Question on adding exe and dll to Deny List in Symantec Endpoint Security console.
- Can we add any exe or dll files that have never been discovered in the environment?
- How to generate the hashes if the file does not exist in any devices?
- Is it safe to have these files in devices so that they are discovered by the console?
Examples of exe to block: addinprocess.exe, addinutil.exe, bginfo.exe
Examples of dll to block: lxssmanager.dll, Microsoft.Build.dll
Regards,
Ain