| Port No | 1879 |
| Service Name | W32.Zori.B |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | W32.Zori.B is a virus that prepends itself to .exe files and spreads through network shares. The virus deletes files from all disks nine days after the original infection. |
| Reference Link | Port Number: 1879 Service Name:W32.Zori.B Port:TCP |
| Attack | According to Symantec Resolution: The following instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines. 1.Disable System Restore (Windows Me/XP) 2.Restart the computer in Safe mode or VGA mode. 3.Reversing the changes made to the registry. 4.Reinstall your Symantec AntiVirus Product 5.Update the virus definitions. 6.Run a full system scan and delete all the files detected as W32.Zori.B. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.