The main issue is that any application automatically attempting to run at startup will be flagged as virus like behavior by any anti-virus system.
1 Like
While the application did do that a few years ago, it no longer does so.
The reason I was doing it at the time was to work around an issue where updates to the roblox client would overwrite my mod manager’s launch protocol, but I decided it was more invasive than necessary and got rid of it.
3 Likes
If your application is digitally signed with an authenticode signature then this problem will disappear.
3 Likes
Where can I get that? I tried to research it awhile ago but couldn’t find anything that was free.
I was probably looking at the wrong things.
4 Likes
Unfortunately, I don’t think there are any free ones out there, it has to cost money. There are some cheap ones but they’re rare to find. Getting a authenticode signature is pretty costly. But here are a few website links:
Also here is a website that lists some of the best ones available:
3 Likes
Hey everyone, after digging into this a little more, I’m still a bit inconclusive. I made a fresh build of another project of mine and scanned it with VirusTotal, but it only came back with one generic result:
I tried building the project file that @ForbiddenJ assembled for me, and got this result:
I suspect this might be a false alarm, perhaps because my program is exhibiting a specific technique or pattern used by this so-called MSIL-Perseus Trojan, but nothing comes up with my API Dump tool.
I also analyzed the application behind my Roblox Client Tracker, which does WAY more operations on my PC than the mod manager does, and it also derives the bootstrapping functionality of my mod manager:
As seen above, this only got one random result as well. With this, I feel reasonably confident that nothing is going on here, and its probably just misidentification due to some pattern in my code.
Thank you guys in advance for alerting me to this. Obviously I don’t want anyone here to get a trojan on their PC because of carelessness on my part, but I don’t think anything is going on here.
If anyone has further evidence to suggest otherwise, please let me know as soon as possible. I feel this needs more investigation than I’ve been able to do so far.
Let me know if you continue to see this reported @ogeyar
11 Likes
My browser straight up rejected it
3 Likes
Try using Spybot, it’s free and actual quality.
2 Likes
I was able to download the .zip onto my PC, but nevertheless Windows Defender kept detecting it as a Trojan and remediated it twice. I voluntarily allowed the .zip onto my computer and Windows finally let it slip.
1 Like
15 Likes
That’s cool! So, in a sense, any user can install the application without any interference with the browser anti-virus or windows defender?
3 Likes
Coming from an IT guy, false positives happen all the time with the heuristics in malware programs detecting behavior of potential problematic software-it’s no longer about identifying signatures. When you think about what this tool does, it makes sense. Give yourself peace of mind of course.
4 Likes
Honestly, this is amazing! I will be using this from now on thank you.
1 Like
I was looking for the Mod launcher until I checked my notifications and saw that windows defender quarantined it.
1 Like
3 Likes
I saw that post and checked if it was up to date… and it was.
Actually I think the recent updates to the virus definitions is what caused it to get quarantined because it’s been doing fine on my computer for almost a year until recently.
I’m gonna try to set up a folder exception and see if that solves the issue.
2 Likes
I’ll resubmit the program again for analysis to see what’s going on.
6 Likes
Maybe you could try to create some basic installer, or a listing in the Microsoft store?
I’m pretty sure those two are options that prevent the weird error messages.
2 Likes
To list UWP apps on the Microsoft Store requires a developer membership which comes in 2 tiers, an individual and company developer account. The basic one costs about 19 dollars (one time). I don’t think that’s really necessary just to provide a community resource.
1 Like
Aw beans, I had no idea.
What about an installer?
1 Like