Hi Paul,
The anti-virus issues have been very frustrating – you’ll see various discussions here and on the GitHub project issues list.
It seems the trouble was caused by some malware authors using Excel-DNA as an easy way to create add-ins that in turn download and run malware executables.
So the anti-virus vendors try to pick some heuristic for detecting a ‘bad’ Excel add-in, and now they are mistakenly identifying and blocking all Excel-DNA add-ins.
I have Windows Defender running on my machine – with signatures last updated on 2022/06/09, and have not seen problems for many months.
This is when creating C# or VB.NET add-ins, with Excel-DNA version 1.5.1 or 1.6.0 previews.
Can you see what Windows Defender version or signatures you have running (maybe under the Windows Security tab)?
What version of the ExcelDna.AddIn package are you installing (I guess the latest release, which is version 1.5.1)?
I’d firstly recommend that you report the false positives to Microsoft.
They have been responsive in the past – better than some of the other A/V vendors.
Next you can try some other Excel-DNA versions to see if they are detected differently.
Best would be if you can use the current pre-release package version 1.6.0-Preview3.
Otherwise an older version 1.1 might also be fine.
There are some fixes in later versions, but for your purposes the older version might be fine, at least until your anti-virus stops blocking the newer versions.
Let us know what you find.
-Govert
--
You received this message because you are subscribed to the Google Groups "Excel-DNA" group.
To unsubscribe from this group and stop receiving emails from it, send an email to exceldna+u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/exceldna/9da4aa00-6afd-4bc9-9f97-c826be994e51n%40googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/exceldna/040101d87c4f%24ea5a80d0%24bf0f8270%24%40gmail.com.
Hi Paul,
AutoClose only fires in the case where an add-in is removed (from the installed add-ins list) during an Excel session.
It is not expected to run when Excel is closed normally.
I can’t imagine why there would be a difference for the anti-virus between the C# and VB.NET projects.
For the VB.NET add-in, be sure to make the functions ‘Public Shared ‘ in a ‘Public Class’ or put them inside a ‘Public Module’.
AutoOpen needs to have the right interface implementation story like this:
Imports ExcelDna.Integration
Public Class MyAddIn
Implements IExcelAddIn
Public Sub AutoOpen() Implements IExcelAddIn.AutoOpen
MsgBox("Add-In Loaded")
End Sub
Public Sub AutoClose() Implements IExcelAddIn.AutoClose
End Sub
End Class
----
I don’t seem to have the Microsoft Defender application front-end where you press Settings -> About.
I just have the built-in protection in Windows, and I can’t tell whether this is the same thing you have or not.
To view this discussion on the web visit https://groups.google.com/d/msgid/exceldna/47f0691f-2161-4a7f-a501-d0b3f2c8c580n%40googlegroups.com.
Hi Johan,
What anti-virus / security product are you dealing with, and is it currently flagging the version 1.6.0-preview3 add-ins as problematic?
Using the “ExcelDna” string in the packed file encoding is intentional.
My current thinking is that I don’t want to hide the fact that an add-in is made with Excel-DNA at all.
It would be great if your anti-virus vendor did not mistakenly classify all Excel-DNA based add-ins as malware.
The best way I know to improve their heuristics is to give them many different false positives, where they are making a mistake in identifying an add-in as malware.
That way, their heuristics will have to be improved to look beyond the implementation library in order to detect malware add-ins.
Otherwise we may soon find that no binary Excel .xll add-ins are allowed at all, and that might be a deeper hole to climb out of.
-Govert
From: exce...@googlegroups.com <exce...@googlegroups.com> On Behalf Of Johan Mulder
Sent: 10 June 2022 16:27
To: Excel-DNA <exce...@googlegroups.com>
To view this discussion on the web visit https://groups.google.com/d/msgid/exceldna/c2c81541-4011-4ed4-b772-6a420c5ac645n%40googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/exceldna/04a301d87d11%24ed201b50%24c76051f0%24%40gmail.com.