Softpanorama

Home Switchboard Unix Administration Red Hat TCP/IP Networks Neoliberalism Toxic Managers
May the source be with you, but remember the KISS principle ;-)
Skepticism and critical thinking is not panacea, but can help to understand the world better

Blocking spyware sites via the hosts file

News Main spyware page Recommended Links Recommended Papers Spyware Scanners Non-scanner antispyware tools
          Etc

You can modify the hosts file to control DNS name resolution. Here is the initial hosts files shipped with Windows:

# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1    localhost

If the entry exists in the host file it is used first, before DNS. This way you can block spyware sites pointing them to the address 127.0.0.1 which is so called local host --address pointing to your PC, for example,

127.0.0.1    abetterinternet.com

 To edit the hosts file, follow these steps:

1. Click Start, click Run, type notepad %windir%\system32\drivers\etc\hosts, and then click OK.
2. Add lines form you IE history (see below how to save it) that represent spyware sites.
3. On the File menu, click Save.
4. Quit Notepad.
5. Restart the computer.

Note If you do not want to restart the computer, flush the DNS resolver cache. To do this, follow these steps:
a. Click Start, click Run, type cmd, and then click OK.
b. At the command prompt, type ipconfig /flushdns, and then press ENTER.

Getting History from IE

The crude way of getting IE history is using strings utility on files from folders in

C:/Documents and Settings/username/Local Settings/history

But there is also programmatic way to do that as describes at CodeGuru Getting the History from Internet Explorer:

I just wanted to access the history of Internet Explorer. I found no code anywhere to get it directly, but somehow I managed to combine some of code and get this working application. The code isn't very great, but it is somewhat useful, you can say. I am not a great writer, so don't expect a good explanation. My coding style is self-explanatory. If you open the IEHistory.h file, you will get to see everything.
[
  #include <atlbase.h>
  #include <comdef.h>
  #include <mshtml.h>
  #include <UrlHist.h>
  #include <afxtempl.h>

  BOOL  GetHistory(CStringList & list)
  {
    STATURL url;
    CString strUrl;
    ULONG uFetched;
    IUrlHistoryStg2Ptr history;
    IEnumSTATURLPtr enumPtr;

    if(FAILED(CoCreateInstance(CLSID_CUrlHistory,
          NULL,
          CLSCTX_INPROC_SERVER,
          IID_IUrlHistoryStg2,
          ( void**)&history)))
          {
            return false ;
          }

          if(FAILED(history->EnumUrls(&enumPtr)))
      return false;

    while(SUCCEEDED(enumPtr->Next(1,&url,&uFetched)))
    {
      if(uFetched==0)
        break;
      strUrl = url.pwcsUrl;
      list.AddTail(strUrl);
    }
    return true;
  }
]
Download demo project - 28 Kb
Download source - 11 Kb

Top Visited
Switchboard
Latest
Past week
Past month

NEWS CONTENTS

Old News

block_ips free list

Feel free to circulate this list, use it to block unwanted or malicious activity, and/or incorporate it into anti-spyware software. However, please do not delete any rules from it. If you think something should be added or deleted, please email me at yospongeP@yahoo.comP. Remove the two capital Ps before emailing. You can, of course, quote part of it relevent to a specific spyware. My official site is www.geocities.com/yosponge and you can obtain updates there. Thank you!
NOTE: Entries for spyware which are new or changed will say so.

Risk key:
C = Common H=High
O = Occasional M=Moderate
R = Rare

Spyware Free Spy Software Blocking Tool

Tired of all that Spyware and Adware crap being installed by ActiveX ?
But don't want to lose out on functionality?

We have created a system that blocks all known "bad" ActiveX controls from running inside Internet Explorer by setting the "Kill bit".

When a page tries to install a component from our list, it will fail.
When a page tries to use a component from our list that was already present on your system, it will fail too!

Other, "friendly" components are not affected.
For a full technical explanation how this works, look at this Microsoft article.

Recommended Links

Google matched content

Softpanorama Recommended

Top articles

Sites

***** Spyware - Wikipedia, the free encyclopedia -- general spyware information

***** Blocking Unwanted Parasites with a Hosts File contains very useful information including Various Troubleshooting Articles

HostsMan is a freeware application that lets you manage your Hosts file.
Includes an option to turn off the unneeded DNS Client Service.

Resources Ad Blocking Resources

IE-SPYAD adds a long list of sites and domains associated with known advertisers, marketers, and crapware pushers to the Restricted sites zone of Internet Explorer. Once you merge this list of sites and domains into the Registry, the web sites for these companies will not be able to use cookies, ActiveX controls, Java applets, or scripting to compromise your privacy or your PC while you surf the Net. Nor will they be able to use your browser to push unwanted pop-ups, cookies, or auto-installing programs on your PC.

Please note that IE-SPYAD is not an ad blocker. It will not block standard banner ads in Internet Explorer. What this Restricted sites list of known advertisers and crapware pushers will do, however, is

AGNIS contains a set of customized ad block lists for AtGuard, Norton Internet Security 2000/2001/2002/2003, and Norton Personal Firewall 2003. These block lists are much more extensive than the default ad block lists shipped with all of these programs. AGNIS includes both a "full" and "lite" version of this customized ad block list for each application:

Spyware Warrior Rogue-Suspect Anti-Spyware Products & Web Sites

On June 23, 2005, just 3 months after moving against SpywareAssassin, the U.S. Federal Trade Commission announced that it had taken action against Trustsoft, the company behind SpyKiller 2005, an "anti-spyware" product that has been listed on these pages since June 26, 2004 (the very day this list was first published). In its complaint, the FTC specifically named several of the more deceptive and unfair practices that are employed by many of the "anti-spyware" applications listed on this page, namely:
  • falsely claiming to have scanned users' PCs remotely and detected "spyware"
  • using high pressure sales tactics through pop-ups and spam to compel users to buy its application, SpyKiller 2005
  • selling an "anti-spyware" product that falsely detects "spyware" on users' PCs
  • selling an "anti-spyware" product that fails to remove a substantial amount of "spyware" from users' PCs

You can read more about the FTC's action against SpyKiller 2005 here:



Etc

The Last but not Least Technology is dominated by two types of people: those who understand what they do not manage and those who manage what they do not understand ~Archibald Putt. Ph.D


Copyright 1996-2018 by Dr. Nikolai Bezroukov. www.softpanorama.org was initially created as a service to the (now defunct) UN Sustainable Development Networking Programme (SDNP) in the author free time and without any remuneration. This document is an industrial compilation designed and created exclusively for educational use and is distributed under the Softpanorama Content License. Original materials copyright belong to respective owners. Quotes are made for educational purposes only in compliance with the fair use doctrine.

FAIR USE NOTICE This site contains copyrighted material the use of which has not always been specifically authorized by the copyright owner. We are making such material available to advance understanding of computer science, IT technology, economic, scientific, and social issues. We believe this constitutes a 'fair use' of any such copyrighted material as provided by section 107 of the US Copyright Law according to which such material can be distributed without profit exclusively for research and educational purposes.

This is a Spartan WHYFF (We Help You For Free) site written by people for whom English is not a native language. Grammar and spelling errors should be expected. The site contain some broken links as it develops like a living tree...

You can use PayPal to make a contribution, supporting development of this site and speed up access. In case softpanorama.org is down you can use the at softpanorama.info

Disclaimer:

The statements, views and opinions presented on this web page are those of the author (or referenced source) and are not endorsed by, nor do they necessarily reflect, the opinions of the author present and former employers, SDNP or any other organization the author may be associated with. We do not warrant the correctness of the information provided or its fitness for any purpose.

The site uses AdSense so you need to be aware of Google privacy policy. You you do not want to be tracked by Google please disable Javascript for this site. This site is perfectly usable without Javascript.

Last modified: March 12, 2019