I was recently browsing around my Windows dir for fun stuff (as I am wont to do on occasion) when I came across a somewhat suspicious file.
Well, it wasn't suspicious at first.
I had never heard of it before - Info.Com - but was excited that I had found a new DOS program that I had yet to play with. Yet, when I opened up a prompt to run this command file (I did scan it first, mind you), it spat out an echo that read: "This program must be run under UNIX". While I consider myself rather new to security stuff, it doesn’t take much to conceptualize that I probably didn't install a UNIX program on my Win98 machine. Nevertheless, it perplexes me why a command file supposedly designed for UNIX would still run in DOS, because I have no idea if command files are even executable in UNIX. To add to my suspicion, I recently created a dual boot system on an old computer of mine that included a fresh install of 98 and there’s no Info.Com to be seen, as several of you can probably verify.
So... I'm rather confused as to how this thing got into my windows dir and what it does, although I have my guesses (I only recently started using these wonderful pieces of software called firewalls ). The file's not big at all, only 93 Bytes, and Symantec didn't have anything special to say about it after having submitted it to them.
So I'm kinda at a loss here about what to think or do about this file.
Before anyone asks the million dollar questions - yes, my AV is up to date, no suspicious system activity and no suspicious port activities. And yes, I've Googled this sucker as many ways as I could think of.
Here’s what happens when you open it in Notepad:
ë*0.........1.........2.........3......... º7 ´ Í!´LÍ!This program must be run under UNIX
$
Looks harmless enough, but it could simply be calling some other program for all the sense I can make of the compiled stuff that comes before the string. If anyone wants/needs more info, then please let me know. Thanks for your time people