Trojan Horse Client Detection

Critical Nessus Network Monitor Plugin ID 4480

Synopsis

The remote host has been compromised and is running a 'backdoor' program.

Description

The remote client appears to be infected by a Trojan horse. PVS had determined this based on the outbound connections recently made to control servers.

Solution

Manually check system integrity and remove any malicious code or processes that may reside on the system.

Plugin Details

Severity: Critical

ID: 4480

File Name: 4480.prm

Family: Backdoors

Published: 2008/04/20

Modified: 2016/01/15

Risk Information

Risk Factor: Critical