Paul, I've seen this happen and it is extremely frustrating.
Your pain is shared by others - there have been several discussions about this on the Inno Setup newsgroup. <snipped> Symantec is marking all non-recognized EXE's (from any compiler/setup utility) as suspicious http://news.jrsoftware.org/read/article.php?id=86587&group=jrsoftware.innosetup#86587 Recently, I was surprised to find out that Symantec anti-virus engine has started marking all InnoSetup generated installation programs as "Suspicious.Insight". For more info see comments under this VirusTotal blog entry: http://blog.hispasec.com/virustotal/48 Symantec responds to false positive report with the following words: "Suspicious.Insight is detection for files that have not yet developed a strong reputation among Symantec's community of users and is not based on observed malicious or nefarious activity." "The program will remain designated as unproven. Categorization on VirusTotal will go away once the file has been released widely to the public "[where 'public' means Symantec users]. If you carry this problem to Norton/Symantec, they advise you to exclude the program/folder from their scan. </snipped> One way to block this behavior is to disable Norton's "heuristic mode" (I'm not sure what the correct name for this feature is). You can also "prove" your application is safe by submitting it to one of the free online virus scanning services that test submitted files against 40 or more commercial virus scanners. Here is one such service (I would appreciate hearing about other such services as well). http://virusscan.jotti.org/ Two other ideas (untested on my part): 1. Place your setup in a password protected zip file. Download the zip file to a non-temp folder and uncompress from there. 2. Sign your setup.exe with an Authenticode code certificate. Inno Setup has support for 3rd party code signing utilities. Worse case, you may need to distribute your software via a physical CD, although I'm not sure if Norton will (still) react to setup.exe's run from a local drive. Malcolm _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/[email protected] ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
