Trojan Horse Client Detection

Critical Nessus Network Monitor Plugin ID 4477


The remote host has been compromised and is running a 'backdoor' program.


The remote client appears to be infected by a Trojan horse. PVS had determined this based on the outbound connections recently made to control servers. PVS just observed the host attempting to connect to importtrenz -dot- com.


Manually check system integrity and remove any malicious code or processes that may reside on the system.

See Also

Plugin Details

Severity: Critical

ID: 4477

Family: Backdoors

Published: 2008/04/20

Modified: 2016/01/15

Risk Information

Risk Factor: Critical