Host File Entries

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by bjgarrick, Jan 16, 2005.

  1. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Hey Chaslang or PP, got a quick question, does the information in this hosts log supposed to be in here, pc has WinXP SP2, and does it hurt anything being in there?
     
    Last edited: Jan 16, 2005
    bjgarrick, Jan 16, 2005
    #1
  2. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    bjgarrick, Jan 16, 2005
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    That is a method used by many to prevent you from going to those URLs. It just redirects you to your localhost. Some programs out there try to use this as a way to block these malware related URLs. There are multiple problems with doing this:
    1) it makes it too easy for a malware program to hide good links in the middle of all these bad ones. This would make it harder to find out why (for example) you could not go to a link you need (like www.majorgeeks.com).

    2) it does not provide any real protection that is worthwhile since it is so easy to delete or edit the hosts file anyway. Even if write protected, the smarter malware programs will just change the file attributes and either delete your hosts info or just insert their info into it (try to hide it).

    It is better to have the typical default hosts file which only has
    127.0.0.1 localhosts

    Use features like Spybot's Immunize and SpywareBlaster's to add bad address to your Restricted Zone. This is a better approach. Not fool proof either, but better.
     
    chaslang, Jan 16, 2005
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    chaslang, Jan 16, 2005
    #4
  5. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Thanks Chaslang, for the info. Now are you saying the current entries should be replaced by "127.0.0.1 localhosts" and saved?
     
    bjgarrick, Jan 17, 2005
    #5
  6. PhilliePhan

    PhilliePhan Guest

    Hi BJ,

    My .02 - There should be nothing in the Hosts file below 127.0.0.1 localhost.

    However, as Chas noted, some people like to block bad sites via the Hosts file. Here's an informative link:

    http://mvps.org/winhelp2002/hosts.htm

    PP :)
     
    PhilliePhan, Jan 17, 2005
    #6
  7. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Thanks for the info PP!
     
    bjgarrick, Jan 17, 2005
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Here is default hosts file and that is all that should be in it (for reasons mentioned):
     
    chaslang, Jan 17, 2005
    #8
  9. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Thanks Chas!
     
    bjgarrick, Jan 17, 2005
    #9

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds