Why does the use of the functions WriteProcessMemory CreateRemoteThread trigger "Probably unknown NewHeur_PE virus"? I am a programmer and use this functions to run my own to the main program attached exe files from memory, without saving them to disk (preventing that user just copy and use them for something else). Since the last nod32 update, I cant compile my projects any longer, if they use this 2 functions in the code. Thats not a virus, I am not writing a virus. I think, nod32 believe based on this 2 functions that something weird is going on and block it. What can I do about it? I currently do not know another way of running an exe from memory without processing "by hand" what the exe loader of windows does.