- This topic has 2 replies, 2 voices, and was last updated 9 years, 8 months ago by Anonymous.
January 22, 2014 at 9:50 am #9533AnonymousInactive
I have been using JavaRa for a couple of years now, and tried to use it as a test case for inclusion in my blog to help people having problems with Java on http://www.Pogo.com. The problem being I can’t really include a link to the file if my antivirus is detecting “suspicious activity” when i click on the executable within the zipfile of the stable version. It says it detects SONAR.heuristic.112 trojan activity, whatever that means. The actual zipfile as a whole scans clean. I have submitted it to Symantec as a possible false positive, and hopefully will have a response soon, but I thought you all should know right away in case something was up with the file. I’ve had very good luck with using it in the past to get Java back and working (although often I’ve had to install an old Java 6 version and disable updating to get it to function at Pogo, anybody has advice on this, let me know) so I hope it’s just a false positive and nothing more. Thanks 🙂
Norton Security Suite, ver 126.96.36.199
Win7, using WinRAR and clicking on executable within. JavaRa program window pops up, and simultaneously Norton detection window pops up.January 22, 2014 at 10:31 am #9535Shane GowlandKeymaster
False positives with JavaRa are a pretty common problem, because of the aggressive way it removes thousands of registry keys and files.
I’ll submit a report to Norton too. Nothing else we can really do until someone there gets around to whitelisting it.January 22, 2014 at 6:39 pm #9536AnonymousInactive
I received an email from Symantec, they are removing the file from detections and suggest that developers join their “whitelisting” program, whatever that is. Herein is included the text of the email:
Sent: 1/21/2014 11:58:02 P.M. Mountain Standard Time
Subj: [No Reply] False Positive Submission 
In relation to submission .
Upon further analysis and investigation we have verified your submission and as such this detection will be removed from our products.
The updated detection will be distributed in the next set of virus definitions, available via LiveUpdate or from our website at http://securityresponse.symantec.com/avcenter/defs.download.html
Decisions made by Symantec are subject to change if alterations to the Software are made over time or as classification criteria and/or the policy employed by Symantec changes over time to address the evolving landscape.
If you are a software vendor, why not take part in our whitelisting program?
To participate in this program, please complete the following form: https://submit.symantec.com/whitelist
Symantec Security Response
Hope I’ve done my good deed for the day in getting JavaRa removed from their detections or whatever LOL….
Thanks for all you do!