Comments (2)
@greatfirewall
There is a chance that your copy is corrupted.
Vanara.PInvoke.Kernel32 is a signed Nuget. You can verify its integrity using the NuGet Verify Command.
If your copy is corrupted, it is likely that your system is compromised with malware that is infecting files.
We can download the package via https from https://www.nuget.org/api/v2/package/Vanara.PInvoke.Kernel32/2.1.0, by giving the url to virusl total (so, they download and scan the file without passing our potentially compromised system), I got this report: https://www.virustotal.com/#/url/b5a17db6446da9773e26c45f4dcceb2b1a1a081b7eea49487072f48810d099cd/detection (clean).
VirusTotal computes the hashes of the file:
MD5: eba2e1e1012b45b007d969c6030d5f9e
SHA-1: a005f6714ed68c732e0865190dc4cfd187526f90
SHA-256: cadd4aaa142da6e11ca6ae7c8cd3c7f701a3af8b49ae832383704eceeb7cc552
I also downloaded the package to my machine, and verified that the hash match (meaning that it was not compromised by entering my system, you can do the same check in your system), then I extracted it, looked for vanara.pinvoke.kernel32.2.1.0\lib\net45\Vanara.PInvoke.Kernel32.dll and uploaded it to VirusTotal. This is the report: https://www.virustotal.com/#/file/b2626685ebca72f27462df0408800d1db52f6600c6e6256f17f7487bba9a8b4b/detection (no malware detected).
VirusTotal also computes the hashes of the file I uploaded (which you can use as an alternative way of verification):
MD5: 3d01f7cd0ae21e09580ba0c41da57377
SHA-1: 553b8d57130bdab7ed20089675621bccaea8e1c5
SHA-256: b2626685ebca72f27462df0408800d1db52f6600c6e6256f17f7487bba9a8b4b
You can verify the hashes of your file, if they do not match, your copy is corrupted.
As per your system probably being compromised, I suggest to:
- Make sure your system and malware definitions is up to date
- Run - at least - your Windows Defender quick scan
- You can use sfc /scannow to find and repair any corrupted system files
- If it fails, you can use DISM.exe /Online /Cleanup-image /Restorehealth then repeat sfc /scannow, also check for updates again after it finishes.
You might also be interested in AutoRuns and Process Explorer from the Sysinternals Suite (from Microsoft). They can be configured to automatically verify digital signatures and verify with VirusTotal. AutoRuns will find all software that can start automatically (no, the list in task manager is not comprehensive), and Process Explorer does the same for currently running software. They will not upload files without your input, instead they will say "unknown" and you would have to tell it to upload the files at your own discretion. By the way, there is maximum file size (256MB as far as I know). They will need administrator privileges to be able to see software that starts from another user (which is something that malware can do programmatically).
from vanara.
I permit it, and remove it, then redownload from vs nuget manager, no alert again, thanks.
from vanara.
Related Issues (20)
- ShowContextMenu show Shell Context Menu but with no text and no icon HOT 3
- ShellItemPropertyStore do not update even if the property has already changed HOT 5
- Update DOT11_PHY_TYPE enumeration
- can't use lvitem struct in SendMessage for listview HOT 1
- ShellItemImages.GetImageAsync might throw NullReferenceException HOT 3
- Using char[] in place of StringBuilder HOT 2
- DPI_AWARENESS_CONTEXT enum values missing HOT 2
- Can't use the handle to read vhdx HOT 2
- `HRESULT.ToString()` is not thread-safe due to mutable global state. HOT 2
- Usage of `LibraryImport` instead of `DllImport` HOT 1
- RtlGetVersion not found in NtDll HOT 6
- A great project! HOT 1
- #nullableenabled brunch is not being merged into master HOT 4
- Kernel32.FILE_ID_128.Identifier returns incorrect values
- [Bug] MB_GetString make exe crashed and ExitCode is 3221226356 (0xc0000374) HOT 2
- RobiniaDocs API Explorer HOT 1
- Can not GetLastError HOT 1
- CM_REGISTER_NOTIFICATION callback: Incomplete eventData.u.DeviceInstance.InstanceId HOT 2
- FindNextPrinterChangeNotification SafePRINTER_NOTIFY_INFO is invalid HOT 2
- missing definition for StorageDeviceSeekPenalty. HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from vanara.