DNS Server Listed in Known Bot Database
High Nessus Plugin ID 58429
SynopsisAccording to a third-party database, the remote host is using a DNS server that is listed as part of a botnet.
DescriptionThe remote host is using one or more DNS servers that are listed in a public database as part of a botnet. This could cause requests for legitimate websites and hostnames to be routed to attacker-controlled machines. This also suggests that this host may have been compromised.
SolutionInvestigate the DNS server settings and reinstall the remote system from scratch if appropriate.