Active Outbound Connection to Host Listed in Known Bot Database
Critical Nessus Plugin ID 58430
SynopsisThe remote host is making an outbound connection to a host that is listed as part of a botnet, according to a third-party public database.
DescriptionNessus has determined via netstat, that the remote host has an outbound connection to one or more hosts that are listed in a public database as part of a botnet. This suggests the host may have been compromised.
SolutionInvestigate the connection(s) and reinstall the remote system from scratch if appropriate.