Request for a guide about an issue regarding development

Do Kim 21 Reputation points
2021-02-09T08:20:15.553+00:00

Hello this is Do Kim from Allm, which is a publisher for Kritika:REBOOT game title.

Currently there is an issue of client file of Kritika:REBOOT which is in service is being detected as a Trojan from Windows defender

which leads to abnormal play.

Please provide us a guide or solution regarding this matter.

For further details, please refer to the attachment.

Thank you. Best Regards
65698-windows-defender-related-en.txt

Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,780 questions
0 comments No comments
{count} votes

3 answers

Sort by: Most helpful
  1. Reza-Ameri 16,836 Reputation points
    2021-02-09T16:38:41.597+00:00

    I understand you have a program which is being detected as a malware but it is not a malware.
    In this case, you may report it to Microsoft as incorrect detection:
    https://www.microsoft.com/en-us/wdsi/filesubmission

    0 comments No comments

  2. Teemo Tang 11,361 Reputation points
    2021-02-10T06:37:16.863+00:00

    Please submit the executable for analysis here:
    https://www.microsoft.com/en-us/wdsi/filesubmission
    In the next few definition updates, the false positive would be corrected.

    -------------------------------------------------------------------------------------

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


  3. Teemo Tang 11,361 Reputation points
    2021-02-23T02:27:54.313+00:00

    The description for that isn't as clear as that for a few others including Trojan:Win32/Fuery.A!cl which is fundamentally the same detection with some minor difference that's not explained.
    The reason for this is due to the seemingly minor, but extremely important final portion of the detection name, "!cl". What this portion designates is that the detection is "cloud and artificial intelligence powered by next-gen machine learning technologies to rapidly deliver protection against new and emerging malware."
    What this means is that the detection is not based on a malware signature, but rather performed on the fly by the Microsoft cloud based detection systems using machine-learning components contained in the cloud. Unfortunately, along with being capable of detecting new or emerging malware, such cloud-based protections include a high potential for being a false positive, since they are watching for things like malware behavior or the use of various developer or hacking tools that might indicate a potential malicious intent.

    To avoid this situation at least temporarily, one simple thing a new developer can do is to turn off the Windows Defender Cloud-based protection setting on Windows 10, as well as the associated Automatic sample submission setting within the same Virus & threat protection settings sub-menu. Turning them back on again after development has been completed shouldn't be a problem, since in most cases these new files will only be subjected to the more accurate signature based detections at that point.

    source: https://answers.microsoft.com/en-us/protect/forum/protect_defender-protect_scanning-windows_10/windows-defender-flagged-my-c-program-as-trojan/bfad521c-7129-4f63-8c84-98a16f0a50e2