信息来源:SecurityNewsPortal.com
At one time or another, everyone who knows anything about viruses and rootkits has advised those infected to re-format the hard drive.
Few computer disasters are more traumatic. Local email files and lightly remembered passwords are flushed, while paid-for and downloaded programs vanish.
Your world will never be the same... unless you resolve to replace the drive instead of re-formatting it. This allows you to keep data while losing the accumulated problems.
Here's the overview:
1. Pull the old drive out of your system;
2. Install a brand new drive as Master;
3. Install the old hard drive as Slave;
4. Re-install your operating system.
Sounds easy, doesn't it? Of course, the devil's in the details.
As Microsoft Windows is currently the operating system most likely to suffer these indignities, this discussion will focus on replacing a Windows system. But the basic ideas will work for just about any infected PC.
Before you pull the old hard drive, make a cheat sheet. Record all your Email, System and Network properties. While XP offers easier routes, most Windows systems give you access to these items through the Control Panel.
You don't need to backup your entire hard disk. But you will want to set up certain key files for portability to the new system.
Take email for instance. You'll want to back up that email client. If you're running Outlook 2000, Outlook 2003 or Outlook Express, SiteDeveloper provides a step-by-step tutorial. For other clients, check with the manufacturer.
While you're at it, you'll probably want to get something to help you back up passwords as well. While several programs exist, we frankly haven't done the homework to vet them for you. But we can put you on the road to picking the right password backup program for your version(s) of Windows.
Record settings for any special hardware and software as desired.
Shut down your system and disconnect the computer from the network. If necessary, snap a digital pic of the system connections before yanking the hard drive. This will make it simple to re-attach cables free of mistakes.
Remove the original hard drive, then get a drive that matches its interface, like ATA-150, SCSI, EIDE or SATA. You may want to take this opportunity to pamper yourself with a bigger and faster drive. And make sure you have a cable that can handle two hard drives. Follow the instructions that came with the new drive to set its jumpers so it acts as the system's Master hard drive.
Mount your new Master drive in the old hard drive's spot, and cable it up like before.
While restarting your computer, hit Delete or F8 or whatever key brings up your computer's BIOS. Make sure the Boot Sequence starts with the CD/DVD drive from which you'll be running your new OS installation. Shutdown.
Insert the hard drive installation CD (if any), restart, then follow the instructions for installing a new or blank Master Drive (boot drive). The hard drive step-by-step will often include special instructions for installing your version of Windows (which this may be a great time to update).
Insert the appropriate Windows installation CD and do what you're told.
Restart the computer. Check Windows Device Manager to look for warning flags next to any drivers. If you see warnings, install the appropriate drivers from the Windows disks provided by the computer manufacturer.
Install any special software you desire, followed by firewalling, antivirus, and any other security programs desired.
Then, plug in the network cable and restart.
Use your cheat sheet to configure your network settings and email client. Restart.
Download upgrades for firewalling, antivirus and other security software. Shut down, then unplug the network cable.
Now to the original hard disk. Follow the graphic on the disk to reset its jumpers so it will functions as a Slave. If the drive has no graphic, use another computer to go to the manufacturer's website for instructions.
Once you've configured the drive, mount it in an open hard drive bay. Plug it in to the open connector on the hard drive cable, as well as the power line. Restart.
When Windows comes up (which started up on the new drive), point your antivirus software at the old drive, which is likely Drive D:, and do a full scan to catch any now-stranded malware.
On completion, restore the appropriate email and password files. Plug in your network cable. Restart.
And configure any special programs that require network access.
Voila!
You'll find all of your old stuff is on Drive D:. It's your choice... Leave it where it is or move it to Drive C:. Then use your system for a few weeks.
If you're like most folks, you'll be amazed by how few of those old programs really matter. But everything's there if you need it.
Which makes for a nice security blanket, doesn't it?
