Hemo2 Posted December 18, 2013 Report Posted December 18, 2013 Our Symantec Enpoint Protection anti-virus software this week started to flag and quarrantine/delete the "C:\Program Files\Total Network Inventory\Nmap\ncat.exe" file. If we are not using the NMap Engine for scanning and are instead using the Classic Scan engine, will anything in TNI be affected now that this ncat.exe file has been deleted by our anti-virus software? Or should we look at adding an exception within Symantec Endpoint Protection for this file? Quote
Support Posted December 19, 2013 Report Posted December 19, 2013 Hi Hemo2, This file contains no viruses. It belongs to a third-party module and we can not change it. However, it is not used by the program and can be safely removed. Its absence does not affect TNI even if you would use the Nmap engine (only nmap.exe is used among all EXE files in the Nmap folder). It is there just for the sake of Nmap complete package. Here are the results of the antivirus scan for this file. You can see that only Symantec detects something, while all other antiviruses don't detect anything. Even then, Symantec does not say that it is a virus, but a special category of something suspicious (NetCat). I would consider it a false positive (which sometimes happens) and add an exception if possible. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.