In this presentation we will show the weaknesses of heuristic antivirus engines using ollydbg and ida Pro by removing its functions and signatures encrypted in memory. New alternatives to evading antivirus software that uses heuristic analisys will be shown, for example,uploading APIs using variants of the PEB structure and reading function names in the dll.