AdminMagic
AdminMagic is a quick and easy remote desktop control utility. It is a network application that allows administrators to manage and control PCs or networks from a remote location. Typically used in an enterprise environment, Commercial Remote Control
Tools have legitimate uses for I.T. administration and are not harmful unless installed and used without the knowledge of the computer user or network administrator. It includes Low risk threats that should not harm our machine or compromise our
privacy and security unless they have been installed without our knowledge and consent.0
General information:
| Malware Name: |
AdminMagic |
| Malware Type: |
Remote Control |
| Company Name: |
Tools4ever |
| Company URL: |
http://www.tools4ever.com/
|
| Threat Level: |
Low Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
Tools4ever was founded in 1991 as a Banyan Vines and Windows NT-enhancement specialist. Its most widely known products are the disk quota management product SpaceGuard , and the user administration suite of tools UserManagemeNT . Tools4ever is a Microsoft
Certified Partner and over 2000 companies all over the world use Tools4ever's products. Tools4ever specializes in systems administration enhancements for Windows NT and Windows 2000. Tools4ever is also committed to delivering superior customer
support for all its products. Tools4ever has offices in the USA (New York) and Europe (UK, France and The Netherlands). All of Tools4ever's products are developed from the ground up for Windows 2003-XP-2000-NT. All products are downloadable from
its website and may be evaluated for 30 days with full functionality.
Spyware Description:
AdminMagic is a quick and easy remote desktop control utility. It is a network application that allows administrators to manage and control PCs or networks from a remote location. Typically used in an enterprise environment, Commercial Remote Control
Tools have legitimate uses for I.T. administration and are not harmful unless installed and used without the knowledge of the computer user or network administrator. It includes Low risk threats that should not harm our machine or compromise our privacy
and security unless they have been installed without our knowledge and consent.0
Characteristics/Symptoms:
-> It is a network application that allows to manage and control PCs or networks from a remote location. -> It allows to access another computer without explicit authorization. -> It can also be used to monitor and steal information
from the remote computer -> Slows down the performance of PC0
Additional information might be found here:
Processes Running:
RepSvc.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\All Users\Desktop\AdminMagic.lnk |
1433 |
Shortcut |
| C:\Documents and Settings\All Users\Start Menu\Programs\Tools4ever\AdminMagic\AdminMagic Help.lnk |
567 |
Shortcut |
| C:\Documents and Settings\All Users\Start Menu\Programs\Tools4ever\AdminMagic\AdminMagic product page.url |
150 |
Internet Shortcut |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\AdminMagic Service |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{38E7D1E1-F724-4662-BFC4-B49A37493937} |
ProductGuid |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{38E7D1E1-F724-4662-BFC4-B49A37493937} |
UninstallString |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{38E7D1E1-F724-4662-BFC4-B49A37493937} |
Version |
