Sign in to follow this  
usoris

False positive - Remote Utilities

Recommended Posts

Hello

 

Some Remote Utilities files are detected as:

 

 

Trojan.Generic.12415423

 

 

The files are enclosed. Remote Utilities is legitimate remote desktop software available here www.remoteutilities.com. Please, take appropriate measure to remove the detection.

 

There is no log because we didn't install your software. The data is taken from today's VirusTotal.com run/report. There are two files being detected:

 

1. http://www.remoteutilities.com/download/viewer6.0en.msi

2. The attached one.

 

Thanks.

Conrad

 

rutview.zip

Share this post


Link to post
Share on other sites

Thanks!

 

We are the manufacturer of the product, by the way. Do you have any whitelisting program/initiative for software vendors?

I can add your site to whitelisted after experts verdict about your soft. By the way a set of antivirus vendors detect Remot Admin Tools as Riskware and not-a-virus:RemoteAdmin. Because your software can be used by an attackers and remade for using it as a Backdoor.( Sure in such case your digital signature will be broken.) So your binaries will be detected in any case.

Share this post


Link to post
Share on other sites

I can add your site to whitelisted after experts verdict about your soft.

Yes, having our product whitelisted will be a great boon. Thanks.

 

By the way a set of antivirus vendors detect Remot Admin Tools as Riskware and not-a-virus:RemoteAdmin.

Well, the real problem is that many users just don't care about little differences in virus classifications. Just anything thrown at them by their antivirus software is taken for granted. If they see a warning message, they think "It's a virus" (that's how human brain works, it simplifies things).

 

Because your software can be used by an attackers and remade for using it as a Backdoor.( Sure in such case your digital signature will be broken.) So your binaries will be detected in any case.

That's why we ask, is it possible to distinguish between a signed file and an unsigned one? After all, we assume that antivirus companies nowadays are capable of doing that. :)

Share this post


Link to post
Share on other sites

Indeed, no detection any more. Have you updated your signatures? :)

I will notify you when i receive official reply about terminating of the detect for your file.

 

That's why we ask, is it possible to distinguish between a signed file and an unsigned one?

 

I think it was Real-time detect as the reaction for an activity of your application.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this