Windows Defender alert


#1

Hi,

I’m a long time Manictime user looking to maybe migrate to your product instead.

I downloaded the latest Windows install, and it triggered a Windows Defender alert;

Trojan:Win32/Bitrep.A on;

  • aw-qt.exe
  • aw-server.exe
  • aw-watcher-window.exe

Is this a known false positive?
I had a quick search, but couldn’t find any reference.

Cheers,
Andy.


#2

We’ve had this before:

I’ve submitted it to Windows Defender Security Intelligence as a false positive. Thanks for reporting!


#3

The Windows Defender Security Intelligence analysis said the files came back clean, are you using the latest malware definitions?


#4

Just an FYI, there is also an issue with Norton (used for my work). Many of the AW Watcher files are being flagged as “Trojan.Gen.9” alerts (see screenshot).

I am manually adding exceptions (though my work may not like that, so we will see), but yeah, just a heads up. RescueTime is also installed, but not flagged, so there may be something that can be done there.

Edit: They are flagged as “Heuristic Virus” flags.


#5

Possibly related - I had to uninstall it at work. It was just what I was looking for too. :frowning:

The security folks said:
The SOC received an alert indicating that a suspicious executable was detected on a host managed by your agency. It appears to be a PUP.

They didn’t explain what threw the flag. We can usually install third-party applications without issue.

Cheers,
Chris O.
Brooklyn! NYC


#6

Have never heard of what a PUP is and the definition is apparently: “PUP’s or PUA’s are Potentially Unwanted Programs (or Applications)”.
Here’s the list of criterias which malwarebytes uses to determine PUP’s: https://www.malwarebytes.com/pup/