I've been using a program at work called sha256deep.exe. It's part of the MD5Deep project over at Sourceforge and is designed to generate sha256 hashes of files. Well when I tried to use it at home, Norton's SONAR smacked it down really quicky as being a high risk. This despite the fact that when looking at it's File insight originally, the file showed as good and still does so once it's removed from quaranteen.
So my question is how likely are SONAR false positives to occur?