False Positive: UltraVNC_1.0.5.3_update.exe

False Positive:

UltraVNC is a legitimate remote access tool that I installed myself. It is not a virus or any other kind of malware.

Product: UltraVNC
Web Site: http://ultravnc.com/
Detected File: UltraVNC_1.0.5.3_update.exe
Detection Name: UnclassifiedMalware
Virus Database Version: 7403 (2011.01.15)
File MD5: f027bebce5be8a85edf124673fd8ea0e
On-line Analyses:
http://www.virustotal.com/file-scan/report.html?id=497e29bedea533be29ebe06098dbfa1e593acd92671068093e6bc60175a6df5e-1295137686

http://camas.comodo.com/cgi-bin/submit?file=497e29bedea533be29ebe06098dbfa1e593acd92671068093e6bc60175a6df5e

Hi,IByte

Thank you for reporting this. We’ll check it and get back to you soon.

Best regards
Chunli.chen

Hi IByte,

Reported file is potentially unsafe application, if you intent to use it further,you can add it to exclusion list.

Regards,
Haja

Reported file is potentially unsafe application
On what grounds? *sigh* You might as well add Windows to the list of unsafe applications, it contains a Remote Assistance feature... I could understand a classification like [url=https://forums.comodo.com/av-false-positivenegative-detection-reporting/cis-malware-naming-rules-for-potentially-dangerous-applicationsriskware-t38506.0.html]Application[/url], but nothing more serious.

(I’ve noticed CAV generates a relatively high number of false positives anyway, especially in the UnclassifiedMalware and Heuristic categories, even with heuristic sensitivity set to low.)