Windows AutoRuns JavaScript MSHTML

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

Report JavaScript running on startup.

Description :

Reports if one of the autorun keys in the registry is using the
JavaScript MSHTML technique to allow startup actions. This technique
is not common in most software and has been shown to be used by
malware to perform persistence without having a file on disk.

The detection of this technique does not imply that the remote host
has a malware infection, but an administrator should verify.

See also :

http://www.nessus.org/u?37e3a88e
http://www.nessus.org/u?6738698f

Solution :

n/a

Risk factor :

None

Family: Windows

Nessus Plugin ID: 80887 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now