This script is Copyright (C) 2000-2016 Julio Cesar Hernandez
A backdoor is installed on the remote Windows host.
WinSATAN is installed. This backdoor allows anyone to partially take
control of the remote system. An attacker may use it to steal your
password or prevent your system from working properly.
Use regedit and find 'RegisterServiceBackUp' in
The value's data is the path of the file. If you are infected by
WinSATAN, then the registry value is named 'fs-backup.exe'.
Risk factor :
High / CVSS Base Score : 7.5
Nessus Plugin ID: 10316 ()
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.