I ran into the problem of Norton treating Chirp as malware in Feb of 2016. I was using the current program Norton Internet Security on some Windows 7 machines (32 and 64 bit systems). I was able to over-ride the objections of Norton and install the program.

At that time, when Norton had problems with a program, it was possible to look at the "details" of the problem - which in this case were partly because the program (or version) was not seen on very many systems, making is suspicious.

Within the dialog process of the Norton program, it was possible to report that it might be a false positive. I did this and got the all-clear from Norton a few days later. My recollection is hazy, but I think that I had to provide a download link to the program in question (Chirp installer).

Below is the response that I got from Symantec after evaluating the version of CHIRP. Note that the reference to pro-active whitelisting brings up a page saying that advance whitelisting is no longer an option, with a link to a report false positives page.

" In relation to submission [3917013].

Upon further analysis and investigation we have verified your submission and as such this detection will be removed from our products.

The updated detection will be distributed in the next set of virus definitions, available via LiveUpdate or from our website at http://securityresponse.symantec.com/avcenter/defs.download.html

Please note that whitelisting can take up to 24 hours to take effect.

Decisions made by Symantec are subject to change if alterations to the Software are made over time or as classification criteria and/or the policy employed by Symantec changes over time to address the evolving landscape.

If you are a software vendor and would like to upload your software for proactive whitelisting, please complete the following form: https://submit.symantec.com/whitelist

For more information on best practices to reduce false positives: http://www.symantec.com/content/en/us/enterprise/white_papers/b-to_increase_... "