Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Microsoft Antispyware!


  • Please log in to reply
4 replies to this topic

#1 Professional

Professional

  • Members
  • 280 posts
  • OFFLINE
  •  
  • Local time:09:40 PM

Posted 02 January 2006 - 11:22 PM

Hello!
I was looking through Microsoft AntiSpyware and came across the Host Files on my computer and I saw hundreds of redirection host I kind of panicked and ran WinSockXPFix! It had heaps of items and I know I didn;t put it there unless Host Files mans a good thing Spybot or Some other Anti-tools has done it! Help would be aprreciated.

Thank You`
Posted Image

BC AdBot (Login to Remove)

 


m

#2 *Desdinova*

*Desdinova*

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Local time:04:40 AM

Posted 05 January 2006 - 12:56 PM

Hello :thumbsup:


Not sure I'm understanding your question :flowers: , but does this help you out a bit ?:

There are soms "good" lists to put in the hosts file, so malicious sites cannot be reached (s.a HPGuru's Hosts file)
Good items (placed by a trustworthy program/hosts list) in the hosts file can be recognized as
127.0.0.1 Bad site
f.e
127.0.0.1 co olwebsearch.c om)
Perhaps another user had installed this kind of lists to prevent the installation of spyware ?
(There are also hosts lists to protect against the available since a few days)
more info:
http://www.mvps.org/winhelp2002/hosts.htm

But items in your Hosts file can also be the result of malware that want to prevent you from reaching security sites (online virusscans, sites to download anti virus updates etc ..)
This can be recognized f.e by
127.0.0.1 Good site
f.e.
127.0.0.1 www.trendmicro.com

Nice tutorial with lots of information about the Hosts file :trumpet: :
http://www.bleepingcomputer.com/tutorials/hosts-files-explained/


If you want to restore the original Windows Hosts file, you can use Hoster © Toadbee
Hoster
* Download and save this tool to the desktop (you can replace or remove it later)
* then extract the zipped folder and open "hoster.exe"
* Click "Restore Original Hosts > OK and exit Hoster



Good luck !

#3 Professional

Professional
  • Topic Starter

  • Members
  • 280 posts
  • OFFLINE
  •  
  • Local time:09:40 PM

Posted 05 January 2006 - 07:23 PM

Thank You! Downloading it right now but after everyione Host Name like Cool Web Search it all leads to one IP Address as its Destination downloading Hoster right now Thanks!

EDIT: Yes I think they all lead to bad sites should I run Hoster? Thanks

Edited by Professional, 05 January 2006 - 07:43 PM.

Posted Image

#4 Professional

Professional
  • Topic Starter

  • Members
  • 280 posts
  • OFFLINE
  •  
  • Local time:09:40 PM

Posted 15 January 2006 - 08:48 PM

Well should? I dont think I should but I just want to be sure.
Thanks!
Posted Image

#5 *Desdinova*

*Desdinova*

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Local time:04:40 AM

Posted 15 January 2006 - 10:58 PM

Hello Professional,


I'm sorry for the delated reply,

Your Hosts file looks good in fact ! :thumbsup:
Those bad sites are added bij Spybot S&D, it's a list to prevent the computer to connect to those listed bas sites

[...]
127.0.0.1 localhost
# Start of entries inserted by Spybot - Search & Destroy
127.0.0.1 babe.the-killer.bz
[...]


So someone has added it by using Spybot S&D in advanced mode > tools > hosts file > add Spybot s&d hosts list

Posted Image

You can leave it this way :flowers:

Edited by *Desdinova*, 15 January 2006 - 11:00 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users