Currently running SEP 12.1 RU4.
On a few PCs, we are using LogMeIn for remote access.
On those PCs (all of which are XP), the Windows Application Event Viewer is filling up every hour (each scan) with more scan results.
The results point to the logs in C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.4013.4013.105\Data\Logs\AV
Each hour the scan picks up on all of the logs, including the one from the previous hour, so PCs that have had this scan running hourly for months have hundreds of logs, each one being placed into Event Viewer on the hour.
In SEPM we have set "When a commercial remote control application is detected:" to Ignore.
This is an example from Event Viewer:
Scan type: Tamper Protection Scan
Event: Tamper Protection Detection
Security risk detected: C:\PROGRAM FILES\LOGMEIN\X86\LOGMEIN.EXE
File: C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.4013.4013.105\Data\Logs\AV\06062013.Log
Location: C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.4013.4013.105\Data\Logs\AV
Computer: *
User: SYSTEM
Action taken: Leave Alone
Date found: Wednesday, April 16, 2014 2:15:38 PM
Is there any way to prevent the Tamper Protection Scans from picking up on LogMeIn completely?
Thank you for reading.