- July 8th 2012, version 2, SecurityCenter 4.4
- Required Tools: Nessus
- Download Report - Malicious Process Detection v2
- Download Template - Malicious Process Detection v2
Everything you need to know about plugin 59275 is covered in the Tenable blog post entitled Detecting Known Malware Processes Using Nessus. Version 2 of this template accounts for the plugin update that divided the original detection results of 59275 using two plugins, 59275 and 59641.
One of the requirements of using plugins 59275 and 59641 is that the Nessus scanner being used by SecurityCenter is capable of performing DNS lookups to the Internet. If you are initially unsure of how the host that Nessus is installed on is configured for DNS lookups you may wish to run a test using a credentialed scan policy (ensuring 59275 is enabled) via the Nessus GUI and look at the Audit Trail result.