none
Code Signing (Standard) renewed, Windows Defender SmartScreen prevented an unrecognized app from starting. RRS feed

  • Question

  • We recently renewed our digital certificate.

    Subject of the certificate is the same as the previous one.

    We signed our application with the new certificate.

    We noticed that when we download the latest version of our software, Internet Explorer reports it as not commonly downloaded file.

    On running/installing our application, the SmartScreen is throwing the warning.

    Windows Defender SmartScreen prevented an unrecognized app from starting. 
    Running this app might put your PC at risk. 

    I have submitted the files to Microsoft using - https://www.microsoft.com/en-us/wdsi/filesubmission

    We are using code signing (standard) for more than 15 years, and thus, there should be enough reputation.

    I am not sure how to escalate the issue or submit it to the SmartScreen team?

    We cannot share the files with customer they might not understand why ScreenSmart is displaying the warning.

    Is there any way or method to build the reputation? 

    Any help is appreciated.

    Following is the reply from Microsoft Support.

    We’ve reviewed your submission and we've confirmed that the submitted file is clean. Windows Defender Antivirus doesn't report them as malware. The message you observed is a notification from Windows Defender SmartScreen indicating that the application does not have known reputation in our system. Application reputation warnings are meant to inform end users when applications do not have known positive reputation. This doesn’t mean that the application is malicious, only that it is “unknown”. Please note that users can still proceed to download and run the application. In most cases, a digitally signed application will establish reputation organically, unless something has happened to denigrate existing reputation such as being used to sign malware. Kindly escalate this issue to SmartScreen team. To learn more about SmartScreen, please visit here: https://feedback.smartscreen.microsoft.com/smartscreenfaq.aspx

    Best regards, Windows Defender Response

    =====

    We’ve reviewed your submission and we've confirmed that the submitted files are clean. Windows Defender Antivirus doesn't report them as malware. The message you observed is a notification from Windows Defender SmartScreen indicating that the application does not have known reputation in our system. Application reputation warnings are meant to inform end users when applications do not have known positive reputation. This doesn’t mean that the application is malicious, only that it is “unknown”. Please note that users can still proceed to download and run the application. In most cases, a digitally signed application will establish reputation organically, unless something has happened to denigrate existing reputation such as being used to sign malware. We will investigate this issue further and contact you if we need additional information. To learn more about SmartScreen, please visit here: https://feedback.smartscreen.microsoft.com/smartscreenfaq.aspx Thank you for contacting Microsoft.

    =====


    Rajendra Dewani
    Website : http://www.dewani.net

    Monday, December 30, 2019 3:49 PM

All replies

  • We're running into the exact same issue. Just a simple renewal on our code signing cert results in Smart Screen failing on new builds.

    Did you discover why you were seeing this issue?

    Wednesday, January 8, 2020 11:44 PM