Event ID - 3067

Port No3067
Service NameW32.Korgo.G
RFC Doc0
ProtocolTCP
DescriptionW32.Korgo.G is a minor variant of W32.Korgo.C. It is a worm that attempts to propagate by exploiting the Microsoft Windows LSASS Buffer Overrun Vulnerability (BID 10108) on TCP port 445. It also listens on TCP ports 113, 3067, and other random ports.
Reference LinkPort Number:3067 Service Name:W32.Korgo.G Port:TCP
AttackAccording to Symantec

Resolution:
The following instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines.
1.Disable System Restore (Windows Me/XP).
2.Update the virus definitions.
3.Reverse the changes that were added to the registry, and then restart computer.
4.Run a full system scan and delete all the files detected as W32.Korgo.G.

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.