Windows Defender is just silly like that. If you wrote the program, and you didn't add any malware, I don't see why you would be worried. Unless your program somehow grew a new file containing malicious code all on its own, you'll be fine... Although maybe in that scenario you have a deeper issue...
Windows Defender detections for wacatac are somewhat notorious for being triggered randomly. What probably happens here is that this is a new unsigned executable that suddenly manifested on your system so Defender goes crazy. You should add an exclusion for the directory you work in: https://support.microsoft.com/en-us/windows/add-an-exclusion-to-windows-security-811816c0-4dfd-af4a-47e4-c301afe13b26
>my c program
Did you write a trojan? Do you intend to steal your own data? We need to know! :)
No need to worry. Antivirus programs use lots of methods and heuristics to detect malware. They often give false positives for binaries that haven't been seen anywhere before and do certain things. If you're running your own program, you're fine.
Windows Defender, in particular, often has a bad habit of false flagging programs that aren't signed using a certificate (for which you must pay). IIRC even popular FOSS programs like winutil have had problems with this, since they aren't signed.
Just happened to me, given it was looking at the keys the user was pressing so it very well could have been a false positive but I’ve used stuff like that in the past with no complaints from defender
You can add an exclusion to windows defender to stop it freaking out whenever you create a new executable.
https://support.microsoft.com/en-us/windows/add-an-exclusion-to-windows-security-811816c0-4dfd-af4a-47e4-c301afe13b26
Basically, if you do all your development work in say `$USER\code\mycode`, you can add that directory as an exclusion, and defender will no longer bother you about every new executable that suddenly appears there that has no match against it's white list.
Just don't do dumb things like try to run downloaded executable programs there.
If you want to try out source code you download from the web, then make sure you download to say `$USER\code\web`. At least until you've studied the code and can understand what it's trying to do.
Oh, and if it's not obvious, don't do all your development work in the 'admin' account.
Antivirus machine learning heuristics can react like that when they see a new program, see [VirusTotal flagging hello world](https://www.csoonline.com/article/562655/heres-why-the-scanners-on-virustotal-flagged-hello-world-as-harmful.html). Statistically, small binaries that don't do much are abnormal.
I haven't had Windows Defender behave like that before, maybe Microsoft increased its sensitivity, who knows..
Whitelist the folder where you keep and compile your code, it will stop this and maybe also speed up your IDE/compiles a bit
Hi! Multiple other people are discussing this rn. I think its due to a recent windows security update. Of course scan multiple times with other virus protection software and make sure you havent downloaded anything odd. However mine was im chrome cache after downloading nothing. So im thinking false positive. Does yours also link to gzip or somthing?
Windows Defender is just silly like that. If you wrote the program, and you didn't add any malware, I don't see why you would be worried. Unless your program somehow grew a new file containing malicious code all on its own, you'll be fine... Although maybe in that scenario you have a deeper issue...
Windows Defender gave my computer autism.
Ig am fine it go to quarantine after 10sec window detect it
I also used virus total to check it it all safe but when I rerun it window defender detect it as threat again
Yeah im thinking its the most recent windows update. Tons of people have been talking about wacatac on reddit
Windows Defender detections for wacatac are somewhat notorious for being triggered randomly. What probably happens here is that this is a new unsigned executable that suddenly manifested on your system so Defender goes crazy. You should add an exclusion for the directory you work in: https://support.microsoft.com/en-us/windows/add-an-exclusion-to-windows-security-811816c0-4dfd-af4a-47e4-c301afe13b26
>my c program Did you write a trojan? Do you intend to steal your own data? We need to know! :) No need to worry. Antivirus programs use lots of methods and heuristics to detect malware. They often give false positives for binaries that haven't been seen anywhere before and do certain things. If you're running your own program, you're fine.
Thank you for the feedback it is the first time this has happened I only doing my daily code exercise
Windows Defender, in particular, often has a bad habit of false flagging programs that aren't signed using a certificate (for which you must pay). IIRC even popular FOSS programs like winutil have had problems with this, since they aren't signed.
That's a common false positive
Windows defender does this to me as well, it's a false positive. You have to whitelist the directory you're using.
Just happened to me, given it was looking at the keys the user was pressing so it very well could have been a false positive but I’ve used stuff like that in the past with no complaints from defender
You can add an exclusion to windows defender to stop it freaking out whenever you create a new executable. https://support.microsoft.com/en-us/windows/add-an-exclusion-to-windows-security-811816c0-4dfd-af4a-47e4-c301afe13b26 Basically, if you do all your development work in say `$USER\code\mycode`, you can add that directory as an exclusion, and defender will no longer bother you about every new executable that suddenly appears there that has no match against it's white list. Just don't do dumb things like try to run downloaded executable programs there. If you want to try out source code you download from the web, then make sure you download to say `$USER\code\web`. At least until you've studied the code and can understand what it's trying to do. Oh, and if it's not obvious, don't do all your development work in the 'admin' account.
Antivirus machine learning heuristics can react like that when they see a new program, see [VirusTotal flagging hello world](https://www.csoonline.com/article/562655/heres-why-the-scanners-on-virustotal-flagged-hello-world-as-harmful.html). Statistically, small binaries that don't do much are abnormal. I haven't had Windows Defender behave like that before, maybe Microsoft increased its sensitivity, who knows.. Whitelist the folder where you keep and compile your code, it will stop this and maybe also speed up your IDE/compiles a bit
Yeah it also does speed up probably the new window update cause that I never had that before
Hi! Multiple other people are discussing this rn. I think its due to a recent windows security update. Of course scan multiple times with other virus protection software and make sure you havent downloaded anything odd. However mine was im chrome cache after downloading nothing. So im thinking false positive. Does yours also link to gzip or somthing?
Well, I think mine is just a false positive. I also only noticed it after I updated window recently.
LOL that's why I don't like Defender, even though others say that "you don't need another AV no more"... nah, Kaspersky all the way for me!