DamewareRE.exe and DamewareRemoteEverywhereAgent.exe being flagged by Symantec and Windows Defender
On either Thursday or Friday (June 11th and 12th), our team suddenly could no longer connect to end user systems using the applet - DamewareRE.exe. The applet is flagged by Symantec EndPoint Protection as WS.Reputation.1 and quarantined. The same for the desktop agent. Also, Microsoft Windows Defender SmartScreen (Win 10) is flagging it as well. I can duplicate this behavior on a personal machine with Norton Security and Windows 10 Home. Same behavior that suddenly started Thursday or Friday.
The DameWare executables generate different hashes. Our System Admin has concerns about flagging the application name as we don't want to let malicious applications through that may have the same name.
Anyone else is experiencing this? How did you address it? We have a ticket (or two) open with Solarwinds but wanted to also see if anyone else is seeing this issue suddenly after this past Thursday or Friday.
SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community.
More than 150,000 members are here to solve problems, share technology and best practices, and directly
contribute to our product development process.
Learn more today by joining now.