Author Topic: False positive detection for LiteManager  (Read 937 times)

Offline Litemanager

  • Newbie
  • *
  • Posts: 6
False positive detection for LiteManager
« on: January 06, 2019, 08:14:18 AM »
Good day! I am a developer of the program LiteManager, our main file of the program LiteManager, detected as
ApplicUnwnt[at]#zj683ta6kla0

 there are no any Dangerous or malicious features for User , also all executable files of our program are signed by a digital certificate. We have done a lot of work on our program to eliminate its harmful use. The request to exclude false positive on the file.

Link to the file
http://litemanager.com/soft/litemanager_4.9.zip

If it possible, please add version 4.9 of LiteManager to the white list.
It is 100% legal software.
Best Regards!

VirusTotal report
https://www.virustotal.com/#/file/4ea9aa6f3fc2d71e0c7a7d2dfe516c855a6c9a91d0ede1f7c8bb9f34307597cb/detection

Offline meldan

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 3240
Re: False positive detection for LiteManager
« Reply #1 on: January 06, 2019, 09:28:18 AM »
Hi,

Thanks for reporting this.
We'll check it.

Kind Regards,
Erik M.

Offline Chunli

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 2582
Re: False positive detection for LiteManager
« Reply #2 on: January 06, 2019, 10:13:20 PM »
Hi,Litemanager

Thank you for your submission.
Applications found to be potentially unsafe;not suitable for whitelisting.
if you intent to use it further,you can add it to exclusion list.

Kind Regards
Chunli.chen

Offline Litemanager

  • Newbie
  • *
  • Posts: 6
Re: False positive detection for LiteManager
« Reply #3 on: January 07, 2019, 06:47:30 AM »
Hi!
It is possible to recategorize detection for example on not-a-virus.Remote.Admin or something similar.

Offline sjea_nz

  • Newbie
  • *
  • Posts: 1
Re: False positive detection for LiteManager
« Reply #4 on: January 07, 2019, 04:28:23 PM »
Hi Chunli,
I get why any Remote Access Application can be potentially unsafe.
Can you enlighten me why LiteManager is different to Teamviewer? (and others)
They are both Remote Access Applications, however Teamviewer passes Comodo tests.

Regards
Selwyn

Offline Litemanager

  • Newbie
  • *
  • Posts: 6
Re: False positive detection for LiteManager
« Reply #5 on: January 13, 2019, 03:35:39 AM »
It still detected as
ApplicUnwnt[at]#km9bok7nvr9g

Not friendly for end User, possible change to RemoteAdmin or LiteManager.Riskware, more readable for users ?

Hope on your help!

Offline Ionel

  • Comodo Staff
  • Comodo's Hero
  • *****
  • Posts: 3531
Re: False positive detection for LiteManager
« Reply #6 on: January 14, 2019, 07:04:53 AM »
Hi!

We are looking into this and will provide a feedback soon.

Thanks and regards,
Ionel

Offline Litemanager

  • Newbie
  • *
  • Posts: 6
Re: False positive detection for LiteManager
« Reply #7 on: February 04, 2019, 06:21:41 AM »
Hi all!
I just want to notify about false positive detection on one of our files, ROMFusClient.exe

Malware[at]#1dtohq7mik9lw
https://www.virustotal.com/#/file/91f8302cb6593b4092807bf4c8eb2aec282a064beefec9aa70ce91c61b921d59/detection

Please recategorize it to Unwanted or not-a-virus.RemoteAdmin

Offline abinaya

  • Comodo Staff
  • Newbie
  • *****
  • Posts: 24
Re: False positive detection for LiteManager
« Reply #8 on: February 06, 2019, 04:24:58 AM »
Hi Litemanager,

The Detection name is updated.

Best Regards,
Abinaya R

Offline Litemanager

  • Newbie
  • *
  • Posts: 6
Re: False positive detection for LiteManager
« Reply #9 on: February 22, 2019, 07:42:49 AM »
Its me again, please fix detection for ROMViewer.exe, false positive or recategory it
ROMViewer - absolutaly safe for end user
http://litemanager.com/soft/pro/ROMViewer.zip

Detection
Malware[at]#u7qpdyxunnaq

Virus total
https://www.virustotal.com/#/file/8d62acec76a097e901bcb97ae0e6477e7922b2cb4fd7d44e796c9c44206b68aa/detection

Offline liosant

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1000
  • Terra é circo onde nós somos palhaços...
Re: False positive detection for LiteManager
« Reply #10 on: February 22, 2019, 03:49:46 PM »
Sorry for intrusion, but remote access applications, allows malicious people to access, modify, remove, send sensitive data such as user and password, bank account data ...
In my humble opinion remote access applications should not be considered safe;

Exemples; ardamax keyloggers, trojansrat, Teamviewer...

Companies and developers may be suitable, but anyone who makes use of their applications!

Offline ReeceN

  • Comodo Loves me
  • ****
  • Posts: 173
  • Paranoid B#st#rd - CIA
Re: False positive detection for LiteManager
« Reply #11 on: February 22, 2019, 04:21:54 PM »
Sorry for intrusion, but remote access applications, allows malicious people to access, modify, remove, send sensitive data such as user and password, bank account data ...
In my humble opinion remote access applications should not be considered safe;

Exemples; ardamax keyloggers, trojansrat, Teamviewer...

Companies and developers may be suitable, but anyone who makes use of their applications!

I agree. But also think that blocking it as a PUP or Malicious is the wrong way to go about it. E.g. If you unblock a RAT to use for legit reasons, then someone exploits it via another safe app, then you may not be alerted at all.

Therefore I think HIPS should always ask for permission to run Remote Access Tools. Or at the very least show a notification.

Offline Litemanager

  • Newbie
  • *
  • Posts: 6
Re: False positive detection for LiteManager
« Reply #12 on: February 23, 2019, 01:25:02 AM »
Just look at ROMViewer.exe it is main module for admin, it make control on the remote side but not for itself,
ROMViewer - absolutaly safe for end user
http://litemanager.com/soft/pro/ROMViewer.zip

Viewer main window


 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek