ZXShell Malware Services Detection

Critical Nessus Plugin ID 78430

Synopsis

ZXShell is a remote access trojan backdoor.

Description

ZXShell is a remote access trojan backdoor that can be used to persist on your network for malicious purposes.

Detections :

- ZXShell HTTP server
- ZXShell Command and Control server

Solution

Remove the infection.

See Also

http://www.nessus.org/u?12727114

Plugin Details

Severity: Critical

ID: 78430

File Name: zxshell_detect.nasl

Version: Revision: 1.6

Type: remote

Family: Backdoors

Published: 2014/10/14

Modified: 2016/11/23

Dependencies: 11936, 11153

Risk Information

Risk Factor: Critical

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Vulnerability Publication Date: 2012/02/23