lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <93bd852904101209177308d5f4@mail.gmail.com>
From: ken.securitylist at gmail.com (Ken S)
Subject: Norton AntiVirus 2005 treats Radmin as a Virus ??!

This is part of Symantec's support for "expanded threats", which
includes adware & spyware.  It is an option in Symantec AntiVirus
Corporate Edition version 9 as well.  We have it set to "log only", so
we're not automatically deleting these programs.  With SAV 9, it only
flags expanded threats during a scheduled scan, not in real-time.  I'd
like to see more capabilities, including the ability to fully
uninstall these programs, but because of questionable catches like
this one, we're going to have to rely on human intervention to make
some of the uninstall decisions.  I must say that it has been very
interesting (and a bit disconcerting) to see all the adware/spyware
that's on people's machines!

Ken


On Tue, 12 Oct 2004 09:15:22 -0500, Todd Towles
<toddtowles@...okshires.com> wrote:
> That is a widely used tool that is dropped by various malware programs. I think even one of the JPEG exploits was dropping radmin.exe
> 
> It be better to assume you have a infection and prove yourself wrong than the other way around. Look into it pretty deep, I would suggest.
> 
> 
> 
> > -----Original Message-----
> > From: full-disclosure-admin@...ts.netsys.com
> > [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Sowhat .
> > Sent: Tuesday, October 12, 2004 7:51 AM
> > To: full-disclosure@...ts.netsys.com
> > Subject: [Full-Disclosure] Norton AntiVirus 2005 treats
> > Radmin as a Virus ??!
> >
> > hi ?list
> >
> > I have installed Norton AntiVirus 2005 ,and when i open my
> > F:\ directory ,Norton pops up and show that,"Norton AntiVirus
> > has detected a virus on your computer" "Boject Name
> > F:\radmin.exe" "Virus Name Hacktool".
> >
> > Is RemoteAdministrator a commercial remote control software
> > or a Hacktool ?
> >
> > the following information is copied from the Radmin's site:
> > (http://www.radmin.com/)
> >
> > "This fast, reliable, easy-to-use pc remote control software
> > saves you hours of running up and down stairs between
> > computers. Radmin allows you to take control of another PC on
> > a LAN, WAN or dial-up connection so you see the remote
> > computer's screen on your monitor and all your mouse
> > movements and keystrokes are directly transferred to the
> > remote machine. Radmin provides fast secure access to remote
> > PC's on Windows platforms.  "
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
> >
> 
> 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ