Antivirus and Firewall Exceptions Last updated June 2, 2026 · Desktop Connect

For Desktop Connect to function without interruption, antivirus and endpoint security software must be configured to allow the agent to run. Here's how to create the necessary exceptions.

Windows Antivirus Exceptions

Standard Mode: Add exceptions for the entire directory and key executables:

  • Directory: C:\\Program Files\\Prodoscore\\MyZenV2
  • Executables: MyZenV2.exe, updater.exe

Stealth Mode: Add exceptions for:

  • Directory: C:\\Program Files\\zs\\zs
  • Executables: MyZenV2s.exe, zsrvc, updater.exe

Common Antivirus Tools:

Windows Defender (Built-in):

  1. Settings > Virus & threat protection > Manage settings
  2. Under "Exclusions", click "Add or remove exclusions"
  3. Click "Add an exclusion" > Folder, and add the directories above
  4. Repeat to add individual file exclusions

Third-party Antivirus (e.g., Norton, McAfee, Kaspersky):

Each tool has different UI, but the process is similar:

  1. Open the antivirus app
  2. Go to Settings > Exclusions or Whitelist
  3. Add the MyZenV2 directory and executables
  4. Save and restart if needed

Mac Antivirus Exceptions

Standard Mode:

  • App: /Applications/MyZenV2.app

Stealth Mode:

  • App: /usr/local/zs/zs.app
  • LaunchAgent: /library/launchagents/launcher.ai.prodoscore.myzenv2.plist

Add these to your antivirus or EDR tool's exclusion list (process varies by tool).

Windows Firewall Rules

If Windows built-in firewall (Windows Defender Firewall) is active, create inbound and outbound rules:

1 Open Windows Defender Firewall > "Advanced Settings"

2 Click "Inbound Rules"

3 Click "New Rule"

4 Rule type: "Program"

5 Select "This program path": C:\\Program Files\\Prodoscore\\MyZenV2\\MyZenV2.exe (or stealth path)

6 Action: "Allow"

7 Name the rule "Allow MyZenV2 Inbound"

8 Click "Finish"

9 Repeat the process for Outbound Rules, naming it "Allow MyZenV2 Outbound"

Network Firewall / Proxy Rules

If your organization uses a network firewall or HTTP proxy, ensure it allows HTTPS traffic on port 443 to Prodoscore domains. See Networking Requirements and Domain Whitelisting for the full list of domains and IPs to whitelist.

Typical configuration:

  • Allow outbound HTTPS (port 443) to *.ag.prodoscore.com
  • For SSL inspection tools (Zscaler, etc.): exclude these domains from SSL inspection AND authentication requirements
  • For IP-based whitelisting: whitelist the static IPs of Prodoscore services (contact support for current IP list)

Endpoint Detection & Response (EDR) Tools

EDR tools like CrowdStrike, Rapid7, and Sentinel One may flag Desktop Connect as suspicious behavior. Add exceptions:

  • Whitelist the MyZenV2 process
  • Whitelist the installation directories
  • Allow network connections to *.ag.prodoscore.com

Consult your EDR tool's documentation or contact your security team to add these exceptions.

Web Security Tools (DLP, Content Filtering)

Some organizations use Data Loss Prevention (DLP) or web filtering tools. Ensure they allow traffic to Prodoscore:

  • Whitelist *.ag.prodoscore.com domains
  • Exclude from SSL inspection (if applicable)
  • Exclude from content filtering/DLP scanning
Important: If these exceptions are not in place, Desktop Connect may fail to install or stop sending data. Work with your security/IT team to add the necessary exceptions before deployment.

For help troubleshooting antivirus or firewall blocks, contact support@prodoscore.com with details of your security software and configuration.