Stack Overflow
Stack Overflow

Questions tagged [antimalware]

38 questions
8
votes
2 answers

How to implement IAmsiStream to support running a malware scan on windows on a stream

When implementing an IAmsiStream to perform a scan with Windows Defender, on files larger than ~20MBs it fails with Value does not fall within the expected range.. What is missing from this implementation? public class AmsiStream : IAmsiStream …
Bruno Lopes
  • 2,917
  • 1
  • 27
  • 38
7
votes
1 answer

Antimalware Service Executable slow down IO operations

I have a java program that write some temporary files in the temp directory. The temp directory is on a SSD. The write operation is normally very fast. But now with some specific sample data it is very, very slow and the CPU of the Antimalware…
Horcrux7
  • 23,758
  • 21
  • 98
  • 156
6
votes
0 answers

What processes and/or files should I put on Antimalware Service Executable exception list for my python script?

I have a python script which uses WMIC commands, one folder (as input) and of course it runs in python.exe. It creates several input files using WMIC commands (WMIC.exe) and uses them. They all are located in the same folder as the script, which I…
Lolman
  • 107
  • 8
3
votes
1 answer

Testing SafetyNetClient.listHarmfulApps()

I am writing an Android app that will report to the user (among other SafetyNet data) if there is any PHA (Potentially Harmful Application) installed on his/her device. For that I am using the SafetyNet Verify Apps API. My call to…
AlxDroidDev
  • 582
  • 7
  • 17
2
votes
0 answers

TrendMicro Deep Security 11 - retrieving computers in "protected" state in terms of antimalware

Does anyone know if total number of anti-malware protected computers can be retrieved by API or any other way "by script". In DSM there's widget "anti-malware protection status" and we have "anti-malware report" in scheduled task which both return…
zamach
  • 21
  • 1
2
votes
1 answer

how to disable windows 10 antimalware service while starting up eclipse

Windows 10 version 1809 (OS Build 17763.379) Whenever I startup eclipse on windows 10, the antimalware service executable gets high CPU and disk usage, and takes a few minutes to finish. During this period, the machine is kind of locked out for any…
H.Sheng
  • 171
  • 3
  • 12
1
vote
2 answers

Strange anti-malware exception in C# code executing a PowerShell script

I have powershell code in my C# application that works great. It executes a script using the code snippet below. using (PowerShell powerShell = PowerShell.Create()) { powerShell.AddScript(@"D:\C.ps1"); Collection
K. Carter Sr.
  • 115
  • 7
1
vote
1 answer

Vs code triggering antimalware service executable to use high cpu

I noticed since yesterday my system using close to 100% CPU and memory. I found whenever I am using VS Code the Antimalware Service Executable uses above 60% of CPU usage all the time. I turned off real-time protection and then problem with VS code…
Mahesh
  • 25
  • 6
1
vote
1 answer

How to change the vendor id of any Pnp (Plug and Play) device inside Virtualbox?

I want to change the default vendor id prefix VID_80EE Give by Virtual Box. VID_80EE I am doing malware analysis and malware use this id to detect whether it is running in a Virtual BOX or not.
satvik
  • 95
  • 9
1
vote
2 answers

How to increase WSL/docker container performance on quite common laptop?

I have this PC configuration, which should have quite normal performance compared to common laptops: ASUS TUF GAMING A15 AMD Ryzen 7 4800H 16GB RAM on 3200 MHz SSD 64b Windows 10 First, I setup WSL2 and it was rather slow and I realized…
Lukas Salich
  • 959
  • 2
  • 12
  • 30
1
vote
1 answer

Enable/disable antimalware extension on Azure Cloud Service classic via script

We are using Cloud Service Classic (still - for now) as a deployment model for a number of our websites. While migration to something else is on the cards, it's not yet. We activated the antimalware extension via the Azure portal - and here's where…
Aleks G
  • 56,435
  • 29
  • 168
  • 265
1
vote
1 answer

Running powershell scripts with python under one session

I try to create a python program which will deobfuscate powershell malware, which uses IEX. My python program is actually hooking the IEX function and instead of running the desired string, it will print the string. Now my problem is that I have…
oren ben yamin
  • 21
  • 2
  • 6
1
vote
1 answer

Register service as protected service

We are working on a Security Suite for Windows. We want our process to be unkillable like that of Kaspersky's or Avast's. While looking around the web I came across Windows Protected…
T.s. Arun
  • 317
  • 5
  • 17
0
votes
0 answers

File storage for possible infected files

I need upload files into my application which may be infected by malware, and then do async check. Is safe upload these files directly into rabbitmq or do I need some workaround to safe other files previously uploaded? Thank you.
Denis Stephanov
  • 4,563
  • 24
  • 78
  • 174
0
votes
1 answer

Antimalware Service Executable uses High CPU and blocks running IIS .Net Core App

I have a .Net Core API on Windows server 2019 VPS, its been two days now as and when request comes to API 'Antimalware Service Executable' kicks in to scan the app, this leads to high CPU use as well as API is not able to respond to any request,…
shab
  • 127
  • 9
1
2 3