Unmanarc Remote Control Server (URCS) Detection
Critical Nessus Plugin ID 15405
SynopsisThe remote host may have been compromised.
DescriptionThis host appears to be running Unmanarc Remote Control Server (URCS). While it does have some legitimate uses, URCS may also have been installed silently as a backdoor, which may allow an intruder to gain remote access to files on the remote system. If this program was not installed for remote management, then it means the remote host has been compromised.
An attacker may use it to steal files, passwords, or redirect ports on the remote system to launch other attacks.
SolutionReinstall the operating system and files from backup unless URCS is intended to be installed.