c++ - VS2015 executable become virus (with potential solution but don't know why) -


this 1 of weirdest things ever happen me in programmer career.

i working on mfc project, , antivirus software bitdefender sees executable virus " gen:variant.razy.47148"

here scan result virustotal.com

antivirus   result  update alyac       gen:variant.razy.47148   ad-aware    gen:variant.razy.47148   arcabit     trojan.razy.db82c    bitdefender gen:variant.razy.47148   emsisoft    gen:variant.razy.47148  f-secure    gen:variant.razy.47148   gdata       gen:variant.razy.47148   escan       gen:variant.razy.47148

*the rest clear result

i have few configurations, happens 1 of them. compare setting difference, turns out linker--debugging--generate debug info problem. when "no", not virus, when yes, virus.
@ does, says "this option enables creation of debugging information ofr .exe file or dll." detailed description ms https://msdn.microsoft.com/en-us/library/xe4t6fc1.aspx don't see possible way make executable become virus.

more might want ask:

  1. hard drive scanned clear multiple well-known antivirus program.

  2. executable clear if turn "no" without doing other changes. means .c , .h included clear.

  3. i know kind of false positive virus since "unnamed" antivirus software report this. unfortunately, have use bitdefender, , of computer program running @ using well.(my program debugging tool internal use only)

if nothing else on hard drive being flagged malware antivirus, "detection" because something in program triggering heuristic detection routine inside av.

this "something" might string you've used, particular sequence of machine instructions, or function name. fact av no longer flag program when turn off debug information might suggest trigger indeed stripped off in non-debug build (e.g. function names.)

this not compiler bug or can solved them. can (and should) report executable file false positive av vendor (the exact file being reported having virus.)

as said before, not - in probability - real infection, needn't worry after steps you've taken.

you've mentioned when build program without debug info, not flagged or reported antivirus. can ship program without debug information? how software gets distributed anyways. if can, you're in clear users; debug-info-less program not reported virus.


Comments

Post a Comment

Popular posts from this blog

jOOQ update returning clause with Oracle -

according http://www.jooq.org/doc/3.8/manual/sql-building/sql-statements/update-statement/ jooq doesn't support returning clause in update statements databases except firebird , postgres. does know, still correct oracle jooq? according oracle's documentation, oracle db supports returning clase delete, insert, or update statements. incorrect manual you're right - manual wrong , should fixed: https://github.com/jooq/jooq/issues/5470 single row update returning jooq 3.8 added support single row update .. returning statements. internally, uses callablestatement , pl/sql block of form: begin update "my_table" set "my_table"."column" = 'xyz' "my_table"."id" = 1 returning "my_table"."id", "my_table"."column" ?, ?; ? := sql%rowcount; end; the relevant issue is: https://github.com/jooq/jooq/issues/5190 multi row update returning a...
Read more

java - Warning equals/hashCode on @Data annotation lombok with inheritance -

i have entity inherits other. on other hand, i'm using lombok project reduce boilerplate code, put @data annotation. annotation @data inheritance produces next warning: generating equals/hashcode implementation without call superclass, though class not extend java.lang.object. if intentional, add '@equalsandhashcode(callsuper=false)' type. is advisable add annotation @equalsandhashcode (callsuper = true) or @equalsandhashcode (callsuper = false) ? if not added, 1 callsuper=false or callsuper=true ? the default value false . 1 if don't specify , ignore warning. yes, recommended add @equalsandhashcode annotation on @data annotated classes extend else object. cannot tell if need true or false , depends on class hierarchy, , need examined on case-by-case basis. however, project or package, can configure in lombok.config call super methods if not direct subclass of object. lombok.equalsandhashcode.callsuper = call for configuration system ...
Read more

java - BasicPathUsageException: Cannot join to attribute of basic type -

i using java 8 jpa (hibernate 5.2.1). have clause works perfectly, until introduce clause make use foreign key table values too. i getting following error: basicpathusageexception: cannot join attribute of basic type i think problem related fact have join table, , not sure how create join using join table. employee - employee_category - category model (employee.java): @manytomany(cascade = cascadetype.all, fetch=fetchtype.eager) @jointable ( name="employee_category", joincolumns={ @joincolumn(name="emp_id", referencedcolumnname="id") }, inversejoincolumns={ @joincolumn(name="cat_id", referencedcolumnname="id") } ) private set<category> categories; model (category.java): @id private string id; jpa when introduce following code, fails error above (i think problem new piece of code): join<t, category> category = from.join("id"); predicates.add(criteriabuilder.like(category....
Read more