701 questions
-1
votes
2
answers
138
views
How can I monitor process creation/termination in C# using winapi? [closed]
I’m building a lightweight process monitoring tool in C# (.NET Framework 4.6.2).
Here’s my situation:
I cannot use WMI due to environment restrictions (it’s blocked on some endpoints).
I also cannot ...
- 29
0
votes
1
answer
153
views
VirtualAllocEx Not Allocating Memory to Desired Address
I am using the VirtualAllocEx function from the windows.h header. I'm trying to allocate (reserve and commit) memory at a specified virtual address within some arbitrary process, take Microsoft Paint, ...
- 63
-4
votes
1
answer
550
views
Windows Antivirus Detects "go run main.go" Output as a Virus
I'm new to Go, and currently working through some textbooks I've bought on the topic. I use BitDefender Antivirus and it seems to be intermittently flagging go-build files as a Virus, giving this ...
- 1
0
votes
1
answer
632
views
Antivirus Exclusion List for ASP.NET applications hosted on IIS
Microsoft recommend to exclude a set of folders from anit-virus when running asp.net apps on iis, this seems quite dangerous and I wonder if it is still recommended.
https://learn.microsoft.com/en-us/...
0
votes
0
answers
80
views
Can class templates cause a security issue in Windows? [duplicate]
This is my code :
#include <iostream>
using namespace std;
template<typename T>
class Calculator
{
T _Number1, _Number2;
public:
Calculator(T num1, T num2)
{
...
0
votes
0
answers
91
views
operation did not complete successfully
program not excuting
i tried running the program but i am getting come kind of error which i am not getting.
the program is:-
#include<stdio.h>
int main(){
int n;
printf(&...
0
votes
2
answers
843
views
Clamav Daemon not generating scan logs
We are using clamav antivirus on our GCP instances.
We are expected to review logs generated by its daemon scan.
But the daemon is not printing any logs at file.
Blank flies are generated at /var/logs/...
- 2,725
-4
votes
1
answer
65
views
Does encrypting a virus / malware renders it inactive? [closed]
Phrased differently, can an encrypted malware still act ? Not encrypted by design, but after the fact.
And can it still be detected by an antivirus when in encrypted form ? (Given it is in decrypted ...
- 583
1
vote
0
answers
111
views
Maintaining an artifical file lock to prevent virus scanning software accessing file
As the title states, i need a way for my C# application to artificially hold a file lock.
In our application, we maintain a file lock of a System.IO.Package zip file (which i assume internally ...
- 67
0
votes
1
answer
674
views
“McAfee Antivirus Detects C Executable as Virus (False Positive)
My VSCode window with the code and error
I'm encountering a false positive detection by McAfee's antivirus for my C program's executable. When I compile my code using MinGW, McAfee flags it as a virus....
3
votes
2
answers
2k
views
How to deal with Windows Defender false positives?
Lately, every single program I build in Windows is being marked as potential malware by Windows Defender.
Even just this simple Go application:
`
package main
import (
"fmt"
"io/...
- 31
-1
votes
1
answer
1k
views
Use Windows Defender API to scan data without writing it to disk?
Is it possible to use Windows Defender's Win32 APIs to programmatically scan data in memory without first writing it to disk? The only options appear to be directories or individual file paths, but it'...
- 3,776
0
votes
0
answers
103
views
Autoupdater is falsely detected as virus
My autoupdater gets falsely detected as a virus
This app is ran by another app that checks if a new version is avaiable then it closes itselft and opens this,and this is the code that gets flagged
the ...
- 19
-1
votes
1
answer
537
views
Run powershell script or whitelist installation directory before installing in inno setup
I'm using inno setup where user can choose the directory to install the software.exe.
But currently halfway through the installation, Windows Defender would delete/quarantine the exe file as it think ...
- 81
1
vote
1
answer
143
views
Unable to uninstall the Nucleon EDR Agent [closed]
I have installed Nucleon EDR to protect my endpoint. After completing my testing, I want to temporarily uninstall the EDR Nucleon Agent. However, I am unable to do so, and I also cannot access the ...
- 7