Trojan/Backdoor - MyDoom.M Detection

Critical Nessus Network Monitor Plugin ID 1240

Synopsis

The remote host has a backdoor installed

Description

The remote host is infected with MyDoom.M. One of the features of MyDoom.M is to install a backdoor on port 1034. An attacker, connecting to this backdoor would be given full access to the system.

Solution

Use an Antivirus program to remove this worm. Consider re-installing the operating system.

Plugin Details

Severity: Critical

ID: 1240

Family: Backdoors

Published: 2004/08/20

Modified: 2016/01/15

Risk Information

Risk Factor: Critical