Pushdo Botnet Detection

Critical Nessus Network Monitor Plugin ID 6579

Synopsis

The host is infected with a botnet.

Description

The remote host appears to be infected with the Pushdo botnet.

Solution

The machine should be manually inspected and cleaned.

See Also

http://www.theregister.co.uk/2012/09/19/pushdo_spews_fake_traffic

Plugin Details

Severity: Critical

ID: 6579

Family: Backdoors

Published: 2012/09/19

Modified: 2016/01/15

Risk Information

Risk Factor: Critical