Adding an exclusion to the Trusted Zone

To manually add an exclusion to the Trusted Zone via the Application Console:

1. In the Application Console tree, open the context menu of the Kaspersky Embedded Systems Security for Windows node.
2. Select the Configure Trusted Zone settings menu option.

   The Trusted Zone window opens.

3. Select the Exclusions tab.
4. Specify the objects to be skipped by Kaspersky Embedded Systems Security for Windows during scanning and protection:
   • To import preconfigured exclusions, click the Import button and, in the window that opens, select the configuration file in XML format stored on your device.

     Exclusions from the XML file will be added to the exclusion list.

   • To manually specify the conditions under which an object will be considered trusted, click the Add button and proceed to the next steps.

     The Exclusion rule parameters window opens.

5. If you clicked the Add button, in the Object will not be scanned if the following conditions are met section, specify the objects that you want to exclude from the protection / scan scope and objects that you want to exclude among detectable objects:
   • If you want to exclude an object from the protection or scan scope:
     1. Select the Object excluded from scanning check box.
        

        Adds a file, folder, drive, or script file to an exclusion.

        If the check box is selected, Kaspersky Embedded Systems Security for Windows skips the specified predefined scope, file, folder, drive or script file while running the scan using the Kaspersky Embedded Systems Security for Windows component selected in the Rule usage scope section.

        By default, the check box is cleared.

     2. Click the Edit button.

        The Object to exclude from scanning window opens.

     3. Specify the object that you want to exclude from the scan scope.

        When specifying the objects, you can use names masks (via ? and * characters) and all types of environment variables. The resolving of environment variables (replacing variables with their values) is performed by Kaspersky Embedded Systems Security for Windows when starting a task, or when applying new settings to a running task (not applicable to On-Demand Scan tasks). Kaspersky Embedded Systems Security for Windows resolves environment variables under the account used to start the task. For more information on environment variables, refer to the Microsoft Knowledge Base.

     4. Click the OK button.
     5. Select the Apply to subfolders check box, if you want to exclude all child files and folders of the specified object from the protection or scan scope.
   • If you want to specify the name of a detectable object:
     1. Select the Objects excluded from detection check box.
        

        Objects are excluded from scanning by the name or name mask of the detectable object. The list of names of detectable objects is available on the Virus Encyclopedia website.

        If this check box is selected, Kaspersky Embedded Systems Security for Windows skips specified detectable objects during scanning.

        If the check box is cleared, Kaspersky Embedded Systems Security for Windows detects all objects specified in the application by default.

        By default, the check box is cleared.

     2. Click the Edit button.

        The Objects to exclude from detection window opens.

     3. Specify the name or name mask of the detectable object according to the Virus Encyclopedia classification.
     4. Click the Add button.
     5. Click the OK button.
6. In the Exclusion usage scope block, select the check boxes next to the names of the tasks to which the exclusion should be applied.
7. Click the OK button.

The exclusion is displayed in the list on the Exclusions tab of the Trusted Zone window.