Skater-.NET-Obfuscator icon indicating copy to clipboard operation
Skater-.NET-Obfuscator copied to clipboard
verified publisher icon Rustemsoft

Possible virus - Microsoft defender - PUA:Win32/Vigua.A

Open LJFLAT opened this issue 2 years ago • 3 comments

I just had a message from the Windows Defender scan which removed Skater.exe with this message PUA:Win32/Vigua.A.

It might be my side but just raising this as something to investigate

LJFLAT avatar Sep 23 '23 00:09 LJFLAT

No source code, meaning this potentially has a virus. If you are not opensourcing, why would you give it free?

Or we may be we are too sceptical, dude obfuscated this executable as well, and defender thinks it is a virus.

I have neither time, nor willing to investigate...

mhasanunal avatar Apr 18 '24 06:04 mhasanunal

this is a virus

dapslegend avatar Nov 21 '24 20:11 dapslegend

Regarding antivirus usage, any .NET Obfuscator inserts unusual pieces of code into a protected .NET assembly. This can cause antivirus software to flag the obfuscated code as potential malware. Microsoft Defender, an anti-malware component of Windows, can be adjusted to avoid extensive scanning of obfuscated files.

If you've escalated your Windows user account's security level, it might also contribute to this issue. Your protected .NET assembly may contain suspicious characters due to obfuscation. To resolve this, adjust your Defender settings or revert your user security level.

Rustemsoft avatar Nov 21 '24 20:11 Rustemsoft