Version 6.7.0 getting flagged by Windows Defender

[Mystyle-48]

The latest release, version 6.7.0, cannot be used on my machine without constantly getting flagged by Windows Defender.

I noticed that the 6.7.0 is missing all the version information compared to 6.6.0. Perhaps this is where the issue is stemming from?

[ThirteenAG]

The one from releases has this, where did you get the one without?

[Mystyle-48]

I got it from the GitHub releases page. Looks like Defender was just instantly deleting the file as soon as I extracted it. I turned off real-time protection and the file details are all still there.

I've extracted several previous releases and this appears to be the one Defender has a consistent problem with.

[ThirteenAG]

You can submit a false positive anyway here: https://www.microsoft.com/en-us/wdsi/filesubmission

[Mystyle-48]

Done. I'll keep using 6.6.0 until there is a solution.

[ThirteenAG]

Can you give a direct link to the archive with dll without version info?

[Mystyle-48]

Version info wasn't the issue. It was just disappearing from the properties because Defender was deleting the file and file explorer was not refreshing in time to remove the file from the list. It's likely something else.

[ThirteenAG]

I see, must be the try/catch block I added that compiled into something detectable in another thing.

[Mystyle-48]

Yeah, Defender gets really picky with how stuff is loaded. Hopefully this false positive report goes through and clears it up.

[ThirteenAG]

I've submitted one too, just in case, but the website does not show the detection

[Mystyle-48]

Interesting, my submission also says nothing was detected:

[Mystyle-48]

Final determination is still pending though so that could change.

[Mystyle-48]

Tried downloading 6.7.0 again with the latest Windows Defender intelligence updates and this issue no longer occurs. Thank you for the assistance.