+1 If it is untouched, this is all it should contain (from a server 2003 machine - XP is exactly the same. Vista, Server 2008, & Win7 add IPv6 localhost entries, as notated in this kb article - http://support.microsoft.com/kb/972034 )
# Copyright (c) 1993-1999 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host 127.0.0.1 localhost Anything other than the above (with the exception of what is pointed out in the above referenced kb article) means it has been altered. Jonathan L. Raper, A+, MCSA, MCSE Technology Coordinator Eagle Physicians & Associates, PA [email protected]<BLOCKED::mailto:%[email protected]> www.eaglemds.com<BLOCKED::http://www.eaglemds.com/> ________________________________ From: Jeff Bunting [mailto:[email protected]] Sent: Friday, October 22, 2010 12:03 PM To: NT System Admin Issues Subject: Re: Windows 7 question You can just open the hosts file to see if has been changed, or just make your own new one. It is just a text file. On Fri, Oct 22, 2010 at 11:50 AM, John Aldrich <[email protected]<mailto:[email protected]>> wrote: Ok... sounds like there may be an issue with "leftover" crap from the fake antivirus. :-( I'll see if replacing the hosts file with a "known-clean" version did anything when I get home... -----Original Message----- From: HELP_PC [mailto:[email protected]<mailto:[email protected]>] Sent: Friday, October 22, 2010 11:05 AM To: NT System Admin Issues Subject: R: Windows 7 question Just now I updated Spybot on W7 (Run as Admin) with no issues GuidoElia HELPPC -----Messaggio originale----- Da: John Aldrich [mailto:[email protected]<mailto:[email protected]>] Inviato: venerdì 22 ottobre 2010 15.43 A: NT System Admin Issues Oggetto: RE: Windows 7 question Hmm... even though I started SpyBot as an Admin? I never got prompted for permissions to modify a system file like I would have expected. I'll try temporarily disabling UAC when I get home and see if SpyBot will update the hosts file. -----Original Message----- From: Sean Rector [mailto:[email protected]<mailto:[email protected]>] Sent: Friday, October 22, 2010 9:11 AM To: NT System Admin Issues Subject: RE: Windows 7 question UAC Sean Rector, MCSE -----Original Message----- From: John Aldrich [mailto:[email protected]<mailto:[email protected]>] Sent: Friday, October 22, 2010 8:57 AM To: NT System Admin Issues Subject: Windows 7 question Quick question -- is there something in Windows 7 that would prevent SpyBot from writing to the Hosts file? I cleaned my brother-in-law's laptop and tried to add the SpyBot Hosts file, but was unable to do so from within SpyBot. Eventually I just put the Hosts file from my wife's XP box on a flash drive and copied it over, but I am trying to get ready for Windows 7 here in the office and thought I'd ask. I *did*, at least, know enough to try running SpyBot as an admin, but that still didn't allow me to add the Hosts file. :( I'm suspicious, especially after reading a thread on the SpyBot S&D forums, that there may still be a trace of what was infecting his computer lingering around. I've already run VipreRescue and MalwareBytes, but wanted to add the SpyBot Hosts file as an added precaution. Thanks.... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin Subscriptions and tickets are on sale now! Rigoletto | Cos? Fan Tutte | The Valkyrie | Madama Butterfly Visit us online at www.VaOpera.org<http://www.VaOpera.org> or call 1-866-OPERA-VA The vision of Virginia Opera is to enrich lives through the powerful integration of music, voice and human drama. ---------------------------------------------------------------------------- ---- This e-mail and any attached files are confidential and intended solely for the intended recipient(s). Unless otherwise specified, persons unnamed as recipients may not read, distribute, copy or alter this e-mail. Any views or opinions expressed in this e-mail belong to the author and may not necessarily represent those of Virginia Opera. Although precautions have been taken to ensure no viruses are present, Virginia Opera cannot accept responsibility for any loss or damage that may arise from the use of this e-mail or attachments. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ________________________________ Any medical information contained in this electronic message is CONFIDENTIAL and privileged. It is unlawful for unauthorized persons to view, copy, disclose, or disseminate CONFIDENTIAL information. This electronic message may contain information that is confidential and/or legally privileged. It is intended only for the use of the individual(s) and/or entity named as recipients in the message. If you are not an intended recipient of this message, please notify the sender immediately and delete this material from your computer. Do not deliver, distribute or copy this message, and do not disclose its contents or take any action in reliance on the information that it contains. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
