Page 3 of 3
Re: Symantec again false positive
Posted: Thu Aug 01, 2019 1:56 pm
by NicTheQuick
skywalk wrote:Another approach is compile your PB code to dll, and build app with approved compilers.
I don't think that solves the issue. DLLs are still binaries and heurstics will scan them. But maybe it is worth a try.
If it works we just found a new approach to send viruses and start them using rundll.exe
Re: Symantec again false positive
Posted: Thu Aug 01, 2019 2:11 pm
by skywalk
Haha, yes, my implication is that an approved/elevated installer will instantiate the approved exe and its supporting dll, img, db's, etc.
Re: Symantec again false positive
Posted: Thu Aug 01, 2019 3:04 pm
by Kwai chang caine
I saw that without debugger, there are most less notifications
So for the moment, for test all your codes....no "cockroach" button
Justly my administrator called me, there is just a little moment
And i believe he have understand my problem...so i hope
Fortunately, i have keep the 4 mails of SYMANTEC for proof my good faith and a ScreenShot of VirusTotal site with only the great SYMANTEC (and some little AV) who see my exe is a virus
Perhaps with that i can have a VM or a SandBox.....