There is a known problem between Symantec Endpoint Protection 11.0 with RU5 and Intuit Quickbooks that is running over the network. There are articles both on Symantec's and Intuit's websites on this, however, there is no solution, just a workaround, which is not very flexible and does not work too well.
The problem is more applicable and apparent when you upgrade to RU5, it is less likely to arise with RU4 or earlier. Please see the links below from both vendors.
If you have Intuit Quickbooks installed, with the database running on a server that has SEP installed and you access the database from another workstation using your Quickbooks installation, the AV running on the server will try to scan the Quickbooks file and thus make it not available for any other program, including the Quickbooks itself.
Links from the vendors:
Intuit:
http://support.quickbooks.intuit.com/support/pages/knowledgebasearticle/8773d9d4
Symantec
http://service1.symantec.com/support/ent-security.nsf/0/6cc9274310e110968825763b0067ee3f?OpenDocument
I have created centralized and local exceptions, not to scan quickbooks dartabases and related files (.qbw, .qbb, .tlw, etc). I have also created rules to exclude the .exe applications within Quickbooks problems. However, I still have the problem. The only two things that work are
a. disable auto-protect on the server (with that I also have to change the overall olicy of enabling auto-protect back after x amount of minutes)
b. Open the Quickbooks file on the server itself in a multi-user mode, allowing other wuickbooks user access it, since Av auto-protect is not holding the file anymore).
Obviosely, neither one of those workarounds is a real solution. Any other suggestions?
Any help would be appriciated.
Thanks,
- znerses