| Port No | 29559 |
| Service Name | Vagr Nocker |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | The remote host appears to be infected with the Backdoor.VagrNocker trojan. This trojan allows remote access to your system via port 12884 and 21554. |
| Reference Link | More Information |
| Attack | Name:Vagr Nocker How To Remove: 1. Click Start, and then click Run. (The Run dialog box appears.) 2. Type regedit, and then click OK. (The Registry Editor opens.) 3. Navigate to the key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices 4. In the right pane, delete the value: BIOSAdapter C:\WINDOWS\WinBIOS.exe /nosplash 5. Navigate to the key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 6. In the right pane, delete the value: Windll.exe C:\WINDOWS\Windll.exe 7. Exit the Registry Editor. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.