Tools
Riskware:W32/Radmin
Summary
Exclusion
If the user is aware of the security risks involved and wishes to proceed with installing and using this program, there is no reason not to do so.
The user may then elect to exclude (whitelist) the application's folder from subsequent scanning.
Note
For instructions on excluding files from scanning, please see:
Product documentation for various versions of F-Secure products are available on the Documentation section of the website.
Additional Details
This is a legitimate remote administration tool that can be exploited to give full system control to a remote user.
This program is usually utilized by authorized system administrators for administrative purposes. It may however be converted for malicious use as a hacker tool if some of its files are repacked, repackaged or trojanized. The legitimate program may also be modified to force it to listen to a different port, potentially providing an entry point for a remote attacker.
If the presence of the tool on the system is unnecessary or unexpected, it should be removed.
Note
- Repacked - This involves packing the original program file using a binary compressor such as morphine, upx, aspack
- Repackaged - Bundled together with other programs and silently installed
- Trojanized - The program is silently installed without the user's knowledge or authorization