Go to your "hosts" file
found here
Windows XP = C:\WINDOWS\SYSTEM32\DRIVERS\ETC
Windows 2K = C:\WINNT\SYSTEM32\DRIVERS\ETC
Win 98\ME = C:\WINDOWS

right click on it - mark "read only" - apply.

many virus's will write in your hosts file and cause hell for you. example - http://www.filesharingtalk.com/vb3/showthread.php?t=93330

You should be the only one who has permission to edit it.

Added item
"some malware will still be able to write to it, despite it being read-only.
The only sure way I know of disabling other programs editing it is by setting permissions.
You have to have XP's "simple file sharing" disabled to access these. -Right-click the HOSTS files, select Properties and click the Security tab.
-click Advanced and untick the bit at the bottom, "Inherit from parent the permisson..."
-Click the Remove button when prompted. Then click Add, type "Everyone" (without quotes) and click OK.
-Tick "Traverse Folder / Execute File" and "List Folder / Read Data".
Finally,
-click OK three times. "

SOunds like a good idea, thank you.

except programs can set attributes to -r
example: dietkaza will remove it's site and it's advertisers from a readonly HOSTS file.

except programs can set attributes to -r
example: dietkaza will remove it's site and it's advertisers from a readonly HOSTS file.

i don't use dietkaza but so what your saying is that they can still get through and this is pointless???
i doubt so as most hosts list (adblockers) stress that you should make it read only to prevent malicous use.
but if they (viruss) can bypass -r then they really have to try it.
The second last time i got wakked by virus my hosts had been raped - so i changed it to readonly - got attacked later again with no abuse to hosts...

vargas could you ellaborate?

all viruses have to do is use the attrib command to change the host file to writeable again and they can edit it.

viruses, worms will add microsoft.update and a few antivirus software makers to the list so you can patch your machine but it should be up to date in the first place right.

ellaborate?
if a program tries to write to a read only file (+r) it's denied access
if a program sets the attribute to not read only (-r) it has access
it depends on the code in the program trying to access the HOSTS file
example dietkaza will set it to -r and edit it.
if a program or virus doesn't set the attribute to writeable it will be denied edit permission when trying to edit the HOSTS file if its read only

setting your hosts file to +r will only protect you from programs/viruses that don't change the read only attribute of your hosts file, which is most of them i'm sure.

either way thanks for the heads up, i added 69.20.16.183 to my firewall rules :-)

so either way it is good to put it on "read only"
whats 69.20.16.183 ip refer to

thats the redirected IP in the post you linked

69.20.16.183 search.netscape.com
69.20.16.183 ieautosearch
69.20.16.183 auto.search.msn.com

Why not just set your TCP/IP setup to not use the HOSTS file or just don`t run crap? It as easy as that.

well i happen to like my 100+ entry HOSTS file, thank you very much.
for example:
212.42.16.114 client2.napigator.com
212.42.16.114 napigator.com
212.42.16.114 www.napigator.com

That will let old opennap clients update their nodelist, even though napigator is gone, by redirecting the request to NapList.com

after feeling totally pawned by Vargas i found this

some malware will still be able to write to it, despite it being read-only. The only sure way I know of disabling other programs editing it is by setting permissions.
You have to have XP's "simple file sharing" disabled to access these.

-Right-click the HOSTS files, select Properties and click the Security tab.
-click Advanced and untick the bit at the bottom, "Inherit from parent the permisson..."
-Click the Remove button when prompted. Then click Add, type "Everyone" (without quotes) and click OK.
-Tick "Traverse Folder / Execute File" and "List Folder / Read Data".
Finally,
-click OK three times.

that should do the trick