System Exployer/Window's Host File

  • Thread starter Thread starter cc
  • Start date Start date
C

cc

Have a list of over 100 Host files. Not understanding if
these should be deactivated or not. Any help would be
greatly appreciated.
 
Do you mean that you have a list of 100 lines?

You could cut and paste them to this thread and we could look at them.

Such lines might either be bad (preventing access to antivirus vendor sites,
for example) or good (preventing access to sites distributing malware.)

In general, for most people, the only required (or at least useful) line is
described like this in the details panel:
--------------------
localhost
IP Addresse: 127.0.0.1

Status: Active

This is a valid local loopback address. A local loopback address is a
special Internet address, 127.0.0.1, defined by the Internet Protocol. A
host can use the local loopback address to send messages to itself. This
default address is configured by Windows.
 
Install the ZoneAlarm (free) and then cleanup your
hostfile (except the single entry for localhost
127.0.0.1) and immediately enable the hostfile lock
through ZoneAlarm.

It worked for me.
 
Good day to all. I run TrendMicro Suite2005 firewall and
antivirus. Am I able to use this program to remove or
lock down the hostfile. Went back into MSAS today and
there are many, many more files. Was not aware of these
files until using MSAS. The "LocalHost" file is now Not
listed. Will this cause a problem, if so are you able to
tell me how to relist it? Have been running MSAS in the
"Novice Mode", now realize able to run in Advance mode to
remove these bad guys. Your help is greatly appreiciated.
Thank you,
CC
 
I'm still uncertain of exactly what you are seeing--whether you are seeing
multiple Hosts files, which can be typical of some spyware/virus problems, I
think--or whether you are describing lines within the hosts file. If you
have a way to post a picture to the web, that'd be very nice--otherwise, I'd
be interested to see a screen shot, preferably one both compressed and
zipped to get it to a manageable size and not unduly burden beta
participants on slow links.

You might speak to TrendMicro support about this. As I re-read your
message, I suspect you are talking about lines in the file, and it is
possible that these lines are the result of either other antispyware
programs, or perhaps of something in TrendMicro's suite.
 
Bill,
1st of all thank you for you attention to my plight.
After reviewing you advice, understood the comcept of the
hostfile. Yes indeed these were file listed in the
Hostfile log. Confirmed this with SpybotS&D, as they
were also listed there but never did anything with them
as i didn't understand regarding "hostFiles".So, was
better to leave well enoungh along until I had a better
understanding of it all. Sorry am unable to supply a
copy of the file in the Host log file as I have removed
them from the log. If you would have seen the names of
some you would certainly have agreed with me that indeed
they were some nasty critters. Pretty scarry what some
people come up with.
I've only been using a computer for approx. a year and
have learned so much by visiting forums such as this, so,
so helpful. Thank you Bill for your generous offer of
help,even though i had some difficulty explaining myself.
Will not take up any more of everyone time but hope others
will be able to learn something from my questions.
Respectfully yours
CC
 
Thanks--no need to apologize--there aren't any dumb questions here.

I'm glad you mention Spybot Search & Destroy.

The hosts file is an ancient name resolution facility--it is a mechanism
that allows the OS to convert names to IP addresses, and is used before the
more complex name resolution mechanisms of the Internet.

This prompts different responses in malware writers and anti-malware
writers. The malware-writers stuff the hosts file with entries equating
www.symantec.com, for example, with 127.0.0.1--which is your machine. Thus
you can't reach Symantec/Norton for help when you find their antivirus app
has been disabled.

The anti-malware folks do the reverse. They stuff it full of sites known to
distribute spyware or viruses or dangerous in other ways--again equating the
site names with your local machine--thus keeping you from reaching those
sites by name even when you click on a link.

I believe you were seeing this kind of entry--which can be unexpected and
scary to find in your machine, but which is intended as a safety aid.

My own preference is to keep that file empty with just the default entry,
but this is a matter of taste--many others here do it differently.
 
If I wore a hat I would now be tipping it to Mr.Gates for
the purchase of MSAS(Giant). This is a wonderful program
to have on anyones desktop. Might say I am learning
through trial and error with different programs, this one
certainly cover alot of bases. Reading alot regarding
all the problems people are having with spyware and the
lot but thankfully I am able to say, my system is clean
thanks to program like Microsoft's Antispyware and other
good ones. If only more people would take the time to
install and use these programs the Internet woould be
alot safer.
Good bye for now,
cc
 
Back
Top