(e-mail address removed)2.com wrote:
I am about to connect a just built system to the internet for the first
time, and intend to download one of the free anti-virus programs.
The problem is that the PC will be vulnerable before I can download and
install the app. So, since I've read that it is best to install
anti-virus software *before* one's system is infected, how can I be
sure my system is clean when there is so much malicious code looking to
invade my system the moment I log on?
I had a similar problem. I had just installed XP Pro and was going for
critical updates, AntiVir, SpywareBlaster, Spybot, etc. and something
got in before I could get everything squared away. I did not go to any
'bad' websites or do anything else that would risk the setup.
I'd suggest using another machine to create a CD:
1. Get all critical updates installed! Get a CD from Microsoft or
download the update files and burn them to CD on another machine.
2. Get the XP firewall on, if you're running XP. Otherwise, add a good
firewall to the CD and install it. Give only permissions required at
the time needed. With the XP firewall and 3 below I've had luck in
using Kerio 2.1.5, although there is a method to get through it.
3. Services. If you run XP this guy has some registry files that you
can add to the CD. They are merged with your new machine's registry
and will shut down all but normal services.
http://www.blackviper.com/
http://www.blackviper.com/WinXP/servicecfg.htm
He's got some good tutorials and tweaks for 2000 and ME also:
http://www.blackviper.com/Articles/OS/OSguides.htm
It's time well spent browsing his site.
4. If you have another partition or drive, create an image or bootable
clone when you have everything setup and configured.
a. If you run 9x-ME use xxcopy:
http://www.xxcopy.com/xxcopy10.htm
There is a patch that will allow ME to regain real DOS mode. I'll dig
up the link if anyone needs it.
b. If you are running an OS greater than ME:
It get's tougher here. A boot CD is the best choice. This is great for
running an AV from a clean boot, or for curing file lock problems in
cloning a partition that is booted from.
Again, I think this is time well invested. You can solve many problems
later with a good Boot CD and the tools to repair many problems:
http://www.nu2.nu/pebuilder/
Then go to:
http://www.ubcd4win.com/
To get the freeware tools. Very nice!
You'll need the critical updates to create your slimmed GUI XP Boot
CD. DrvImagerXP, under the Lexun tab is the image tool. Use the boot
CD to create, or restore the image!
5. If you have several free partitions, consider using XOSL boot
manager. You can clone your existing partition to one or more other
partitions and use XOSL to hide them from each other, and to choose
which one to boot from. I'm not absolutely certain, but I'm fairly
sure that the other partitions show as unformatted space, so a malware
will not affect the files on anything except the partition you booted
from and partitions hot hidden via XOSL.
It might be late for this, as you've already partitioned, but you can
still use Ranish and XOSL to pasrtition and boot from another hard
drive. I use Ranish v2.43 and XOSL v1.1.5 is here too:
http://www.ranish.com/part/
6. Go to grc.com and check your firewall. Also go before and put his
nifty utilities on the CD created on another machine.
ShieldsUp - check firewall.
Your Three Musketeers - utilities.
Good reading here also:
http://www.grc.com/su-bondage.htm
Some of this is overly conservative, but is still a good way to
procede in not only getting the system up and safely online, but also
in keeping it in top working order over the long run.
