Rank 1
Telerik Support,
Just wanted to give a heads-up, was having an interesting problem with a client where our app wouldn't start up, eventually learned it was because Telerik.Windows.Documents.Core.dll was identified as a trojan by their Comodo One client and quarantined. Attached is a report of us adding the file to the exclusion list.
Thanks,
Kyle
14 Answers, 1 is accepted
Rank 1
We are not aware why the antivirus software is detecting the as a trojan, but I can assure you that our files are scanned quite often and we haven't detected any malware. It is possible that a file is considered as a thread because it is downloaded from the internet or it interacts with the file system.
I believe that adding the file to the exception rules of the antivirus will be a safe approach to move forward.
Regards,
Tanya
Telerik by Progress
I'm writing to let you know that we contacted Comodo to check why our assembly is detected as a malware and they confirmed it is not harmful. The false positive alarm is now fixed and you shouldn't experience similar issues if you upgrade the Comodo antivirus database to version <25641> or later.
Regards,
Tanya
Telerik by Progress
Rank 1
Rank 1
I believe that this false positive problem is ongoing because today (January 18, 2017) I installed COMODO Internet Security Premium 10 (version 10.0.0.6092) with the latest virus signature files. Very shortly after installation it quarantined the Telerik.Windows.Documents.Core.dll file which is included with our corporate phone system software. COMODO Internet Security Premium 10 thinks (incorrectly) that the file contains malware "Backdoor.Win32.NetWiredRC.DS.@346199067"
FYI the version of Telerik.Windows.Documents.Core.dll we are using is 2015.1.0401.40
It's not hard to go to the Quarantine and also add the file to the "excluded files" list but it would be better if the program did not do a false positive on this file in the first place.
I submitted the Telerik.Windows.Documents.Core.dll file as a false positive.
Thank you for reporting this and for sending the report to Comodo.
Since it was confirmed on their side that the alarm is false positive, I am afraid that the only thing we can do is to send reports to the team supporting the antivirus and there is not much we can do on our side to avoid putting the assembly under quarantine.
Regards,
Tanya
Telerik by Progress
Rank 1
Hello,
I can confirm that still there is a problem with false positive. Today one of our customers reported about a Comodo alert about Telerik.Windows.Documents.Core.dll. The version of Telerik package we are using is 2016.3.914.40.
Could you please take an action, so that Comodo would remove this false positive alert. We are hitting a reputation decrease when our customers see the alert (even though it's not true). If it will continue we will have to exclude Telerik controls from our project.
Best regards
DS
Thank you for the feedback.
We have already contacted the Comodo's support team but seems like they are whitelisting only a single specific file. The issue is already escalated to our management and we will continue the communication with Comodo to try resolving this false alarm for the Telerik products.
Regards,
Tanya
Telerik by Progress
Rank 1
Hi Tanya,
Is there any feedback on this case?
Our customers repeatedly report us the Comodo problem.
Regards
Damian
We contacted the Comodo team but we are still waiting for a reply from their side. I will write here once we have more information to share on the matter.
Regards,
Tanya
Telerik by Progress
Rank 1
Hi Tanya,
Come one guys... it's been 1,5 month since I've reported the problem to you, we are getting really frustrated...
We are distributing a commercial application to our customers, how do you think we are trying to explain it to them? ("no, it's not a virus, just close the AV software, don't worry, we will not harm you" - sounds stupid, right?).
You and Comodo are a large serious companies and both have an interest to solve this problem. Sure you can blame Comodo. But we are your customer. not the Comodos and we have a MAJOR problem with your product. If you still didn't cleared it then either you are not putting enough effort on it, or there is a deeper problem with the Documents.Core dll file and Comodo does not want to white list it...
I will not remind myself anymore, maybe it's time to start looking at the alternative solutions.
Best regards
I completely understand your frustration and I am sorry for that.
The responses we get from Comodo are that they will check our software and get back to us. We wrote to them several times and just yesterday we finally have a response from their side. Their conclusion is that there are few files that are not digitally signed but should be to add them to the Comodo's trusted vendor list. Those files are a part of one of our web suites and don't affect the Telerik.Windows.Documents.Core.dll in any way. However, Comodo requires all of the products to be checked and satisfying their requirements to add Telerik to the trusted vendors.
I will need to discuss the topic with the managers of the products and check what we could do to resolve that. I assure you that, if an issue is found in Telerik.Windows.Documents.Core.dll, we will let you know and try to resolve it as soon as possible. As I mentioned before, different versions of this assembly are already tested by Comodo and confirmed that are not harmful.
Regards,
Tanya
Progress Telerik
Rank 1
Hi,
I'm having the same problem with Comodo Internet Security.
Do you have any progress with this issue'
Best regards,
Pedro
We have been notified recently that they didn't receive our emails. However, the issue should be already resolved. I am posting a citation from the reply we received from Comodo:
"it seems that we had a false-positive problem regarding Telerik.Windows.Documents.Core.dll (all versions of it). Our avlab fixed this false positive and reflection should be live after updating to CIS database 27478. At the same time we are currently whitelisting all your dropped binaries from installer."
We hope that the issue will not reoccur but if you face any similar difficulties, I would suggest you to directly contact their support as they should be able to assist you.
I hope this is helpful.
Regards,
Tanya
Progress Telerik