I know these type of things are always jarring. Below is my standard reply on the subject for completeness, but please read on.
We have no control over your script, we cannot access your computer and we cannot control what Antivirus vendors enter in their databases.
Very often these are false positives. We scan all our files and computers continuously to avoid any potential of malware being spread.
Some of the anti-virus scanners make the byte sequences they scan for too short or take them from parts of the malware that are not necessarily the actual payload,
which can lead to false positives. Nobody is perfect.
However, we have no control over what happens on your computer. We cannot nor do we want to access your files. The only way for YOU to be sure is to submit the file flagged as infected to YOUR antivirus vendor. Each antivirus vendor generally has a way to submit a file for verification. If it turns out that the file is indeed not infected, this will also allow the vendor to adjust their scanners and the underlying data.
So if you get an alert from your virus scanner, always take it seriously and submit the file to your anti-virus vendor at once. Do not wait. Do not, under any circumstances, send it to us.
Having said all that, in no step during the packaging process do we use a file name ending in '.tmp'. If I were in your shoes I would run a complete system scan, extract the flagged file from quarantine and upload it to
VirusTotal.com and see what that says. Maybe, with the utmost caution, open the file in a binary editor to see what it contains.
You only sent the .psf file, so I cannot say what build settings you applied. So uploading the .psbuild file would be helpful.
I did apply the standard settings (Windows PowerShell, Windows Forms Engine) and Form1.exe was built without any alert.
Please do let us know what you find out on your side.
We have no control over your script, we cannot access your computer and we cannot control what Antivirus vendors enter in their databases.
Very often these are false positives. We scan all our files and computers continuously to avoid any potential of malware being spread.
Some of the anti-virus scanners make the byte sequences they scan for too short or take them from parts of the malware that are not necessarily the actual payload,
which can lead to false positives. Nobody is perfect.
However, we have no control over what happens on your computer. We cannot nor do we want to access your files. The only way for YOU to be sure is to submit the file flagged as infected to YOUR antivirus vendor. Each antivirus vendor generally has a way to submit a file for verification. If it turns out that the file is indeed not infected, this will also allow the vendor to adjust their scanners and the underlying data.
So if you get an alert from your virus scanner, always take it seriously and submit the file to your anti-virus vendor at once. Do not wait. Do not, under any circumstances, send it to us.
Having said all that, in no step during the packaging process do we use a file name ending in '.tmp'. If I were in your shoes I would run a complete system scan, extract the flagged file from quarantine and upload it to
VirusTotal.com and see what that says. Maybe, with the utmost caution, open the file in a binary editor to see what it contains.
You only sent the .psf file, so I cannot say what build settings you applied. So uploading the .psbuild file would be helpful.
I did apply the standard settings (Windows PowerShell, Windows Forms Engine) and Form1.exe was built without any alert.
Please do let us know what you find out on your side.
Statistics: Posted by Alexander Riedel — Thu Mar 21, 2024 9:43 am