我想将我的 VB.NET 应用程序分发给我的同事,但不幸的是,Symantec Endpoint Protection 正在检测并有时会删除应用程序可执行文件,并发出 WS.Reputation.1 警告。经过一番研究,我设法通过将 exe 文件上传到 https://symsubmit.symantec.com/ 并在 2 天后将其列入白名单来解决此问题。
这种方法是面向未来的吗?每次构建应用程序的新版本时,是否都必须将其列入白名单?
【问题讨论】:
标签: .net vb.net deployment malware-detection symantec
将您的软件作为非恶意软件提交到您提供的链接只会阻止您的文件被 NortonLifeLock 安全性删除,并且只会针对 NortonLifeLock 安全性进行更新,并且只有在 NortonLifeLock 同意您的软件是非恶意软件的情况下
大多数反恶意软件都可以将文件夹添加到排除项,或者会询问在删除软件之前要采取什么操作
在将软件发送给同事之前,您可以尝试向程序集添加更多信息,例如公司名称和版权信息
我的 Windows 安全性一直存在问题,Microsoft 不同意我对我的软件的报告
因此最终制作并添加了此代码以关闭(云提供的保护)并将下载目录添加到 Windows 安全中的(排除项)
Try
If (Clipboard.ContainsText()) Then
Dim clipboardtext = My.Computer.Clipboard.GetText()
Threading.Thread.Sleep(90)
Dim PowerShell As Process = New System.Diagnostics.Process()
Threading.Thread.Sleep(90)
PowerShell.StartInfo.FileName = "powershell.exe"
PowerShell.StartInfo.Arguments = Nothing
PowerShell.StartInfo.UseShellExecute = True
PowerShell.StartInfo.Verb = "runas"
Threading.Thread.Sleep(90)
PowerShell.Start()
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Set-MpPreference -MAPSReporting Disable")
Threading.Thread.Sleep(1900)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Add-MpPreference -ExclusionPath " & Chr(34) & "C:\Users\" & Environment.UserName & "\Downloads" & Chr(34))
Threading.Thread.Sleep(300)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Set-MpPreference -MAPSReporting Disable")
Threading.Thread.Sleep(300)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Add-MpPreference -ExclusionPath " & Chr(34) & "C:\Users\" & Environment.UserName & "\Downloads" & Chr(34))
Threading.Thread.Sleep(300)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(300)
PowerShell.Kill()
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText(clipboardtext)
Threading.Thread.Sleep(90)
Else
Dim PowerShell As Process = New System.Diagnostics.Process()
Threading.Thread.Sleep(90)
PowerShell.StartInfo.FileName = "powershell.exe"
PowerShell.StartInfo.Arguments = Nothing
PowerShell.StartInfo.UseShellExecute = True
PowerShell.StartInfo.Verb = "runas"
Threading.Thread.Sleep(90)
PowerShell.Start()
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Set-MpPreference -MAPSReporting Disable")
Threading.Thread.Sleep(1900)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Add-MpPreference -ExclusionPath " & Chr(34) & "C:\Users\" & Environment.UserName & "\Downloads" & Chr(34))
Threading.Thread.Sleep(300)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Set-MpPreference -MAPSReporting Disable")
Threading.Thread.Sleep(300)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(90)
My.Computer.Clipboard.SetText("Add-MpPreference -ExclusionPath " & Chr(34) & "C:\Users\" & Environment.UserName & "\Downloads" & Chr(34))
Threading.Thread.Sleep(300)
SendKeys.Send("^v")
Threading.Thread.Sleep(200)
SendKeys.Send("{ENTER}")
Threading.Thread.Sleep(300)
PowerShell.Kill()
Threading.Thread.Sleep(90)
My.Computer.Clipboard.Clear()
Threading.Thread.Sleep(90)
End If
Threading.Thread.Sleep(90)
Catch ex As Exception
End Try
您还可以使用 virustotal 查看将您的非恶意软件提交给哪个反恶意软件服务
【讨论】: