http://msmvps.com/blogs/harrywaldron/archive/2006/11/27/new-botnet-impacts-symantec-client-port-2967-on-unpatched-pcs.aspxThere appears to be active exploitation of an issue patched by Symantec back in May 2006 New Botnet impacts Symantec Client Port 2967 http://www.incidents.org/diary.php?storyid=1892 Symantec Client Security and Symantec AntiVirus Elevation of PrivilegeenCommunityServer 2008.5 SP2 (Build: 40407.4157)http://msmvps.com/blogs/harrywaldron/archive/2006/11/27/new-botnet-impacts-symantec-client-port-2967-on-unpatched-pcs.aspx#353403Wed, 29 Nov 2006 20:08:56 GMTd67277c4-116b-43f1-b688-e9ef184ea916:353403Harry Waldron - My IT Forums Blog <p>This new IRC based threat attempts to spread using a number of security exploits, including the SYM06-010</p> <img src="http://msmvps.com/aggbug.aspx?PostID=353403" width="1" height="1">http://msmvps.com/blogs/harrywaldron/archive/2006/11/27/new-botnet-impacts-symantec-client-port-2967-on-unpatched-pcs.aspx#353400Wed, 29 Nov 2006 20:06:24 GMTd67277c4-116b-43f1-b688-e9ef184ea916:353400Harry Waldron - Microsoft MVP Blog<p>This new IRC based threat attempts to spread using a number of security exploits, including the SYM06-010</p> <img src="http://msmvps.com/aggbug.aspx?PostID=353400" width="1" height="1">