Hosts vs Virus - prevent?

**100%** · 11-12-2004, 06:29 PM

I just got my first virus overload experience (12 in total)
im using norton until it suddenly disapeared so used avg to clean up (plus alot of other things)
anyway

It seems that some worms write adresses in the hosts file
so you cant update etc or reach your antiurus company.

Since i dont use the hosts technique to remove ads (firefox)
then why not simply right clik the hosts file and make it "read only"
inorder to prevent any future write overs?

is this wrong atitude or a wise one?

thanx for any thoughts on the matter

**100%** · 11-12-2004, 07:09 PM

what the Worms did today was make a Hosts.bak of the original and insert a new hosts
which blocks everything essential

so then now the question is
is making it "read only" or even denying permissions - prevent a worm from renaming the actual file?

If this works it will prevent future slip ups

(yes i know get a better virus protector-but its still something to consider)

**RealitY** · 11-12-2004, 08:03 PM

Interesting idea maybe someone could eloborate...

**TheKiler** · 11-13-2004, 12:54 AM

Use something to lock out the host file. LIke spybot

**Ariel_001** · 11-13-2004, 11:25 PM

Why not just avoid all worms and Virus. It not hard..

**100%** · 11-13-2004, 11:38 PM

It is also sometimes good to understand how things work
why
where
how
why

comprende?

**Ariel_001** · 11-13-2004, 11:49 PM

Originally Posted by 15%

It is also sometimes good to understand how things work
why
where
how
why

comprende?

Ok from what I have seen:

why: From opening an email attachment, running some app from someplace.
where: At home
how: Clicking “yes” “open” “save as, then later running it”
why [they do it]: God only knows.

**Afronaut** · 11-14-2004, 04:36 AM

Originally Posted by Ariel_001

Ok from what I have seen:

why: From opening an email attachment, running some app from someplace.
where: At home
how: Clicking “yes” “open” “save as, then later running it”
why [they do it]: God only knows.

Yeah, keep clicking everything, dont stop thinkin, just keep clickin' it even if you dont know what it is...
Thats one way to get in trouble.

But still, there's also malware and such that even the latest Antivir/SpywareApps dont find.
I havent had a lot of experience with them, I've been either lucky or
I've learned not to browse the PC/Net/Mail like a Blonde.

In anyways, its also good to know how this shit works somewhat,
just in cse if a new piece of shit slips under the radar.

I use Spybot, it has the option to lock Host File.
Allthought, I dont know if it really works as I've yet to see a worm trying to edit it. Spybot only makes the Host file as Read Only, how could some worm
rename it if its Read Only? I dunno...

**100%** · 11-14-2004, 08:02 AM

Didnt know spybot also had that feature

I guess if spybot has it as an option then the question to this thread has been answered

Thanx

Thread: Hosts vs Virus - prevent?

Thread Tools

Bookmarks

Bookmarks

Posting Permissions