Microsoft Executable in Transit Detection (Client)

Critical Nessus Network Monitor Plugin ID 5706

Synopsis

The remote host may be compromised

Description

This client connected to a server and immediately downloaded an executable. This may be evidence of some malware which are known to propagate in this manner

Solution

Check the host and disinfect / reinstall it if necessary.

Plugin Details

Severity: Critical

ID: 5706

File Name: 5706.prm

Family: Backdoors

Published: 2010/11/11

Modified: 2016/01/15

Risk Information

Risk Factor: Critical