Please Scroll Down to See Forums Below 
pitbullstl
New member
Hey I know it's on here already.....but I can't seem to fix my fucking computer....I imagine the virus hit me.....but I have no clue how to fix it.......Karma for help????
Help the dumbass.......
- Thread starter pitbullstl
- Start date
out of curiosity.. see if you can get to this site.. it's supposed to be internal but you may be able to access it...
www.bsaecomm.com
www.bsaecomm.com
Big Johnson
New member
Back up your data, format your hard drives, and reinstall everything PLUS Norton Antivirus.
pitbullstl
New member
Is reformatting really necessary.....?? I thought people were fixing this easier.....thanks for the help karma to all....
Detection:
Check for the existence of the registry key
"SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows auto update". Also check for the existence of the file "%systemroot%\system32\msblast.exe".
Retina Network Security Scanner has been updated to identify Blaster worm infections, as well as hosts vulnerable to the DCOM security hole that the Blaster uses to propagate.
http://www.eeye.com/html/Products/Retina/index.html
eEye has also released a free scanner to aid in the detection of vulnerable hosts:
http://www.eeye.com/html/Research/Tools/RPCDCOM.html
Removal:
Delete the following registry key:
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"
Value: "windows auto update"
String: "msblast.exe"
Look for "msblast.exe" running in the task manager. If it is running, kill the process.
Delete the file "%systemroot%\system32\msblast.exe"
Prevention:
Install the Microsoft patch available from:
http://www.microsoft.com/technet/security/bulletin/MS03-026.asp
Where feasible, disable DCOM and filter the following ports:
TCP: 135, 139, 445, 593
UDP: 135, 445, 593, possible tftp (69)
To manually enable (or disable) DCOM for a computer:
Run dcomcnfg.exe. If you are running Windows XP or Windows Server 2003, perform these additional steps:
Click on the Component Services node under Console Root.
Open the Computers sub-folder.
For the local computer, right click on My Computer and choose Properties.
For a remote computer, right click on the Computers folder and choose New then Computer. Enter the computer name.
Right click on that computer name and choose Properties.
Choose the Default Properties tab.
Select (or clear) the Enable Distributed COM on this Computer check box.
If you will be setting more properties for the machine, click the Apply button to enable (or disable) DCOM. Otherwise, click OK to apply the changes and exit Dcomcnfg.exe.
Reboot.
Check for the existence of the registry key
"SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows auto update". Also check for the existence of the file "%systemroot%\system32\msblast.exe".
Retina Network Security Scanner has been updated to identify Blaster worm infections, as well as hosts vulnerable to the DCOM security hole that the Blaster uses to propagate.
http://www.eeye.com/html/Products/Retina/index.html
eEye has also released a free scanner to aid in the detection of vulnerable hosts:
http://www.eeye.com/html/Research/Tools/RPCDCOM.html
Removal:
Delete the following registry key:
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"
Value: "windows auto update"
String: "msblast.exe"
Look for "msblast.exe" running in the task manager. If it is running, kill the process.
Delete the file "%systemroot%\system32\msblast.exe"
Prevention:
Install the Microsoft patch available from:
http://www.microsoft.com/technet/security/bulletin/MS03-026.asp
Where feasible, disable DCOM and filter the following ports:
TCP: 135, 139, 445, 593
UDP: 135, 445, 593, possible tftp (69)
To manually enable (or disable) DCOM for a computer:
Run dcomcnfg.exe. If you are running Windows XP or Windows Server 2003, perform these additional steps:
Click on the Component Services node under Console Root.
Open the Computers sub-folder.
For the local computer, right click on My Computer and choose Properties.
For a remote computer, right click on the Computers folder and choose New then Computer. Enter the computer name.
Right click on that computer name and choose Properties.
Choose the Default Properties tab.
Select (or clear) the Enable Distributed COM on this Computer check box.
If you will be setting more properties for the machine, click the Apply button to enable (or disable) DCOM. Otherwise, click OK to apply the changes and exit Dcomcnfg.exe.
Reboot.
R
revexrevex
Guest
Pitbull, my university has a software tool to remove the virus
you can download it here, it is from Symantec and it cleans your system
http://insight.poly.edu/fixblast.exe
you can download it here, it is from Symantec and it cleans your system
http://insight.poly.edu/fixblast.exe
pitbullstl
New member
decem said:
Which ones should I download? And then run them?
Also the other links don't work.....thanks...
R
revexrevex
Guest
Pitbull, you can also download the program directly from symantec
http://securityresponse.symantec.com/avcenter/FixBlast.exe
http://securityresponse.symantec.com/avcenter/FixBlast.exe
i'm confused pit. which links work and which doesn't?
1. what os are you running?
2. kill any instances of the mblast.exe process that are running
3. as revex said.. download that fixblast.exe tool.. and run it.. could take awhile as it scans entire hd
4. you'll also have to apply the ms patch so as to prevent it from reinfecting you..
5. you'll also then need to download updated virus defs for whatever anti-virus tool you might be running
1. what os are you running?
2. kill any instances of the mblast.exe process that are running
3. as revex said.. download that fixblast.exe tool.. and run it.. could take awhile as it scans entire hd
4. you'll also have to apply the ms patch so as to prevent it from reinfecting you..
5. you'll also then need to download updated virus defs for whatever anti-virus tool you might be running
R
revexrevex
Guest
decem, youre confusing him!
Pitbullstl, just download the program, it will clean your computer.
Pitbullstl, just download the program, it will clean your computer.
how am i confusing him?
damn end-users.. lol
seriously (shut up aap).. he needs to do what i said to do and he will then be completely safeguarded against the computer..
now go flex your erectors on a thread where you actually can contribute to the discussion or help a n**ga as opposed to impeding a n**ga's progress by being a foo and contradicting an expert on the damn topic..
word..
btw.. when you're on the beach with a friend that has a bigger chest or arms than you... do girls walk up to you and ask him how much he can deadlift.. or do they tell you "nice erectors" and just ignore his pecs/arms.. or...
muwhahhahhaha.. i kill myself...
damn end-users.. lol
seriously (shut up aap).. he needs to do what i said to do and he will then be completely safeguarded against the computer..
now go flex your erectors on a thread where you actually can contribute to the discussion or help a n**ga as opposed to impeding a n**ga's progress by being a foo and contradicting an expert on the damn topic..
word..
btw.. when you're on the beach with a friend that has a bigger chest or arms than you... do girls walk up to you and ask him how much he can deadlift.. or do they tell you "nice erectors" and just ignore his pecs/arms.. or...
muwhahhahhaha.. i kill myself...
R
revexrevex
Guest
mother fucker.. hate u!
pitbullstl
New member
Hey thanks to everyone for their help.......but there was no motherfucking worm!!!
....I am now more pissed because I don't know what the hell is wrong.......I keep getting messages that say shit like....it was agood run.....bot.....blah blah blah....in little gray boxes????
I do appreciate everyones help......maybe Rev should swing by...and deadlift the hell out of my hard drive.....that should fix it...
.....
....I am now more pissed because I don't know what the hell is wrong.......I keep getting messages that say shit like....it was agood run.....bot.....blah blah blah....in little gray boxes???? I do appreciate everyones help......maybe Rev should swing by...and deadlift the hell out of my hard drive.....that should fix it... .....
R
revexrevex
Guest
reboot your computer broly.... or tell me exactly what the message says...."agood run....bot.....blablah" <-- that is weird ass message
and yes there will be some deadlifts done tomorrow, my pre-workout ritual is about to begin before I go to sleep.... it will be very painful
and yes there will be some deadlifts done tomorrow, my pre-workout ritual is about to begin before I go to sleep.... it will be very painful
pitbullstl
New member
I've rebooted till I'm blue in the face.....and nothing.....just a real sluggish run of things lately...and those weird ass little gray message boxes......
R
revexrevex
Guest
what do the message boxes say
pitbullstl
New member
"well it was a good run" and some other weird shit.....
R
revexrevex
Guest
lol i told you to stop dling so much porn...
Do you have any antivirus software on your computer?
Do you have any antivirus software on your computer?
pitbullstl
New member
WizKid25 said:it's because you're jewish.
You Bastard.......I thought adopted Jews...didn't get viruses....
......................................
pitbullstl
New member
revexrevex said:
Norton......and I am desensitized to computer porn......I would much rather watch Playboy T.V. with my wife.......
R
revexrevex
Guest
Did you scan with Norton?
Imnotdutch
butler monkey
Also try scanning using this site.........
http://housecall.trendmicro.com/housecall/start_corp.asp
Gets updated daily. Should find any problems for you.
http://housecall.trendmicro.com/housecall/start_corp.asp
Gets updated daily. Should find any problems for you.
