Path: ...!tr3.iad1.usenetexpress.com!feeder.usenetexpress.com!tr2.eu1.usenetexpress.com!news.uzoreto.com!eternal-september.org!feeder.eternal-september.org!reader01.eternal-september.org!one-in-the-eye-for-dustin.eternal-september.org!.POSTED!not-for-mail
From: Anonymous <Any@mouse.invalid>
Newsgroups: alt.comp.os.windows-10,alt.computer.workshop
Subject: Re: Second opinion requested! Does anyone else get a warning? (was - Oops! (Was - Re: '3D'))
Date: Thu, 11 Jun 2020 09:44:20 +0100
Organization: A noiseless patient Spider
Lines: 39
Message-ID: <rbsqt5$3td$1@one-in-the-eye-for-dustin.eternal-september.org>
References: <2LydnQtYzodkUkXDnZ2dnUU7-WXNnZ2d@giganews.com> <Om9CG.145058$Gm.106997@fx35.ams1> <Pp9CG.145059$Gm.112174@fx35.ams1> <WYadnVKQjcEHF0TDnZ2dnUU7-f_NnZ2d@giganews.com> <rm2mdf567mmofdghdq1b40hddlu7of9t5t@4ax.com> <4bMCG.37241$b86.32866@fx11.ams1> <rbgjfd$pum$2@dont-email.me> <060620201405165574%nospam@nospam.invalid> <VJKDG.10$qj7.7@fx04.ams1> <rbo9ie$359$1@dont-email.me> <5ARDG.15$WO.0@fx38.ams1> <MJWdnae5vY2lhX3DnZ2dnUU7-bmdnZ2d@giganews.com> <1I_DG.3338$mZ6.3197@fx17.ams1> <ivd1efpvsmbk9eh7mk7pin5dsad2k69s9p@4ax.com> <rbqgeg$327$1@dont-email.me> <6D6EG.902$ay7.435@fx22.ams1> <rbrcl8$4lu$1@dont-email.me> <lTbEG.1808$F86.1576@fx36.ams1> <rbso6u$kqj$2@apd.eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Thu, 11 Jun 2020 08:44:21 -0000 (UTC)
Injection-Info: one-in-the-eye-for-dustin.eternal-september.org; posting-host="797fec6b3afcbe6562da26fe90be7745"; logging-data="4013"; mail-complaints-to="abuse@eternal-september.org";	posting-account="U2FsdGVkX1+ny+CcEU43rOM0UGFvdxrV"
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.6.0
Cancel-Lock: sha1:lQ3b3eT2POhsvsqXDCW3LVaGEys=
In-Reply-To: <rbso6u$kqj$2@apd.eternal-september.org>
X-Antivirus-Status: Clean
Content-Language: en-US
X-Antivirus: Avast (VPS 200610-10, 06/10/2020), Outbound message
Bytes: 3679

On 11/06/2020 08:57, Apd wrote:
> "David_B" wrote:
>> On 10/06/2020 20:35, Paul wrote:
>>> David_B wrote:
>>>> On my old iMac, I downloaded and installed the 'Trial' version of
>>>> ClamXav. I then uninstalled it with the official uninstaller. I then
>>>> used the AppCleaner software - and it found all manner of 'stuff'
>>>> which ClamXav had left still installed.
>>>>
>>>> My concern is that what is 'left behind' MAY be doing malicious things
>>>> - with the user of that computer being completely unaware of anything
>>>> untoward happening. The product developer refused to discuss this
>>>> possibility with me. :-(
>>>
>>> It is common industry practice ("code of the hills") to not
>>> discuss the details of AV implementations. You could, for example,
>>> be a Black Hat who is looking for a MacOSX vulnerability idea, and
>>> whatever the developer had jammed into the OS, might be suggestive
>>> of an API a Black Hat could attack.
>>
>> Ah! Thank you, Paul. :-)  That's not something I have ever considered,
>> nor has anyone else ever mentioned such a thing!
> 
> Because I don't think it applies in this situation. The software was
> supposed to be uninstalled. The leftovers you had were a marker (so it
> would know about a reinstall) and possibly log files and other
> ephemeral stuff.

Did you carry out exactly the same procedure?

It would be interesting to review the "marker" and "ephemeral stuff".

Or are you simply guessing?


-- 
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus