Backdoor.Mokes is detection by Symantec products for Trojans that has sole intention of gaining remote access on the compromised computer. To complete this, this threat will make certain changes on the system. It also opens a backdoor by modifying registry and firewall settings. Backdoor.Mokes was also built to steal sensitive data from the infected computer. Collected data are stored on predefined section of the hard drive and was configured to be sent to remove attacker at a given time.
Normally, malicious code of Backdoor.Mokes is embedded on attached file to spam email messages. Opening it runs the malware without getting user's attention. Another means utilized by malware authors to spread Backdoor.Mokes are malicious links from blog site's comment area, social networking sites, and cracked programs. Virus infection can also lead to this attack, particularly downloader Trojan.
Once Backdoor.Mokes is run on the computer, it will modify set of files. Furthermore, it will drop additional files that are likely malicious. Registry entries are also created to run the Trojan each time Windows starts.
During the presence of Backdoor.Mokes, anti-virus programs and other security-related software may be disabled. The threat normally ends running processes that are relevant to anti-virus, firewall, and other computer protection program.
Backdoor.Mokes occasionally connects to a remote server using HTTP or FTP ports to upload information gathered from the system.
Backdoor.Mokes Removal Procedure……..
To totally remove Backdoor.Mokes from the computer and get rid of relevant virus and Trojan, please execute the procedures as stated on this page. Make sure that you have completely scanned the system with suggested malware removal tools and virus scanners.
Scan the computer with Norton Power Eraser
1. Download Norton Power Eraser from the link below. Save the file on your hard drive.
https://security.symantec.com/nbrt/npe.aspx (Download Link).
2. Once the download completes, double-click on the file NPE.EXE to run the program.
3. You will be prompted with End User License Agreement. Please click on Accept to continue.
4. Norton Power Eraser will check for the most recent version. Then, the main window will appear. Click on Scan for Risks to the scan and removal process for Backdoor.Mokes.
5. By default, Norton Power Eraser was configured to perform rootkit scan. This is essential to get rid of Backdoor.Mokes or other relevant malware. To accomplish this, you will need to restart the computer. Please click Restart button.
6. After restarting Windows, the program will check for possible database update and then, proceeds with the scan. It may take a while, please wait for the scan process to complete.
7. Once scanning is done, Norton Power Eraser will display a list of threats includin Backdoor.Mokes. Review identified threats and remove/repair them from the computer by clicking on Fix Now button.
8. If you are prompted to restart the computer in order to complete the virus removal process, please click on Restart Now.
Run Sophos Virus Remover to ensure that no more Backdoor.Mokes is left on the computer
1. Download Sophos Virus Removal Tool from the link below. Save the file to your Desktop so that we can access the file easily.
2. After downloading, navigate to the file location and double-click it. This will start the instillation process. User Account Control will prompt if you want to run the program, click Yes to continue.
3. On initial launch of the program, it will display a Welcome Screen as shown in the image below. Click Next to start the installation procedure.
4. Next, you need to accept the license agreement before Sophos Virus Removal Tool can be installed onto the computer. Choose 'I accept the terms in the license agreement'. Then, click Next button.
5. On the next prompts, please click appropriate button to proceed. At the end of the installation process, it will display InstallShield Wizard Completed. Just leave the Launch Sophos Virus Removal Tool with a check mark. Then, click Finish.
6. The tool will download necessary updates so Internet connection is required at this point. Lastly, Sophos Virus Removal Tool displays the welcome screen.
7. Click on Start Scanning button to begin checking the system for presence of rootkit and virus. The tool reveals items that were found linked to Backdoor.Mokes. It also detects and removes other malicious files.
No comments:
Post a Comment