XMON - Launching and not detecting infections? Hi, We have a customer running EE with XMON and there server is scheduled to reboot every wednesday early morning. Until the server is logged onto at the start of the day they appear to be having various infected files get past XMON and be picked up by EMON on the local desktops, is this standard behaviour? Does NOD require that the server be logged into once before kicking in properly? Regards Greg.