Trojan/Backdoor - DeepThroat Detection
Critical Nessus Network Monitor Plugin ID 1910
SynopsisThe remote host has a backdoor installed.
DescriptionDeepThroat is installed on the remote host. This backdoor allows anyone to partially take the control of the remote system. An attacker may use it to steal your password or prevent your computer from working properly.
SolutionUse RegEdit, and find 'SystemDLL32' in HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Run. The value's data is the path of the file. If you are infected by DeepThroat 2 or 3, then the registry value is named 'SystemTray'.