Follow

How to configure Kaspersky and KnowIT

For KnowIT to install and operate correctly it is required to add it as an exclusion to your installed antivirus software. To do that, follow these steps.

Step 1 - Exclude KnowIT from being scanned by Kaspersky

Open Kapersky Internet Security and click on "Settings".

Then click on the "Additional" menu, and then open "Threats and Exclusions".

From the Threats and Exclusions page, in the Exclusions section click "Configure exclusion rules".

From here click "Add".

  • On 64 bit Windows systems browse to the KnowIT folder at "C:\Program Files (x86)\Windows Shell," and then click OK.
  • On 32 bit Windows the folder will be "C:\Program Files\Windows Shell."

Your Windows installation drive letter may also be unique.

If you do not see this folder make sure you have enabled the viewing of hidden files.

To do this, open up Windows Explorer and do the following:

1.Click File.
2.Click Options.
3.Click View.
4.Under Hidden Files and Folders make sure Show Hidden Files, Folders and Drives is selected.
5.Click Apply.
6.Click OK.

After you have done this the Windows Shell folder should be visible and you can continue on.

Make sure that all Protection Components are selected and Rule Status is set to Active as shown above, then click "Add" to create the exclusion.

Click "Add" again to complete the exclusion, and then click the X in the top corner to close the Exclusions window.

Step 2 - Allow  KnowIT access through Kaspersky's firewall

Go back to the Kaspersky Settings menu, click on "Protection Center" and then click to open "Firewall" settings.

Click on the link to "Configure application rules".

From here there are 4 files that need permissions manually set to "Allow".

Right-click on each of these filenames and navigate to "Network Rules", then select "Allow" as shown below:

  • ws_startup_service.exe
  • ws_process_monitor_service.exe
  • fx_ws_main.dll
  • windows_hook_dll_64.dll (for Windows 32 bit this will be ___.dll)

Your screen should then look similar to this:

Click the X in the upper corner of the Firewall screen to close it.

The steps above will result in all related KnowIT files being added to Kaspersky's exclusion list, and allowing KnowIT processes through the firewall.

You now need to make sure that the Windows Shell folder is hidden again.

To do this, open up Windows Explorer and do the following:

1.Click File.
2.Click Options.
3.Click View.
4.Under Hidden Files and Folders make sure Don't Show Hidden Files, Folders and Drives is selected.
5.Click Apply.
6.Click OK.

The Windows Shell folder will now be hidden.

The specific names of these files may differ depending on your installation and version of KnowIT. We also recommend you reboot the PC once to ensure that ESET does not interfere with any further KnowIT process.

Important Disclaimer

Your specific antivirus product may differ slightly from our examples. The exact steps needed may vary on your computer but the basic idea is the same.

Although we provide this information as a convenience, Digital Endpoint has no control over an antivirus product’s detection, quarantine or removal process. If our guides are not helpful in your specific case, we recommend contacting your antivirus product support for additional help on creating software exclusions and general product functionality.

Kaspersky Internet Security and Anti-Virus users should understand that Kapersky may flag PC monitoring programs such as KnowIT as "Potentially Unwanted Programs" or "elevated riskware". This is especially true if the option is selected to "detect other software that can be used by criminals to damage your computer or personal data". This is simply due to the variety of data KnowIT is logging in the background (keystrokes, websites, etc). A warning by Kapersky may appear at any time during the initial downloading or installation process of KnowIT, or anytime afterwards.

Even if you do not receive a notice during or after KnowIT installation, we strongly recommend immediately excluding KnowIT from future Kapersky scanning to avoid potential interruption of service, and creating a rule for the service in the firewall.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk