Recommended exclusions from the scan scope in Kaspersky Security 10.x for Windows Server

Latest update: August 17, 2020 ID: 5927
 
 
 
 

This article concerns:

  • Kaspersky Security 10.1.2 for Windows Server
  • Kaspersky Security 10.1.1 for Windows Server
  • Kaspersky Security 10.1.0 for Windows Server
  • Kaspersky Security 10.0.0 for Windows Server
 
 
 
 

Performance of certain server software may be unstable when accessing files which are intercepted by Kaspersky Security for Windows Server. Among such applications are applications for servers functioning as domain controllers, IIS server, etc.

For correct functioning of these applications, exclude their folders from the scan scope. For instructions, see this article. The table below contains the folders that we recommend to exclude from the scan scope:

Function/server roleExclusionComment
Domain controller
%systemroot%\SYSVOL\
%systemroot%\NTDS\
Including nested files and folders.*
DNS server
%systemroot%\system32\dns\
DHCP server
%systemroot%\system32\dhcp\
WINS server
%systemroot%\system32\wins\
IIS
%systemroot%\system32\inetsrv\
%systemroot%\IIS Temporary Compressed Files\ (for IIS 6.0)
<Disk>:\inetpub\temp\IIS Temporary Compressed Files\ (for IIS 7.0)
SQL server
%Program Files%\Microsoft SQL Server\
WSUS
<Disk>:\MSSQL$WSUS\
<Disk>:\ WSUS\
Sharepoint
<Disk>:\Program Files\SharePoint Portal Server\
<Disk>:\Program Files\Common Files\Microsoft Shared\Web Storage System\
Microsoft Operations Manager 2005 Server
%Program Files%\Microsoft Operations Manager 2005\
%allusersprofile%\Application Data\Microsoft\Microsoft Operations Manager\
Hyper - V
<Disk>:\ProgramData\Microsoft\Windows\Hyper-V\
<Disk>:\Users\Public\Documents\Hyper-V\
Virtual machine configuration folder
Virtual machine hard drives folder

By default, Kaspersky Security for Windows Server scans folders added to trusted.

For more information, see Microsoft support site.

 
 
 
 
 
Did you find what you were searching for?
Thank you for your feedback!