This is the background
One of my PCs is current running a very sick Windows XP SP3, with at least one virus that uses any FTP accounts to upload rubbish to my websites (see iframe hacks).
With the FTP port blocked I am able to contain the effect but no antivirus has been able to clear the PC up, and Windows Updates are broken. The main problem is my original Antivirus, AVG, didnt stop the infection, and everything I installed after can't do the job properly because the virus is already in there and seems to stop any well known AV software from working properly. I suspect it must be some kind of rootkit, so its been a while since I've used that PC for anything important like online banking.
There are 3 internal hard disks on the PC and one external for backups.
The solution ?
Since the internal hard disks are relatively old small ones that have been inherited after several upgrades of just mobo/cpu/memory/graphics, I have bought two 1TB hard disks.
The plan is to install Windows 7 on one of them and start afresh. The problem is that then I need to somehow securely get my data back from the old drives.
My guess is I need to keep them disconnected, get Win7 installed and secured with an up to date antivirus (which one do you guys recommend?) and only then connect each old drive in turn, do a full scan on it and copy the data I need.
Is there a better way of doing this? My fear is that after all that somehow the virus/rootkit rears its ugly head again on the new installation.
AVG didnt manage to stop it originally and it was up-to-date at the time. The source was most likely a USB pen that had been used on an infected PC.
Any advice would be appreciated. Thanks.
One of my PCs is current running a very sick Windows XP SP3, with at least one virus that uses any FTP accounts to upload rubbish to my websites (see iframe hacks).
With the FTP port blocked I am able to contain the effect but no antivirus has been able to clear the PC up, and Windows Updates are broken. The main problem is my original Antivirus, AVG, didnt stop the infection, and everything I installed after can't do the job properly because the virus is already in there and seems to stop any well known AV software from working properly. I suspect it must be some kind of rootkit, so its been a while since I've used that PC for anything important like online banking.
There are 3 internal hard disks on the PC and one external for backups.
The solution ?
Since the internal hard disks are relatively old small ones that have been inherited after several upgrades of just mobo/cpu/memory/graphics, I have bought two 1TB hard disks.
The plan is to install Windows 7 on one of them and start afresh. The problem is that then I need to somehow securely get my data back from the old drives.
My guess is I need to keep them disconnected, get Win7 installed and secured with an up to date antivirus (which one do you guys recommend?) and only then connect each old drive in turn, do a full scan on it and copy the data I need.
Is there a better way of doing this? My fear is that after all that somehow the virus/rootkit rears its ugly head again on the new installation.
AVG didnt manage to stop it originally and it was up-to-date at the time. The source was most likely a USB pen that had been used on an infected PC.
Any advice would be appreciated. Thanks.
