OS: XP Sp3
NIS: 2010 version 18.7.1.3
SONAR Settings: Advanced (automatic) / Remove Risks Automatically (off)
I'm having a problem with SONAR that I never had before and would like some clarification on a few things.
I wrote a small app using Visual Basic 6 that sends a control code to TOR (running on localhost) via MS Winsock to switch identities every 3 minutes. I've had this program running for a while but after a LiveUpdate session recently, NIS decided it was "behaving suspiciously" and deleted it.
So I have a two-part dilemma:
1. How does SONAR determine a threat and how can I stop it from deleting other programs I write?
2. During the "restore" process, I accidentally clicked "always exclude this type of threat", how do I undo that?
In regards to #2, the dialog is unclear since NIS never actually tells you what the threat is, only that an application is misbehaving but not how it is misbehaving. I assumed that this option would list the application in the exclusion list but the list is empty. I don't want to ignore a threat for all applications since one might actually be a legitimate threat.
Thanks