SubSeven Trojan Detection

critical Nessus Plugin ID 10409

Language:

Synopsis

The remote host has been compromised.

Description

This host seems to be running SubSeven on this port.
SubSeven is a Trojan Horse which allows an intruder to take the control of the remote computer.

An attacker may use it to steal your passwords, modify your data, and preventing you from working properly.

Solution

Remove any instances of the SubSeven Trojan and conduct a forensic examination to determine how it was installed as well as whether other unauthorized changes were made.

Plugin Details

Severity: Critical

ID: 10409

File Name: subseven.nasl

Version: 1.26

Type: remote

Family: Backdoors

Published: 5/15/2000

Updated: 4/27/2020

Supported Sensors: Nessus