Family: Backdoors --> Category: infos
Agobot.FO Backdoor Detection Vulnerability Scan
Vulnerability Scan Summary
Acertains the presence of Agobot.FO
Detailed Explanation for this Vulnerability Test
The remote host has the Agobot.FO backdoor installed. This
backdoor is known to:
1) scan local networks for common Microsoft vulnerabilities
2) scan local networks for exploitable DameWare systems
3) brute force local Microsoft machine User accounts
4) connect to an IRC channel and setup a BOT for remote command
See also: http://www.f-secure.com/v-descs/agobot_fo.shtml
Solution: This backdoor should be immediately removed from the network
and manually cleaned.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.