What happens when you connect Windows XP to the Internet? A YouTuber specializing in cybersecurity wanted to find out. After just 10 minutes, his system is infected, and this should serve as a warning to everyone that old operating systems should not be used anymore.
Eric Parker is a YouTuber who specializes in security. In his videos on YouTube, he investigates malware, open-source products, and aims, as he states, to “raise awareness about technology and cybersecurity.”
In an older video, he wanted to find out what happens when you connect Windows XP to the Internet. After just 10 minutes, his system is infected.
After 10 minutes, the first virus is on Windows XP
What exactly did the YouTuber do? Parker set up a virtual machine with Windows XP Service Pack 3 (SP3) on a Proxmox server, disabled the firewall and NAT settings, and replicated the connection conditions typical of the early 2000s.
Additionally, the researcher assigned the system a direct public IP address, making the computer accessible without any intermediate protection.
When did the first infection occur? After just ten minutes, the system showed initial signs of infection: In the task manager under Windows, the process “conhoz.exe” appeared, which turned out to be a Trojan disguised as a legitimate component of the operating system.
After downloading a compatible browser and further using the system, the PC soon began to collect malware from several unknown sources. The system fell victim to various Trojans and malware that were executed from temporary folders.
Even outdated Windows 7 is safer than Windows XP
Did the researcher make it too easy for viruses? Yes, the expert admits that the conditions for malware entry were optimal: firewall disabled, direct connection without NAT, and unpatched system. Under normal circumstances, with a simple home router and an active firewall, Windows XP would be much better protected.
To compare the results, Parker conducted the same test with an outdated Windows 7. Surprisingly, the newer system showed no signs of infection after ten hours of exposure, despite disabled security options.
EternalBlue caused plenty of chaos and crippled systems back then
Why is Windows XP so vulnerable? The underlying issue is the so-called EternalBlue vulnerability, which exists in an unpatched Windows XP SP3. According to a blog post from Microsoft, the NSA in the USA discovered the vulnerability and exploited it for years, only making the information public in 2017. A comprehensive analysis of the vulnerability can be found at Avast.com.
The vulnerability has also been exploited by ransomware such as WannaCry or Petya. Numerous institutions, including hospitals, train stations, and industries, were crippled back then. The problem was so significant that Microsoft decided to release the MS17-010 patch even for older, unsupported systems.
Parker explained that certain tools allow cybercriminals to scan the network for vulnerable systems and quickly identify unprotected Windows XP computers.
Tech pioneer and billionaire Mark Cuban spoke in an interview with Bill Gates. He asked him what Gates would do if, after his departure, Windows 10 were used again. Cuban refers to the change of a basketball star at his team, which affected him greatly: “I would hide from the press”: Bill Gates says what he would do if the CEO of Microsoft switched from Windows 11 to Windows 10
