| Port No | 1639 |
| Service Name | W32.Bofra.E@mm |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | W32.Bofra.E@mm is a mass-mailing worm that exploits the Microsoft Internet Explorer Malformed IFRAME Remote Buffer Overflow Vulnerability (as described in Microsoft Security Bulletin MS04-040). It spreads by sending the email addresses that it finds on an infected computer. |
| Reference Link | Port Number:1639 Service Name: W32.Bofra.E@mm Port:TCP |
| Attack | According to Symantec Resolution: The following instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines. 1.Disable System Restore (Windows Me/XP). 2.Update the virus definitions. 3.Run a full system scan and delete all the files detected as W32.Bofra.E@mm. 4.Delete the value that was added to the registry. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.