Event ID - 37237

Port No37237
Service NameMANTIS
RFC Doc0
ProtocolTCP
DescriptionThis is a remote access backdoor program that allows a remote user to have access to an control an infected computer.
Reference LinkMANTIS
AttackSolution:
Removing autostart entries from the registry prevents the malware from executing during startup.

Open Registry Editor. To do this, click Start>Run, type REGEDIT, then press Enter.
In the left panel, double-click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>
Windows>CurrentVersion>RunOnce
In the right panel, locate and delete the entry:
Windows Accellerator
Close Registry Editor.
Restart your system.

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.