• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

McAfee Problem

~bk

I
Political User
#3
Aha! I think i found the bastardido :p

I was scanning my computer with McAfee, and received a virus alert. The file name is configdlr.exe

What do you guys think? Was this causing all those problems?
 

Xie

- geek -
#4
Well it's more then possible that a virus has disabled your AV ... I would scan your system again w/ something like housecall and see if it finds anything else. If your system is then clean you might have to reinstall your AV depending on how the virus went about disabling it.
 
#5
Yeah, certain viruses attempt to disable or cripple antivirus software in certain ways. My roommate got a virus yesterday, and it brought Norton down to its knees. Besides that, it added every major antivirus manufacturer's URL to the hosts file and mapped them all to 127.0.0.1, so he couldn't even head over to Symantec's site to find a solution until I told him what the problem was.
Freaky...
 

~bk

I
Political User
#8
Xie said:
Well it's more then possible that a virus has disabled your AV ... I would scan your system again w/ something like housecall and see if it finds anything else. If your system is then clean you might have to reinstall your AV depending on how the virus went about disabling it.
I will do that in a moment.
 

~bk

I
Political User
#9
Ok. I found one more virus when I scanned with Housecall.

Name of virus: DOS_AGOBOT.HM
Scan result: Non-cleanable
File: C:\Windows\system32\drivers\etc\hosts

So this is means I have to go to his particular folder and deleted that file?
 

j79zlr

Glaanies script monkey
Political User
#11
The only line that should be in the hosts file by default is

127.0.0.1 localhost

everything else can be removed.
 

ming

OSNN Advanced
#12
j79zlr said:
The only line that should be in the hosts file by default is

127.0.0.1 localhost

everything else can be removed.
What is this file for? and what are the addresses in the file?
I've got probably 2 A4 pages full of addresses in that file. :p

Last line says "#END of KL Supertrick...."
 

j79zlr

Glaanies script monkey
Political User
#14
The host file overrides name resolution, so an entry like

216.239.57.99 google.com

would resolve google.com to that IP address. Some new spyware hijacks this file and points normal address [i.e. symantec.com] to a spyware site.

now if you put in there

216.239.57.99 yahoo.com

Typing yahoo.com would actually take you to google.

this is what the default hosts file looks like

Code:
# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
 

~bk

I
Political User
#15
# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
Don't know if i'm supposed to post this but that's whats in the file.
 

Members online

No members online now.

Latest posts

Latest profile posts

Hello, is there anybody in there? Just nod if you can hear me ...
Xie
What a long strange trip it's been. =)

Forum statistics

Threads
61,961
Messages
673,239
Members
89,014
Latest member
sanoravies