Author Options:

How to make antivirus programs stop blocking my software? Answered

I am in the beta testing stages of a program I recently developed.  One of the problems that I have with it is that anti-virus programs tend to block it due to the fact that they do not recognise it.  Also, microsoft smart screen and google chrome try to block it because it is not a commonly downloaded file (yet... yes, I tend to be optimistic).  In addition to the program not being well known, the program is designed to automate tasks used in computer repair... especially remote computer repair.  This can make good antivirus programs suspicious since a lot of what technicians do to a computer could also be used maliciously (some of the tasks that this program does are editing the registry, turning the firewall on and off, etc. just to name a few).

Is there an easy way to get my program recognised as a safe application by these programs?  I have tried sending the file to the antivirus companies for analysis on the programs that support that feature, but evidently they are too busy or just don't care since my program is still blocked.

Thanks in advance for your help!

Here is a detailed explanation of what the program does... it is broken into two different parts (1) automated remote access and (2) a technician's toolkit.
So basically my original idea was to create a program to automate the sending of remote assistance invitations (since I was just getting fed up with walking people through how to setup a remote assistance program over the phone).  This program just prompts for a ticket number (obtained from the technician on the phone); then creates an .msrcIncident file using the ticket number as the password.  Once the technician connects, the remote program has the toolbox built into it (I am also making the toolbox available separately).  This toolbox prompts the technician to select which tools the technician thinks he/she will need; and then downloads those programs automatically.  Once the programs are downloaded, it allows the technician to launch them from the program, or if the technician later realises that he/she needs more programs than he/she originally downloaded; they can download them directly from the toolbox.  Most of the programs have portable versions that the toolbox deletes on exit; but for the few programs that do not have a portable version, there is a shortcut to uninstall the program.  Any programs that are still installed are automatically uninstalled when the toolbox closes, it deletes the portable versions, closes any pinholes that it opened to allow the remote assistance through, etc.  Basically the same things that we do every time that we go to a computer; only a lot easier and faster.

Since the program is not built to allow anything malicious to be done with it, I'm sure that anyone who reviewed the code would find that it is fine.  I'm not asking if there is a way for the antivirus programs to blindly trust my program... I wouldn't want that either.  What I am asking is would there be any way to send these anti-virus companies my source code to have them analyse it?




Best Answer 5 years ago

I might be wrong but in my experience most AV programs block only codes that are in their definitions. So the program you are writing must have code elements that are recognized as known virus's. Or it could have security risks that again are known to be a problem. Otherwise the virus definitions would have to contain recognition for every know program ever written to prevent it from excluding any software. That would not be very practical. Maybe its windows security settings that are blocking it and not AV software.

Yes, I am assuming that the default windows security settings will try to block the software... that was just some of the problems that I ran into during the debug process. There are quite a few security holes that this program opens up; but nothing more than any remote access software.

Part of the reason that I built this program is to eliminate any security holes that computer technicians may leave behind when they are done with a computer. I came up with the idea when one of my technicians turned off the firewall on my server for troubleshooting; but forgot to turn it back on when he was done. I got a call the next week from my VoIP carrier saying that my PBX that ran on that server was making suspicious calls to siberia. (I have no business in siberia.) Although it does open up a few security holes in a system; it closes them back up when the program exits. There is no way to end the program through it's GUI without it automatically going through and closing the holes that it opened. I'm sure that if my technicians are forgetting to close holes when they are done; other places must be too. (This happened right around the time that I was considering writing a remote access software that was easy for someone with no computer knowledge to install and allow me to work remotely without having to spend close to an hour trying to walk an 80 year old lady through installing remote access software over the phone... which gave me idea of combining the two programs together.)

I've seen technician toolbox programs used before, usually very proprietary programs that are specific to one company only. The problem is that most of them don't really clean up after themselves. Mine is designed to make sure that nothing is left behind that could be used against the client. I think my edit to the question would help make more sense out of my question... I didn't use the right wording the first time.


There are already programs like you are building. They tend to be targeted to enterprise applications, I know where I work they have something like that. When you call the help desk it puts your computer info into their system automatically and the tech can send a remote access request from their end without needing to get any more info from the "customer". The tech is working on their own computer so they already have all the tools installed.

Right, I have seen those programs too. But what about the small time "mom and pop" repair shop that doesn't have thousands of dollars to spend on a custom designed program? Granted there is logmein rescue, but that isn't cheap either. Although I'm not going to give this program away for nothing (especially since I plan on doing slight customisation to it for each customer), but I'm planning on charging a one time fee of $100 for it. That is a whole lot less than any other program even similar to it. Granted, if you have the money, the other programs will be a lot better (and probably faster), and I have no intention of making my program compatible with macs (they are on their own in my book), but even if it ends up just working for my company and my company only; I think it would still be worth it to not have it recognised as a virus every time a client runs it.


5 years ago

I have no answer, even though understand your question..

Are you kidding us ?
Is it really you ?
But do you realize this makes you sound like a complete evil nerd hacker !!


I'm not kidding, I just worded it wrong.
Do you really think I would allow ANY of my accounts to get hacked?
Except for the evil part, that's what I am! (Assuming you're using the RFC 1983 definition of hacker.)

I think my edit will explain what I am trying to do better.


You won't be able to get the program around the virus scanner. If that was an easy thing to do; then the virus scanners wouldn't be very effective now would they? As you said your program makes features available that could easily be used the wrong way. If your program is allowed by the scanners then those features that can do harm are open for anyone to use, thus making the system venerable to an attack.

As Vyger said, the scanners check code for anything matching there definitions. Those definitions are chunks of code that are known to cause exploitable conditions in the PC. Such as code that opens ports that are better off closed. Even if the scanners can make exceptions for only your program to use those resources it still leaves any system running your program exploitable. Your program becomes a back door into the system.

I phrased my question wrong... more or less I was asking if there was any way to send my source code to these antivirus companies to have it analysed? I wouldn't expect an antivirus program to blindly trust a program... you are correct that would not be effective. (Although who knows how Norton works these days! It is so ineffective that I wonder if it does blindly trust programs!)

The way my program is designed; it does not allow anything malicious to happen from the program. In fact, it is designed to help close security holes often overlooked when technicians are working on a computer. It merely uses parts of the computer that if it were coded differently, could cause harm to the computer.

I think my edit to the question will help explain myself better... I didn't do such a good job of wording the question the first time.