Stop Windows Spying with hosts file
Вставка
- Опубліковано 15 вер 2023
- Windows 11 has a lot of telemetry and spying and connects to 3rd party data collection sites, in this video we will stop windows spying by adding a few entries to the hosts file and as a bonus get a fully blank clean browser tab! Replace iCloud/OneDrive with encrypted cloud storage with Internxt (sponsor): internxt.com/lifetime?...
Tools to stop Windows spying: • Stop Windows Spying
Windows 11 vs XP, has windows become spyware? • Has Windows become Spy...
Domains added to hosts file in this video:
127.0.0.1 localhost
::1 localhost
127.0.0.1 data.microsoft.com
127.0.0.1 msftconnecttest.com
127.0.0.1 azureedge.net
127.0.0.1 activity.windows.com
127.0.0.1 bingapis.com
127.0.0.1 msedge.net
127.0.0.1 assets.msn.com
127.0.0.1 scorecardresearch.com
127.0.0.1 edge.microsoft.com
127.0.0.1 data.msn.com
Buy the best antivirus: thepcsecuritychannel.com/best...
Join the discussion on Discord: discord.tpsc.tech/
Get your business endpoints tested by us: tpsc.tech/
Contact us for business: thepcsecuritychannel.com/contact - Наука та технологія
Brought back so many memories with that notepad intro. You should do a video entirely like that for April Fools, it would be quite funny.
But in 360p, 4/3 and windows xp
notepad tutorials are among the top quality content tutorials
You gotta also have Unregistered HyperCam 2
Do not forget classic Windows Movie Maker blue background with comic sans font.
How to I get rid of that damn Telemetry crap.
Just a quick reminder for anybody who notices addresses other than the default in hosts file, you might find some addresses of Adobe or some other companies, where most cracked software rely on the same way to block companies from blocking you from accessing their software.
My host file is fairly gigantic, but it's not cracked software adding to it, it's spybot search&destroy, immunizing me from a bunch of known malicious addresses.
@@OnlyKaerius That's actually a nice way to prevent some malicious addresses, but how would it prevent new or other malicious addresses that can simply change its address, got any ideas?
@@Krazy0Not really, you can't pre-emptively exclude bad sites before they exist, you'd basically have to disable the internet, or go to a whitelist-only solution, which would be very restrictive. So just complement with antivirus.
@@OnlyKaerius I remember there was a site that discloses the latest reported harmful sites, we might be able to have a simple script that scraps all the reported sites and then put it into that file, which in theory could make it work better, but I actually think having a local VPN-like program that blocks access to sites included in that list would be much better in terms of usability, I wouldn't want to have to scrap that site when I can simply have a script that prevents access to them in the first place rather than some file that I've to follow its protocol to setup the sites.
So, according to your comment, if I block a specific host for Adobe (for example), should I be able to block license verifications and use any software without paying them? That sounds too easy XD. However, in 2017 and before, we only needed to change a few characters of the trial license key in a local file to use their programs for free. So, I don't know; this looks like a big mistake from Adobe ^^'
This is good but manually keeping the hosts file up to date is tricky. If you really want to block efficiently get a Raspberry Pie and install pie-hole. You can download lists of millions of domains that track or for some reason you might want to block. Out of the box, this blocked about 25% of my network traffic.
The really annoying thing for me is that if that 25% is typical then roughly 25% of the worlds cost for internet traffic is being wasted on marketing and tracking that most of us don't need or want. That's our money they're spending and there's no law to regulate it...
I hadn't looked at it that way but I couldn't agree more.
Ah yes, get th government involved. Nothing bad will happen after that!
@@RezaQin lmaooo you heard about the FCC supposedly getting involved in regulating ISPs right 😭
Sometimes I go down a doom hole about how much completely needless trash like that is contributing to global warming and the depletion of finite materials and I have to go stare at a wall for a few hours. 8|
@@RezaQin lol when I talk about law I don't mean government. In the UK at least, law is a victim of government.
Thank You so much for being out there and teaching
the average PC users to protect themselves!
You are amazing!!
This channel is clown world and they're giving you snake oil.
does it only apply to people who use _Edge_ as a browser? I haven't done this host.file thingy and my browsers don't annoy with with these 'notifications' or clutter
Imagine one of Microsoft Employee (those who closely work with Windows) watches this video, and on next morning with a update whitelist these tracking sites (even if listed in hosts) file...
Nah, they are more likely to use this tweak and thumbs up the video. That edge tab is everyone's dream.
@@pcsecuritychannelAgree.
@@pcsecuritychannel facts
not even microsoft employees want to be spyed on...
@@pcsecuritychannel😂😂
Except windows can and will ignore the hosts file when MS feels like it would negatively impact """security""".......
/EDIT And just as an FYI to anyone, "cloud" and "lifetime plan" in the same offer always going to end badly...... (we seen several examples of this already, cloud isnt free and you cant cover recurring expenses with a one time purchase)
you can also block those sites in your router, too.
@@DFX2KX Only if you have something that preferably can load lists from url, besides this is just a wack-a-mole game which simply doesnt worth it. If you can just ditch windows and avoid apple at all costs (they do the same thing)....
@@DFX2KXYou're router block list would run out of entries and your router would eventually slow up your network and increase it's workload.
@@DFX2KX If blocking that list of a dozen sites was all it took to block "call home" then IT pros wouldn't have been fighting this shit for 7 years now.
@@SpaceCadet4Jesusso wrong
Brilliant. I've just upgraded from Windows7 to 11 on a new laptop, using a local account. I'll add to the hosts file today. And thank you for including the text with the description!
I'm alright with that hosts thing, but at least you're making us aware so we're appreciative. Keep up the good uploads! :)
Thank you very much for this!! I literally just finished a DNS section of a Udemy lecture that focused on the hosts file. The UA-cam algorithm blessed me with this video. Subbed, much appreciated!
absolutely rare rewind on the advertisement. well done internxt and TPCSC
Cool Thanks for the addresses! You even had them in text in your description, making it easier to cut and paste!
I actually did this for ads too. So most ads just come broken when I go to the web if not I try look at the source code and find their site and add it.
I highly appreciate that the list is right at the beginning of the video AND in the description, instead of scrubbing around to find such list.
That was nice, yes, but it doesn't change that this "list" is useless as tits on a nun.
Powertoys has a Host file editor in it. If you want things to be blocked, make sure the switch for each line you want to be enabled is switched to on.
The timing of this is amazing, I was just playing around and looking at the host file lol
Great! Keep them coming Leo. Much appreciated.
This is very well done, especially for people who aren't terribly computer savvy. Great job, thank you for making this, it's the kind of tutorial I will be sharing a lot in the future.
Very well done for a "fix" that doesn't do jack shit.
Great addition for more privacy. I also use Spybot Anti-Beacon that has some different features.
Already knew right where this file was but did not think of this. Brilliant
This is great. Many thanks for this !
THAT was the most amazing instruction ever. I'm telling EVERYBODY how to do that and where I learned it. Thank you a million plus one Leo.
Leo is exactly as tech knowledgeable as the "tracer T" kid.
If it wasn't for Windows being the best os for gaming, I would switch to Linux in a heartbeat.
they keep linux gaming in the dark on purpose lol capitalism ruins everything
I wouldn't
I'm dual booting windows rn, with mac tho...
Same here
Keep on saying that, and you'll never switch to Linux for gaming. FYI, I would never play a game like Valorant if I was on Windows today. That has to be one of the worst rootkits ever. So not worth playing if it means compromising system integrity and security.
single handily one of the best video you probably ever posted on this channel, hopefully microsoft wont hide that folder or block access to it in a future update
They haven't the last 25 years. If they might bypass hosts of their choice in future, they will completely give up trust of their Enterprise customers.
Single handedly one of the most useless and worthless videos on UA-cam you mean.
Hey, thank you very much...
And I am going to spread this with all of my friends and PC users.
❤❤❤❤
Thank you for this one! much appreciated
Nicely done! Thanks. I also use Pi Hole to block a huge number of add sites for my entire house (running on Raspberry Pi).
FINALLY!! Something on YT worth watching!
Follow up. I just tried this and Notepad (as admin) will not save this file as a 'file', it will only save it as a .txt
after saving with the .txt go to rename and just remove .txt. will give warning but click ok
Great! Thanks.
daamn. this showed up on homepage and started playing, i saw the notepad intro and got in for nostalgia, stayed for information
Dude hell yes I’ve been watching weird network activity from these domains and then I see this video. Thanks a lot !
Found your channel and really like your content. With this slight tweaks in the hosts file would this affect also the "news and interest" widget integrated in the windows taskbar?
Best part is that if your hosts file gets too good then windows defender thinks it's a virus and then you need to add exception. Also don't remember to make a backup because it has happened to me that windows update thought it knew better than me what should be in hosts file.
Done it on Windows 10 and it works... Thanks for the info👍
the intro had me hyped because the notepad videos were always the best and in detail
Thank you! This is a great hack to get rid of much of the garbage and tracking that have gotten me to mostly replace Windows with Linux for good after being the Kernel Dev lead on Windows 95 and leading other work at Microsoft so many years ago. I still have a couple Windows machines running, and this has worked great! Liked AND subscribed.
I'm so happy I ditched Windows years ago for Linux. lol
You can use /etc/hosts for much the same purpose.
@@lazygardens Or, a Pihole.
@@lindenreaper8683 That might be better ... I remembered that /etc/hosts can't take wildcards.
@@lazygardens Nope. Nor can it take Regex expressions. And also, it doesn't affect the entire network. Once any computer is connected to the network, it gets the DNS of the Pihole right away. So, it's a lot less work.
In all seriousness though, Windows is complete trash today. And I am glad no one uses it today except my brother; who gets to deal with those problems and not me. So, I am very fortunate.
Yeah, looks pretty good. Although a little bit of adblocking and tracker stopping is of course to do in every browser. And installing Pi Hole, but that's a different story.
An oldie but a goodie.
Can be used to block ads an much more.
Thanks for reviving this old true and tested method.
Very well done, thank you. You now have another subscriber.
i think they know about this. I did it and for about 10 seconds it worked, then the background image loaded, then one by one the settings menu on the top right populated, then the stories and advertisements filled in. It was kind of cool to watch.
I used this tactic to keep my children away from certain sites back in the day. It can work really well.
Meanwhile I used proxy sites to bypass this tactic when I was a child. It works really well.
As a child I never had access to computers, didn't go very well.
Really? Do browsers even use the host file?
@@rct999 Yes, they do. I use it on a daily basis for testing client websites at my work. Everything on your entire system that connects to the internet will use the settings you have configured in your hosts file.
@@rct999 yes? a lot of viruses use host file to block some websites
Thank you! I anticipated this video! I actually also use the hosts file to block ads!
Unless you use other ad blockers, this is highly ineffective.
This info is gold. Thanks for share 🤜🤛
This is a great tip. Another great tip is Edge's most useful feature. The ability to download a different browser. 🤷♂
You can download a different browser without a browser too ;)
I really likes Edge (as web browser), but i really hates all this telemetry from Microsoft. So... Im glad u sharing all this. Thanks!
Yeah bunch of bullsh ads
Why you like that shit?
Thats a very interesting sponsor. I rarely see a non subscription service for cloud services nowadays.
Thank you for your research. I am now incorporating this into a standard business Win image to deploy.
I've been using a custom hosts file since I first learned of it, way back in like 1997. I found quite a few custom hosts files that people compiled to block porn, spam, tracking, etc, then customized those for my own purposes. Very handy information to have.
This was the way to go before AdBlock and browser's integrated blockers...
The issue is that they change their IP addresses on a regular basis, and you have new companies adding to the list all the time!
I also have a 20 years old hosts file, I keep adding lines from time to time (even have google there, but it's almost impossible to block them, that way, too many variable IPs !)
Really, do you know where I could find the host file made for anti-tracking
Idiocy. These entries aren't going to block Windows from calling home.
@@DR_1_1 but won't blocking the known numbers mitigate some of the traffic? And why hasn't automated a program that will look at current Google IPs and auto add them to fire wall block list
same. Since late 90s also.
I'd be keen to see something similar for a Google Chrome browser on Windows...what can be 'blocked' without impacting functionality too much etc.
I recently stumbled upon the Windows "news feed" when I accidentally hit Win + W. The amount and type of preloaded content in there is horrendous! But this trick took care of that too. No more BS content that I didn't ask for. Thanks!
This is gold!
Why did I not think of that?
This can be taken to the next level by checking your "netstat" in CMD and blocking all those pesky outgoing connections you don't recognize and don't want.
And at that point you will find out just how fucking useless this videos recommendations were.
You can probably make a script to run a hash of the hosts file upon reboot to alert you the moment it's been modified by some Windows update.
I wish I could sync my pihole adblocker list to this host file. It would relieve some of the burden of the tiny pihole.
I could then toggle domains on and off for troubleshooting and testing.
Waste of time. The host file hasn't changed since Windows 95, decades ago.
We need more vids like this please!
Super, super advices. Thank you x1000 times!
Muito bom, obrigado por compartilhar.
You can turn off new tab 'content' in Edge settings. It's under settings 'Start, home, and new tabs' and 'New tab page' then customize your new tab page layout and content. Content > off.
That doesn't prevent M$ from sending your data to third parties.
@@jairo8746but is there really a browser that does not do that these days? Many chromium browsers send data to third parties and advertisers
Amazing, thank you so much!
somehow it put a lump in my throat to see you record this on what looks like your actual work/home machine 😨 granted you are only editing the hosts file for this video, it feels strange to see a personal environment used for demonstration purposes. loving your video content and excited for both more of them and the malx project!
Added these to my Pi-hole thanks!
For Zone Alarm users: the hosts file is locked by the Firewall. Navigate to the Firewall's advance settings and uncheck a lock checkbox. After saving the hosts file check the lock back
lol zone alarm, haven't heard of that software for about 20 years!
I was wondering why I couldn't get it to save. Thanks for the post!
It's a virus itself. Everything is under the zone alarm network. Secure browser, can't delete that. Everything is managed by itself forcefully...
Tried uninstalling it but not able to delete everything.
@@barryallen1100 The hosts file is protected by OS. A Browser cannot access it (and a computer's file system in this respect) by definition. But if a hacker can get administrative/elevated privileges on a machine than he can modify the hosts file. That is why Zone Alarm (the best Firewall and Antivirus on the market) locks it.
Thank you, very useful. Please keep making such helpful videos,
Thanks! I put these entries on my Mac too since I use Edge for MacOS once in a while.
Great video. Do you have any advice on removing Cortana and disabling the creepy Viva Insights emails?
The only point i miss on these tutorials is that the machine still using compute resources to try this requests even if its going to timeout on loopback. Its really anoying especially if you have a computer with limited resources.
Agreed
This could be better: en.wikipedia.org/wiki/Black_hole_(networking)
That unfortunately is going to happen. If it's program to upload data to third-parties, it will, unless you have the source code to remove the functionality.
Maybe use something like Windows 10 LTSC 2019 on a computer with "limited resources".
It's fascinating to me that you know words like 'timeout" and "loopback" and believe that it's possible to work around M$ calling home with a dozen hosts file entries.
Thank for the information and bring old memories.
Thanks for this info! I found a thousand or so dead DNS entries put in my hosts file by a freeware spy blocking program too. I hope this won't impact the performance of my local web server running on port 80!
This is just bandaid advice. Yes it covers top level stuff like your browser, which is a good thing. Claiming it stops windows telemetry is overstating its use. You can block the IPs at the router level, just blocking the domain resolution on the computer is not enough. Also since windows 10, Defender has some addresses that it will block being saved into the hosts file, and some Defender updates that will just revert the file.
this is very true but sometimes there are whole blocks of ip's that those names resolve to so i guess this is better than nothing.
There exists no way to stop Windows telemetry unless you have W10 Enterprise, and even that's doubtful.
Well thats just incorrect. Most of it can be stopped within windows itself. Then with a combination of internal and external firewalls all the rest can be taken care of as well. @@macethorns1168
Thanks, this encouraged me to use linux even more
10/10 Tutorial. Thank you for this!
Thank you, very helpful.
Better than blocking using firewall rules... keeps unnecessary traffic off the network
Does it still allow my system to show me the current weather in the task bar, and to automatically adjust the time?
Edit: No, this fix also disables your weather information. If you want that feature to stay enabled, remove the "assets msn" line.
Thank you, just worked :) [Even though I never use the Edge Browser, I wanted to put this little patch onto my computer]
I wpuld suggest to use a firewall solution or give pihole/adguard home a try. Windows bypasses this and modifies the host back
The host file is a legacy feature of TCP IP that was used to translate host name to IP address before the existence of DNS.
I use the loop back address in a host file as an add blocker.
That worked perfectly. Thank you.
Great video as always
Are there some other urls which we can add to stop google or any other telemetry??
Thank you
I sometimes use edge in windows 10 "Sandbox". After changing file as suggested, I found it stills works after creating a sandbox and using edge. Thank You...
Good stuff! This worked!
They must have updated things. It no longer works.
What always bugged me about some notepad tutorials is when it was a dude who had a mic and you can hear him typing xD like bro you are making this so much harder on yourself xD
Probably bad pronunciation
@@janbielecki9245 yeah thats my best guess.
Thank you this video is really helpfull!
Dang, simple yet effective. Thx.
Ineffective. The IP addresses for advertisement and for Microsoft telemetry changes way too much for a simple host file block. This video assumes all IP communication obeys or even uses that old host file which hasn't changed since Windows 95. That used to be the case eons ago.
Is this the same on Windows 10 as well?
Very helpful, quick and easy pro-tip for blocking some MS data scrapping network bandwidth.
Lovely presentation, too bro
Not just MS.
You misspelled unhelpful.
No I did not, because I didn't use said word. Clearly.@@macethorns1168
Great Video, thanks i dont use edge, and blocked this nasty things thru custom system image, but adresses also added to file :)
What would be interesting to try is setting up a local server and tracking all of the requests which would have gone to those sites
That would be very interesting.
XAMPP does the trick and if you enabled error logging... yeah its gets crowded there.
Simple: get Wireshark and monitor network traffic. You'll *very* quickly realize just how fucking useless and stupid the "advice" in this video really is.
well, I just tried and it doesn't work with Edge, even after clearing the cache 😣
Great video! Thank you!
thanks for the reminder, did it as i watched
The hosts file should also be added to the exceptions in Windows Defender, otherwise it could happen that Windows Defender resets the file after the next scan.
I myself use Pi-Hole for my local network to filter domains.
Can you give us a list for other browsers too?
Hosts file works across all of Windows browsers
The notepad tutorial part was really funny but honestly, with nostalgia of notepad tutorials and my most favourite cybersecurity channel, I won't complain if you shift to making notepad tutorials.
That intro was hilarious. You should have kept the note pad gag running for longer. xD
You should know some Microsofts own dlls has the ability to ignore the hosts file. You could also try peerblock to block.
can also upper decker your PC case
What we all want to know is, WHAT system files are calling out to these sites? Blocking stuff with hosts file is just preventing a problem that already exists...
I want to know what executables are making these calls. What dll files?
THIS. Is a good question. the next would be to patch those.
@@Sypaka Precisely. It's likely to be some of the insane number of started services. The amount of services they've added since Windows 7 is just bonkers. Most of them no-body uses or will ever use. Just blatant spyware and data harvesting.
That won't do any good, those system DLLs provide many other functions and there exists no way to stop them from spying while continuing to do their other jobs.
@@macethorns1168 That's complete and utter nonsense. I patch stuff all the time to remove functionality that's not needed. That would be the same argument as patching a game protection and it not being playable afterwards.
I've been coding a LONG time and if I knew what dlls to patch, I'd just debug and patch them. It's not even a big thing to do. It would have ZERO affect on their functionality unless their functionally was ONLY to do data harvesting and in that case, I'd patch the service that was using the dll to not use it at all.
Patching a http/https call is no different than if you just blocked it with an entry in the hosts file.
@@thewelder3538 yup that's reverse engineering at its best.
Hi, thanks a lot for that great tip
Thanks. I knew MS does that but don't know the details, so thanks 😊
It should be mandatory for all OS and softtware to keep an updated list of ALL the servers they connect to, with a destcription of which exact data is collected and transfered, its exact use and the people who have access to it.
This the same way we are forced to present an ID to have a personal data/internet connection, to give an email address and even name, telephone number for many registrations online!
And also options to disable the transfer of data when not necessary!
*All that in a user friendly option menu, not like these cookies popup windows that block the access to most websites today* !!!
For sure it's all covered somewhere in hundreds of pages of Terms of Service which nobody reads and just hits "accept".
Compiling a mass of data like you suggest would cost some bucks - and you can be sure that the money-grubbers won't pay it. Do you want to pay to use the Internets (more than you do already)? Because that's what would happen - and once you subscribe...you're tracked! Lololol! Pay to have your personal info used, what a brilliant plan 😞
That would work in the days when there was competition. Price fixing is rampant, and big software companies are destroying all of the small software companies, so they can gain a monopoly.
You could make a batch file to make rules to block those in windows firewall too.
Actually it's only possible to exclude IP addresses not domain names. Therefore the hosts tweak is the best free option.
I wonder what you mean by "free option"
Also also a domain is basically an IP adress with a name so what's the issue ?@@OvisTech
@@uemoi these days a domain can be many IP addresses that can change over time. That's the issue.