starred/Quasar
1
0
Fork 0
mirror of https://github.com/quasar/Quasar.git synced 2026-04-26 07:45:57 +03:00
Code Issues 137 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #545] Operation did not complete successfully because the file contains a virus or potentially unwanted software. #308

New issue
Closed
opened 2026-02-27 15:49:48 +03:00 by kerem · 11 comments
kerem commented 2026-02-27 15:49:48 +03:00
Owner
Copy link

Originally created by @manikantad on GitHub (Oct 25, 2016).
Original GitHub issue: https://github.com/quasar/Quasar/issues/545

Hi ,

Not able to build the project ,when i was try to build the project facing issue like Found Some malware. windows defender removing it.
Even i have checked in defender logs ,that was showing like this "This program is used to create viruses, worms or other malware."
Please find the screen shots below.
issue4
issue3

issue2
issue1

Originally created by @manikantad on GitHub (Oct 25, 2016). Original GitHub issue: https://github.com/quasar/Quasar/issues/545 Hi , Not able to build the project ,when i was try to build the project facing issue like Found Some malware. windows defender removing it. Even i have checked in defender logs ,that was showing like this "**This program is used to create viruses, worms or other malware.**" Please find the screen shots below. ![issue4](https://cloud.githubusercontent.com/assets/22674966/19683138/a4d04f94-9ace-11e6-9c2a-25ab593eebd9.PNG) ![issue3](https://cloud.githubusercontent.com/assets/22674966/19683139/a4db4de0-9ace-11e6-92e6-212537b82c1c.PNG) ![issue2](https://cloud.githubusercontent.com/assets/22674966/19683048/0ed0e850-9ace-11e6-9460-c1206caf3ffa.PNG) ![issue1](https://cloud.githubusercontent.com/assets/22674966/19683047/0ecbd8d8-9ace-11e6-9aab-e844767d3273.PNG)
kerem 2026-02-27 15:49:48 +03:00
  • closed this issue
  • added the
    question
         label
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@abdullah2993 commented on GitHub (Oct 25, 2016):

add an exclusion for project folder in your antivirus

<!-- gh-comment-id:256014541 --> @abdullah2993 commented on GitHub (Oct 25, 2016): add an exclusion for project folder in your antivirus
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@manikantad commented on GitHub (Oct 27, 2016):

We can add that exclusion but as a security context this is showing high priority malware right,how we can over come this.

<!-- gh-comment-id:256539791 --> @manikantad commented on GitHub (Oct 27, 2016): We can add that exclusion but as a security context this is showing high priority malware right,how we can over come this.
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@dudelard commented on GitHub (Oct 27, 2016):

In a security context, every client built will be detected as a potential virus.
If you don't want to add an exclusion, do not use Quasar.

<!-- gh-comment-id:256573301 --> @dudelard commented on GitHub (Oct 27, 2016): In a security context, every client built will be detected as a potential virus. If you don't want to add an exclusion, do not use Quasar.
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@MaxXor commented on GitHub (Oct 27, 2016):

Adding an exception for Quasar in your antivirus is the only way because Quasar is used for malicious purposes by some people...

<!-- gh-comment-id:256581785 --> @MaxXor commented on GitHub (Oct 27, 2016): Adding an exception for Quasar in your antivirus is the only way because Quasar is used for malicious purposes by some people...
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@TommyWhite commented on GitHub (Oct 30, 2016):

Is there any way to modify the Quasar in order to bypass AV? Make new PE signature wich will be undetectable.

<!-- gh-comment-id:257142487 --> @TommyWhite commented on GitHub (Oct 30, 2016): Is there any way to modify the Quasar in order to bypass AV? Make new PE signature wich will be undetectable.
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@0xE232FE commented on GitHub (Oct 30, 2016):

You can crypt the Executable and run it with a Loader Programm that Decyrypt it in Memory and Execute the Assembly from Memory in Memory. AV is unable to scan other Memory Spaces. You can make a Loader in any language like C in my opinion is the best and easiest way. The simpler the loader is that harder is it for AV to detect. If you rise the complexity AV concerns something. You can block and re-Route Memory Access or Access by AVs. If your Loader isn't known or going Public on Virustotal you can be sure its safe!

First rule for Crypter is do not Copy & Paste!
Write your own Code and be as much creative as possible.
Do not encrypt or Obfuscate it with Standard tools. Create your own Obfuscate Algorithm.
If you want to fix AV Signature Detections you can change the Code within Assembler. For Heuristic Detections change program flow! Thats all. There is not 100% Guarantee to stay undetected forever but there is quiet a small chance for a Detection!

<!-- gh-comment-id:257160538 --> @0xE232FE commented on GitHub (Oct 30, 2016): You can crypt the Executable and run it with a Loader Programm that Decyrypt it in Memory and Execute the Assembly from Memory in Memory. AV is unable to scan other Memory Spaces. You can make a Loader in any language like C in my opinion is the best and easiest way. The simpler the loader is that harder is it for AV to detect. If you rise the complexity AV concerns something. You can block and re-Route Memory Access or Access by AVs. If your Loader isn't known or going Public on Virustotal you can be sure its safe! First rule for Crypter is do not Copy & Paste! Write your own Code and be as much creative as possible. Do not encrypt or Obfuscate it with Standard tools. Create your own Obfuscate Algorithm. If you want to fix AV Signature Detections you can change the Code within Assembler. For Heuristic Detections change program flow! Thats all. There is not 100% Guarantee to stay undetected forever but there is quiet a small chance for a Detection!
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@TommyWhite commented on GitHub (Nov 28, 2016):

That would be great wrap app agent with something like this,
https://stackoverflow.com/questions/826398/is-it-possible-to-dynamically-compile-and-execute-c-sharp-code-fragments
And invoke it dynamically, in run time.

<!-- gh-comment-id:263232478 --> @TommyWhite commented on GitHub (Nov 28, 2016): That would be great wrap app agent with something like this, https://stackoverflow.com/questions/826398/is-it-possible-to-dynamically-compile-and-execute-c-sharp-code-fragments And invoke it dynamically, in run time.
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@Scatterblak commented on GitHub (Mar 23, 2021):

add an exclusion for project folder in your antivirus

Incredibly bad idea. All you'll be doing then is building software that can only run on one machine,

<!-- gh-comment-id:804646704 --> @Scatterblak commented on GitHub (Mar 23, 2021): > add an exclusion for project folder in your antivirus Incredibly bad idea. All you'll be doing then is building software that can only run on one machine,
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@BurntDog commented on GitHub (Mar 23, 2021):

add an exclusion for project folder in your antivirus

Incredibly bad idea. All you'll be doing then is building software that can only run on one machine,

If you're using it in a legit manner then a exclusion wouldn't be a issue.

<!-- gh-comment-id:804682998 --> @BurntDog commented on GitHub (Mar 23, 2021): > > add an exclusion for project folder in your antivirus > > Incredibly bad idea. All you'll be doing then is building software that can only run on one machine, If you're using it in a legit manner then a exclusion wouldn't be a issue.
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@Scatterblak commented on GitHub (Mar 23, 2021):

add an exclusion for project folder in your antivirus

Incredibly bad idea. All you'll be doing then is building software that can only run on one machine,

If you're using it in a legit manner then a exclusion wouldn't be a issue.

It's an issue if you're writing software for a living, and someone else is going to run your software someday. Unless you're fine with asking all of your users to start adding exclusions just to get your software to run.

<!-- gh-comment-id:804937345 --> @Scatterblak commented on GitHub (Mar 23, 2021): > > > add an exclusion for project folder in your antivirus > > > > > > Incredibly bad idea. All you'll be doing then is building software that can only run on one machine, > >> If you're using it in a legit manner then a exclusion wouldn't be a issue. ------------------------- It's an issue if you're writing software for a living, and someone else is going to run your software someday. Unless you're fine with asking all of your users to start adding exclusions just to get your software to run.
kerem commented 2026-02-27 15:49:48 +03:00
Author
Owner
Copy link

@BurntDog commented on GitHub (Mar 23, 2021):

add an exclusion for project folder in your antivirus

Incredibly bad idea. All you'll be doing then is building software that can only run on one machine,

If you're using it in a legit manner then a exclusion wouldn't be a issue.

It's an issue if you're writing software for a living, and someone else is going to run your software someday. Unless you're fine with asking all of your users to start adding exclusions just to get your software to run.

Look up how and what needs to be done to help keep software off AV list, it's very costly. No one in their right mind would pay those fees for software that is free. People misuse tools like this and that's why they are detected in the first place.

I make my clients detected far less then normal, according to anti-scan only 4 detect it but I know that's not a correct number but still less detected and 100% pass Windows Defender. I also won't tell my method nor have I and this isn't the forum for such talk anyway.

<!-- gh-comment-id:804985426 --> @BurntDog commented on GitHub (Mar 23, 2021): > > > > add an exclusion for project folder in your antivirus > > > > > > > > > Incredibly bad idea. All you'll be doing then is building software that can only run on one machine, > > > > > > > If you're using it in a legit manner then a exclusion wouldn't be a issue. > > It's an issue if you're writing software for a living, and someone else is going to run your software someday. Unless you're fine with asking all of your users to start adding exclusions just to get your software to run. Look up how and what needs to be done to help keep software off AV list, it's very costly. No one in their right mind would pay those fees for software that is free. People misuse tools like this and that's why they are detected in the first place. I make my clients detected far less then normal, according to anti-scan only 4 detect it but I know that's not a correct number but still less detected and 100% pass Windows Defender. I also won't tell my method nor have I and this isn't the forum for such talk anyway.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dev
v1.4.1
v1.4.0
v1.3.0.0
v1.2.0.0
v1.1.0.0
v1.0.0.0
RELEASE4.1
RELEASE4
RELEASE3
RELEASE2
RELEASE1
Labels
Clear labels   
bug

   
bug

   
cant-reproduce

   
discussion

   
duplicate

   
easy

   
enhancement

   
help wanted

   
improvement

   
invalid

   
need more info

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
wont-add
No labels
bug
bug
cant-reproduce
discussion
duplicate
easy
enhancement
help wanted
improvement
invalid
need more info
pull-request
question
wont-add
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/Quasar#308
No description provided.