In the process of trying to scrub my system.
After running Ad-aware and quarantining a few (supposedly) low risk registry
entries, I installed the HOSTS file from
www.mvps.org/winhelp2002/hosts.htm.

I then run Ad-aware again (ok, there was some fumbling and web surfing, but
after getting this warning, I went back and re-installed the MVPS hosts and
scanned again on the clean install), and it objected to one line that seems
the same as all the others, with the message "Redirected hostfile entry....
Medium Risk, Possible CoolWebSearch Hijack". The line it didn't like was
the "1spybot.com" line in the following excerpt:

127.0.0.1 overture.reporting.net
# ["Domains by Proxy"][hides real owner][Restricted Zone site]
127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
127.0.0.1 adblaster2.info
127.0.0.1 www.adblaster2.info
127.0.0.1 adsvr.net #[thepowerstrip.com]

(In the error message, it quoted the complete line, and added
\127.0.0.1
at the end.)

As far as I understand, this is just redirecting attempts to connect to
1spybot.com to some null address, the same as all the other naughty sites
are redirected to. The #[..] is just a comment.

So what's Ad-aware objecting to? Just a glitch, or something subtle I'm not
noticing.

AdAware does not do a good job of scanning the HOSTS file. In AdAware, click on
"Customize" and unselect "Scan HOSTS File". I have a hosts file manager
available which, among other things, monitors the HOSTS file for corruption and
hijacking and it uses the same HOSTS file as what you have. If you want the
download link to the current version, post back.

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

"ggull" <ggullSPAM@NOTrcn.com> wrote in message
news:e7Bl%23yW9DHA.548@TK2MSFTNGP11.phx.gbl...
| In the process of trying to scrub my system.
| After running Ad-aware and quarantining a few (supposedly) low risk registry
| entries, I installed the HOSTS file from
| www.mvps.org/winhelp2002/hosts.htm.
|
| I then run Ad-aware again (ok, there was some fumbling and web surfing, but
| after getting this warning, I went back and re-installed the MVPS hosts and
| scanned again on the clean install), and it objected to one line that seems
| the same as all the others, with the message "Redirected hostfile entry....
| Medium Risk, Possible CoolWebSearch Hijack". The line it didn't like was
| the "1spybot.com" line in the following excerpt:
|
| 127.0.0.1 overture.reporting.net
| # ["Domains by Proxy"][hides real owner][Restricted Zone site]
| 127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
| 127.0.0.1 adblaster2.info
| 127.0.0.1 www.adblaster2.info
| 127.0.0.1 adsvr.net #[thepowerstrip.com]
|
| (In the error message, it quoted the complete line, and added
| \127.0.0.1
| at the end.)
|
| As far as I understand, this is just redirecting attempts to connect to
| 1spybot.com to some null address, the same as all the other naughty sites
| are redirected to. The #[..] is just a comment.
|
| So what's Ad-aware objecting to? Just a glitch, or something subtle I'm not
| noticing.
|
|

Thanks for the quick reply.
I assume it means that I was right to ignore the Ad-aware warning, and my
basic understanding of the hosts file is ok.
I'd appreciate the link to that hosts file manager.
If for some reason you don't want to post, un-mungeing my address is the
obvious.
gg
"George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
news:#eCt2HX9DHA.2480@TK2MSFTNGP10.phx.gbl...

"ggull" <ggullSPAM@NOTrcn.com> wrote in news:e7Bl#yW9DHA.548
@TK2MSFTNGP11.phx.gbl:

I've archived at http://www.mewnlite.com/warning.jpg

--
There are 3 kinds of people: Those who can count & those who can't.

"ggull" <ggullSPAM@NOTrcn.com> wrote in news:e7Bl#yW9DHA.548
@TK2MSFTNGP11.phx.gbl:

I added that line to my hosts file, and AdAware came up with the same thing
you described. However, I'm going to leave it there and see if it
eliminates that popup (referred to in my last post).

--
There are 3 kinds of people: Those who can count & those who can't.

You took the correct action. Like I pointed out, using AdAware to scan the
HOSTS file is not usually a good idea. I am surprised that it only caught the
one line. I would have posted the link the last time but I was in the middle of
uploading a newer version of HOSTS File Manager and it was better to have that
done before I posted the link here.
http://mvps.org/PracticallyNerded/SoftMain.htm#Hosts

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

"ggull" <ggullSPAM@NOTrcn.com> wrote in message
news:eWgTbRX9DHA.2560@TK2MSFTNGP09.phx.gbl...
| Thanks for the quick reply.
| I assume it means that I was right to ignore the Ad-aware warning, and my
| basic understanding of the hosts file is ok.
| I'd appreciate the link to that hosts file manager.
| If for some reason you don't want to post, un-mungeing my address is the
| obvious.
| gg
| "George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
| news:#eCt2HX9DHA.2480@TK2MSFTNGP10.phx.gbl...
| > AdAware does not do a good job of scanning the HOSTS file. In AdAware,
| click on
| > "Customize" and unselect "Scan HOSTS File". I have a hosts file manager
| > available which, among other things, monitors the HOSTS file for
| corruption and
| > hijacking and it uses the same HOSTS file as what you have. If you want
| the
| > download link to the current version, post back.
| >
| > --
| > George (Bindar Dundat ©) MS-MVP
| >
| > For Windows Troubleshooting Tips see;
| > http://aumha.org/win4/a/tshoot.htm
| >
| > "ggull" <ggullSPAM@NOTrcn.com> wrote in message
| > news:e7Bl%23yW9DHA.548@TK2MSFTNGP11.phx.gbl...
| > | In the process of trying to scrub my system.
| > | After running Ad-aware and quarantining a few (supposedly) low risk
| registry
| > | entries, I installed the HOSTS file from
| > | www.mvps.org/winhelp2002/hosts.htm.
| > |
| > | I then run Ad-aware again (ok, there was some fumbling and web surfing,
| but
| > | after getting this warning, I went back and re-installed the MVPS hosts
| and
| > | scanned again on the clean install), and it objected to one line that
| seems
| > | the same as all the others, with the message "Redirected hostfile
| entry....
| > | Medium Risk, Possible CoolWebSearch Hijack". The line it didn't like
| was
| > | the "1spybot.com" line in the following excerpt:
| > |
| > | 127.0.0.1 overture.reporting.net
| > | # ["Domains by Proxy"][hides real owner][Restricted Zone site]
| > | 127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
| > | 127.0.0.1 adblaster2.info
| > | 127.0.0.1 www.adblaster2.info
| > | 127.0.0.1 adsvr.net #[thepowerstrip.com]
| > |
| > | (In the error message, it quoted the complete line, and added
| > | \127.0.0.1
| > | at the end.)
| > |
| > | As far as I understand, this is just redirecting attempts to connect to
| > | 1spybot.com to some null address, the same as all the other naughty
| sites
| > | are redirected to. The #[..] is just a comment.
| > |
| > | So what's Ad-aware objecting to? Just a glitch, or something subtle I'm
| not
| > | noticing.
| > |
| > |
| >
|
|

George, this is really a dumb question. I run AdAware, but I don't know
what a host file is. Please explain.

Thanks

Henry



George (Bindar Dundat) wrote:

A HOSTS file is used primarily for blocking web pages and pop-ups. A better
description is given here.
http://www.mvps.org/winhelp2002/hosts.htm

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

<wa0goz@arrl.net> wrote in message news:4032B0ED.5270@arrl.net...
| George, this is really a dumb question. I run AdAware, but I don't know
| what a host file is. Please explain.
|
| Thanks
|
| Henry
|
|
|
| George (Bindar Dundat) wrote:
| >
| > AdAware does not do a good job of scanning the HOSTS file. In AdAware,
click on
| > "Customize" and unselect "Scan HOSTS File". I have a hosts file manager
| > available which, among other things, monitors the HOSTS file for corruption
and
| > hijacking and it uses the same HOSTS file as what you have. If you want the
| > download link to the current version, post back.
| >
| > --
| > George (Bindar Dundat ©) MS-MVP
| >
| > For Windows Troubleshooting Tips see;
| > http://aumha.org/win4/a/tshoot.htm
| >
| > "ggull" <ggullSPAM@NOTrcn.com> wrote in message
| > news:e7Bl%23yW9DHA.548@TK2MSFTNGP11.phx.gbl...
| > | In the process of trying to scrub my system.
| > | After running Ad-aware and quarantining a few (supposedly) low risk
registry
| > | entries, I installed the HOSTS file from
| > | www.mvps.org/winhelp2002/hosts.htm.
| > |
| > | I then run Ad-aware again (ok, there was some fumbling and web surfing,
but
| > | after getting this warning, I went back and re-installed the MVPS hosts
and
| > | scanned again on the clean install), and it objected to one line that
seems
| > | the same as all the others, with the message "Redirected hostfile
entry....
| > | Medium Risk, Possible CoolWebSearch Hijack". The line it didn't like was
| > | the "1spybot.com" line in the following excerpt:
| > |
| > | 127.0.0.1 overture.reporting.net
| > | # ["Domains by Proxy"][hides real owner][Restricted Zone site]
| > | 127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
| > | 127.0.0.1 adblaster2.info
| > | 127.0.0.1 www.adblaster2.info
| > | 127.0.0.1 adsvr.net #[thepowerstrip.com]
| > |
| > | (In the error message, it quoted the complete line, and added
| > | \127.0.0.1
| > | at the end.)
| > |
| > | As far as I understand, this is just redirecting attempts to connect to
| > | 1spybot.com to some null address, the same as all the other naughty sites
| > | are redirected to. The #[..] is just a comment.
| > |
| > | So what's Ad-aware objecting to? Just a glitch, or something subtle I'm
not
| > | noticing.
| > |
| > |

"Menno Hershberger" <mhersh22@hotmail.com> wrote .
Thanks -- I had a good chuckle. That's a classic. Kind of like
"Psst ... hey buddy, that guy over there has his eye on your wallet. Let me
hold it for you to keep it safe."

You also can use it to map a computers name to an IP address, especially on
a LAN, e.g. so I can use "Kids_PC" rather than "192.168.0.1" to connect to
one of my kids pc's on my ethernet.

George (Bindar Dundat) wrote:

It has a lot of uses really, I was just referring to it's most common usage. I
could also have gone into detail about LMHOSTS but I didn't think it was needed
in this thread.

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

"pjp" <pjpoirier_is_located_@hotmail.com> wrote in message
news:OgBMjle9DHA.2736@TK2MSFTNGP10.phx.gbl...
| You also can use it to map a computers name to an IP address, especially on
| a LAN, e.g. so I can use "Kids_PC" rather than "192.168.0.1" to connect to
| one of my kids pc's on my ethernet.
|
| George (Bindar Dundat) wrote:
| > A HOSTS file is used primarily for blocking web pages and pop-ups. A
| > better description is given here.
| > http://www.mvps.org/winhelp2002/hosts.htm
| >
| >
| > <wa0goz@arrl.net> wrote in message news:4032B0ED.5270@arrl.net...
| >> George, this is really a dumb question. I run AdAware, but I don't
| >> know what a host file is. Please explain.
| >>
| >> Thanks
| >>
| >> Henry
| >>
| >>
| >>
| >> George (Bindar Dundat) wrote:
| >>>
| >>> AdAware does not do a good job of scanning the HOSTS file. In
| >>> AdAware, click on "Customize" and unselect "Scan HOSTS File". I
| >>> have a hosts file manager available which, among other things,
| >>> monitors the HOSTS file for corruption and hijacking and it uses
| >>> the same HOSTS file as what you have. If you want the download
| >>> link to the current version, post back.
| >>>
| >>> --
| >>> George (Bindar Dundat ©) MS-MVP
| >>>
| >>> For Windows Troubleshooting Tips see;
| >>> http://aumha.org/win4/a/tshoot.htm
| >>>
| >>> "ggull" <ggullSPAM@NOTrcn.com> wrote in message
| >>> news:e7Bl%23yW9DHA.548@TK2MSFTNGP11.phx.gbl...
| >>>> In the process of trying to scrub my system.
| >>>> After running Ad-aware and quarantining a few (supposedly) low
| >>>> risk registry entries, I installed the HOSTS file from
| >>>> www.mvps.org/winhelp2002/hosts.htm.
| >>>>
| >>>> I then run Ad-aware again (ok, there was some fumbling and web
| >>>> surfing, but after getting this warning, I went back and
| >>>> re-installed the MVPS hosts and scanned again on the clean
| >>>> install), and it objected to one line that seems the same as all
| >>>> the others, with the message "Redirected hostfile entry.... Medium
| >>>> Risk, Possible CoolWebSearch Hijack". The line it didn't like was
| >>>> the "1spybot.com" line in the following excerpt:
| >>>>
| >>>> 127.0.0.1 overture.reporting.net
| >>>> # ["Domains by Proxy"][hides real owner][Restricted Zone site]
| >>>> 127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
| >>>> 127.0.0.1 adblaster2.info
| >>>> 127.0.0.1 www.adblaster2.info
| >>>> 127.0.0.1 adsvr.net #[thepowerstrip.com]
| >>>>
| >>>> (In the error message, it quoted the complete line, and added
| >>>> \127.0.0.1
| >>>> at the end.)
| >>>>
| >>>> As far as I understand, this is just redirecting attempts to
| >>>> connect to 1spybot.com to some null address, the same as all the
| >>>> other naughty sites are redirected to. The #[..] is just a
| >>>> comment.
| >>>>
| >>>> So what's Ad-aware objecting to? Just a glitch, or something
| >>>> subtle I'm not noticing.
|
|

I'll bite George,
What about LMHOSTS?
You don't have to get into it, but would you have a link?
Thank you,
Curt
"George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
news:%23G%23Wure9DHA.1592@TK2MSFTNGP10.phx.gbl...

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.591 / Virus Database: 374 - Release Date: 2/18/04

http://support.microsoft.com/default...b;EN-US;180094
http://www.netadmintools.com/art16.html
http://www.winguides.com/registry/display.php/1285/
--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

"Curt Christianson" <curtchristnsn@NOSPAMyahoo.com> wrote in message
news:%23spWQ2e9DHA.1268@TK2MSFTNGP12.phx.gbl...
| I'll bite George,
| What about LMHOSTS?
| You don't have to get into it, but would you have a link?
| Thank you,
| Curt
| "George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
| news:%23G%23Wure9DHA.1592@TK2MSFTNGP10.phx.gbl...
| > It has a lot of uses really, I was just referring to it's most common
| usage. I
| > could also have gone into detail about LMHOSTS but I didn't think it was
| needed
| > in this thread.
| >
| > --
| > George (Bindar Dundat ©) MS-MVP
| >
| > For Windows Troubleshooting Tips see;
| > http://aumha.org/win4/a/tshoot.htm
| >
| > "pjp" <pjpoirier_is_located_@hotmail.com> wrote in message
| > news:OgBMjle9DHA.2736@TK2MSFTNGP10.phx.gbl...
| > | You also can use it to map a computers name to an IP address, especially
| on
| > | a LAN, e.g. so I can use "Kids_PC" rather than "192.168.0.1" to connect
| to
| > | one of my kids pc's on my ethernet.
| > |
| > | George (Bindar Dundat) wrote:
| > | > A HOSTS file is used primarily for blocking web pages and pop-ups. A
| > | > better description is given here.
| > | > http://www.mvps.org/winhelp2002/hosts.htm
| > | >
| > | >
| > | > <wa0goz@arrl.net> wrote in message news:4032B0ED.5270@arrl.net...
| > | >> George, this is really a dumb question. I run AdAware, but I don't
| > | >> know what a host file is. Please explain.
| > | >>
| > | >> Thanks
| > | >>
| > | >> Henry
| > | >>
| > | >>
| > | >>
| > | >> George (Bindar Dundat) wrote:
| > | >>>
| > | >>> AdAware does not do a good job of scanning the HOSTS file. In
| > | >>> AdAware, click on "Customize" and unselect "Scan HOSTS File". I
| > | >>> have a hosts file manager available which, among other things,
| > | >>> monitors the HOSTS file for corruption and hijacking and it uses
| > | >>> the same HOSTS file as what you have. If you want the download
| > | >>> link to the current version, post back.
| > | >>>
| > | >>> --
| > | >>> George (Bindar Dundat ©) MS-MVP
| > | >>>
| > | >>> For Windows Troubleshooting Tips see;
| > | >>> http://aumha.org/win4/a/tshoot.htm
| > | >>>
| > | >>> "ggull" <ggullSPAM@NOTrcn.com> wrote in message
| > | >>> news:e7Bl%23yW9DHA.548@TK2MSFTNGP11.phx.gbl...
| > | >>>> In the process of trying to scrub my system.
| > | >>>> After running Ad-aware and quarantining a few (supposedly) low
| > | >>>> risk registry entries, I installed the HOSTS file from
| > | >>>> www.mvps.org/winhelp2002/hosts.htm.
| > | >>>>
| > | >>>> I then run Ad-aware again (ok, there was some fumbling and web
| > | >>>> surfing, but after getting this warning, I went back and
| > | >>>> re-installed the MVPS hosts and scanned again on the clean
| > | >>>> install), and it objected to one line that seems the same as all
| > | >>>> the others, with the message "Redirected hostfile entry.... Medium
| > | >>>> Risk, Possible CoolWebSearch Hijack". The line it didn't like was
| > | >>>> the "1spybot.com" line in the following excerpt:
| > | >>>>
| > | >>>> 127.0.0.1 overture.reporting.net
| > | >>>> # ["Domains by Proxy"][hides real owner][Restricted Zone site]
| > | >>>> 127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
| > | >>>> 127.0.0.1 adblaster2.info
| > | >>>> 127.0.0.1 www.adblaster2.info
| > | >>>> 127.0.0.1 adsvr.net #[thepowerstrip.com]
| > | >>>>
| > | >>>> (In the error message, it quoted the complete line, and added
| > | >>>> \127.0.0.1
| > | >>>> at the end.)
| > | >>>>
| > | >>>> As far as I understand, this is just redirecting attempts to
| > | >>>> connect to 1spybot.com to some null address, the same as all the
| > | >>>> other naughty sites are redirected to. The #[..] is just a
| > | >>>> comment.
| > | >>>>
| > | >>>> So what's Ad-aware objecting to? Just a glitch, or something
| > | >>>> subtle I'm not noticing.
| > |
| > |
| >
|
|
| ---
| Outgoing mail is certified Virus Free.
| Checked by AVG anti-virus system (http://www.grisoft.com).
| Version: 6.0.591 / Virus Database: 374 - Release Date: 2/18/04
|
|

Thank you!
Curt
"George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
news:%23kuUGKf9DHA.2640@TK2MSFTNGP10.phx.gbl...

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.591 / Virus Database: 374 - Release Date: 2/18/04

Hi George,
If memory serves me correctly, wasn't the original purpose of the HOSTS file
to expedite accessing websites. Something about your browerser didn't have
to look up a domain name or something?
I realize things have changed since then.
Curt
"George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
news:uMwnRrb9DHA.2656@TK2MSFTNGP11.phx.gbl...

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.591 / Virus Database: 374 - Release Date: 2/18/04

YW Happy reading. BTW....you don't need one. <G> In your case a HOSTS file is
just fine.

--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

"Curt Christianson" <curtchristnsn@NOSPAMyahoo.com> wrote in message
news:e1rmoOf9DHA.2028@TK2MSFTNGP10.phx.gbl...
| Thank you!
| Curt
| "George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
| news:%23kuUGKf9DHA.2640@TK2MSFTNGP10.phx.gbl...
| > http://support.microsoft.com/default...b;EN-US;180094
| > http://www.netadmintools.com/art16.html
| > http://www.winguides.com/registry/display.php/1285/
| > --
| > George (Bindar Dundat ©) MS-MVP
| >
| > For Windows Troubleshooting Tips see;
| > http://aumha.org/win4/a/tshoot.htm
| >
| > "Curt Christianson" <curtchristnsn@NOSPAMyahoo.com> wrote in message
| > news:%23spWQ2e9DHA.1268@TK2MSFTNGP12.phx.gbl...
| > | I'll bite George,
| > | What about LMHOSTS?
| > | You don't have to get into it, but would you have a link?
| > | Thank you,
| > | Curt
| > | "George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
| > | news:%23G%23Wure9DHA.1592@TK2MSFTNGP10.phx.gbl...
| > | > It has a lot of uses really, I was just referring to it's most common
| > | usage. I
| > | > could also have gone into detail about LMHOSTS but I didn't think it
| was
| > | needed
| > | > in this thread.
| > | >
| > | > --
| > | > George (Bindar Dundat ©) MS-MVP
| > | >
| > | > For Windows Troubleshooting Tips see;
| > | > http://aumha.org/win4/a/tshoot.htm
| > | >
| > | > "pjp" <pjpoirier_is_located_@hotmail.com> wrote in message
| > | > news:OgBMjle9DHA.2736@TK2MSFTNGP10.phx.gbl...
| > | > | You also can use it to map a computers name to an IP address,
| especially
| > | on
| > | > | a LAN, e.g. so I can use "Kids_PC" rather than "192.168.0.1" to
| connect
| > | to
| > | > | one of my kids pc's on my ethernet.
| > | > |
| > | > | George (Bindar Dundat) wrote:
| > | > | > A HOSTS file is used primarily for blocking web pages and pop-ups.
| A
| > | > | > better description is given here.
| > | > | > http://www.mvps.org/winhelp2002/hosts.htm
| > | > | >
| > | > | >
| > | > | > <wa0goz@arrl.net> wrote in message news:4032B0ED.5270@arrl.net...
| > | > | >> George, this is really a dumb question. I run AdAware, but I
| don't
| > | > | >> know what a host file is. Please explain.
| > | > | >>
| > | > | >> Thanks
| > | > | >>
| > | > | >> Henry
| > | > | >>
| > | > | >>
| > | > | >>
| > | > | >> George (Bindar Dundat) wrote:
| > | > | >>>
| > | > | >>> AdAware does not do a good job of scanning the HOSTS file. In
| > | > | >>> AdAware, click on "Customize" and unselect "Scan HOSTS File". I
| > | > | >>> have a hosts file manager available which, among other things,
| > | > | >>> monitors the HOSTS file for corruption and hijacking and it uses
| > | > | >>> the same HOSTS file as what you have. If you want the download
| > | > | >>> link to the current version, post back.
| > | > | >>>
| > | > | >>> --
| > | > | >>> George (Bindar Dundat ©) MS-MVP
| > | > | >>>
| > | > | >>> For Windows Troubleshooting Tips see;
| > | > | >>> http://aumha.org/win4/a/tshoot.htm
| > | > | >>>
| > | > | >>> "ggull" <ggullSPAM@NOTrcn.com> wrote in message
| > | > | >>> news:e7Bl%23yW9DHA.548@TK2MSFTNGP11.phx.gbl...
| > | > | >>>> In the process of trying to scrub my system.
| > | > | >>>> After running Ad-aware and quarantining a few (supposedly) low
| > | > | >>>> risk registry entries, I installed the HOSTS file from
| > | > | >>>> www.mvps.org/winhelp2002/hosts.htm.
| > | > | >>>>
| > | > | >>>> I then run Ad-aware again (ok, there was some fumbling and web
| > | > | >>>> surfing, but after getting this warning, I went back and
| > | > | >>>> re-installed the MVPS hosts and scanned again on the clean
| > | > | >>>> install), and it objected to one line that seems the same as
| all
| > | > | >>>> the others, with the message "Redirected hostfile entry....
| Medium
| > | > | >>>> Risk, Possible CoolWebSearch Hijack". The line it didn't like
| was
| > | > | >>>> the "1spybot.com" line in the following excerpt:
| > | > | >>>>
| > | > | >>>> 127.0.0.1 overture.reporting.net
| > | > | >>>> # ["Domains by Proxy"][hides real owner][Restricted Zone site]
| > | > | >>>> 127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
| > | > | >>>> 127.0.0.1 adblaster2.info
| > | > | >>>> 127.0.0.1 www.adblaster2.info
| > | > | >>>> 127.0.0.1 adsvr.net #[thepowerstrip.com]
| > | > | >>>>
| > | > | >>>> (In the error message, it quoted the complete line, and added
| > | > | >>>> \127.0.0.1
| > | > | >>>> at the end.)
| > | > | >>>>
| > | > | >>>> As far as I understand, this is just redirecting attempts to
| > | > | >>>> connect to 1spybot.com to some null address, the same as all
| the
| > | > | >>>> other naughty sites are redirected to. The #[..] is just a
| > | > | >>>> comment.
| > | > | >>>>
| > | > | >>>> So what's Ad-aware objecting to? Just a glitch, or something
| > | > | >>>> subtle I'm not noticing.
| > | > |
| > | > |
| > | >
| > |
| > |
| > | ---
| > | Outgoing mail is certified Virus Free.
| > | Checked by AVG anti-virus system (http://www.grisoft.com).
| > | Version: 6.0.591 / Virus Database: 374 - Release Date: 2/18/04
| > |
| > |
| >
|
|
| ---
| Outgoing mail is certified Virus Free.
| Checked by AVG anti-virus system (http://www.grisoft.com).
| Version: 6.0.591 / Virus Database: 374 - Release Date: 2/18/04
|
|

It still does that (and some of my custom entries are for that purpose), but by
setting the address to 127.0.0.1 or 0.0.0.0 it loops back to local host and does
not allow the page to display. It can also be great for parental control, hence
the password protection feature in HOSTS File Manager for the disable process.
That one was not planned until my daughter contacted me with a *minor* problem.
Mike Burgess MS-MVP has good info on using it to block at
http://www.mvps.org/winhelp2002/hosts.htm
--
George (Bindar Dundat ©) MS-MVP

For Windows Troubleshooting Tips see;
http://aumha.org/win4/a/tshoot.htm

"Curt Christianson" <curtchristnsn@NOSPAMyahoo.com> wrote in message
news:eoDqdRf9DHA.1472@TK2MSFTNGP11.phx.gbl...
| Hi George,
| If memory serves me correctly, wasn't the original purpose of the HOSTS file
| to expedite accessing websites. Something about your browerser didn't have
| to look up a domain name or something?
| I realize things have changed since then.
| Curt
| "George (Bindar Dundat)" <JustMe@nothome.net> wrote in message
| news:uMwnRrb9DHA.2656@TK2MSFTNGP11.phx.gbl...
| > A HOSTS file is used primarily for blocking web pages and pop-ups. A
| better
| > description is given here.
| > http://www.mvps.org/winhelp2002/hosts.htm
| >
| > --
| > George (Bindar Dundat ©) MS-MVP
| >
| > For Windows Troubleshooting Tips see;
| > http://aumha.org/win4/a/tshoot.htm
| >
| > <wa0goz@arrl.net> wrote in message news:4032B0ED.5270@arrl.net...
| > | George, this is really a dumb question. I run AdAware, but I don't know
| > | what a host file is. Please explain.
| > |
| > | Thanks
| > |
| > | Henry
| > |
| > |
| > |
| > | George (Bindar Dundat) wrote:
| > | >
| > | > AdAware does not do a good job of scanning the HOSTS file. In
| AdAware,
| > click on
| > | > "Customize" and unselect "Scan HOSTS File". I have a hosts file
| manager
| > | > available which, among other things, monitors the HOSTS file for
| corruption
| > and
| > | > hijacking and it uses the same HOSTS file as what you have. If you
| want the
| > | > download link to the current version, post back.
| > | >
| > | > --
| > | > George (Bindar Dundat ©) MS-MVP
| > | >
| > | > For Windows Troubleshooting Tips see;
| > | > http://aumha.org/win4/a/tshoot.htm
| > | >
| > | > "ggull" <ggullSPAM@NOTrcn.com> wrote in message
| > | > news:e7Bl%23yW9DHA.548@TK2MSFTNGP11.phx.gbl...
| > | > | In the process of trying to scrub my system.
| > | > | After running Ad-aware and quarantining a few (supposedly) low risk
| > registry
| > | > | entries, I installed the HOSTS file from
| > | > | www.mvps.org/winhelp2002/hosts.htm.
| > | > |
| > | > | I then run Ad-aware again (ok, there was some fumbling and web
| surfing,
| > but
| > | > | after getting this warning, I went back and re-installed the MVPS
| hosts
| > and
| > | > | scanned again on the clean install), and it objected to one line
| that
| > seems
| > | > | the same as all the others, with the message "Redirected hostfile
| > entry....
| > | > | Medium Risk, Possible CoolWebSearch Hijack". The line it didn't
| like was
| > | > | the "1spybot.com" line in the following excerpt:
| > | > |
| > | > | 127.0.0.1 overture.reporting.net
| > | > | # ["Domains by Proxy"][hides real owner][Restricted Zone site]
| > | > | 127.0.0.1 1spybot.com #[enigmasoftwaregroup.com]
| > | > | 127.0.0.1 adblaster2.info
| > | > | 127.0.0.1 www.adblaster2.info
| > | > | 127.0.0.1 adsvr.net #[thepowerstrip.com]
| > | > |
| > | > | (In the error message, it quoted the complete line, and added
| > | > | \127.0.0.1
| > | > | at the end.)
| > | > |
| > | > | As far as I understand, this is just redirecting attempts to connect
| to
| > | > | 1spybot.com to some null address, the same as all the other naughty
| sites
| > | > | are redirected to. The #[..] is just a comment.
| > | > |
| > | > | So what's Ad-aware objecting to? Just a glitch, or something subtle
| I'm
| > not
| > | > | noticing.
| > | > |
| > | > |
| >
|
|
| ---
| Outgoing mail is certified Virus Free.
| Checked by AVG anti-virus system (http://www.grisoft.com).
| Version: 6.0.591 / Virus Database: 374 - Release Date: 2/18/04
|
|

On Tue, 17 Feb 2004 10:44:03 -0500, "ggull" <ggullSPAM@NOTrcn.com>
wrote:

Discussions are on-going as to the logic of Adaware objecting to
a worthwhile entry such as 1Spybot.com. I had no luck convincing
Adaware several weeks ago that it was a 'good' entry and added it
to the 'ignore list' within Adaware.

Follow these steps, to add objects to the ignore-list:

1. On the scan result list, check all items that you want to ignore.
2. Right click in the list window to open the result-list menu,
3. Select "Add selection to ignore-list",
4. Click "OK".

BoB

"BoB" <me@privacy.net> wrote
Thanks, I'd already done that.

But what puzzles me is that Ad-aware *seems* to be saying that the 1Spybot
line in the hosts file is redirecting my browser to a dangerous site,
instead of the "null" address. [I've got to admit I find Ad-aware cryptic at
times.]

Why does it single out that one line among hundreds/thousands of others?

What does it *think* is bad about it? that 1Spybot.com is somehow a
benevolent site that shouldn't be blocked? or...?

On Thu, 19 Feb 2004 10:16:17 -0500, "ggull" <ggullSPAM@NOTrcn.com>
wrote:

No, Adaware is saying 1spybot.com is bad because CWS programmers
were dumb enough to add it to the Hosts file, when the entry
provides no benefit to CWS. It is just a re-direct to a worthless
site that users should not accidentally visit through a miss-type.

The CWS spyware will add 1spybot.com to the hosts file IF you
allow CWS to get on your computer. For no other reason, that
makes the entry bad in Adaware's opinion. Regardless that the
entry of 1spybot.com in the hosts file is a good thing. No other
entries in the hosts are incorrect in Adaware's view so others
are not highlighted for removal.

That is the problem. It 'doesn't' think. Like all software it
does what you program it to do. Garbage in, garbage out.

Add 1spybot.com to your ignore list in Adaware and forget it.
CWS won't make a mistake like this often enough to worry about.

BoB