In the thread Is it ever appropriate to Opt not to use DMON? I read the following: I'm using a security appliance that uses RBL, content filters and two different AV engines to scan all messages. These are then forwarded to the Exchange server, where they are again scanned by NOD32's XMON. Outlook users are logged in as non-privileged users on a Terminal Server that's also running NOD32. I doubt if in this scenario enabling EMON on the Terminal Server has an advantage. The first reason is I read about issues between EMON and Outlook 2003 and the second that there already multiple layers active. Getting dozens of programs working together on a Terminal Server is already stretching the limits and I don't want to introduce unnecesarry components that add another level to an already complex infrastructure.