Event ID - 20

Port No20
Service NameW32.Randex.BE
RFC Doc0
ProtocolTCP
DescriptionW32.Randex.BE is a network-aware worm that spreads itself through shared network drives. It can receive instructions from an IRC channel on a specific IRC server.
Reference LinkPort Number:20 Service Name: W32.Randex.BE Port:TCP
AttackAccording to Symantec

Resolution:
The following instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines.
1.Disable System Restore (Windows Me/XP).
2.Update the virus definitions.
3.Restart the computer in Safe mode or VGA mode.
4.Run a full system scan and delete all the files detected as W32.Randex.BE.
5.Delete the values that were added to the registry.

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.