Scan Exclusions Problem

NIS 2009 just informed me that it removed "infected" files from "\\computer name\share". Well, the file is NOT a problem and is in the Exclude list in NIS 2009 on THAT computer. NIS should NOT be scanning other computers on my local network, the NIS install on the other computer should handle the other computer. Also, the Exclude list will NOT let me set an exclusion using UNC locations, so there's no way for me to block this. Scanning over the network is an extremely slow process which slows everything down.

 

Another problem with setting exclusions. what will be accepted is incosistant between "Scan Inclusions" and "Auto-Protect Exclusions". "Scan Exclusions" will allow entries such as "%userprofile%\Documents"; however, "Auto-Protect Exclusions" says that this is an invalid path. It is NOT an invalid path if the environment variable is decoded. Also, it is MORE important to be able to use this under "Auto-Protect Exclusions" than it is under "Scan Exclusions", so if it was going to be inconsistant, it would be better if the problem was the other way around. For example, I want to exclude the %userprofile%\Documents\My TiVo Recordings folder for each user. It is ONLY a problem when the user is logged on. The video files in this folder are large and take a long time to scan. As the TiVo application opens, it scans each of the files, triggering NIS to scan the files. Since the applications scans the files in the user's profile, I only need to block this folder for the currently logged on user. This is a function of the Auto-Protect, it's not needed in Scan Exclusions; although it's OK to have it there also.

>>You can exclude network drives from being scanned by following the instructions in this post.<

 

This will work if the share is mapped to a network drive and the share is NEVER accessed using Network Neighborhood. This is NOT sufficient. There are some things, such as Offline Files, that always use the UNC share. I have the %windir%\CSC folder excluded, but NIS is still scanning the files on the other end when the Offline Files applet synchronizes.

 

Symantec is aware that this a problem. The corporate version has a check box to allow the user to tell it to not scan across the network.

Message Edited by comprev on 04-06-2009 07:57 AM

NIS 2009 just informed me that it removed "infected" files from "\\computer name\share". Well, the file is NOT a problem and is in the Exclude list in NIS 2009 on THAT computer. NIS should NOT be scanning other computers on my local network, the NIS install on the other computer should handle the other computer. Also, the Exclude list will NOT let me set an exclusion using UNC locations, so there's no way for me to block this. Scanning over the network is an extremely slow process which slows everything down.

 

Another problem with setting exclusions. what will be accepted is incosistant between "Scan Inclusions" and "Auto-Protect Exclusions". "Scan Exclusions" will allow entries such as "%userprofile%\Documents"; however, "Auto-Protect Exclusions" says that this is an invalid path. It is NOT an invalid path if the environment variable is decoded. Also, it is MORE important to be able to use this under "Auto-Protect Exclusions" than it is under "Scan Exclusions", so if it was going to be inconsistant, it would be better if the problem was the other way around. For example, I want to exclude the %userprofile%\Documents\My TiVo Recordings folder for each user. It is ONLY a problem when the user is logged on. The video files in this folder are large and take a long time to scan. As the TiVo application opens, it scans each of the files, triggering NIS to scan the files. Since the applications scans the files in the user's profile, I only need to block this folder for the currently logged on user. This is a function of the Auto-Protect, it's not needed in Scan Exclusions; although it's OK to have it there also.