Hi JenRG,
Has your issue been resolved yet? If it has, please consider accepting the answer as it helps others sharing the same problem benefit too. Thank you :)
VPHAN
How to Completely Erase a Hard Drive Running Older Versions of Windows
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 44%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
JenRG
41
Reputation points
I have to recycle (donate) several old business PCs running Windows 7 or Windows 2000. These are ancient machines, 1st generation core 2 duos and PIVs. Because they contain proprietary or confidential data, I really need to completely wipe out the drives first. What is the best way to do that?
Windows for business | Windows Client for IT Pros | Devices and deployment | Other
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 71%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHA%3C/text%3E%3C/svg%3E)
Hamzah Ali 0 Reputation points2026-05-14T14:20:27.5+00:00 - Download: Get the DBAN ISO image (it’s free and open-source).
- Create Bootable Media: Burn the ISO to a CD or use a tool like Rufus to put it on a USB drive.
- Boot: Plug the media into the old PC, enter the BIOS to set it as the primary boot device, and start the machine.
- Wipe: Once loaded, select the drive and choose the DoD 5220.22-M pass method for high-level security.
-
JenRG 41 Reputation points
2026-05-14T14:32:02.4+00:00 I've actually tried DBAN. I used Rufus to create the bootable media (tried is 2x). Changed the boot options in the BIOS so that 1st choice was USB FDD. Disabled 2nd and 3rd boot option. Still it boots to Windows 7 in recover mode.
Sign in to comment
4 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 16%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
VPHAN 34,635 Reputation points Independent Advisor2026-05-22T17:20:22.0766667+00:00 -
JenRG 41 Reputation points
2026-05-22T17:31:27.5466667+00:00 Hi. I was never able to get the USB drive to work. After trial and error, I finally was able to make it work by burning a CD (using PowerISO) and then using the dodshort command in DBAN. Using autonuke or interactive nuke didn't work. I had multiple bad sectors on the drive that (seemingly) caused those processes to slow down. Also, when using those, the PC would automatically reboot and then I would have to start over.
Sign in to comment -
-
VPHAN 34,635 Reputation points Independent Advisor
2026-05-15T03:17:22.99+00:00 the primary selection must be USB-HDD. Since the Rufus utility formats the flash drive with a Master Boot Record to emulate a standard block storage device, instructing the BIOS to treat it as a hard disk is the correct approach. Ensure the Rufus configuration explicitly uses the MBR partition scheme and targets BIOS/UEFI-CSM, as these legacy motherboards cannot parse GUID Partition Tables.
If selecting USB-HDD still results in booting to the Windows recovery environment, you should change the primary boot option to Hard Disk instead. On many motherboards from the Pentium IV and Core 2 Duo era, a connected USB drive is categorized directly under the internal hard drives. You will need to navigate to a secondary BIOS menu, typically labeled Hard Disk Boot Priority or similar, and move the USB device to the top of that specific sequence.
Should both USB-HDD and the Hard Disk priority workaround fail due to the inherent unreliability of early Universal Serial Bus boot implementations, your most viable remaining option is CDROM. This requires burning the DBAN ISO directly to a physical compact disc, completely bypassing the volatile USB emulation layer in favor of native IDE or SATA optical drive controllers.
Hope this helps :)
VPHAN
-
VPHAN 34,635 Reputation points Independent Advisor
2026-05-14T14:54:30.5166667+00:00 Hi JenRG,
The issue stems from the boot selection configuration in your system firmware. Selecting the USB FDD option forces the motherboard to look for a legacy floppy emulator, but Rufus formats modern flash drives with a Master Boot Record partition scheme that mimics a standard hard disk. You must change the boot priority to USB-HDD or Removable Device so the system correctly identifies the drive. When preparing the drive in Rufus, you must also ensure the partition scheme is set explicitly to MBR and the target system is set to BIOS or UEFI-CSM, as Pentium IV and early Core 2 Duo motherboards completely lack modern UEFI support.
Even with the correct parameters applied, hardware from that specific era suffers from notoriously unreliable Universal Serial Bus boot implementations because their firmware predates standardized boot protocols. If the system continues bypassing the flash drive and loading the Windows recovery partition, the most foolproof method is abandoning USB entirely and burning the DBAN ISO directly to a physical CD-R. The optical drives use native IDE or SATA controllers which the legacy firmware fully understands without requiring volatile emulation layers. Should you find that the optical drives are dead, software sanitization is no longer viable. In those rare instances, physically removing the hard disk drives and drilling multiple holes through the metal platters remains a compliant and definitive method for total data destruction.
Hope this answer brought you some useful information. If it did, please hit “accept answer”. Should you have any questions, feel free to leave a comment.
VPHAN
-
JenRG 41 Reputation points
2026-05-14T22:04:52.89+00:00 My options are as follows:
- Floppy
- LS120
- Hard Disk
- CDROM
- ZIP
- USB-FDD
- USB-ZIP
- USB-CDROM
- USB-HDD
- Legacy LAN
- Disabled
Please advise
Sign in to comment -
-
AI answer
2026-05-14T14:18:47.1333333+00:00 For business PCs that contain proprietary or confidential data, use tools and methods that meet recognized data sanitization guidance rather than relying on a simple Windows reset or format.
- Use a secure erase tool that implements NIST 800-88–aligned commands
- For NVMe-based devices (for example, some newer SSDs), Microsoft Surface Data Eraser uses the NVMe format command as authorized in NIST SP 800‑88 Rev. 1 to securely erase data.
- This approach performs a purge-level operation (per NIST SP 800‑88) on the drive, making recovery with state‑of‑the‑art techniques infeasible.
- After such a wipe, the OS is removed and must be reinstalled before reuse.
- Understand Windows “Reset” limitations
- Windows “Remove everything” / “Reset this PC” options delete user files and can optionally perform data erasure, but this functionality is targeted at consumers and does not meet government and industry data erasure standards.
- For business systems with confidential data, do not rely solely on these reset options when regulatory or contractual requirements apply.
- Use secure file and free‑space wiping when full‑disk tools are not available
- A secure delete utility such as SDelete can:
- Securely delete specific files.
- Securely erase file data in unallocated disk space.
- SDelete overwrites data using patterns that implement the DoD 5220.22‑M clearing and sanitizing standard, making recovery of deleted file contents infeasible with typical forensic tools.
- Note: SDelete securely deletes file data, but not file names that may remain in free space.
- A secure delete utility such as SDelete can:
- Align with Microsoft’s data sanitization categories
- Microsoft defines three categories for data-bearing devices (DBDs):
- Clear: logical techniques (for example, overwrite, factory reset) that protect against simple, noninvasive recovery.
- Purge: logical or physical techniques that make recovery infeasible even with advanced lab methods (for example, secure erase commands, degaussing for magnetic media).
- Destroy: physical destruction so the media cannot be reused.
- For donated business PCs with sensitive data, aim for purge at minimum; consider destroy if drives are failing or cannot be reliably sanitized.
- Microsoft defines three categories for data-bearing devices (DBDs):
- Practical approach for older Windows 7/2000 PCs
- Boot the PC from trusted external media (for example, a WinPE or other bootable environment) and run a secure erase or multi‑pass overwrite tool that:
- Clears or purges all user‑accessible areas of the disk.
- Is consistent with NIST SP 800‑88 guidance.
- After wiping, either:
- Reinstall Windows if the PC will be reused by the recipient, or
- Remove and physically destroy the drive if reuse is not required.
- Boot the PC from trusted external media (for example, a WinPE or other bootable environment) and run a secure erase or multi‑pass overwrite tool that:
This combination of drive‑level secure erase (or physical destruction) and, where needed, secure file/free‑space wiping aligns with Microsoft’s own data sanitization practices and NIST SP 800‑88 guidance, and is appropriate for decommissioning older business PCs containing confidential data.
References:
AI-generated content may be incorrect. Read our transparency notes for more information. - Use a secure erase tool that implements NIST 800-88–aligned commands