Norton Security reports Heur.AdvMLB in Sapien component

This forum can be browsed by the general public. Posting is limited to current SAPIEN license holders with active maintenance and does not offer a response time guarantee.
Forum rules
DO NOT POST LICENSE NUMBERS, ACTIVATION KEYS OR ANY OTHER LICENSING INFORMATION IN THIS FORUM.
Only the original author and our tech personnel can reply to a topic that is created in this forum. If you find a topic that relates to an issue you are having, please create a new topic and reference the other in your post.

Any code longer than three lines should be added as code using the 'Select Code' dropdown menu or attached as a file.
This topic is 7 years and 5 months old and has exceeded the time allowed for comments. Please begin a new topic or use the search feature to find a similar but newer topic.
User avatar
jlSDSapien
Posts: 3
Last visit: Fri Nov 25, 2022 8:37 am

Norton Security reports Heur.AdvMLB in Sapien component

Post by jlSDSapien »

Product, version and build: Sapien Powershell 2016
32 or 64 bit version of product: 64
Operating system: Windows 10
32 or 64 bit OS: 64

While upgrading, Norton Security claims to have found a heuristic virus in the following file:

C:\Program Files\SAPIEN Technologies, Inc\PrimalScript 2016\ScriptEngines\SAPIEN PowerShell V2 Host (Command line) Win32.exe

On http://www.virustotal.com, only one anti-virus program (not Symantec), found a virus.

https://www.virustotal.com/en/file/d4be ... 475267682/

Sapien: any thoughts? Norton is blocking Primal Script.
User avatar
Alexander Riedel
Posts: 8479
Last visit: Thu Mar 28, 2024 9:29 am
Answers: 19
Been upvoted: 37 times

Re: Norton Security reports Heur.AdvMLB in Sapien component

Post by Alexander Riedel »

We scan all our files continuously, so most likely a false positive.
Submit the file to Norton for verification.
Alexander Riedel
SAPIEN Technologies, Inc.
User avatar
jlSDSapien
Posts: 3
Last visit: Fri Nov 25, 2022 8:37 am

Re: Norton Security reports Heur.AdvMLB in Sapien component

Post by jlSDSapien »

Thanks, Alexander. The Symantec-Norton response was indefinite. I'll try to submit the file through another website that the tech representative suggested and will keep you "posted".
User avatar
jlSDSapien
Posts: 3
Last visit: Fri Nov 25, 2022 8:37 am

Re: Norton Security reports Heur.AdvMLB in Sapien component

Post by jlSDSapien »

Alexander,

Norton has white-listed one of the files from the last upgrade. I might need to submit the others separately. Here's their message:

Upon further analysis and investigation we have verified your submission and, as such, the detection(s) for the following file(s) will be removed from our products:

File name: sapien_powershell_v5_host__windows__win32.exe
MD5: 6335a7cb82902e33b8e0ad9b8c36cd37
SHA256: 0dbc9e7cc826701310eed0fcae3caa75a82a33bdf378e938150ddbb0255e0700
This topic is 7 years and 5 months old and has exceeded the time allowed for comments. Please begin a new topic or use the search feature to find a similar but newer topic.