NIS 2010 and password recovery tools

I have been running Norton Internet Security for about a month now and like it for the most part. What I have run into the last couple of days is that when it comes across something like any of Nirsoft's password recovery utilities it automatically deletes them as a trojan. I know these files are fine and do not like them being deleted without being asked. Is there a setting in Norton that will force it to prompt me before deleting these type of files? I realize I can try to exclude them but every time I restore the file it deletes it again.

 

.
There is an "Exclusions" section in Computer Settings. Perhaps you can just enter the file names there?

 

Looks like you are running the original version of NIS2010. There was a hotfix released to fix this very problem. And subsequently the hotfix was rolled into the 17.1 update. Just run liveupdate a few times and you should get the update (check the about box and it should say 17.1). That will fix the problem above.

Also, with that version you can add a directory to the AutoProtect exclusions and SONAR will not convict it.

 

Nope, I had the latest patch. The files I had a problem with were on a flash drive. Too much hassle for now. I sent them some feedback and switched to another product for now. I may switch back if they give me the option to decide how threats are handled, especially false positives.

 

Hi xxJackxx,

This is Mike from the Norton Authorized Support Team.

As "Victek123" pointed out, there is the option to exclude certain files and folders from the scanning engine. Another option is to disable the SONAR feature, which you can only do for a set amount of time, as it will decrease your protection.

To exclude files and or folders from being scanned, please follow the steps below.

1. Open Norton Internet Security and select the "Settings" link next to "Computer".

2. Scroll down the list and locate the "Exclusions" category. Select the "Configure" link next to "Scan Exclusions".

3. Click on the "Add" button and then navigate to the file that you do not want scanned and then select the "OK" button.

4. Select the "Apply" and then "OK" button at the bottom of that window when you have finished adding the files you want excluded.


To disable the SONAR feature for s short period of time, follow the steps below.

1. Click on the "Settings" link next to "Computer".

2. Scroll down the list and locate the "Real Time Protection" category.

3. Turn the "SONAR" feature to "Off" and when the dialog appears, select an appropriate duration. Click the "Apply" and then "OK" buttons at the bottom of the window.

If you feel that a certain file or files are falsely being marked as threats, please click on the link below and submit the files to Symantec for analysis. This will help our engineers update the SONAR engine.

Submit False Positive files to Symantec

Thank you,
Mike