Rootkitted before I even install it? Sometime back I bought a copy of windows xp Sp2 corporate edition and threw it in a drawer to replace a lost oem disc version of xp. Recently the time came for a re-install and a friend pointed out that my install disc looked a little funny and not very official. I thought it looked fine but the idea that it might not be on the level creeped me out a little. I ran an md5 and sha1 hash and googled the results. Here's where it gets more unclear. I couldn't find any website official microsoft, or security or other site that I knew that had any posts for a correct sum of xp. Instead what I found were about 10 google result pages of chinese websites that seemed to have posted the hashes. I am hoping that someone here can help me out by running their own copies that they know are good for comparison. It's disappointing that microsoft doesn't post md5s or shas. I know about WGA but that doesn't really tell you if the copy you have is clean and free of rootkits it only tells you if your copy is pirated and corporate edition doesn't require activation. How can a company with an operating system as central as xp has been not post sums that would confirm the bits you have are the same as they were on their side, or maybe they do? The description of the cd from the cd drive in my computer is "VRMPVOL_EN". The disc contains 607,250,432 bytes or around 579 MB. If any of you have a copy of XP Sp2 corporate that you feel confident is authentic please post your md5 and sha1 results to see if there is at least a consensus.