Discuss - Vurnerablity of Windows XP on the web

Hewlett-packard / 1000
June 20, 2016 at 06:55:37
Specs: None (yet), 2ghz cpu, 2gb ram
Okay, this is crazy!!
I dunno it doesn't happen on virtual machines, but real machines with XP SP2 are so damn vurnerable on the internet without an antivirus!
This is what I did -
- Installed XP SP2 on an old machine.
- Installed the network driver. Nothing else!

And then I connected the PC to the internet.
Windows Firewall was on and was the only visible 'useless' security.
My dongle was ZTE MF-190 and internet browsing was done on the Default Internet Explorer.

I browsed (just opened and pressed back after its fully loaded) websites that are actually fake but claims to hack Facebook and GMails and Clash of Clans Gems and a lot else.

Now the shocking part -
After exact 7 minutes a message popped up saying rundll32 was missing and press OK to fix it. I instead closed the window without pressing OK. A similar popup window followed, saying that regedit.exe was missing. I closed that window too, but only to realize a third window was about to pop up and say explorer.exe is missing.

I hard-powered off the PC and turned on again. Windows was not booting. When I tried to boot into safe mode, this message popped up -
"Booting into Safe mode doesn't make you safe. Our stay is for long and we are not planning to leave soon. Do you still want to use safe mode?" Instead of that general window.

I have taken a sample file from the C: drive of the virus to test what the virus actually is. (Avast says its Win32 gen malware but I would consider studying more about this virus and how it came to my PC.)

See, the thing? XP is soo vurnerable to viruses now. It took only 7 minutes to be compromised by malwares.

What do you have to say about it?

See More: Discuss - Vurnerablity of Windows XP on the web

Report •

June 20, 2016 at 11:16:10
IE is no longer viable for XP... Running that will simply invite trouble... At the least use something like Firefox... Also ensure you have at least M$ Security installed and upto date; or something like Bitdefender etc... (freebies).

I have an elderly (2005) Aspire with XP-Pro installed. It has M$ Security running; and also Bitdefender. I do NOT even bother with IE; M$ have withdrawn support for all but the latest version or two. I use Firefox in its place. The Aspire is there as a useful tool as it has a few utils that are no-longer available for later versions of windows but still work fine nonetheless (mostly re' CD/DVD duplication/copying etc.).

As I run mostly Mac systems nowadays; with win-7 in Bootcamp or Parallels, XP is really an olde friend - occasionally visited as t were...

Scan the system as is via Kaspersky Rescue disk boot routine.

Also run the usual freebie cleaners; malwarebytes, adwcleaner, ccleaner, Junkware Removal tool (JRT) - once you can boot into either safe-mode or normal.

Likely run Rootkiller too...

Report •

June 20, 2016 at 11:33:10
Why are you still using SP2 when SP3 has been available since 2008? It is more difficult to find now but it is still available.

Report •

June 20, 2016 at 12:35:36
Guys, relax!!
It was an experiment, I did it on purpose!! I did this to invite some sentient beings from the malicious community!! :)
That's the reason I've put this post into the Lounge category.
Regarding security, I'm actually a step ahead than those creatures in the web who wants to be a step ahead of the antivirus who thinks themselves to be a step ahead of those step aheded pesky little beings.
If you didn't get that, just remember this -
"I use linux for browsing the web, with all my hard drives unmounted".
Safest, ever! Behold!! :D

Report •

Related Solutions

June 20, 2016 at 13:39:21
"What do you have to say about it?"

I say you invited infection & you got what you asked for, so what's your point?

I know what you did was an experiment but what you proved is just how foolish it is to run XP with SP2, no antivirus, & using IE8 for browsing. Had you installed SP3, all available Windows Updates, a modern browser such as Firefox, & one of the available AV freebies (Avast, AVG, Avira, BitDefender, MSE, etc), it's unlikely you would have had any issues.

Report •

June 20, 2016 at 14:32:07
A 12-year old operating system with all protection removed is vulnerable. Who'd have thought it?

Report •

June 20, 2016 at 14:48:20
"Any" operating system with all protection removed is vulnerable; apart perhaps from Linux (for the moment), Mac systems (although they are being targetted by a few probers (allegedly); and of course Unix can be got at too - but that takes a special kind of dedication, resource and no doubt money...

Report •

June 20, 2016 at 19:09:37
Re #4
"I know what you did was an experiment but what you proved is just how foolish it is to run XP with SP2, no antivirus, & using IE8 for browsing"
Yupz, riider, that was my aim! :D

Re #6
""Any" operating system with all protection removed is vulnerable"
Yes, maybe, but infection won't catch in 7 minutes I suppose.
Holy mother of pesky evil programmers, I'm doing another experiment now! Thanks for the idea! :D

Report •

Ask Question