| Port No | 30700 |
| Service Name | Mantis by Shaban |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Mantis by Shaban 1.1 is a Turkish trojan. Because this trojan is Turkish we were unable to determine all of the features. |
| Reference Link | Mantis by ShabanTrojan |
| Attack | It autoloads the Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce Key: Windows Accellerator It does the following : Chat with server Disable/enable CTRL-ALT-DEL Hide/show task bar Open/Close CD-Rom Send to URL Swap mouse buttons Removal : 1.Remove the Windows Accellerator key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close DESKTOP.exe. 3. Delete the trojan file DESKTOP.exe in the windows directory. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.