with the "GT Bot"
Using the program Swat It , I discovered these infections:
E:\DL\pkunzip\PKZIP.EXE Infected with: GT Bot 32 Bit Color.c
E:\mIRC\mirc32.exe Infected with: GT Bot Dropper Nohack Scanner
Norton AV did not see these.
This bot probably came in through an altered version of PKZIP that I downloaded. I read that GT Bot is used mainly for DDOS attacks and spamming, but it also has a file server command that can access my drives
This might explain why my other system was being port scanned from this very computer (ZoneAlarm showed its local IP as the origin).
So I run ZoneAlarm, keep Norton updated, download all security updates for Win2k, i'm wary (usually) of what I download, and now I will use this Swat-It program.
Is there anything else I should be doing so I don't get surprises like these in the future?
Using the program Swat It , I discovered these infections:
E:\DL\pkunzip\PKZIP.EXE Infected with: GT Bot 32 Bit Color.c
E:\mIRC\mirc32.exe Infected with: GT Bot Dropper Nohack Scanner
Norton AV did not see these.
This bot probably came in through an altered version of PKZIP that I downloaded. I read that GT Bot is used mainly for DDOS attacks and spamming, but it also has a file server command that can access my drives
This might explain why my other system was being port scanned from this very computer (ZoneAlarm showed its local IP as the origin).
So I run ZoneAlarm, keep Norton updated, download all security updates for Win2k, i'm wary (usually) of what I download, and now I will use this Swat-It program.
Is there anything else I should be doing so I don't get surprises like these in the future?
Facebook
Twitter