Detections
Analytics
Zotob Worm Infection (Shell)
high Nessus Network Monitor Plugin ID 3166
Synopsis
The remote host has been compromised and is running a 'backdoor' program.Description
The remote host is infected with the Zotob Worm.Solution
Manually inspect and repair the remote host.See Also
http://www.microsoft.com/presspass/press/2005/aug05/08-16zotob.mspx
http://securityresponse.symantec.com/avcenter/venc/data/w32.zotob.a.html
Plugin Details
Severity: High
ID: 3166
Family: FTP Servers
Published: 8/17/2005
Updated: 1/15/2016
Nessus ID: 19429