Content
Tool-CPAU
- Type
- Program
- SubType
- Tool
- Discovery Date
- 03/09/2006
- Minimum DAT
- 4714 (03/09/2006)
- Updated DAT
- 4714 (03/09/2006)
- Minimum Engine
- 5.1.00
- Description Added
- 03/09/2006
- Description Modified
- 03/27/2007 2:34 AM (PT)
Tab Navigation
Characteristics
McAfee® Avert® Labs recognizes that this program may have legitimate uses in contexts where an authorized administrator has knowingly installed this application. If you agreed to a license agreement for this, or another bundled application, you may have legal obligations with regard to removing this software, or using the host application without this software. Please contact the software vendor for further information.
See http://vil.nai.com/vil/DATReadme.asp for a list of Program detections added to the DATs.
See http://vil.nai.com/vil/pups/configuration.htm for information about how to enable, disable, and exclude detection of legitimately installed programs.
Distribution
This detection is for a "potentially unwanted application", it is not a virus or trojan. It is a command line tool that allows one to launch a process with different permissions than what the user's current logon provides.
The application may be misused with malicious intent by hackers in order to enhance permissions on a target machine. This application will not work for Win9x/Me based systems and is targeted at the Windows NT range: NT/2000/XP/2003.
Installation
When executed via the command line, the following command line options are provided:
Usage:
CPAU -u user [-p password] -ex "WhatToRun" [switches]
user User to log on as. Ex: user or domain\user
password User's password
WhatToRun What to execute
Note: The detection of these type of files are not automatically activated. Users who would like to check for the presence of these kind of files on their system should run the command line scanner with the /PROGRAM switch.
Aliases
Aliases
- HackerTool/CPAU (Fortinet)