Launcher program is detected by Windows Defender as a virus #258
Comments
|
Do you have any other antivirus software installed? ntsc-rs-launcher v0.9.1 is not detected by Defender according to VirusTotal. What's the file hash of Get-FileHash C:\Users\User\Documents\programs\ntsc-rs-windows-standalone\ntsc-rs-launcher.exe |
|
"Do you have any other antivirus software installed?"
Despite that, the file hash is below: |
|
Running Defender locally, I see that it does get detected. Not sure why this is, or if there's anything I can do about it. The exact same launcher doesn't get detected by Defender when I build it locally, and I used a tool to verify that there are no differences between the two, save for a file path that made it into the build and depends on where it was built. |
|
huh, that's strange. i've installed the latest version and it didnt get detected by windows defender as a virus for me. |
|
Given that a near-identical executable was not detected, it seems like the detection may be extremely sensitive to any changes, which may include updates to the virus definition files. With Defender on Windows 10 and virus definitions version 1.421.1382.0, it's detected as |
|
I think this sums it up pretty well: "The main reason for this is that you often need to have a trust rating depending on the anti-virus / malware protection software &/or service being used to be allowed to download & run the installer file but ironically you cannot gain trust until you've downloaded & run & marked it as being ok. Can you see the issue here?" source: https://getwacup.com/false_positives.html I don't think there's anything one can do except build reputation, but how can you do that when everything is flagged as suspicious? |
This is most likely a false positive, but as I was updating the program, Windows Defender picked up the main program and said it contained "Win32/Wacapew.c!ml".
The text was updated successfully, but these errors were encountered: