoft SQL
Server\MSSQL10.<Instance Name>\ReportingServices\ReportServer
\Bin\ReportingServicesService.exe
%ProgramFiles%\Microsoft SQL
Server\MSSQL10.<Instance Name>\OLAP\Bin\MSMDSrv.exe
SQL Server 2005
Apply the recommendation mentioned in the Common AV Settings for all versions of
SQL Server section and the exclusions below.
Please let me know if you find any additional information I should add.
Thanks,
%ProgramFiles%\Microsoft SQL
Server\MSSQL.1\MSSQL\Binn\SQLServr.exe
%ProgramFiles%\Microsoft SQL
Server\MSSQL.3\Reporting Services\ReportServer\Bin\ReportingServicesService.exe
%ProgramFiles%\Microsoft SQL Server\MSSQL.2\OLAP\Bin\MSMDSrv.exePlease let me know if you find any additional information I should add.
Thanks,