Please let me know if I am in the wrong place. This is my first post to this forum.

I am a software developer and have recently been tasked with the maintenance of some legacy code original written in the late 1990's. Two of the executables run as Windows services and are being flagged and quarantined with a SONAR Risk Level of High and Category of Application Heuristic.I am not sure of the best approach for preventing this from occurring in customer locations.

How do I know what functionally in the code looks suspicious to SONAR? Is filing a False Positive Report appropriate? Assuming there is something in the applications that can be refined to be less virus-like, code changes take some time. What is the best method to prevent being quarantined in the short term? Can I create an exception item as part of an install? Will signing the applications with something like Verisign help?

This is a big issue for us. We cannot have our customers thinking that our code might be harmful to their system. 

Thanks - Tony