How to install Win2000 and do Win Update w/o getting virus first?

[Achilles97]

I format and install Win2000 w/ SP4, then PC-Cillin Internet Security 2005 with newest .dat file, install the blaster fix, THEN I plug in the network cable and do Windows Update, but I keep ending up with multiple virii/trojans/worms. I see processes such as "msupdates.exe", "msmonk.exe", "windowscr.exe". PC-Cillin almost immediately alerts me that it's blocking suspicious traffic. The logs show outgoing traffic to random ips every 3 seconds. The CPU is idling at 12%.

I'm reformating for the third time. What can I do to get all the Windows Updates without getting compromised?


Thanks!

 

[timswim78]

Some viruses can withstand a format of the hdd. Check out your drive manufacturer's website to see if they have a low-level format utility. Maxtor's is called MAxBlast, and the other major manufacturers have their own special utilities. Hopefully, this will knock out your problem.

 

[mechBgon]

Is all of your software 100% legit (not cracked/warez/etc)? I ran across a guy using cracked antivirus software about a month ago...

If your software's legit, then the next step is to get a software firewall and have that installed before you plug your network cable in. ZoneAlarm free version is one. A router would be a good idea too, but if there are other computers sharing the router, its firewall functionality won't protect you from those ones, only from the Internet. If you have a wireless router, use its security features to keep unwanted connections out (neighbors, for example).

 

[Nothinman]

Some viruses can withstand a format of the hdd

Not likely. To survive that the virus would have to store itself somewhere other than the hard disk and the only readily available storage is memory unless it infects another machine on your network, another drive on your machine or files you backed up without realizing it was there.

 

[MNKyDeth1]

The others are correct in what they say. But from your first post all you mention is AV software. The problem is that AV is not enough to stop virri. It only detects then removes them if it can.
What I would do is do another fresh install, but, before doing that. Make sure you have AV software and a firewall on a cd. That way when you do your fresh install you can install the AV and firewall from the cd before you plug into the net. There is only a 5-10 min life span on a windows comp connected to the net without both solutions implemented. My 2 fav pieces of software are AVG for my anti-virus and Sygate firewall. Both are free and both work just fine. If both are installed before you connect to the net you should be fine. First thing you do when you connect to the net is make sure your AV is updated then your firewall then grab the MS updates. Then grab firefox for the enhanced features it provides.

IMO, that is the best and least costly route that works.


The edit is for Nothinman, you are wrong that a format will erase the entir hard drive. One part of the drive that is not touched during a format is the MBR. It is the first 63 sectors of the hard drive and usually only contains the boot info and partition info. I prefer using Norton Disk Edit to clean this area but be very carefull if you do wipe that area as you can seriously damage a drive. Especially if it is a Name brand pc as some manufacter's put there own little partial bios on it. If it gets wiped the machine will no longer boot.

 

[Nothinman]

The edit is for Nothinman, you are wrong that a format will erase the entir hard drive

I never said that. But the only viruses that I can think of that touch the MBR were last seen in like 1992 back when people used to get viruses via floppy.

I prefer using Norton Disk Edit to clean this area but be very carefull if you do wipe that area as you can seriously damage a drive

Why waste your time with Disk Edit when you can just run 'fdisk /mbr'?

 

[MNKyDeth1]

Hehe, granted i use Linux. But for MS users I recommend the Disk Edit as that lets you view the drive and run other diagnostics on it.

I am sorry for making that assumption about the entire hard drive, my bad :/


yeah, i am paranoid about those first 63 sectors. Waiting for the virri to make there return there sometime soon.

 

[Achilles97]

Hey guys, thanks. I got it working without problem. I think the problem before was that I didn't configure the firewall correctly - it was set for internal network without internet connectivety.

 

[Cruzlite]

I have found the free version of ZA to be OK...(I did have problems after updatingZA (On Me) Soo...
Got xp pro & ZA Pro, which was ok...until I updated...
The update disabled the check disk...(I confirmed this by doing a reformat-install)
Again I used ZA pro without updating...no problems...

I now use Norton av 05, The MS firewall & Beta Spyware