malicious site has worms

I brought back a PC supposedly to reformat it due to the fact that I couldn’t install a network card to it earlier as it was asking for the Win98 CD.

Surprising, the network card Realtek RTL8139/810 X Family PCI Fast Ethernet NIC was presently working when I took it home.

Nevertheless, it was having four problems:

1. vnetsup.vxd
2. vredir.vxd
3. dfs.vxd
4. msnp32.dll

where system.ini or regedit cannot find them.

Vnetsup.vxd and vredir.vxd and dfs.vxd are all associated with “Client for Microsoft Networks”. Having removed and re-add it to the network component, the system would ask for Win98 CD. Soon after, I realized that there is a folder which contains Win98 installation source. Thus, by pointing to it, the four problems is then solved.

Then I thought that since there is no problem, there is no need to reinstall everything because the system is behaving very well. I just need to defrag it and make a clone, that is all. This is good because there are some programs which I don’t have the installation CD.

Then I tried to be naughty and visited a malicious site and that is when karma comes. The site got me infected with the following immediately.

i-worm/netsky.Q
i-worm/netsky.R
Trojan Horse Startpage.19.J à se.dll

Immediately, it disabled my Internet surfing ability by killing wininet.dll (which is responsible for Internet connection setup and etc)

Se.dll is a worm which makes me unable to surf the following site:
Symantec download
Windows update.

AVG antivirus couldn’t really help it, even though it is able to detect them.

I tried using Spybot – search & destroy and found the following:
Alexa related
Avenue A.inc
Cool wwwsearch.leftover
Double click
EffectiveB and Toolbar

I tried to repair using Win98 setup and it couldn’t help with the purpose. Initially I though by running Win98 setup ontop of the existing system, I could get the corrupted IE to be repaired. But nothing happened even though it went through the installation process.

Then I tried to upgrade to Win2k and same thing happened. It seemed that worms still exist in the system, even though it did get the IE renewed.

Then I did the biggest mistake where I hooked in a second HD which wasn’t visible initially. Then I thought, it could be due to its existing NTFS partition. I was correct, changing it to FAT32, I then reinstalled a second copy of Win2k to the system. Initially, my plan was for it to replaced the one in C drive. But it ended up created an installation to the second HD’s primary partition. This caused the MBR to be shifted from the first HD to the second HD. This indirectly caused the first HD to be corrupted because it has no MBR and I couldn’t fdisk it or whatsoever.

Now, the biggest problem is the first HD is totally not usable. When I tried to fdisk, it says “No fixed disk present”

When tried to reformat, it says “Error reading C:, C drive is invalid”

Oh well, from a safe ground, I got myself into a bad situation. Now I have to replace the HD and try to fix the problem one.

I just wondering how to get the first HD back to shape.

Comments

Brandon Teoh said…
Here is the thing, right now you still need to go online and
download a program called Get Data Back either FAT or NTFS,
depend on what file system you format to. Visit: www.runtime.org

This program will retrieve back any data from a formatted HD or
even HD that never been able read by windows or Dos. So I guess
this is the only solution, ofcourse there is still one problem you need
to buy this program, but I’ll upload the crack/patch in my website.

In my website, you need to download 3 files for NTFS patch & 3 for FAT,
The 1st part of each file is in EXE file so I zip it, the rest of it
Part 2 & part 3 does not require to be unzip.

Plus you need to get a huge size of HD like bigger than the
Partition/HD
you want to recover, it will do good for now & for future usage.

Ok what I have experience in my current company, all of the
Windows 98 contain worm virus, but I don’t bother to clean them,
Because it will come back no matter what I do, so I suggest you
have to love them, plus the worm is not coming from the porn site
only, I don’t know how they get in (Internet, floppy & etc), but once
in the network is very difficult to clean it.

For stand alone, I only can suggest to use at least win2000/ winXP
and must in NTFS. Then you must upgrade to latest service pack,
plus you need to switch on the firewall from the dial up connection
properties, go to advance and activate it. The worm cannot get in
easily, I guess this might just slow them down only, you will still
need anti virus & scan your HD frequently.

For network, is best to get a Router and have build in firewall
usually, possibly if home user can get one router also, anyway
its pretty cheap nowadays.

posted by Yudywanto
Brandon Teoh said…
Now I'm confuse bran, you seem torturing the hardisk instead of
recovering them just like I did in the pass, installing Linux – windows 98, 2000, & XP back and forth Until the hardisk kong. I still can access the partition, but when i copy files into in it will took a long time (and the file cannot be retrive properly),
so I suggest, once install Linux dont install back to windows.

posted by yudywanto
Anonymous said…
Have you thought of using a Mac ala OSX (Tiger)?

And next year they will sit on Intel Architecture.

Use PC at work & enjoy Mac at home.
Anonymous said…
Have you thought of using a Mac ala OSX (Tiger)?

And next year they will sit on Intel Architecture.

Use PC at work & enjoy Mac at home.

-- Old Man
Brandon Teoh said…
yeah.. will consider that if I have enough budget.
Anonymous said…
My big passion is seo software, or better, not only seo software.
Anonymous said…
This comment has been removed by a blog administrator.
Anonymous said…
Hi Blogger, today I’m surfing for a good blog
experience on spybot and I found your great site.
Well malicious site has worms wasn’t exactly what I was looking for
it did receive my attention and interest. I see now
why I found your resourceful web-site when I was
searching for spybot related information and I am
glad I found your site even though its not an exact
find. Let me contribute to this site by leaving you
with my favorite quote from Nicholas Negroponte! -
"Computing is not about computers any more. It is
about living." --- Nicholas Negroponte ---
Anonymous said…
Blogger, today I was looking for a nice blog
experience on addaware and I found your website.
malicious site has worms wasn’t exactly what I was looking for but it
did get my attention and interest. I see why I arrived
on your excellent blog when I was searching for
addaware related information and I’m glad I did
even though its not an exact fit. Well let me contribute
to your website by leaving you with one of my favorite
quote from Robert Orben: "To err is human - and to
blame it on a computer is even more so. - Robert Orben
Informative Post, thanks for the read and nice
experience.
Anonymous said…
www.TheOnlinePromoters.com has everything a webmaster needs to succeed online
Anonymous said…
The ultimate internet marketing website is www.TheOnlinePromoters.com
Anonymous said…
Blogger, today I was looking for a nice blog
experience on remove adware and I found your website.
malicious site has worms wasn’t exactly what I was looking for but it
did get my attention and interest. I see why I arrived
on your excellent website when I was searching for
remove adware related information and I’m glad I did
even though its not an exact fit. I’ll contribute to
your website by leaving you with one of my favorite
quote from Walter Mossberg:: "Why shouldn't a PC work
like a refrigerator or a toaster? " -- Walter
Mossberg
Anonymous said…
Hi Blogger, I’m out searching the web for the latest
and greatest information on addaware and found your
great site. Although malicious site has worms wasn’t specifically
what I was looking for it definitely got my interest
and attention. I see now why I found your interesting
blog when I was looking for addaware related
information and I’m grateful I found your site even
though its not a perfect match. Great Post, thanks
for your informative site, Here’s my favorite quote
for you - "The real danger is not that computers
will begin to think like men, but that men will begin
to think like computers. " - Sydney J. Harris
Anonymous said…
Hello there Blogger, I’m out surfing for a good blog
experience on addaware and found your great site.
Although malicious site has worms wasn’t exactly what I’m looking for
it certainly got my attention and interest. I see now
why I found your excellent blog-site when I was
searching for addaware related web sites and I’m
glad I found your site even though its not an exact
match. I’ll leave you with a good quote from Walter F.
Mondale - "What do we want our kids to do? Sweep up
around Japanese computers? " -- Walter F. Mondale
Excellent Post, thank you for the read.
Anonymous said…
Hello there Blogger, I’m out surfing for a good blog
experience on anti adware and found your great site.
Although malicious site has worms wasn’t exactly what I’m looking for
it certainly got my attention and interest. I see now
why I found your excellent blog-site when I was
searching for anti adware related web sites and I’m
glad I found your site even though its not an exact
match. I’ll leave you with a good quote from Walter F.
Mondale - "What do we want our kids to do? Sweep up
around Japanese computers? " -- Walter F. Mondale
Excellent Post, thank you for the read.
Anonymous said…
Hello Blogger, I’m just searching the web for the
next big thing on addaware and noticed your great
site. Although malicious site has worms wasn’t actually what I was
looking for it DID get my attention and interest. I
see now why I found your great website when I was
searching for addaware related information and I’m
thankful I found your blogsite even though its not an
exact match. Excellent Post, thanks for the read
(It’s a keeper), One last thing, here’s a great quote
from Doug Larson - "Home computers are being called
upon to perform many new functions, including the
consumption of homework formerly eaten by the dog." -
Doug Larson
Anonymous said…
Hello Blogger, I’m out surfing the web for the latest
information on spyware removal and noticed your nice site.
Although malicious site has worms wasn’t exactly what I was looking
for it certainly got my attention. Now I see why I
found your page when I was looking for spyware removal
related information and I’m thrilled I found your web
site even though its not a perfect match. Great Post,
thanks for your informative site, I’ll leave you with
my favorite quote from Isaac Asimov: "I do not fear
computers. I fear the lack of them.” Isaac Asimov
Anonymous said…
Blogger, today I was looking for a nice blog
experience on addaware and I found your website.
malicious site has worms wasn’t exactly what I was looking for but it
did get my attention and interest. I see why I arrived
on your excellent website when I was searching for
addaware related information and I’m glad I did
even though its not an exact fit. I’ll contribute to
your website by leaving you with one of my favorite
quote from Walter Mossberg:: "Why shouldn't a PC work
like a refrigerator or a toaster? " -- Walter
Mossberg
Anonymous said…
Hi Blogger, today I’m surfing for a good blog
experience on free adware and I found your great site.
Well malicious site has worms wasn’t exactly what I was looking for
it did receive my attention and interest. I see now
why I found your resourceful web-site when I was
searching for free adware related information and I am
glad I found your site even though its not an exact
find. Let me contribute to this site by leaving you
with my favorite quote from Nicholas Negroponte! -
"Computing is not about computers any more. It is
about living." --- Nicholas Negroponte ---
Anonymous said…
Blogger, today I was looking for a nice blog
experience on spyware removal and I found your website.
malicious site has worms wasn’t exactly what I was looking for but it
did get my attention and interest. I see why I arrived
on your excellent website when I was searching for
spyware removal related information and I’m glad I did
even though its not an exact fit. I’ll contribute to
your website by leaving you with one of my favorite
quote from Walter Mossberg:: "Why shouldn't a PC work
like a refrigerator or a toaster? " -- Walter
Mossberg
Anonymous said…
Blogger, today I was looking for a nice blog
experience on remove adware and I found your website.
this post wasn’t exactly what I was looking for but it
did get my attention and interest. I see why I arrived
on your excellent blog when I was searching for
remove adware related information and I’m glad I did
even though its not an exact fit. Well let me contribute
to your website by leaving you with one of my favorite
quote from Robert Orben: "To err is human - and to
blame it on a computer is even more so. - Robert Orben
Informative Post, thanks for the read and nice
experience.
Anonymous said…
Hi Blogger, I’m out searching the web for the latest
and greatest information on adware scan and found your
great site. Although malicious site has worms wasn’t specifically
what I was looking for it definitely got my interest
and attention. I see now why I found your interesting
blog when I was looking for adware scan related
information and I’m grateful I found your site even
though its not a perfect match. Great Post, thanks
for your informative site, Here’s my favorite quote
for you - "The real danger is not that computers
will begin to think like men, but that men will begin
to think like computers. " - Sydney J. Harris
Anonymous said…
Blogger, today I was looking for a nice blog
experience on anti adware and I found your website.
malicious site has worms wasn’t exactly what I was looking for but it
did get my attention and interest. I see why I arrived
on your excellent website when I was searching for
anti adware related information and I’m glad I did
even though its not an exact fit. Let me contribute
to your website by leaving you with one of my favorite
quote from Thomas Jefferson: "To err is human - and to
blame it on a computer is even more so. - Robert Orben
Informative Post, thanks for the read and nice
experience.
Anonymous said…
Blogger,

I saw your post
regarding affiliate casino program .

You are welcome to place a link to
your blog or website on my high
traffic website for free. See:

http://www.thefreeadforum.com


The Free Ad Forum is a forum where you may
post your permanent search engine friendly ads daily for
free. I hope you take advantage of this free advertising
opportunity, We have a special section just for affiliate casino program .

Thank you,

John,

http://www.thefreeadforum.com
The Free Advertising Forum.
Anonymous said…
[url=http://loveepicentre.com/testimonials.php][img]http://loveepicentre.com/uploades/photos/6.jpg[/img][/url]
color tape dating chart [url=http://loveepicentre.com/success_stories.php]dating advice brazilian[/url] mate lesbian dating service
amatuer dating [url=http://loveepicentre.com/articles.php]std dating websites[/url] canadian free dating service
he's still dating other people [url=http://loveepicentre.com/taketour.php]dating site for $9 per month[/url] dating in puntarenas costa rica
Anonymous said…
hilton hotema ebook http://audiobooksplanet.co.uk/Graphics-and-Multimedia/c1863/?page=5 does apple have a ebook [url=http://audiobooksplanet.co.uk/The-Ecological-Status-of-European-Rivers-Evaluation-and-Intercalibration-of-Assessment-Methods/p220417/]exploiting online games ebook download[/url] handbook of industrial engineers ebook
Anonymous said…
german english dictionary ebook http://audiobooksworld.co.uk/de/C-H-Oh/m16274/ palm ebook password [url=http://audiobooksworld.co.uk/it/Ancestor/p10190/]ebook on micromedia flash[/url] free ebook covers designers online
[url=http://audiobooksworld.co.uk/de/Y-Fun-Hu/m134077/][img]http://audiobooksworld.co.uk/image/7.gif[/img][/url]
Anonymous said…
Hello. And Bye. Thank you very much.
Anonymous said…
Hello. And Bye. Thank you very much.
Anonymous said…
Hello. And Bye. Thank you very much.
Anonymous said…
Hello. And Bye. Thank you very much.
Anonymous said…
dvd ripping software guide http://buyoem.co.uk/it/product-36772/Remo-File-Eraser-1-0 brainworks software [url=http://buyoem.co.uk/product-36347/Bitvise-WinSSHD-5-2]maxi stratus software xp[/url] server rack planning software
[url=http://buyoem.co.uk/es/account/login]Cuenta de Usuario - Software Store[/url] windows dynamic disk software raid mirror
[url=http://buyoem.co.uk/product-37083/Aiseesoft-DVD-Software-Toolkit-6-2][img]http://buyoem.co.uk/image/6.gif[/img][/url]
Anonymous said…
gamma brain wave entrainment software http://buyoem.co.uk/fr/product-14086/MarsEdit-2-0-Mac single-step software serial [url=http://buyoem.co.uk/es/product-35375/3herosoft-MP4-to-DVD-Burner-3-5-MacOSX]access controller software[/url] best system optimizer software
[url=http://buyoem.co.uk/es/information-5/Acuerdo-del-usuario]Acuerdo del usuario - Cheap Legal OEM Software, Software Sale, Download OEM[/url] best route tracing software
[url=http://buyoem.co.uk/fr/product-13192/Microsoft-Office-2003-Professional-Edition][img]http://buyoem.co.uk/image/7.gif[/img][/url]
Anonymous said…
b89f99qbd

Here is my blog post; quick loans today
Anonymous said…
[url=http://certifiedpharmacy.co.uk/products/viagra-professional.htm][img]http://onlinemedistore.com/2.jpg[/img][/url]
phormula pharmacy http://certifiedpharmacy.co.uk/products/betnovate.htm walmart pharmacy senior prescriptions [url=http://certifiedpharmacy.co.uk/products/levitra.htm]online pharmacy accept[/url]
elitenet pharmacy http://certifiedpharmacy.co.uk/products/chloroquine.htm pharmacy online pain pills [url=http://certifiedpharmacy.co.uk/products/minocin.htm]minocin[/url]
well known canadaian pharmacy http://certifiedpharmacy.co.uk/products/torsemide.htm cvs pharmacy cypress [url=http://certifiedpharmacy.co.uk/products/nolvadex.htm]cornerstone pharmacy versailles kentucky compounding laboratory[/url]
ky board of pharmacy pharmacist lookup http://certifiedpharmacy.co.uk/categories/pain-relief.htm nvq2 pharmacy assistant [url=http://certifiedpharmacy.co.uk/products/cleocin-gel.htm]cleocin gel[/url]
Anonymous said…
This comment has been removed by a blog administrator.
Anonymous said…
Hey there! This post could not be written any better!

Reading this post reminds me of my previous room mate! He always kept chatting about this.

I will forward this article to him. Pretty sure he will have
a good read. Thank you for sharing!

Here is my website; password hacking
Anonymous said…
This comment has been removed by a blog administrator.
Anonymous said…
This comment has been removed by a blog administrator.
Anonymous said…
I think the admin of this web page is truly working hard in favor
of his site, since here every stuff is quality based stuff.


my web page; all in one seo
Anonymous said…
Wonderful post! We will be linking to this great post on our website.

Keep up the great writing.

Feel free to visit my web-site ... racing games
Anonymous said…
We stumbled over here from a different page and thought
I should check things out. I like what I see so now i
am following you. Look forward to finding out about your
web page yet again.

Take a look at my website; Dragonvale hack for iphone
Anonymous said…
Enjoyed reading through this, very good stuff, thanks .
"Talk sense to a fool and he calls you foolish." by Euripides.


Here is my webpage Help for recovering twitter account
Anonymous said…
Hey there! Quick question that's totally off topic. Do you know how to make your site mobile friendly? My web site looks weird when viewing from my iphone. I'm trying to find
a template or plugin that might be able to fix this issue.
If you have any suggestions, please share. With thanks!


Also visit my web site: youtube video downloader