Just a quick reminder for anybody who notices addresses other than the default in hosts file, you might find some addresses of Adobe or some other companies, where most cracked software rely on the same way to block companies from blocking you from accessing their software.
My host file is fairly gigantic, but it's not cracked software adding to it, it's spybot search&destroy, immunizing me from a bunch of known malicious addresses.
@@OnlyKaerius That's actually a nice way to prevent some malicious addresses, but how would it prevent new or other malicious addresses that can simply change its address, got any ideas?
@@Krazy0Not really, you can't pre-emptively exclude bad sites before they exist, you'd basically have to disable the internet, or go to a whitelist-only solution, which would be very restrictive. So just complement with antivirus.
@@OnlyKaerius I remember there was a site that discloses the latest reported harmful sites, we might be able to have a simple script that scraps all the reported sites and then put it into that file, which in theory could make it work better, but I actually think having a local VPN-like program that blocks access to sites included in that list would be much better in terms of usability, I wouldn't want to have to scrap that site when I can simply have a script that prevents access to them in the first place rather than some file that I've to follow its protocol to setup the sites.
So, according to your comment, if I block a specific host for Adobe (for example), should I be able to block license verifications and use any software without paying them? That sounds too easy XD. However, in 2017 and before, we only needed to change a few characters of the trial license key in a local file to use their programs for free. So, I don't know; this looks like a big mistake from Adobe ^^'
does it only apply to people who use _Edge_ as a browser? I haven't done this host.file thingy and my browsers don't annoy with with these 'notifications' or clutter
This is good but manually keeping the hosts file up to date is tricky. If you really want to block efficiently get a Raspberry Pie and install pie-hole. You can download lists of millions of domains that track or for some reason you might want to block. Out of the box, this blocked about 25% of my network traffic. The really annoying thing for me is that if that 25% is typical then roughly 25% of the worlds cost for internet traffic is being wasted on marketing and tracking that most of us don't need or want. That's our money they're spending and there's no law to regulate it...
Sometimes I go down a doom hole about how much completely needless trash like that is contributing to global warming and the depletion of finite materials and I have to go stare at a wall for a few hours. 8|
Brilliant. I've just upgraded from Windows7 to 11 on a new laptop, using a local account. I'll add to the hosts file today. And thank you for including the text with the description!
I recently stumbled upon the Windows "news feed" when I accidentally hit Win + W. The amount and type of preloaded content in there is horrendous! But this trick took care of that too. No more BS content that I didn't ask for. Thanks!
i think they know about this. I did it and for about 10 seconds it worked, then the background image loaded, then one by one the settings menu on the top right populated, then the stories and advertisements filled in. It was kind of cool to watch.
Except windows can and will ignore the hosts file when MS feels like it would negatively impact """security"""....... /EDIT And just as an FYI to anyone, "cloud" and "lifetime plan" in the same offer always going to end badly...... (we seen several examples of this already, cloud isnt free and you cant cover recurring expenses with a one time purchase)
@@DFX2KX Only if you have something that preferably can load lists from url, besides this is just a wack-a-mole game which simply doesnt worth it. If you can just ditch windows and avoid apple at all costs (they do the same thing)....
@@DFX2KX If blocking that list of a dozen sites was all it took to block "call home" then IT pros wouldn't have been fighting this shit for 7 years now.
Imagine one of Microsoft Employee (those who closely work with Windows) watches this video, and on next morning with a update whitelist these tracking sites (even if listed in hosts) file...
The host file is a legacy feature of TCP IP that was used to translate host name to IP address before the existence of DNS. I use the loop back address in a host file as an add blocker.
Thank you very much for this!! I literally just finished a DNS section of a Udemy lecture that focused on the hosts file. The UA-cam algorithm blessed me with this video. Subbed, much appreciated!
This is very well done, especially for people who aren't terribly computer savvy. Great job, thank you for making this, it's the kind of tutorial I will be sharing a lot in the future.
FINALLY!! Something on YT worth watching! Follow up. I just tried this and Notepad (as admin) will not save this file as a 'file', it will only save it as a .txt
Thank you! This is a great hack to get rid of much of the garbage and tracking that have gotten me to mostly replace Windows with Linux for good after being the Kernel Dev lead on Windows 95 and leading other work at Microsoft so many years ago. I still have a couple Windows machines running, and this has worked great! Liked AND subscribed.
@@lindenreaper8683 I bailed from Windows for personal use after Win95, although I have a virtual machine for the tiny bit of software that I couldn't get Linux to run.
single handily one of the best video you probably ever posted on this channel, hopefully microsoft wont hide that folder or block access to it in a future update
They haven't the last 25 years. If they might bypass hosts of their choice in future, they will completely give up trust of their Enterprise customers.
I actually just added these hosts to my pfsense perimeter firewall. Now ALL my computers inside my network won't be accessing those 'spysites' and I won't have to edit any hosts files. Thanks for the tip- that's a good little list.
Thank you for this. Just created the alias list and a new rule to block them. Worked - for 5 mins, then Edge somehow repopulated the main page later. Still keeping the pfsense entry though.
This is just bandaid advice. Yes it covers top level stuff like your browser, which is a good thing. Claiming it stops windows telemetry is overstating its use. You can block the IPs at the router level, just blocking the domain resolution on the computer is not enough. Also since windows 10, Defender has some addresses that it will block being saved into the hosts file, and some Defender updates that will just revert the file.
Well thats just incorrect. Most of it can be stopped within windows itself. Then with a combination of internal and external firewalls all the rest can be taken care of as well. @@macethorns1168
Cool Thanks for the addresses! You even had them in text in your description, making it easier to cut and paste! I actually did this for ads too. So most ads just come broken when I go to the web if not I try look at the source code and find their site and add it.
You can turn off new tab 'content' in Edge settings. It's under settings 'Start, home, and new tabs' and 'New tab page' then customize your new tab page layout and content. Content > off.
It still works. Make sure that file isn't a txt file. If you want to go over it again here's how. 1. Save the text that is in this video's description 2. SEARCH notepad in the windows search bar so you can right-click and run as administrator. 3. Go to file, then open, then search file name "hosts" and be sure to change the file type to "all files" so you can find it. 4. Open the hosts file 5. Copy and paste the text as he does in the video 6. Open Microsoft edge to check results If the webpage is not showing up blank, you need to go into the settings of edge by clicking the three horizontal dots in the top right. Then go to settings, privacy search and services, clear browsing data from all time ONLY IF you don't use Edge as the browser to access websites you have profiles saved in. If you do, you will be signed out of them on Edge and have to sign in again. If you are struggling to find it because of a different layout you have applied, use this link in your URL bar. ---> edge://settings/clearBrowserData
I wish I could sync my pihole adblocker list to this host file. It would relieve some of the burden of the tiny pihole. I could then toggle domains on and off for troubleshooting and testing.
Thanks for this info! I found a thousand or so dead DNS entries put in my hosts file by a freeware spy blocking program too. I hope this won't impact the performance of my local web server running on port 80!
This can be taken to the next level by checking your "netstat" in CMD and blocking all those pesky outgoing connections you don't recognize and don't want.
@@rct999 Yes, they do. I use it on a daily basis for testing client websites at my work. Everything on your entire system that connects to the internet will use the settings you have configured in your hosts file.
somehow it put a lump in my throat to see you record this on what looks like your actual work/home machine 😨 granted you are only editing the hosts file for this video, it feels strange to see a personal environment used for demonstration purposes. loving your video content and excited for both more of them and the malx project!
Im an 'industrial' style IT pro of nearly 40 years... and I'd never even considered doing this. Its, absolutely correct, and works instantly... HOWEVER, while I was doing it, I had some other processes running heavily in the backround..... historically referenced as 'hashing' ... anyhoo.... at the very second the new hosts file was saved, I had my other eye on the bit-rate (downstream) of my 'other processes' ... and as I hit enter, bit-rate literally doubled. Odd, but I'm not complaining.
Best part is that if your hosts file gets too good then windows defender thinks it's a virus and then you need to add exception. Also don't remember to make a backup because it has happened to me that windows update thought it knew better than me what should be in hosts file.
The only point i miss on these tutorials is that the machine still using compute resources to try this requests even if its going to timeout on loopback. Its really anoying especially if you have a computer with limited resources.
That unfortunately is going to happen. If it's program to upload data to third-parties, it will, unless you have the source code to remove the functionality.
It's fascinating to me that you know words like 'timeout" and "loopback" and believe that it's possible to work around M$ calling home with a dozen hosts file entries.
I've been using a custom hosts file since I first learned of it, way back in like 1997. I found quite a few custom hosts files that people compiled to block porn, spam, tracking, etc, then customized those for my own purposes. Very handy information to have.
This was the way to go before AdBlock and browser's integrated blockers... The issue is that they change their IP addresses on a regular basis, and you have new companies adding to the list all the time! I also have a 20 years old hosts file, I keep adding lines from time to time (even have google there, but it's almost impossible to block them, that way, too many variable IPs !)
@@DR_1_1 but won't blocking the known numbers mitigate some of the traffic? And why hasn't automated a program that will look at current Google IPs and auto add them to fire wall block list
It should be mandatory for all OS and softtware to keep an updated list of ALL the servers they connect to, with a destcription of which exact data is collected and transfered, its exact use and the people who have access to it. This the same way we are forced to present an ID to have a personal data/internet connection, to give an email address and even name, telephone number for many registrations online! And also options to disable the transfer of data when not necessary! *All that in a user friendly option menu, not like these cookies popup windows that block the access to most websites today* !!!
Compiling a mass of data like you suggest would cost some bucks - and you can be sure that the money-grubbers won't pay it. Do you want to pay to use the Internets (more than you do already)? Because that's what would happen - and once you subscribe...you're tracked! Lololol! Pay to have your personal info used, what a brilliant plan 😞
That would work in the days when there was competition. Price fixing is rampant, and big software companies are destroying all of the small software companies, so they can gain a monopoly.
The notepad tutorial part was really funny but honestly, with nostalgia of notepad tutorials and my most favourite cybersecurity channel, I won't complain if you shift to making notepad tutorials.
I'm honestly fine with that Host file thing, i don't even know if i will have a further issues if i mess with the file, so i think i will rather just keep it as is Thanks for the video though
I sometimes use edge in windows 10 "Sandbox". After changing file as suggested, I found it stills works after creating a sandbox and using edge. Thank You...
What always bugged me about some notepad tutorials is when it was a dude who had a mic and you can hear him typing xD like bro you are making this so much harder on yourself xD
It remains the best because certain companies are just plain lazy or specifically unsupportive of Linux. I’ve made the jump back when there wasn’t even BattleEye support for Linux and everything on my steam library was playable and at same or better performance than Windows. The only game not being able to run on it is currently Valorant because of its kernel level anti-cheat. But otherwise, almost all high-fidelity games are able to be played right and at even a better performance than on Windows due to less bloat on the CPU during gaming.
Yeah, looks pretty good. Although a little bit of adblocking and tracker stopping is of course to do in every browser. And installing Pi Hole, but that's a different story.
I Have been trying to figure this out.....and "Ya, You Got Me!" I was going through "everything" and it was this symple ROLF! My biggest problem was I was overthinking it not realizing that MS couldn't be that stupid but it wasn't them it was me all along! ROLF I wish I could compensate you but....man this was worth 100's of dollars! Thank YOU! I knew this, was a systems anylist that had to edit Individuals work computers "Hosts" file often. Wow! Banging my head on the wall right now. avb
For Zone Alarm users: the hosts file is locked by the Firewall. Navigate to the Firewall's advance settings and uncheck a lock checkbox. After saving the hosts file check the lock back
It's a virus itself. Everything is under the zone alarm network. Secure browser, can't delete that. Everything is managed by itself forcefully... Tried uninstalling it but not able to delete everything.
@@barryallen1100 The hosts file is protected by OS. A Browser cannot access it (and a computer's file system in this respect) by definition. But if a hacker can get administrative/elevated privileges on a machine than he can modify the hosts file. That is why Zone Alarm (the best Firewall and Antivirus on the market) locks it.
What we all want to know is, WHAT system files are calling out to these sites? Blocking stuff with hosts file is just preventing a problem that already exists... I want to know what executables are making these calls. What dll files?
@@Sypaka Precisely. It's likely to be some of the insane number of started services. The amount of services they've added since Windows 7 is just bonkers. Most of them no-body uses or will ever use. Just blatant spyware and data harvesting.
That won't do any good, those system DLLs provide many other functions and there exists no way to stop them from spying while continuing to do their other jobs.
@@macethorns1168 That's complete and utter nonsense. I patch stuff all the time to remove functionality that's not needed. That would be the same argument as patching a game protection and it not being playable afterwards. I've been coding a LONG time and if I knew what dlls to patch, I'd just debug and patch them. It's not even a big thing to do. It would have ZERO affect on their functionality unless their functionally was ONLY to do data harvesting and in that case, I'd patch the service that was using the dll to not use it at all. Patching a http/https call is no different than if you just blocked it with an entry in the hosts file.
The thing is you never know what's going on under the hood, Windows could be collecting data over say 4 weeks, and every month sends a compressed encrypted file with all the info while it's doing an "update." You'd never know the difference.
It's a good idea but it won't block everything. The security hole(s) are in the network stack portion of the Kernel. Microsoft provides certain state actors access via private encryption keys. They've already admitted to such things back in the Windows 7 days. There's no way to have a completely private Windows operating system.
@@RolandAdams-h4m I sincerely doubt the alphabets ever had to ask anyone at MS for that access - it's native. Their OS is called Windows for multiple reasons ;)
If I add these URL's to the filter in my router, presumably that would accomplish the same thing. I'm able to set the filter to cover just a single machine, many machines, or the entire network. But, I'm always afraid that I will break something especially when it looks like filtering some of these URL's might be overly broad.
I wouldn't use a router, it can massively slow down your internet speed because it constantly has to check the filter whenever you visit a website and some routers are very slow at this. Just use the hosts file, it's simple, it works, and people have been doing this for decades.
@@johnsmith1953x My exact thoughts, it's just a short lowercase string comparison. I'm sure such list needs to be very long to have any measurable slowdowns.
For decades, I have been a Microsoft MVP (Most Valued Professional), as well as a Lead Systems Engineer and SI (Systems Integrator). It disheartens me when I see so many alleged ‘tech’ channels here post erroneous information that actually causes Windows end-users to completely corrupt their OS, to the point where it will not even boot into Windows again for them. But, I have found every one of your videos to be clear, concise and correct. Well done, and keep up the great work, my friend!
@@RadioactiveBlueberry I was referring to bad Windows advice, in general, given by some alleged tech channels on YT. They frustrate me when they share some ‘tech tip’ they saw somewhere, and without researching/testing its validity and worth, just repeat it in their own videos here as an OK thing for end-users to implement/change in Windows’ settings.
@@rjjeffreys I have actually seen pretty dumb advices, which are still shared around on the net to this day. Like enabling the "hidden" Admin- Account, which is disabled for a reason.
Hmm, did this but through my Asus Router's Firewall URL Filter. It worked like a charm, no messing with the Host file. Since I have multiple Windows machines in the network, figured this will be a blanket protection.
Many folks are saying that this doesn't work. They're right because it CAN'T work. The Windows hosts file is a legacy bit of Windows. When a domain resolves to localhost, there is an attempt to fire off a request to port 80, would be fine back before everything moved to SSL/TLS on port 443. This WILL work on blackholing non-encrypted traffic (probably why the guy in the video said he managed to get a "clean" tab (?) - image files are often still sent over port 80). SO - the only way to make this work is to point the domains to an IP where there's something listening on port 443. NOTE: There are simpler ways of "listening" without actually deploying a real server.
Does it still allow my system to show me the current weather in the task bar, and to automatically adjust the time? Edit: No, this fix also disables your weather information. If you want that feature to stay enabled, remove the "assets msn" line.
Lifetime plans are great until they change their TOS or go out of business. Also paying upfront is usually a big no-no. Worth a look at the least, though.
Simple: get Wireshark and monitor network traffic. You'll *very* quickly realize just how fucking useless and stupid the "advice" in this video really is.
there is another way to do this but its basically the same but a little bit more control. you can set ufw policies or iptables and intercept network connections from virtual machines or route data though another computer on a network to drop packets by redirecting it to a address like local host.
An alternative in case you didn't open Notepad as administrator, just save the file to your Desktop and copy it from there to C:\Windows\System32\drivers\etc. It will give an UAC prompt instead. Just confirm and it will copy it too. Also check and make sure Windows didn't secretly add '.txt' to the file in which case you have a different host file that doesn't work.
Windows doesn't secretly add "txt" to the filename, Notepad automatically adds ".txt" to whatever filename you specify because it assumes you're writing a text file. Get around this by putting quotes around the exact filename you want: "hosts"
great video appreciate the effort, another nice thing you can do in edge is install a custom URL addon that lets you change New Tab to anything you want, although as soon as you install it, Edge will Lie to you and disable it for SAFETY reasons, you just have to go into your manage extensions and turn it back on, then click new tab and set it to what you want. Hope this helps someone.
Found your channel and really like your content. With this slight tweaks in the hosts file would this affect also the "news and interest" widget integrated in the windows taskbar?
wouldn’t it be more effective if you block these IP addresses at the network? It would actually apply to all your devices and it can’t be modified by some Windows update
If you were to block all the IP addresses, your list would be huge. Microsoft and advertisement companies use a large revolving list of IP addresses that are difficult to find. A host file wasn't meant for this purpose. A host file is meant to translate names to local IP addresses within your network. You're much better off using Ublock Origin as an browser extension.
I think it would help if you would emphasize that if you have multiple PC's you have to modify the hosts file on every one of them. And this is why DNS came to be. Sysadmins had a day job modifying and updating all hosts under their control. DNS took care of that. However it is still baked into every operating system that the hosts file is consulted first before going to a DNS for name resolution
I tried this about a year ago on Windows 10 with quite a large hosts file. There's a threshold where Windows starts losing its mind and the DNS service just eats all the CPU. It's a pretty small bar to I think it's only like 15 or 25 entries.
LOL, this video is like if someone moves a Stop sign to the other side of a 2 way road with only 1 Stop sign. Absolutely memetic. Touche! "The" PC Security Channel. LMAO
Brought back so many memories with that notepad intro. You should do a video entirely like that for April Fools, it would be quite funny.
But in 360p, 4/3 and windows xp
notepad tutorials are among the top quality content tutorials
You gotta also have Unregistered HyperCam 2
Do not forget classic Windows Movie Maker blue background with comic sans font.
How to I get rid of that damn Telemetry crap.
Just a quick reminder for anybody who notices addresses other than the default in hosts file, you might find some addresses of Adobe or some other companies, where most cracked software rely on the same way to block companies from blocking you from accessing their software.
My host file is fairly gigantic, but it's not cracked software adding to it, it's spybot search&destroy, immunizing me from a bunch of known malicious addresses.
@@OnlyKaerius That's actually a nice way to prevent some malicious addresses, but how would it prevent new or other malicious addresses that can simply change its address, got any ideas?
@@Krazy0Not really, you can't pre-emptively exclude bad sites before they exist, you'd basically have to disable the internet, or go to a whitelist-only solution, which would be very restrictive. So just complement with antivirus.
@@OnlyKaerius I remember there was a site that discloses the latest reported harmful sites, we might be able to have a simple script that scraps all the reported sites and then put it into that file, which in theory could make it work better, but I actually think having a local VPN-like program that blocks access to sites included in that list would be much better in terms of usability, I wouldn't want to have to scrap that site when I can simply have a script that prevents access to them in the first place rather than some file that I've to follow its protocol to setup the sites.
So, according to your comment, if I block a specific host for Adobe (for example), should I be able to block license verifications and use any software without paying them? That sounds too easy XD. However, in 2017 and before, we only needed to change a few characters of the trial license key in a local file to use their programs for free. So, I don't know; this looks like a big mistake from Adobe ^^'
Thank You so much for being out there and teaching
the average PC users to protect themselves!
You are amazing!!
This channel is clown world and they're giving you snake oil.
does it only apply to people who use _Edge_ as a browser? I haven't done this host.file thingy and my browsers don't annoy with with these 'notifications' or clutter
This is good but manually keeping the hosts file up to date is tricky. If you really want to block efficiently get a Raspberry Pie and install pie-hole. You can download lists of millions of domains that track or for some reason you might want to block. Out of the box, this blocked about 25% of my network traffic.
The really annoying thing for me is that if that 25% is typical then roughly 25% of the worlds cost for internet traffic is being wasted on marketing and tracking that most of us don't need or want. That's our money they're spending and there's no law to regulate it...
I hadn't looked at it that way but I couldn't agree more.
Ah yes, get th government involved. Nothing bad will happen after that!
@@RezaQin lmaooo you heard about the FCC supposedly getting involved in regulating ISPs right 😭
Sometimes I go down a doom hole about how much completely needless trash like that is contributing to global warming and the depletion of finite materials and I have to go stare at a wall for a few hours. 8|
@@RezaQin lol when I talk about law I don't mean government. In the UK at least, law is a victim of government.
Brilliant. I've just upgraded from Windows7 to 11 on a new laptop, using a local account. I'll add to the hosts file today. And thank you for including the text with the description!
I recently stumbled upon the Windows "news feed" when I accidentally hit Win + W. The amount and type of preloaded content in there is horrendous! But this trick took care of that too. No more BS content that I didn't ask for. Thanks!
THAT was the most amazing instruction ever. I'm telling EVERYBODY how to do that and where I learned it. Thank you a million plus one Leo.
Leo is exactly as tech knowledgeable as the "tracer T" kid.
i think they know about this. I did it and for about 10 seconds it worked, then the background image loaded, then one by one the settings menu on the top right populated, then the stories and advertisements filled in. It was kind of cool to watch.
Except windows can and will ignore the hosts file when MS feels like it would negatively impact """security""".......
/EDIT And just as an FYI to anyone, "cloud" and "lifetime plan" in the same offer always going to end badly...... (we seen several examples of this already, cloud isnt free and you cant cover recurring expenses with a one time purchase)
you can also block those sites in your router, too.
@@DFX2KX Only if you have something that preferably can load lists from url, besides this is just a wack-a-mole game which simply doesnt worth it. If you can just ditch windows and avoid apple at all costs (they do the same thing)....
@@DFX2KXYou're router block list would run out of entries and your router would eventually slow up your network and increase it's workload.
@@DFX2KX If blocking that list of a dozen sites was all it took to block "call home" then IT pros wouldn't have been fighting this shit for 7 years now.
@@SpaceCadet4Jesusso wrong
I highly appreciate that the list is right at the beginning of the video AND in the description, instead of scrubbing around to find such list.
That was nice, yes, but it doesn't change that this "list" is useless as tits on a nun.
Powertoys has a Host file editor in it. If you want things to be blocked, make sure the switch for each line you want to be enabled is switched to on.
This is a great tip. Another great tip is Edge's most useful feature. The ability to download a different browser. 🤷♂
You can download a different browser without a browser too ;)
I really likes Edge (as web browser), but i really hates all this telemetry from Microsoft. So... Im glad u sharing all this. Thanks!
Yeah bunch of bullsh ads
Why you like that shit?
absolutely rare rewind on the advertisement. well done internxt and TPCSC
Imagine one of Microsoft Employee (those who closely work with Windows) watches this video, and on next morning with a update whitelist these tracking sites (even if listed in hosts) file...
Nah, they are more likely to use this tweak and thumbs up the video. That edge tab is everyone's dream.
@@pcsecuritychannelAgree.
@@pcsecuritychannel facts
not even microsoft employees want to be spyed on...
@@pcsecuritychannel😂😂
The host file is a legacy feature of TCP IP that was used to translate host name to IP address before the existence of DNS.
I use the loop back address in a host file as an add blocker.
Thank you very much for this!! I literally just finished a DNS section of a Udemy lecture that focused on the hosts file. The UA-cam algorithm blessed me with this video. Subbed, much appreciated!
This is very well done, especially for people who aren't terribly computer savvy. Great job, thank you for making this, it's the kind of tutorial I will be sharing a lot in the future.
Very well done for a "fix" that doesn't do jack shit.
@@macethorns1168 It doesn't work for you?
FINALLY!! Something on YT worth watching!
Follow up. I just tried this and Notepad (as admin) will not save this file as a 'file', it will only save it as a .txt
after saving with the .txt go to rename and just remove .txt. will give warning but click ok
Great! Thanks.
Already knew right where this file was but did not think of this. Brilliant
Thank you! This is a great hack to get rid of much of the garbage and tracking that have gotten me to mostly replace Windows with Linux for good after being the Kernel Dev lead on Windows 95 and leading other work at Microsoft so many years ago. I still have a couple Windows machines running, and this has worked great! Liked AND subscribed.
You can use /etc/hosts for much the same purpose.
@@lindenreaper8683 That might be better ... I remembered that /etc/hosts can't take wildcards.
@@lindenreaper8683 I bailed from Windows for personal use after Win95, although I have a virtual machine for the tiny bit of software that I couldn't get Linux to run.
I call BS.
@@atlantic_love What is "BS"?
Using the hosts file?
Switching to Linux?
The timing of this is amazing, I was just playing around and looking at the host file lol
single handily one of the best video you probably ever posted on this channel, hopefully microsoft wont hide that folder or block access to it in a future update
They haven't the last 25 years. If they might bypass hosts of their choice in future, they will completely give up trust of their Enterprise customers.
Single handedly one of the most useless and worthless videos on UA-cam you mean.
I actually just added these hosts to my pfsense perimeter firewall. Now ALL my computers inside my network won't be accessing those 'spysites' and I won't have to edit any hosts files. Thanks for the tip- that's a good little list.
Thank you for this. Just created the alias list and a new rule to block them. Worked - for 5 mins, then Edge somehow repopulated the main page later. Still keeping the pfsense entry though.
the intro had me hyped because the notepad videos were always the best and in detail
This is just bandaid advice. Yes it covers top level stuff like your browser, which is a good thing. Claiming it stops windows telemetry is overstating its use. You can block the IPs at the router level, just blocking the domain resolution on the computer is not enough. Also since windows 10, Defender has some addresses that it will block being saved into the hosts file, and some Defender updates that will just revert the file.
this is very true but sometimes there are whole blocks of ip's that those names resolve to so i guess this is better than nothing.
There exists no way to stop Windows telemetry unless you have W10 Enterprise, and even that's doubtful.
Well thats just incorrect. Most of it can be stopped within windows itself. Then with a combination of internal and external firewalls all the rest can be taken care of as well. @@macethorns1168
There’s probably something in regedit to fix that
Cool Thanks for the addresses! You even had them in text in your description, making it easier to cut and paste!
I actually did this for ads too. So most ads just come broken when I go to the web if not I try look at the source code and find their site and add it.
You can turn off new tab 'content' in Edge settings. It's under settings 'Start, home, and new tabs' and 'New tab page' then customize your new tab page layout and content. Content > off.
That doesn't prevent M$ from sending your data to third parties.
@@jairo8746but is there really a browser that does not do that these days? Many chromium browsers send data to third parties and advertisers
They must have updated things. It no longer works.
It still works. Make sure that file isn't a txt file. If you want to go over it again here's how.
1. Save the text that is in this video's description
2. SEARCH notepad in the windows search bar so you can right-click and run as administrator.
3. Go to file, then open, then search file name "hosts" and be sure to change the file type to "all files" so you can find it.
4. Open the hosts file
5. Copy and paste the text as he does in the video
6. Open Microsoft edge to check results
If the webpage is not showing up blank, you need to go into the settings of edge by clicking the three horizontal dots in the top right. Then go to settings, privacy search and services, clear browsing data from all time ONLY IF you don't use Edge as the browser to access websites you have profiles saved in. If you do, you will be signed out of them on Edge and have to sign in again.
If you are struggling to find it because of a different layout you have applied, use this link in your URL bar. ---> edge://settings/clearBrowserData
It worked for me. This also a GitHub page that has much more hostnames you can copy/paste in to block msft
You can probably make a script to run a hash of the hosts file upon reboot to alert you the moment it's been modified by some Windows update.
I wish I could sync my pihole adblocker list to this host file. It would relieve some of the burden of the tiny pihole.
I could then toggle domains on and off for troubleshooting and testing.
Waste of time. The host file hasn't changed since Windows 95, decades ago.
Thats a very interesting sponsor. I rarely see a non subscription service for cloud services nowadays.
Nicely done! Thanks. I also use Pi Hole to block a huge number of add sites for my entire house (running on Raspberry Pi).
Thanks for this info! I found a thousand or so dead DNS entries put in my hosts file by a freeware spy blocking program too. I hope this won't impact the performance of my local web server running on port 80!
This can be taken to the next level by checking your "netstat" in CMD and blocking all those pesky outgoing connections you don't recognize and don't want.
And at that point you will find out just how fucking useless this videos recommendations were.
I'm alright with that hosts thing, but at least you're making us aware so we're appreciative. Keep up the good uploads! :)
I used this tactic to keep my children away from certain sites back in the day. It can work really well.
Meanwhile I used proxy sites to bypass this tactic when I was a child. It works really well.
As a child I never had access to computers, didn't go very well.
Really? Do browsers even use the host file?
@@rct999 Yes, they do. I use it on a daily basis for testing client websites at my work. Everything on your entire system that connects to the internet will use the settings you have configured in your hosts file.
@@rct999 yes? a lot of viruses use host file to block some websites
somehow it put a lump in my throat to see you record this on what looks like your actual work/home machine 😨 granted you are only editing the hosts file for this video, it feels strange to see a personal environment used for demonstration purposes. loving your video content and excited for both more of them and the malx project!
Great addition for more privacy. I also use Spybot Anti-Beacon that has some different features.
Im an 'industrial' style IT pro of nearly 40 years... and I'd never even considered doing this. Its, absolutely correct, and works instantly... HOWEVER, while I was doing it, I had some other processes running heavily in the backround..... historically referenced as 'hashing' ... anyhoo.... at the very second the new hosts file was saved, I had my other eye on the bit-rate (downstream) of my 'other processes' ... and as I hit enter, bit-rate literally doubled. Odd, but I'm not complaining.
Best part is that if your hosts file gets too good then windows defender thinks it's a virus and then you need to add exception. Also don't remember to make a backup because it has happened to me that windows update thought it knew better than me what should be in hosts file.
Or just turn off windows defender.
daamn. this showed up on homepage and started playing, i saw the notepad intro and got in for nostalgia, stayed for information
The only point i miss on these tutorials is that the machine still using compute resources to try this requests even if its going to timeout on loopback. Its really anoying especially if you have a computer with limited resources.
Agreed
This could be better: en.wikipedia.org/wiki/Black_hole_(networking)
That unfortunately is going to happen. If it's program to upload data to third-parties, it will, unless you have the source code to remove the functionality.
Maybe use something like Windows 10 LTSC 2019 on a computer with "limited resources".
It's fascinating to me that you know words like 'timeout" and "loopback" and believe that it's possible to work around M$ calling home with a dozen hosts file entries.
An oldie but a goodie.
Can be used to block ads an much more.
Thanks for reviving this old true and tested method.
I've been using a custom hosts file since I first learned of it, way back in like 1997. I found quite a few custom hosts files that people compiled to block porn, spam, tracking, etc, then customized those for my own purposes. Very handy information to have.
This was the way to go before AdBlock and browser's integrated blockers...
The issue is that they change their IP addresses on a regular basis, and you have new companies adding to the list all the time!
I also have a 20 years old hosts file, I keep adding lines from time to time (even have google there, but it's almost impossible to block them, that way, too many variable IPs !)
Really, do you know where I could find the host file made for anti-tracking
Idiocy. These entries aren't going to block Windows from calling home.
@@DR_1_1 but won't blocking the known numbers mitigate some of the traffic? And why hasn't automated a program that will look at current Google IPs and auto add them to fire wall block list
same. Since late 90s also.
Thank The PC Security Channel for this SIMPLE and YET effective solution.
It should be mandatory for all OS and softtware to keep an updated list of ALL the servers they connect to, with a destcription of which exact data is collected and transfered, its exact use and the people who have access to it.
This the same way we are forced to present an ID to have a personal data/internet connection, to give an email address and even name, telephone number for many registrations online!
And also options to disable the transfer of data when not necessary!
*All that in a user friendly option menu, not like these cookies popup windows that block the access to most websites today* !!!
For sure it's all covered somewhere in hundreds of pages of Terms of Service which nobody reads and just hits "accept".
Compiling a mass of data like you suggest would cost some bucks - and you can be sure that the money-grubbers won't pay it. Do you want to pay to use the Internets (more than you do already)? Because that's what would happen - and once you subscribe...you're tracked! Lololol! Pay to have your personal info used, what a brilliant plan 😞
That would work in the days when there was competition. Price fixing is rampant, and big software companies are destroying all of the small software companies, so they can gain a monopoly.
The notepad tutorial part was really funny but honestly, with nostalgia of notepad tutorials and my most favourite cybersecurity channel, I won't complain if you shift to making notepad tutorials.
I'd be keen to see something similar for a Google Chrome browser on Windows...what can be 'blocked' without impacting functionality too much etc.
I'm honestly fine with that Host file thing, i don't even know if i will have a further issues if i mess with the file, so i think i will rather just keep it as is
Thanks for the video though
I wpuld suggest to use a firewall solution or give pihole/adguard home a try. Windows bypasses this and modifies the host back
I sometimes use edge in windows 10 "Sandbox". After changing file as suggested, I found it stills works after creating a sandbox and using edge. Thank You...
What always bugged me about some notepad tutorials is when it was a dude who had a mic and you can hear him typing xD like bro you are making this so much harder on yourself xD
Probably bad pronunciation
@@janbielecki9245 yeah thats my best guess.
If it wasn't for Windows being the best os for gaming, I would switch to Linux in a heartbeat.
I wouldn't
I'm dual booting windows rn, with mac tho...
Same here
It remains the best because certain companies are just plain lazy or specifically unsupportive of Linux.
I’ve made the jump back when there wasn’t even BattleEye support for Linux and everything on my steam library was playable and at same or better performance than Windows.
The only game not being able to run on it is currently Valorant because of its kernel level anti-cheat. But otherwise, almost all high-fidelity games are able to be played right and at even a better performance than on Windows due to less bloat on the CPU during gaming.
@@shroomer3867 Linux is better performance wise, but not when it comes to gaming.
Yeah, looks pretty good. Although a little bit of adblocking and tracker stopping is of course to do in every browser. And installing Pi Hole, but that's a different story.
I Have been trying to figure this out.....and "Ya, You Got Me!" I was going through "everything" and it was this symple ROLF! My biggest problem was I was overthinking it not realizing that MS couldn't be that stupid but it wasn't them it was me all along! ROLF I wish I could compensate you but....man this was worth 100's of dollars! Thank YOU! I knew this, was a systems anylist that had to edit Individuals work computers "Hosts" file often. Wow! Banging my head on the wall right now. avb
For Zone Alarm users: the hosts file is locked by the Firewall. Navigate to the Firewall's advance settings and uncheck a lock checkbox. After saving the hosts file check the lock back
lol zone alarm, haven't heard of that software for about 20 years!
I was wondering why I couldn't get it to save. Thanks for the post!
It's a virus itself. Everything is under the zone alarm network. Secure browser, can't delete that. Everything is managed by itself forcefully...
Tried uninstalling it but not able to delete everything.
@@barryallen1100 The hosts file is protected by OS. A Browser cannot access it (and a computer's file system in this respect) by definition. But if a hacker can get administrative/elevated privileges on a machine than he can modify the hosts file. That is why Zone Alarm (the best Firewall and Antivirus on the market) locks it.
Dude hell yes I’ve been watching weird network activity from these domains and then I see this video. Thanks a lot !
What we all want to know is, WHAT system files are calling out to these sites? Blocking stuff with hosts file is just preventing a problem that already exists...
I want to know what executables are making these calls. What dll files?
THIS. Is a good question. the next would be to patch those.
@@Sypaka Precisely. It's likely to be some of the insane number of started services. The amount of services they've added since Windows 7 is just bonkers. Most of them no-body uses or will ever use. Just blatant spyware and data harvesting.
That won't do any good, those system DLLs provide many other functions and there exists no way to stop them from spying while continuing to do their other jobs.
@@macethorns1168 That's complete and utter nonsense. I patch stuff all the time to remove functionality that's not needed. That would be the same argument as patching a game protection and it not being playable afterwards.
I've been coding a LONG time and if I knew what dlls to patch, I'd just debug and patch them. It's not even a big thing to do. It would have ZERO affect on their functionality unless their functionally was ONLY to do data harvesting and in that case, I'd patch the service that was using the dll to not use it at all.
Patching a http/https call is no different than if you just blocked it with an entry in the hosts file.
@@thewelder3538 yup that's reverse engineering at its best.
Yep. Saving your channel. Great stuff, dude. Thanks for all the help!
The thing is you never know what's going on under the hood, Windows could be collecting data over say 4 weeks, and every month sends a compressed encrypted file with all the info while it's doing an "update." You'd never know the difference.
Great! Keep them coming Leo. Much appreciated.
It's a good idea but it won't block everything. The security hole(s) are in the network stack portion of the Kernel. Microsoft provides certain state actors access via private encryption keys. They've already admitted to such things back in the Windows 7 days. There's no way to have a completely private Windows operating system.
They did not admit to anything like that and it's hogwash.
ok bro, enjoy. :)@@ripleyhrgiger4669
@@ripleyhrgiger4669 So, when 3-letter agencies came to Microsoft, they were told to pound sand, right? I also have a very nice bridge to sell you.
This chucklehead's windows box is going to be owned less than 5 minutes after reaching the network!@@RolandAdams-h4m
@@RolandAdams-h4m I sincerely doubt the alphabets ever had to ask anyone at MS for that access - it's native. Their OS is called Windows for multiple reasons ;)
Hey, thank you very much...
And I am going to spread this with all of my friends and PC users.
❤❤❤❤
If I add these URL's to the filter in my router, presumably that would accomplish the same thing. I'm able to set the filter to cover just a single machine, many machines, or the entire network. But, I'm always afraid that I will break something especially when it looks like filtering some of these URL's might be overly broad.
I wouldn't use a router, it can massively slow down your internet speed because it constantly has to check the filter whenever you visit a website and some routers are very slow at this. Just use the hosts file, it's simple, it works, and people have been doing this for decades.
@@NoClipMode Good tip. Thank you.
@@NoClipModeWow. Are routers still that inefficient?!?
The router will work as long as you don't run over a VPN
@@johnsmith1953x My exact thoughts, it's just a short lowercase string comparison. I'm sure such list needs to be very long to have any measurable slowdowns.
Done it on Windows 10 and it works... Thanks for the info👍
In Edge's new tab page, you can also switch the start page settings "Content" to "Content Off" and achieve most of this as well.
For decades, I have been a Microsoft MVP (Most Valued Professional), as well as a Lead Systems Engineer and SI (Systems Integrator). It disheartens me when I see so many alleged ‘tech’ channels here post erroneous information that actually causes Windows end-users to completely corrupt their OS, to the point where it will not even boot into Windows again for them. But, I have found every one of your videos to be clear, concise and correct. Well done, and keep up the great work, my friend!
Why would editing hosts file prevent booting an operating system? It's just a list of IP addresses for Internet domain names.
Host file = pc bricked = OMEGALUL
@@RadioactiveBlueberry I was referring to bad Windows advice, in general, given by some alleged tech channels on YT. They frustrate me when they share some ‘tech tip’ they saw somewhere, and without researching/testing its validity and worth, just repeat it in their own videos here as an OK thing for end-users to implement/change in Windows’ settings.
@@ggiuliano93 You have way too much free time on your idle hands. Get a job/hobby.
@@rjjeffreys I have actually seen pretty dumb advices, which are still shared around on the net to this day. Like enabling the "hidden" Admin- Account, which is disabled for a reason.
Great video. Do you have any advice on removing Cortana and disabling the creepy Viva Insights emails?
Hmm, did this but through my Asus Router's Firewall URL Filter. It worked like a charm, no messing with the Host file. Since I have multiple Windows machines in the network, figured this will be a blanket protection.
Can you give us a list for other browsers too?
Hosts file works across all of Windows browsers
that intro got me hard i first thought that this video is maybe years ago but the time you said i am kidding i was like "RICKROLLED"
Didn't work.
Pasted addresses into hosts file, cleared browsing data and it still loaded a bunch of crap in a new tab for edge (not that I use edge).
Many folks are saying that this doesn't work.
They're right because it CAN'T work.
The Windows hosts file is a legacy bit of Windows. When a domain resolves to localhost, there is an attempt to fire off a request to port 80, would be fine back before everything moved to SSL/TLS on port 443.
This WILL work on blackholing non-encrypted traffic (probably why the guy in the video said he managed to get a "clean" tab (?) - image files are often still sent over port 80).
SO - the only way to make this work is to point the domains to an IP where there's something listening on port 443.
NOTE: There are simpler ways of "listening" without actually deploying a real server.
Thanks, this encouraged me to use linux even more
definetly switching to linux in the near future. sick and tired of M$ bull**** great video!
been there, done that. windows virtio used to work for gaming, but... apparently it no longer works for games with anti-cheat. 🤔🤷♂
Does it still allow my system to show me the current weather in the task bar, and to automatically adjust the time?
Edit: No, this fix also disables your weather information. If you want that feature to stay enabled, remove the "assets msn" line.
well, I just tried and it doesn't work with Edge, even after clearing the cache 😣
I'm pretty sure MS checks all these channels and make all the adjustments to avoid we outsmart them.
Very well done, thank you. You now have another subscriber.
Lifetime plans are great until they change their TOS or go out of business. Also paying upfront is usually a big no-no. Worth a look at the least, though.
They have monthly and annual plans too. I just mentioned the lifetime plan cause its the first time I've seen that as an option.
Super, super advices. Thank you x1000 times!
Very helpful, quick and easy pro-tip for blocking some MS data scrapping network bandwidth.
Lovely presentation, too bro
Not just MS.
You misspelled unhelpful.
No I did not, because I didn't use said word. Clearly.@@macethorns1168
10/10 Tutorial. Thank you for this!
What would be interesting to try is setting up a local server and tracking all of the requests which would have gone to those sites
That would be very interesting.
XAMPP does the trick and if you enabled error logging... yeah its gets crowded there.
Simple: get Wireshark and monitor network traffic. You'll *very* quickly realize just how fucking useless and stupid the "advice" in this video really is.
there is another way to do this but its basically the same but a little bit more control.
you can set ufw policies or iptables and intercept network connections from virtual machines or route data though another computer on a network to drop packets by redirecting it to a address like local host.
An alternative in case you didn't open Notepad as administrator, just save the file to your Desktop and copy it from there to C:\Windows\System32\drivers\etc. It will give an UAC prompt instead. Just confirm and it will copy it too. Also check and make sure Windows didn't secretly add '.txt' to the file in which case you have a different host file that doesn't work.
I do that before. Thank you
Windows doesn't secretly add "txt" to the filename, Notepad automatically adds ".txt" to whatever filename you specify because it assumes you're writing a text file. Get around this by putting quotes around the exact filename you want: "hosts"
You are right. I wish the 'hide file extensions' options was turned off by default @@macethorns1168
great video appreciate the effort, another nice thing you can do in edge is install a custom URL addon that lets you change New Tab to anything you want, although as soon as you install it, Edge will Lie to you and disable it for SAFETY reasons, you just have to go into your manage extensions and turn it back on, then click new tab and set it to what you want. Hope this helps someone.
Found your channel and really like your content. With this slight tweaks in the hosts file would this affect also the "news and interest" widget integrated in the windows taskbar?
This info is gold. Thanks for share 🤜🤛
You should know some Microsofts own dlls has the ability to ignore the hosts file. You could also try peerblock to block.
can also upper decker your PC case
Thank you. For this... I can now focus on why I opened the browser WITHOUT all the time wasteful distractions.
@pcsecuritychannel This video needs an update. The Hosts file solution provided no longer works.
Yep, ms updated the hosts file and it has some extra lines now that are not shown in this video.
Doesn't seem to work anymore ☹
Danke!
wouldn’t it be more effective if you block these IP addresses at the network? It would actually apply to all your devices and it can’t be modified by some Windows update
If you were to block all the IP addresses, your list would be huge. Microsoft and advertisement companies use a large revolving list of IP addresses that are difficult to find.
A host file wasn't meant for this purpose. A host file is meant to translate names to local IP addresses within your network.
You're much better off using Ublock Origin as an browser extension.
@@SpaceCadet4Jesus a lot of these connections are happening through windows itself, even if you have no internet launched my man
@@escapetherace1943 Of course. I was speaking on the *prevent* ads front.
if you are doing this just because of edge new page, you can disable the notifications on the personalize tab and the rest on settings > Content.
I think it would help if you would emphasize that if you have multiple PC's you have to modify the hosts file on every one of them.
And this is why DNS came to be. Sysadmins had a day job modifying and updating all hosts under their control. DNS took care of that. However it is still baked into every operating system that the hosts file is consulted first before going to a DNS for name resolution
I would assume even the most illiterate people wouldn't assume this will fix a random device other than the pc in which it was performed
Thanks! I put these entries on my Mac too since I use Edge for MacOS once in a while.
I tried this about a year ago on Windows 10 with quite a large hosts file. There's a threshold where Windows starts losing its mind and the DNS service just eats all the CPU. It's a pretty small bar to I think it's only like 15 or 25 entries.
I have 50k in my hosts without any issues with Windows running
LOL, this video is like if someone moves a Stop sign to the other side of a 2 way road with only 1 Stop sign. Absolutely memetic. Touche! "The" PC Security Channel. LMAO
Muito bom, obrigado por compartilhar.
Thank You Leo! hosts file completely vanished from my brain till this video. Found one sneaky little fu*ker in there. Thanks again!