dienjd
25th March 2007 16:56 UTC

Symantec Quarantine of NSIS files regarding VirusBurst
Symantec/Norton AntiVirus programs are quarantining some NSIS EXEs before they are even executed. The alleged security risk is VirusBurst:
http://www.symantec.com/security_res...204-99&tabid=2

I've contacted Symantec about this. Just posting to let others know in case their users report this.

beaglelander
26th March 2007 16:13 UTC

Yep, I'm getting the same problem. I can't wait for the backlash of users saying I've sending virus-infected setup files!!!

lethean
26th March 2007 18:19 UTC

I've found that NAV is picking up on any file compressed using lzma (not lzma_solid). In fact, it quarantines the lzma stub as well on my system.

No doubt another "shoot the messenger" false positive.

dienjd
26th March 2007 18:29 UTC

Try updating your defs throughout the day to see if this is resolved. I'm told it will be.

beaglelander
27th March 2007 15:42 UTC

Just tested and seems to be okay now. dienjd - can you confirm that at your end as well?

dienjd
27th March 2007 16:11 UTC

Yes, updated definitions they released yesterday seemed to fix the problem.