Trojan Horse Client Detection

Critical Nessus Network Monitor Plugin ID 4478


The remote host has been compromised and is running a 'backdoor' program.


The remote client appears to be infected by a Trojan horse. PVS had determined this based on the outbound connections recently made to control servers.


Manually check system integrity and remove any malicious code or processes that may reside on the system.

Plugin Details

Severity: Critical

ID: 4478

Family: Backdoors

Published: 2008/04/20

Modified: 2016/01/15

Risk Information

Risk Factor: Critical