Overview:

Symantec has changed their software to quarantines various files required to run Resource Monitor. Symantec has informed us that they feel the ability to capture screen shots is intrusive and can divulge personal information. The laws of the United States allows an organization to capture information on the computer systems that they own. It is our position that Symantec is overstepping the law.

Resource Monitor allows you to enable or disable most features within our software so you have total control. Symantec's position is to block the use of Resource Monitor and force an organization to override the blocking settings within Symantec's software. Until this mater is resolved, you need to follow the Symantec knowledge base articles highlighted below.

Please print and review the articles carefully. Symantec's software allows you to scan by several different configurations so it is important to use the correct method. Each article details the various configuration so please use only the ones that pertain to your installation of Symantec.

Resolutions:

Below are links to Symantec's knowledge base articles to make the necessary changes to override the blocking of the software and to restore quarantined files of Resource Monitor.

Quick steps from Symantec to allow the software to run:

Make sure you are using Symantec version 10.1.6.6000 or above.

Configure global security risk exclusions

1. Right-click the computer, server, or group you want to configure, and then click All Tasks > Symantec AntiVirus > Global Security Risk Exclusions.
2. In the Global Security Risk Exclusions dialog box, click either the Server tab or the Client tab.
   • If you selected a server, use the Server tab to configure exclusions that will apply to scans on the server. Use the Client tab to configure exclusions that will apply to scans on all the unassigned client computers attached to that server. Client computers are unassigned if they are not part of a client group.
   • If you selected a server group, use the Server tab to configure exclusions that will apply to scans on all the servers in the group. Use the Client tab to configure exclusions that will apply to scans on all the unassigned client computers attached to the servers in the group. Client computers are unassigned if they are not part of a client group.
   • If you selected a client computer, the Server tab is not available. Use the Client tab to configure exclusions that will apply to all scans on the computer.
   • If you selected a client group, The server tab is not available. Use the Client tab to configure exclusions that will apply to all scans on the computers in the client group.
3. Click Add.
4. In the Select Security risks dialog box, select "Spyware.PCMonitor"
5. Click OK.

Configure folder exclusions

1. Add the following folders to exclude from scans
   • C:\Program Files\SBSInc
   • C:\Documents and Settings\All Users\Application Data\Microsoft\Msapps\Rm

Please restart the workstations to accept the new Symantec settings before you try to install the software.

Articles referenced:

The link, "Configuring global security risk exclusions in Symantec AntiVirus ", reviews how to create a list of security risks that are excluded from all scans on servers and client computers. Our administrative client has been classified as a threat by Symantec as "PCMonitor". You need set this threat as excluded.

The link, "Creating exceptions to security risk scanning in Symantec AntiVirus ", reviews how to exclude files and how to restore quarantined files that might have been previously disable.

The link, "Excluding specific drives, folders, and files from Symantec AntiVirus scans "allows you to exclude the folders and files where we install our software. When you follow the directions, please have it exclude the following folders for the files in those folders. Also have it exclude the extensions of "exe", "dll","sbs", "bup" and "sec".