Why don't you go to the MS Security WebSite. It will give you the tools to close out IIS and W2K to make it much less vulnerable.
To start a firestorm, FYI guys, recent studies on security found that UNIX and LINUX flavors have MORE security holes than MS!!!
Stick that in your pipe! ;)