Ethereal-users: Re: [Ethereal-users] Found "Family Key Logger" in 0.9.11 ...

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Raymond Wee <raymondwee@xxxxxxxxx>
Date: Thu, 10 Apr 2003 13:50:39 -0700 (PDT)
Hi Gerald,

Thanks for your prompt response. Sorry for the delay
on my part. Yes, I was running Pest Patrol v 3.2 (Jun
18, 2002). I've attached my findings & info from PP
fyi pls.

I'm asking around my peers if others also obtained the
same messages. Will revert if you need feedback.

Yes, I've downloaded PP from the web. For Ethereal,
they are also obtained from the web although some
obtained from org. like SANS also had the same
messages. They are contained in the Installer exe's.
I've actually installed the software as well. Once
installed, the same msgs pops up for ethereal.exe and
uninstall.exe (if these are info you need).

The strange thing is that it didn't trigger the other
softwares like PPMem (PP in Memory) and Norton AV...

Hope the above additional info helps.

Thanks again for your prompt responses and sorry for
the delay.

Cheers
Raymond Wee
Singapore



--- Gerald Combs <gerald@xxxxxxxxxxxx> wrote:
> On Wed, 9 Apr 2003, Gerald Combs wrote:
> 
> > On Wed, 9 Apr 2003, Raymond Wee wrote:
> >
> > > Please advise if you are aware and whether this
> is a
> > > false positive. Some short lines of
> enlightenment
> > > would of course be most welcomed !
> > 
> > Are you running PestPatrol?  PestPatrol has been
> generating false
> > positives for various Ethereal installers for a
> while now.  I opened a
> > trouble ticket on the PestPatrol site in August. 
> In September they said
> > they would "look into it."  I haven't heard
> anything since.
> 
> Also, is the Ethereal installer or one of the
> installed executables or
> DLLs being flagged?
> 


__________________________________________________
Do you Yahoo!?
Yahoo! Tax Center - File online, calculators, forms, and more
http://tax.yahoo.com