Are you sure that file is innocent?  The NAV detection on it isn't reputation based and many companies have a definition for it.

 

http://www.virustotal.com/file-scan/report.html?id=998613a3f5ab614307e47758bd302d0f54623b7e66b334fca...

Beyond any doubt. It's a classic false positive. You can throw lots of uncommon 3rd-party software at a scanner like that and see blips. You have to take the results in the context of what you're scanning.

 

But that's all well beside the point.

This problem started with Norton Internet Security 2009 and I first mention it in march of 2009 but unfortunately nothing changed since then cause other users asked for the same but we still having the same issue. I perfectly understand that program has to inform user about potential security issue but the user ALWAYS should be the one who decides what he wants to do with the files he/she has. I perfectly understand that this can create a problem for inexperienced users and make system more vulnerable so should be off by default but advanced users should be given an option to turn it on if they want to. I so far yet didn't experience that problem maybe cause i didn't run full system scan yet but if it gonna annoy me as much as previous version and endp causing more serious issue then annoyance i will have no choice but start looking for different product for my system

If you are positive the file is clean, you can add it to both "Items to Exclude from Scans" and "Items to Exclude from Auto-Protect and SONAR detection" and it will not be quarantined anymore.

 

I have alerted the Response team to this binary.  They will look into why it is triggering the Trojan.Gen definition.

I only had it excluded from Auto-Protect and SONAR, but it was caught by Insight, which must have resulted from a scan even though I had Idle Time Scans disabled and never initiated a manual scan. I've come to find out that disabling Idle Time Scans only disables the Idle Time "Full Scan."  "Quick Scans" still happen, which must account for the discovery of dormant programs around my system. Very subtle stuff here, wouldn't you agree?

 

So to avoid this situation, you have to be able to anticipate what files NAV is going to have a problem with, and then add them into two different exclusion areas manually?  That's far from optimal at best, impossible at worst. You really should allow for one-click automatic exclusions the first time something is flagged. And it has to always be brought to the user's attention, which isn't the case when a user isn't in front of the PC and a notice pops up for 5 seconds and disappears along with the file. How many people are going to scrutinize logs?  I think keeping the notice on screen until the user acts upon it is needed.

  I think if you want to save your program ,  first you can turn off NAV, then turn you program into ZIP files and encrypt it .

      good luck

If this is an FP, it is a virus definition FP, which is different than a reputation or behavioral FP and much more rare.  As I said before, the Response team will be looking into why this file is detected as Trojan.Gen.

 

Reputation and behavioral based convictions do give you the option to exclude from future detection with a checkbox when you restore from quarantine.

 

Also, there is an option in settings to turn off "Remove Risks if I am Away."