Norton is asuming my own exe files are some kind of virus so automatically quarantined them

Norton Security | Norton Internet Security
1

 

I am a programmer... Norton is asuming my own exe files are some kind of virus so automatically quarantined them. I looked but could not find where to exclude them. As soon as my licenses runs out I am switching to something that is usable and a company that cares about it customers.

 

I hate how it runs in the middle of the day.. no controls to tell it when.. I have had it with this product.. use it for years and years put not any more...

 

 

Basically I'm finding NIS to not be very user-friendly and the gui and layout is tedious to navigate.  If I could have complete control of what happens to the files I could overlook some of these issues.  Is there a way to do this?

2

 

I am a programmer... Norton is asuming my own exe files are some kind of virus so automatically quarantined them. I looked but could not find where to exclude them. As soon as my licenses runs out I am switching to something that is usable and a company that cares about it customers.

 

I hate how it runs in the middle of the day.. no controls to tell it when.. I have had it with this product.. use it for years and years put not any more...

 

 

Basically I'm finding NIS to not be very user-friendly and the gui and layout is tedious to navigate.  If I could have complete control of what happens to the files I could overlook some of these issues.  Is there a way to do this?

3

Jeanne -

 

As a developer of custom software also, I understand your problems and have brought this to the attentions of Symantec awhile ago.  The scan exclusion settings listed above should help unless it is a SONAR flagged issue.  Is there anyway to add a Level 3 digital signature to your files?  This will automatically exclude the files from scanning by changing one setting. (Settings > Scan Performance Profiles > change to High Trust).

 

I understand and if there is anything else we can help with or you have any suggestions, please post there.

4

Yes I saw this but did I not add my directory where my files are located to both the Scan exclusions and the auto protect exclusions.. I did and it is all ok now... blood pressure is back to normal too.. Thanks a Bunch

 

5
Jeanne wrote:

 

I am a programmer... Norton is asuming my own exe files are some kind of virus so automatically quarantined them. I looked but could not find where to exclude them. As soon as my licenses runs out I am switching to something that is usable and a company that cares about it customers.

 

I hate how it runs in the middle of the day.. no controls to tell it when.. I have had it with this product.. use it for years and years put not any more...

 

 

Basically I'm finding NIS to not be very user-friendly and the gui and layout is tedious to navigate.  If I could have complete control of what happens to the files I could overlook some of these issues.  Is there a way to do this?

Jeanne,

 

Are you and seplachaptenna the same person?

 

If so, it is confusing to know which problem you are trying to solve.  You can use the same user name to start a variety of different threads.

 

You have been given some good suggestions for modifying the program processes.  As a programmer, you should be aware that any good security program cannot give away too much in terms of inspection without losing the ability to do what you put it there for: to protect you.  If your software is simulating malware behavior and triggering heuristic detection, you will need to know this, and the sooner the better.  You certainly would not want to finish an application, send it out to be user and have hundreds of user complaints because your software triggers their own security software.

 

What I would suggest is that you disconnect from the internet and disable AV during your coding (even better, use a machine dedicated to coding) and after your application is in its own beta stage, re-enable your AV and find out how the app works in the real world.

6

"Jeanne, Are you and seplachaptenna the same person?"

 

No not the same person.

 

Jeanne

7

Glad that worked for you.  As these AV scanner get better and more sophisticated, it gets harder to do development work on a normal system!  Oh well, just something else to work out.

 

Post back anytime if you need anything else.

8

Mij wrote "If your software is simulating malware behavior and triggering heuristic detection, you will need to know this, and the sooner the better. "

 

Mij,

 

I am not intentionally simulating any malware behavior so what might be causing the trigger? I have a lot of different applications and only a few are picked on by Nortons.

 

Jeanne

9
Jeanne wrote:
Mij wrote "If your software is simulating malware behavior and triggering heuristic detection, you will need to know this, and the sooner the better. "

 

Mij,

 

I am not intentionally simulating any malware behavior so what might be causing the trigger? I have a lot of different applications and only a few are picked on by Nortons.

 

Jeanne

Jeanne,

 

I wasn't assuming any intent on your part to simulating malware (or even writing it).  :smileytongue:

 

But one of two things must apply in order for NIS to grab your code:

1.  the code when run is mimicking the behavior of malware (perhaps by accessing the registry, perhaps by keylogging, perhaps by something else); or

2.  the code inadvertantly contains a sequence that replicates the signature of actual malware.

 

The point is, if Norton "thinks" this is malware, odds are some other security software will come to the same conclusion.  And even if other products don't identify your software as malevolent, anyone running your program on a Norton-secured machine will have your product intercepted, either quarantined or deleted.  This won't be good for you or your client.

 

It's best that you find out now what in your software is causing this to happen and find a solution for it.  Hopefully, one of the engineers that visits here will give you some direction about what to do next.

 

Good luck.

10

Actually, I’ve seen Norton flag my files due to no signature on it; the other actions were all MS API calls, so …?? :smileytongue:

11

Jeanne,

 

My programming days only consist of HPBASIC and HPGL and I don't think Al Gore had invented the internet back then <g>

 

Now I'm a user and trying to do support work here so I must say that I think that mijcar is very correct that now is a good time to know that a leading security program is flagging your innocent files as malware. Knowing that now and working out either what you should best do to avoid this happening after you have gone commercial must be better than having to race to fix it later on a product already installed on all sorts of different systems.

 

If you do an Advanced Search here in the Forums here on ["Context Menu"] you will see a fascinating instance where a visible and functional change in Windows occured after upgrading a version of a Norton product was blamed on Norton by Microsoft (naturally <g>) when it turned out that the trigger was in third party programs that had not followed a revised Microsoft protocol -- that Microsoft itself had ignored for some time and then starting observing without telling anyone! Norton was completely innocent on this one unless you blame them for following the new Microsoft protocol!

 

And more currently with WIN 7 RC there is a similar situation which may be being triggered by something in one of the Norton public betas. I'm sure that Norton are delighted to find that out now and not when they (and WIN 7) have gone public.

 

Sorry to ramble but I was involved personally in the discovery of the first event as an innocent user. <s>