Old PC, full of viruses, want to do a fresh install of XP.

[RESmonkey]

What's the best way to fix this scenario? It's an old Dell, pentium 4, slow, PC.

I don't want to just use my factory XP disc (first install of XP released, before Sp1, definitely prone to every horrible thing on the web).

I want some sort of updated installation. The only thing that comes to mind is making an nLited install. I'm not too sure on how to get the latest security updates + Service pack in it tho.

thanks

 

[oynaz]

Two options come to mind:

1) Install from the original discs, install a virus killer as your first action, SP3 as your second, and let Windows Update handle the rest for you. Remember to keep the computer until after the virus killer is installed.

2) Grab an updated image via BitTorrent, and use the Serial key from the Dell. Remember to grab the right version of XP.

I suggest the first.

 

[mechBgon]

Originally posted by: RESmonkey
What's the best way to fix this scenario? It's an old Dell, pentium 4, slow, PC.

I don't want to just use my factory XP disc (first install of XP released, before Sp1, definitely prone to every horrible thing on the web).

All you really need to do, is to use your factory XP disc and enable the Internet Connection Firewall before plugging in the network cable (or connecting to wireless). how to enable the ICF If you have a router and your computer is the only one using it, then that is another way to firewall.

Once the firewall is enabled, connect to the network, activate Windows if necessary (probably not, on a Dell), and get the Microsoft Update engine installed from http://update.microsoft.com. Then go back for repeated batches of Service Packs and updates until it's all patched up.

I also suggest looking at the other steps listed here: http://www.mechbgon.com/build/security2.html The Secunia utility and fully enabling Data Execution Prevention are a couple no-brainer protective steps, and there's more besides. Hope that helps

 

[Lemon law]

mechBgon has good advice but I might add some alternate suggestions. (1) Totally reformat your HDD with some utility that rewrites everything with random X's and O's to make sure no root kit survives.
(2) Use another computer with fast internet access, or a public library computer, go to major geeks and find the complete XP up date disk up to Sp3 for XP, 700MB or so, and burn to a dvd or pendrive (3) Then use your HP XP install disk to re-enable XP while off line, make sure your windows license is OK, and then do your updates off your DVD pr pendrive. Then install some AV, and you are ready to go on line with protection to get your AV updates and confirm everything is working. The Sp2 firewall should due until you decide to replace it.

 

[daniel49]

Originally posted by: Lemon law
mechBgon has good advice but I might add some alternate suggestions. (1) Totally reformat your HDD with some utility that rewrites everything with random X's and O's to make sure no root kit survives.
(2) Use another computer with fast internet access, or a public library computer, go to major geeks and find the complete XP up date disk up to Sp3 for XP, 700MB or so, and burn to a dvd or pendrive (3) Then use your HP XP install disk to re-enable XP while off line, make sure your windows license is OK, and then do your updates off your DVD pr pendrive. Then install some AV, and you are ready to go on line with protection to get your AV updates and confirm everything is working. The Sp2 firewall should due until you decide to replace it.

This is the first post I ever saw you make, where it wasn't George Bushs fault.

 

[bruceb]

In this case, I totally agree with the method Lemon Law suggests as that will insure a safe install.
And it will be much quicker.

 

[mechBgon]

Personally, I'd never use a public-library computer to download an executable file, or even plug a portable drive into one unless I were taking precautions against AutoPlay-driven malware :Q

 

[VeryCharBroiled]

if your HD is > 137 gigs and you have a pre SP1 XP CD, you will need to nlite SP1 into it 1st. SP3 does NOT have parts of SP1 in it (ask me how I know.. I tried to install SP3 on a fresh pre SP1 XP install on an 80 gig drive, it told me to put SP1 or SP2 on it 1st).

so basically if your HD < 137 gigs follow mechBgons or Lemon Laws post.

>137 gigs nlite XP and SP1 into a CD (just do the SP1 slipstream, its very easy. forget slip streaming drivers and such - DL them beforehand and install them them separate right after your initial SP1 install), use the nlite'd CD for the install, put the drivers in, install antivirus (AVG or Avast are my personal preferences) - do this all offline. then follow mechBgones or Lemon Laws post.

best bet it grab the SP1, SP2 and SP3 .exes from somewhere and burn them to CDs or DVD. then just go in order. might be some redundancy but you cant go wrong that way.

grab all the AV and drivers you need too, and install them as soon as XP is up and running. then do the updates.

 

[RESmonkey]

It's less than 137 GB. And it appears this Dell has more than just a few viruses on it. Firefox has been hijacked, and I don't even want to bother opening IE. There are fake Windows Firewall clone messages (obviously advertisements for bulllshit AV program). etc.

How do I rewrite the entire HDD w/ x's and 0's so the rootkit won't survive? Is there a free utility for that?



And once I write the random code onto the HDD, should I just go ahead and install XP + Antivirus + SP1 + SP2 + SP3 while offline?

 

[mechBgon]

You can use the DBAN utility to thoroughly erase the drive. I suggest using Microsoft Update to do the updates, but if you want to download the full-file SP1A, SP2 and SP3 files, Microsoft has them available too:

SP1A

SP2

SP3

and the aforementioned Secunia's software security checkup.

Like I said, firewall protection will be key, so make sure you enable the ICF (later renamed Windows Firewall) before you let any network connections happen. Use the no exceptions :camera: checkbox.

 

[RebateMonger]

Another disk option is to call Dell and tell them that you need an XP Install CD for your computer. If you were the original owner, or if you can get the original owner to call, Dell will probably send the XP Install CD along with a Driver CD. That Install CD will probably be SP2-integrated or SP3-integrated.

 

[redbeard1]

In reading the recommendations for installing XP SP3, there were two things to be aware of. First they recommend having SP2 installed on the system first. SP1 and SP2 are true stand alone service packs, while SP3 left out certain files, that they are assuming you would already have from the previous service packs being installed.

If you every would harbor the thought of uninstalling IE7, then do not have it installed before you intall SP3. If you have IE7 installed before you install SP3, after the SP3 process is completed, IE7 cannot be uninstalled. If you install IE7 after installing SP3, then IE7 can uninstalled.

 

[RESmonkey]

I'm downloading the SP1a, Sp2, and SP3 currently. Let's see how it goes

 

[bruceb]

You do not need both SP1A and SP2 ... just SP2 and then SP3 .. SP2 has everything in SP1 already in it. So just slipstream SP2 into your XP CD with Autostreamer ... then do your installation, stay off the web, install SP3 and Antivirus with latest defintitions, then Microsoft Update for any extra patches

 

[bwatson283]

one note:
While windows is installing, disconnect from the internet, do not have the Ethernet cable plugged in.

 

[RESmonkey]

What if i don't even connect internet until after the whole process?

 

[mechBgon]

Originally posted by: RESmonkey
What if i don't even connect internet until after the whole process?

That would be fine as long as the network connection is actually fully disconnected (cable unplugged, wireless disabled). The idea here is to make it impossible for network worms to touch the computer. Network worms spread directly from computer to computer with no human involvement necessary. WinXP SP2 is safe from the get-go, but WinXP gold and WinXP SP1 can be auto-infected until you get the firewall up, as I suggested earlier.

 

[lenjack]

Be safe...disconnect!

 

[RESmonkey]

Where can I get hotfixes if I'm trying to slipstream Sp2 w/ XP + hotfixes? (nlite).

 

[RESmonkey]

NVM, I'm going to skip the hotfix part. I'll just install SP3, turn firewall on, and connect and DL then from Windows Update

thank you guys again

 

[redbeard1]

If you are behind a router, part of the issue with connecting to the internet goes away, as the nasty stuff floating around on the open internet is going to be stopped at the router.

After the install, if you are behind a router, the first place to go would be Windows update. Don't do any other browsing as most viruses these days are coming from infected websites. When that is done, get your anti virus installed and proceed from there.

 

[RESmonkey]

All done

TY AT for your help

The PC seems a LOT faster then I remember it being, too.

 

[Nvidiaguy07]

Originally posted by: oynaz

2) Grab an updated image via BitTorrent, and use the Serial key from the Dell. Remember to grab the right version of XP.

I suggest the first.

This is by far the easiest method. Depending on how long itll take you to download it. It took me about an hour. Just check your SHA1 with MSDN's. My xp home with sp3's hash is: 5a6b959ad24d15dc7ebd85e501b83d105d1b37c6

 

[Jeff7181]

You don't need to write zeros to the entire drive, that's rather time consuming and a waste of time in my opinion. I'd take a Win9x boot disk and use fdisk /mbr to wipe out existing partitions and the master boot record, then install XP from the CD on a fresh NTFS partition while disconnected from any network. While doing that, you can be downloading the SP1 and SP3 standalone executables and run them after the install finishes from a CD or DVD or flash drive. Or just enable the firewall before you connect to the Internet and then update using Windows Update.