SuperOps

Sometimes, the SuperOps agent gets incorrectly detected as malicious software and is automatically uninstalled by some antivirus software. While we are currently working on resolving this issue, here's how you can whitelist the SuperOps agent in your antivirus and ensure it continues to function properly: 

Go to Policies &gt; Edit Policy &gt; Settings &gt; Potentially Unsafe Applications

Set Reporting to Aggressive and Protection to OFF.

- Go to Policies &gt; Edit Policy &gt; Settings &gt; Potentially Unsafe Applications
- Set Reporting to Aggressive and Protection to OFF.

This change will ensure that the SuperOps agent doesn't get uninstalled if ESET detects it as unsafe. 

Select a detection and click Create Exclusion.

In Settings, under Exclusion criteria, select Detection (Exclude each detection)

Under Auto-resolving, check the Resolve matching alerts checkbox to automatically resolve the alerts covered by the exclusion.

- Select a detection and click Create Exclusion. 
- In Settings, under Exclusion criteria, select Detection (Exclude each detection)
- Under Auto-resolving, check the Resolve matching alerts checkbox to automatically resolve the alerts covered by the exclusion.

For detailed instructions on whitelisting SuperOps in ESET, check out <a href="https://support.superops.com/en/articles/9596292-how-to-whitelist-superops-in-eset">this article</a>.

Go to Start &gt; Settings &gt; Update &amp; Security &gt; Windows Security &gt; Virus &amp; threat protection.

Under Virus &amp; threat protection settings, select Manage settings, and then under Exclusions, select Add or remove exclusions.

- Go to Start &gt; Settings &gt; Update &amp; Security &gt; Windows Security &gt; Virus &amp; threat protection.
- Under Virus &amp; threat protection settings, select Manage settings, and then under Exclusions, select Add or remove exclusions.

Select Add an exclusion, and then select from files, folders, file types, or process. A folder exclusion will apply to all subfolders within the folder as well.

Finally, clear cached detections and obtain the latest malware definitions with the instructions below: 

- Open command prompt as administrator and change directory to c:\Program Files\Windows Defender
- Run "MpCmdRun.exe -removedefinitions -dynamicsignatures"
- Run "MpCmdRun.exe -SignatureUpdate"

Alternatively, the latest definition is available for download here: ​<a href="https://learn.microsoft.com/en-gb/defender-endpoint/microsoft-defender-antivirus-updates" rel="nofollow noopener noreferrer" target="_blank">https://learn.microsoft.com/en-gb/defender-endpoint/microsoft-defender-antivirus-updates</a>

- Select Add an exclusion, and then select from files, folders, file types, or process. A folder exclusion will apply to all subfolders within the folder as well.
- Finally, clear cached detections and obtain the latest malware definitions with the instructions below: 
 - Open command prompt as administrator and change directory to c:\Program Files\Windows Defender
 - Run "MpCmdRun.exe -removedefinitions -dynamicsignatures"
 - Run "MpCmdRun.exe -SignatureUpdate"
- Alternatively, the latest definition is available for download here: ​<a href="https://learn.microsoft.com/en-gb/defender-endpoint/microsoft-defender-antivirus-updates" rel="nofollow noopener noreferrer" target="_blank">https://learn.microsoft.com/en-gb/defender-endpoint/microsoft-defender-antivirus-updates</a>

Login to your WatchGuard instance and go to Configure &gt; Endpoints &gt; Workstations and servers.

You should see the list of security policies you've created here. Open the security policy in which you want to whitelist SuperOps. 

Please ensure the policy you edit is mapped to the client assets that you manage. You can check this by going to Recipients &gt; View computers.

- Login to your WatchGuard instance and go to Configure &gt; Endpoints &gt; Workstations and servers. 
- You should see the list of security policies you've created here. Open the security policy in which you want to whitelist SuperOps. 
- Please ensure the policy you edit is mapped to the client assets that you manage. You can check this by going to Recipients &gt; View computers.

In your policy open Advanced Protection. Under code injection exclusions, exclude superops.exe.

- In your policy open Advanced Protection. Under code injection exclusions, exclude superops.exe.

ESET PROTECT

1. Edit policy settings

2. Create an exclusion

Windows Defender

WatchGuard