Creating a scan exclusion

Kaspersky Endpoint Security does not scan an object if the drive or folder containing this object is included in the scan scope at the start of one of the scan tasks. However, the scan exclusion is not applied when a custom scan task is started for this particular object.

To create a scan exclusion:

1. Open the application settings window.
2. In the left part of the window, in the General Settings section, select Exclusions.

   The exclusions settings are displayed in the right part of the window.

3. In the Scan exclusions and trusted zone section, click the Settings button.

   The Trusted zone window opens on the Scan exclusions tab.

4. Click the Add button.

   The Scan exclusion window opens. In this window, you can create a scan exclusion using one or more criteria from the Properties section.

5. To exclude a file or folder from scanning:
   1. In the Properties section, select the File or folder check box.
   2. Click the select file or folder link in the Scan exclusion description section to open the Name of file or folder window.
   3. Enter the file or folder name or the mask of the file or folder name, or select the file or folder in the folder tree by clicking Browse.
      

      A mask of a file or folder name is a representation of the name of a folder or name and extension of a file using common characters.

      You can use the following characters to form a file or folder name mask:

      • The * (asterisk) character, which takes the place of any set of characters in the file or folder name, except the \ and / characters (delimiters of the names of files and folders in paths to files and folders). For example, the mask C:\*\*.txt will include all paths to files with the TXT extension located in folders on the C: drive, but not in subfolders.

        Two consecutive * characters take the place of any set of characters (including an empty set) in the file or folder name, including the \ and / characters (delimiters of the names of files and folders in paths to files and folders). For example, the mask C:\**\*.txt will include all paths to files with the TXT extension located in any folder on the C: drive.

        The name and the extension of a file are always separated with a dot.

      • The ? (question mark) character, which takes the place of any single character in the file or folder name, except the \ and / characters (delimiters of the names of files and folders in paths to files and folders). For example, the mask C:\**\???.txt will include paths to all files that have a name consisting of three characters and the TXT extension in folders on drive C:.
      • All other characters permissible in the names of files and folders.

        Kaspersky Endpoint Security blocks the input of the following characters that are invalid in file and folder names: <, >, |, ".

   4. In the Name of file or folder window, click OK.

      A link to the added file or folder appears in the Scan exclusion description section of the Scan exclusion window.

6. To exclude objects with a specific name from scanning:
   1. In the Properties section, select the Object name check box.
   2. Click the enter object name link in the Scan exclusion description section to open the Object name window. 
   3. Enter the object name or name mask according to the classification of the Kaspersky Virus Encyclopedia:
   4. Click OK in the Object name window.

      A link to the added object name appears in the Scan exclusion description section of the Scan exclusion window.

7. To exclude an object with a specific hash from scanning:
   1. In the Properties section, select the Object hash check box.
   2. Click the enter object hash link in the Scan exclusion description section to open the Object hash window.
   3. Enter the SHA256 hash of the object according to the classification in the Kaspersky Virus Encyclopedia, or select the file by clicking the Browse button.
   4. Click OK in the Object hash window.

      A link to the added object hash appears in the Scan exclusion description section of the Scan exclusion window.

8. If necessary, in the Comment field, enter a brief comment on the scan exclusion that you are creating.
9. Specify the Kaspersky Endpoint Security components that should use the scan exclusion:
   1. Click the any link in the Scan exclusion description section to activate the select components link.
   2. Click the select components link to open the Protection components window.
   3. Select the check boxes opposite the components to which the scan exclusion must be applied.
   4. In the Protection components window, click OK.

   If the components are specified in the settings of the scan exclusion, this exclusion is applied only during scanning by these components of Kaspersky Endpoint Security.

   If the components are not specified in the settings of the scan exclusion, this exclusion is applied during scanning by all components of Kaspersky Endpoint Security.

10. In the Scan exclusion window, click OK.

    The scan exclusion you have added appears in the table on the Scan exclusions tab of the Trusted zone window. The configured settings of this scan exclusion appear in the Scan exclusion description section.

11. In the Trusted zone window, click OK.
12. To save changes, click the Save button.

Page top