Hello. I have been trying to cryptomine on my computer. I have a program that will automatically download and choose the right miner to run. I am aware of the potential risks involved with cryptomining.
I have whitelisted the folder that the miners are downloaded to, as well as disabled Intrusion Prevention and allowed any miners that were blocked through the program specific firewall. When starting XMRig (one of the miners), however, Norton shows up with this notification:
https://snipboard.io/90XrSM.jpg
After waiting several minutes, it will eventually show:
https://snipboard.io/PC0ulr.jpg
When clicking on "View Details", this is all the information I am shown:
And this is what I see if I click "Options" in the file insight window: https://snipboard.io/FVmiTz.jpg
I have excluded this "program" several times by clicking the "Exclude this program" button, however Norton will just ignore my decision and flag it the next time I try to run it. Is there any way I can make Norton stop doing this?
FWIW ~ if you have specific need and fully understand the potential risk Signature Exclusions reduce your protection and should be used only if you have a specific need and fully understand the potential risk of excluding known threats from Norton scans.
Exclude files with low-risk signatures from Norton scans
Norton Signature Exclusions let you select specific known security risks to exclude from Norton scans. For example, if a legitimate app, like a free game, relies on another program, like adware, to function, you might decide to keep the adware, even if it exposes you to risk. You might also decide not to be notified about the program in future scans.
Exclusions reduce your protection and should be used only if you have a specific need and fully understand the potential risk of excluding known threats from Norton scans.
[...]
as far as I know:
Symantec threat write-up pages hosted on symantec.com domain, that we were used to from the past, have been removed after the Broadcom's acquisition of Symantec enterprise business. There is no alternative content at this time.
as far as I know....only threat details available from Broadcom are for attack signatures (essentially IPS detections).
Since there are no threat write-up pages anymore, all the threat info pages have been redirected to the generic Security Center Emerging Threats page.
You say you excluded the folder where you downloaded the miners. Do you then have to install the miners from there? If so, you need to exclude the miner's .exe files from where they were installed. ie Program Files, Program Files (x86)
Be sure you are excluding the files from Both items in the image below.
Signature Exclusions reduce your protection and should be used only if you have a specific need and fully understand the potential risk of excluding known threats from Norton scans.
