| Port No | 65530 |
| Service Name | Windows Mite |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Windows Mite 1.0 is a trojan from 1999. This trojan does have destructive features, such as deleting windows and the registry. Windows Mite does replace the normal scanregw.exe file (if you have it on windows 98). |
| Reference Link | Windows Mite Trojan |
| Attack | It autoloads the Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Key: ScanRegistry It does the following : Crash system Delete Windows Disable/enable alt-ctrl-del File manager Get ICQ UIN Get passwords Hide/show task bar Log off, Reboot or shutdown Windows Open/close CD-Rom Remove registry files Send message Send to URL Swap mouse buttons . Removal : 1. Remove the Scan Registry key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close scanregw.exe. 3. Delete the trojan file scanregw.exe in the windows directory. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.