Conrad Sallian's community posts

Hello David,

Since putting in this comment, Webroot responded to me that they had seen RU used as a hacking tool, and that's why they were treating it that way.

That was a lazy answer. Just about any remote access tool can be used (and is used) for malicious purposes. Our legitimate and digitally signed files have nothing to do with patched builds or various other malware builds (such as droppers, loaders, etc). Isn't it the job of antivirus software to stop such malware?

Instead, they just found an easy way and decided to block the legitimate files too. You can write them that and ask them to do their job instead of trying to save their time by abusing legitimate software such as Remote Utilities.

Hello David,

This is a false positive detection. According to VirusTotal our signed rwln.dll file is being detected only by Webroot and Eset https://www.virustotal.com/en/file/8a0254dae0ef28ab17baa7bf2954b5df08542fcd7a42e623­731efb06394df46e/analysis/1542078254/

We will send a false positive report to them and ask to remove the detection.

Hi Keith,

what i have noticed though is i have upgraded my older hosts but the viewer still show that they are running an older version until i log in

This is because the Viewer only knows that the Host version changed after it logs in on the Host. The online status just shows if the Host is available - other information, such as Host version number etc. isn't transferred in this mode.

Hello Douglas,

Thank you for your message.

Please, locate and send us the Host log files for examination at support@remote-utilities.com . Here is how to find them https://www.remoteutilities.com/support/docs/host-log/

Hello Nijel,

Thank you for your message.

Unfortunately, we couldn't reproduce the issue. Just downloaded and ran Microsoft MRT on a Windows 10 machine with all Remote Utilities modules installed, including RU Server , but neither was deleted or marked as infected. They are working normally.

Here is the scan result:



Perhaps, the removal tool signature base was updated since the time you ran it?

Hello Anr,

The User Account Control on the Host computer might be causing this.  Try disabling the UAC and check if your setup works as intended.

It looks like UAC is the reason.

Hello Alan,

Thank you for your message. Yes, please submit a FP report to IOBit. This is obviously a false detection.

Hello Barced,

Thank you for the report. We will immediately contact McAfee and submit a false positive removal request.

Hi Steven,

I'm glad to hear you resolved the issue.

how do I mark this as solved?

There is no need for that, here in the community we usually just keep the topics open.

Thanks!