R
Rod260243
Guest
Hello,
In 2000, I created an application for boarding kennels and catteries, which I've updated over the years with reasonable success. The installation exe file is digitally-signed and customers can download it from my secure (https) website. Note that I always scan the file with Microsoft Defender before uploading it to my website.
Things got a bit trickier with the introduction of the 'new' Microsoft Edge which, when you try to download the file, gives the message that the file was 'blocked because it could harm your device', which is probably enough to deter most potental customers.
Things got worse recently. When I tried to do a test download of my exe file for the latest version of my application, MS Edge displayed the message 'Couldn't download - virus detected'. Windows Security Protection History stated 'No recent actions', so I had no information about the virus and couldn't submit the file to MS Security Intelligence because it hadn't downloaded. I then went to Windows Security Virus & Threat Protection Settings, turned Real-time Protection off and tried to download the file again. This time the download completed with the message that trojan spy Nivdort.cc had been detected. On clicking the Action button the only option was to scan the file, which resulted in the file being deleted! WS Protection History again stated 'No recent actions'. I did all this on my main PC which is 64-bit and has the latest Windows version 20H2 installed.
In desperation, I used my Windows tablet (32-bit Windows 20H2) with default Windows Security setting and tried the download again. This time, it detected the virus and WS gave the option of 'Allow' in the detection details. I then downloaded it again and the download was completed. Note that the downloaded file was exactly the same size as the original and my digital signature was intact. I then submitted the file to MS Security Intelligence which, within about 2 hours, stated that the detection had been removed.
What concerns me (apart from MS incorrectly identifying the virus) is the inconsistent behaviour of Windows Security (or is it Microsoft Defender Antivirus?) In future, if I get a virus problem, I don't want to rely on using my Windows tablet to submit the file. So I guess that my main question is: have I been doing something wrong on my main PC, perhaps with my Windows Security settings?
Thanks, Rod
More...
In 2000, I created an application for boarding kennels and catteries, which I've updated over the years with reasonable success. The installation exe file is digitally-signed and customers can download it from my secure (https) website. Note that I always scan the file with Microsoft Defender before uploading it to my website.
Things got a bit trickier with the introduction of the 'new' Microsoft Edge which, when you try to download the file, gives the message that the file was 'blocked because it could harm your device', which is probably enough to deter most potental customers.
Things got worse recently. When I tried to do a test download of my exe file for the latest version of my application, MS Edge displayed the message 'Couldn't download - virus detected'. Windows Security Protection History stated 'No recent actions', so I had no information about the virus and couldn't submit the file to MS Security Intelligence because it hadn't downloaded. I then went to Windows Security Virus & Threat Protection Settings, turned Real-time Protection off and tried to download the file again. This time the download completed with the message that trojan spy Nivdort.cc had been detected. On clicking the Action button the only option was to scan the file, which resulted in the file being deleted! WS Protection History again stated 'No recent actions'. I did all this on my main PC which is 64-bit and has the latest Windows version 20H2 installed.
In desperation, I used my Windows tablet (32-bit Windows 20H2) with default Windows Security setting and tried the download again. This time, it detected the virus and WS gave the option of 'Allow' in the detection details. I then downloaded it again and the download was completed. Note that the downloaded file was exactly the same size as the original and my digital signature was intact. I then submitted the file to MS Security Intelligence which, within about 2 hours, stated that the detection had been removed.
What concerns me (apart from MS incorrectly identifying the virus) is the inconsistent behaviour of Windows Security (or is it Microsoft Defender Antivirus?) In future, if I get a virus problem, I don't want to rely on using my Windows tablet to submit the file. So I guess that my main question is: have I been doing something wrong on my main PC, perhaps with my Windows Security settings?
Thanks, Rod
More...
