SoundPackager setup file (1.31) identified as WS.Reputation.1 virus by Symantec

Symantec Endpoint Protection claims file is a security risk

from Stardock Forums

Here is the link to the file I dl'd from stardock (long url)

https://stardock.cachefly.net/Protected/expiretime=1474121019;badurl=aHR0cDovL3NkYzEuc3RhcmRvY2suY29tL2N1c3RvbWVycm9ycy80MDQuaHRt/c06854fff48a08d1fd30be071a7ede06/setup/SoundPackager_1.31_setup_sd.exe

 

Symantec claims the file is "untrustworthy," has been "seen by thousands of Symantec users," and they've "known about it for more than 1 year."

Please advise immediately.

24,961 views 7 replies
Reply #1 from Stardock Forums Top

False positive.  No worries.

Reply #2 from Stardock Forums Top

Unfortunately false positives are something AV companies suffer with.  I leave it to you to wonder what incentive there may be for them not to work on this problem...

I just did a VirusTotal.com scan of it and it comes back clean : https://www.virustotal.com/en/file/d75d70d20c2daebfe7eae586008aae619848b3061e047ca07e23e9cd92d32d65/analysis/1473950365/

Start11 - Customize the Start Menu and Taskbar in Windows 10/11.
Reply #3 from JoeUser Forums Top


Please advise immediately.
End of quote

Can do.

Purchase a better AV Program.

Reply #4 from WinCustomize Forums Top

Quoting Jafo, reply 3


Please advise immediately.



Can do.

Purchase a better AV Program.

End of Jafo's quote
I LOLed so hard I am now wiping up coffee from my monitor. :thumbsup:

 

Yes False Positive, clean file according to Avast and Mcfee

Reply #5 from WinCustomize Forums Top

As Jafo said, get another AV program. Further advice: Run, don't walk!

Symantec is absolute crap these days. WS.Reputation1 as had developers in arms for YEARS, since it is the equivalent of 'guilty until proven innocent'.

It does NOT mean that the AV heuristics have found something suspicious (as in anything!) in that file. No, not at all!

It simply means that users of that particular AV solution have not seen/run that version of the software enough times for it to be considered safe. So, instead of letting it go with a sensible warning (e.g.; 'we do not know what this application does, but we couldn't detect anything suspicious either, up to you to run it or not') it throws up a scary warning as if the file was actually infected with something. And then it proceeds to quarantine and delete it... based on NOTHING but that version of the software being brand new!

Sigh.

Reply #6 from Stardock Forums Top

Quoting JcRabbit, reply 5

As Jafo said, get another AV program. Further advice: Run, don't walk!

Symantec is absolute crap these days. WS.Reputation1 as had developers in arms for YEARS, since it is the equivalent of 'guilty until proven innocent'.

It does NOT mean that the AV heuristics have found something suspicious (as in anything!) in that file. No, not at all!

It simply means that users of that particular AV solution have not seen/run that version of the software enough times for it to be considered safe. So, instead of letting it go with a sensible warning (e.g.; 'we do not know what this application does, but we couldn't detect anything suspicious either, up to you to run it or not') it throws up a scary warning as if the file was actually infected with something. And then it proceeds to quarantine and delete it... based on NOTHING but that version of the software being brand new!

Sigh.
End of JcRabbit's quote

Perhaps an individual developer (vs a company) should sue them in small claims court for defamation.  They are in a position of authority and are making statements which cause harm afterall...

Reply #7 from WinCustomize Forums Top

Quoting Neil, reply 6
Perhaps an individual developer (vs a company) should sue them in small claims court for defamation.  They are in a position of authority and are making statements which cause harm afterall...
End of Neil's quote

Sometimes I wish I could... but I'm in Portugal. Don't know why developers in the US haven't come up with a class action suit yet, though. There are lots of blogs from developers on the web complaining about this.