locked
developing an antivirus for windows 7 RRS feed

  • Question

  • Hi 

    We are developing an antivirus in c #, it works fine on all windows version except windows 7 

    It seems that windows 7 does not allow it access Registry keys of our antivirus when UAC is on 
    However it works fine when UAC is Off.

    Any code in c # to resolve this 

    Any Suggestions

    Tech Expert
    Friday, March 12, 2010 10:37 AM

Answers

  • Hello Mike,

    The requirements for accessing the WSC(Windows Security Center) APIs and samples (for Windows Vista SP1 and above) are as follows:

    To register an antivirus product:

    Must be a member of the Microsoft Virus Initiative.

    OR

    Must meet the following three requirements:

    1. Must have a standard NDA with Microsoft.
    2. Must be a member of AVPD or a member of EICAR or must sign and adhere to a code of ethics relating to malware research and malware handling.
    3. Must meet independent testing requirements:  

             a.If you are using your own antimalware engine, you must pass VB100 and meet at least one of the following:

                     • ICSA Labs - Pass
                     • West Coast Labs - Pass
                     • AV-Test.de – 90% or higher
                     • AV-Comparitives – 90% or higher

             b. If you are packaging an antimalware engine from another company:

                     • The company who developed the engine must meet the above requirements.
                     • You must have at least one VB100 or similar award in the last 12 months.

    To register a firewall-only or antispyware-only product:

    1. Must have a standard NDA with Microsoft.
    2. Must not otherwise be providing an antivirus capability in any product, otherwise you must comply with the antimalware requirements above.

    Thanks,
    Rong-Chun Zhang

     


    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    Welcome to the All-In-One Code Framework! If you have any feedback, please tell us.
    Tuesday, March 23, 2010 10:45 AM

All replies

  • Hello Mike,

    By default, UAC does not allow application to write data to HKLM if it is start with restricted administrator token. If you want to get access to that key, please try to elevated(right-click and Run as Administrator) the application. 

    Also, a new manifest is added to Vista and later version, and the new manifest tells the operating system what token the application needs.

    Thanks,
    Rong-Chun Zhang




    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    Welcome to the All-In-One Code Framework! If you have any feedback, please tell us.
    Monday, March 15, 2010 3:14 AM
  • Hi 

    Thanks for getting back to me 

    it is allowing to read registry but not write it yet

    Will digital signing the .exe will fix the problem ?

    Second problem --

    How do i make windows know my antivirus is protecting the computer ?

    Your help is appreciated

    Thanks
    Mike

    Tech Expert
    Monday, March 15, 2010 11:00 AM
  • Hello Mike,

    The requirements for accessing the WSC(Windows Security Center) APIs and samples (for Windows Vista SP1 and above) are as follows:

    To register an antivirus product:

    Must be a member of the Microsoft Virus Initiative.

    OR

    Must meet the following three requirements:

    1. Must have a standard NDA with Microsoft.
    2. Must be a member of AVPD or a member of EICAR or must sign and adhere to a code of ethics relating to malware research and malware handling.
    3. Must meet independent testing requirements:  

             a.If you are using your own antimalware engine, you must pass VB100 and meet at least one of the following:

                     • ICSA Labs - Pass
                     • West Coast Labs - Pass
                     • AV-Test.de – 90% or higher
                     • AV-Comparitives – 90% or higher

             b. If you are packaging an antimalware engine from another company:

                     • The company who developed the engine must meet the above requirements.
                     • You must have at least one VB100 or similar award in the last 12 months.

    To register a firewall-only or antispyware-only product:

    1. Must have a standard NDA with Microsoft.
    2. Must not otherwise be providing an antivirus capability in any product, otherwise you must comply with the antimalware requirements above.

    Thanks,
    Rong-Chun Zhang

     


    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    Welcome to the All-In-One Code Framework! If you have any feedback, please tell us.
    Tuesday, March 23, 2010 10:45 AM
  • Hi Rong-Chun,

    How do we contact Microsoft to participate in this program?

    Adrian

    Friday, July 18, 2014 8:38 PM