How Do I Properly Prevent Windows Installer Custom Actions from Windows Defender Detection?
Hi all,
I have a Windows Installer .msi generated by InstallShield and recently some customers have reported some items (Custom Actions) being flagged by Windows Defender.
- SomeCustomAction.exe
- AnotherCustomAction.dll
- MSICEA7.tmp
- MSI9ACD.tmp
- MSIDC01.tmp
Would signing these utilities help to prevent being detected as potentially problematic?
The MSI*.tmp are also extracted actions and I guess I have to use some Windows Installer logging to hunt those down. My hope is that if digitally signing the install utilities might help, I may not have to worry about hunting those down by signing all utilities.
Any help in cleaning up the install/Defender experience, if possible, would be greatly appreciated!