You don't have to delete the line, just put a "#" at the start of the line to comment it out. This is handy for testing or temporarily enabling access to that site. When done, remove the "#".
@@Britec09 all roads lead to Rome, using any comfortable method to get it me i use Hostsman for instance. Thank you Brian I have been looking for a list for this.😊😊
I was never much on linux. Dabbling with it from time to time. Now, I am learning as much as I can so I can confidently switch away from windows and not have to worry about being spied on. One day at a time. So thank you Britec for all your hard work.
That's good, some malware changes the HOSTS file to redirect you to other sites or block certain sites. You want it to notify you of changes to the hosts file. If you made the changes, just add the folder that the hosts file is stored in to "exclusions" in Defender.
I prefer to use Pi Hole which covers my whole network from one centrally administered location. Once set up, you have a nice web interface to monitor and manage it.
@@user.A9 Import the list through the Pi Hole web interface. Select Adlists from the menu on the side and you're there. The default blocklist is very good though and I've not needed another.
@Ahmed-Hussain The Pi-hole is internal to your home network so doesn't need an IP provided by your ISP. I just set up an IP reservation in my router so that whenever the PI-hole fires up it is allocated the same local IP address in the 192.168.x.x range, Then you just tell your router to give out that IP address to DHCP clients as the DNS resolver. I don't have a static IP address from my ISP, in fact it changes every day, but my Pi-hole works fine.
This is one of the most useful videos you have produced recently. I was going to ask whether this applied to windows 10 as well as 11, but this was answered towards the end of the video. I had no idea just how intrusive Microsoft is until now.
I won't trust MS to ship a TCP/IP stack that honors even the MS equivalent of /etc/hosts anymore. (They took BSD's TCP/IP stack and ported to Windows in the WFW days; this is why they have a "hosts" file to begin with) Since it's in "as good as it gets" territory, I make sure all my internal hosts use the DNS I hand out to them (enforced by firewall rules at the border), and my DNS goes through NextDNS, which has its own block list. Doesn't catch very much of the telemetry by default, alas, but it works well enough. I really need to weigh the benefits and the costs of using my time to play a cat-and-mouse game, which is unfortunate.
that's certainly a good way that works, but this and even more can be done with a help of a good firewall having a filter. Just put a check box and a community-driven list will be auto updated
Look britech in any other PC tech involving youtuber, I respect what you try to do and this includes Chris Titus Tech also, but in the end there's no way you can stop Microsoft from disrespecting your Fourth Amendment rights including privacy if you boot any computer into windows and it is connected online the internet for any reasonable amount of time even if it's one day a year let alone every day You can do all the registry edits you want you can throw all the third-party software tools you want at it but in the end and inevitable Windows update will undo any good you do at some point in time be it next week or next month or even later that year. Why? That is simple. It is because no one but Microsoft operating system software development employees has access to editing the windows core AKA kernel in which where the Windows update and Telemetry engines live There's only one guaranteed way that I can think of offhand to stop Microsoft from spying on you and that involves a two-part deal. One don't use any of their software. Two switch to Linux. Facts don't care about anyone's feelings on this
I think it's legacy and causes more issues than actually fix. I added rules as firewall and few months later i couldn't connect to download updated Software files using batch scripts from MDL. What i will suggest is to make use of next dns which updates its filters and block telemetry from Apple, Samsung, Android phone vendors, Microsoft etc
But sometimes those domains will simply bypass the host file. It is better to block this via 3rd party Firewall or on a hardware level(rutar, or your own DNS).
If you listen closely Brian sounds almost like a younger version of the Oscar winning actor Michael Caine. If you don't know who he is check out the movie "Secondhand Lions".
If you paste the whole file that contains to IP list you can document what revision the list used was. Header section is commented out so not a problem to hosts
@Britec is this extra step still necessary to prevent Microsoft from collecting your data even if you did not check those check box when initially setting up Windows?
Great Video, :), after I updated the host list, the security program popped up and said the host file was Hijacked, HAHAAAAa. So went into the security program and told it that it was safe to use, just allow the host file. HEHEHE So yas might want to mention that in the next updated video on the subject.. Thanks Again for all the good content..
Prodigy, what do you mean by "a lot"? comparing to what? my opinion Safing PM doesn't take a lot of your attention. Easy configuration, on-demand response, convenient silent mode, pretty lightweight, has a lot of additional utilities. I use it both on my Windows and Linux platforms, both work great
Sir, FYI, thank you for this info video. I modified the hosts file on a windows 10 pc using your instructions, after a reboot I find that Bitdefender Internet security has "cleaned"the hosts file. This problem did not happend on a windows 11 pc. A setting in bitdefender solved this issue.
I never liked the idea of using a quad zero address to 'blackhole route' a packet as a quad zero address (0.0.0.0) is the gateway of last resort in the networking world... typing route print in windows will give you the idea.. am old and stubborn in my habits, even though 0.0.0.0 is also used as a meta address like a wildcard such as an invalid target, blackhole routing this way makes it easy for them to change something in the future to push all those addresses out through your default gateway.
Microsoft would be better if Bill Gates was in charge again. It was never perfect, but Microsoft has gotten so much worse since Bill Gates has no longer been the CEO, whatever you think of him
Don't agree with the description used here 'blocked'. hosts files just take precedence over a dns lookup - not the same as ''blocking' - but a sort of similar end result - just a minor point for accuracy.
I remember having this idea as well but windows kept reverting my host file to the default configuration, so I just assumed they did that on purpose to prevent people from blocking their telemetry. I'll try again but I really wonder if that's an effective solution.
Thank you for your willingness to provide a compilation of information and how to use, as walking, we are a step forward, hard work, thank you! Thanks be to God! ( DeepL translation ) 謝謝您願意提供彙整資訊及使用方法,如同走路,我們又向前進一步,辛苦了,感恩!感謝上帝!( DeepL翻譯 )
cant be arsed to keep trying to dodge ms spyware it will be a never ending circle,Update it will all be back again .So i went for the 10 minute solution and installed Linux
Why doesn't someone make an executable that automatically updates the host file on a regular basis, rather than needing to manually update the file? Seems simple enough and a trivial programming exercise.
This method to stop micros spying is useless. Especially if it's the only thing you do. Moreover, microsoft address and domains are constantly changing.
@@Britec09 If they want to just' try and block access' this way, it means that they dont have an good understanding of the nature of the issue and what an effective solution looks like.
@@cplcabs It's not _my_ perfect solution. It's solutions that others have already established and described in detail. Nothign new. You just didnt look properly.
@@Corteum I don't think you understand what this video is about. It is not suggesting this is the be all and end all solution, it is one of many solutions out there. If you wish to make videos about how to do such things, then you are more than free to do so. I don't really need to look properly as I already know how to do such things. I just don't go around and critisize other people whilst offering no alternative solution such as you have done.
Can’t these be blocked at the firewall. Is it not possible just to block everything unless it is approved by default? . The default position seems to be its leaky unless you block it and you can’t keep updating based on someone’s best guess on what’s on a list.
After implementing it, I noticed a few MS app icons/ tiles are not showing up in Windows app store's installed app list. Please check at your end and confirm.
my w10 did not like this. win defender blocked my network connection until I quarantined or cleaned two items in the area we modified, so i got cold feet and undid the entire operation
I had to disable Webroot service because it was using the host file. Then I could edit the host file and then turn on webroot service (WRSVC) again. When Webroot starts up it take a long time (about 8 Minutes) to start. Computer is slow booting up because of webroot loading. After that computer runs fine. Annoying. Any thoughts.
You can just install an AI locally and use it to monitor the Microsoft telemetry, and block it. Much the way an anti virus program works. Your local AI should easily be able to keep your system clean, and you have regained control of your computer. There are plenty of videos describing the process of getting an AI up and running locally, and it will be your AI, not Microsoft´s AI
Has this been checked? nothing to keep MS from hardcoding ip4/ip6 addresses as fallbacks and even to ignore host file entries that reference their special domains. It's fairly obvious on both fronts IMHO. So and external, non ms, monitoring of outgoing traffic is needed to verify those special domains are not being accessed. Using windows own tools to check is just begging to be fooled. Using ping within the command prompt is likely a waste of time.
How to block all truckers and data harvesters ? SIMPLE : Use other operation sistems : Linux , Ubuntu , etc and web browsers like Brave and Tor , add blockers , and dont allow updates just do it manual from safe official sources .
You don't have to delete the line, just put a "#" at the start of the line to comment it out. This is handy for testing or temporarily enabling access to that site. When done, remove the "#".
That is correct
@@Britec09 all roads lead to Rome, using any comfortable method to get it me i use Hostsman for instance.
Thank you Brian I have been looking for a list for this.😊😊
ah so its "#" now? it used to be "//" i thught.
I was never much on linux. Dabbling with it from time to time. Now, I am learning as much as I can so I can confidently switch away from windows and not have to worry about being spied on. One day at a time. So thank you Britec for all your hard work.
Windows Defender identified the new host file as a medium threat 🤣🤣
That's good, some malware changes the HOSTS file to redirect you to other sites or block certain sites. You want it to notify you of changes to the hosts file. If you made the changes, just add the folder that the hosts file is stored in to "exclusions" in Defender.
@@charliesretrocomputing good to know 👍👍
@@Feta_Cheezz_Montgomery_Burns but yeah that happened to me as well lol
You can also just say "allow on device" if you don't want to add to exclusions
I prefer to use Pi Hole which covers my whole network from one centrally administered location. Once set up, you have a nice web interface to monitor and manage it.
How to import the list to pihole?
@@user.A9 Import the list through the Pi Hole web interface. Select Adlists from the menu on the side and you're there. The default blocklist is very good though and I've not needed another.
@Ahmed-Hussain The Pi-hole is internal to your home network so doesn't need an IP provided by your ISP. I just set up an IP reservation in my router so that whenever the PI-hole fires up it is allocated the same local IP address in the 192.168.x.x range, Then you just tell your router to give out that IP address to DHCP clients as the DNS resolver.
I don't have a static IP address from my ISP, in fact it changes every day, but my Pi-hole works fine.
Need tutorial!
@@BaelzWhaelz ua-cam.com/video/e_EfmKdP2ng/v-deo.html
this is literally a decades old solution. I'm really surprised MS hasn't dump the hosts file by now.
MS doesnt update old stuff they dump new stuff ontop. they still have setting menus from before the 2000s
It's still used by business IT managers to block NSFW sites
Shhhh walls have ears 😂
Devs use the hosts file for local development
Hey, Brian! Great video! Thank you for this! :)
tahk you for your videos...they are informative...well edited, concise and I have learned alot from them...
This is one of the most useful videos you have produced recently. I was going to ask whether this applied to windows 10 as well as 11, but this was answered towards the end of the video. I had no idea just how intrusive Microsoft is until now.
Strongly recommend Pi-hole, and a separate DNS provider with built in blocking.
Britec09: "Stop Microsoft Windows Spying in 1 Minute!"
Video: "Hello, I'm almost 9 minutes long.😁"
wow, are you really thaat low in intelligence?
Cheers Brian! Another top video! Cutting through the snake oil and flim-flam and giving us what we really need. Thanks again!
Glad you enjoyed it!
Can CoPilot and AI be uninstalled from Windows 11 completely?
yes they can
Nice one thanks for sharing
Thanks for watching
a day before this was posted and everybody BSOD'ed hahaha. this is a nice concise tutorial. thanks mate.
how does it influence the Windows Updates ?
I won't trust MS to ship a TCP/IP stack that honors even the MS equivalent of /etc/hosts anymore. (They took BSD's TCP/IP stack and ported to Windows in the WFW days; this is why they have a "hosts" file to begin with)
Since it's in "as good as it gets" territory, I make sure all my internal hosts use the DNS I hand out to them (enforced by firewall rules at the border), and my DNS goes through NextDNS, which has its own block list. Doesn't catch very much of the telemetry by default, alas, but it works well enough. I really need to weigh the benefits and the costs of using my time to play a cat-and-mouse game, which is unfortunate.
I love how the title says 1 minute but the video is actually almost 9 minutes! That's false advertising. I want a refund!
It would take one minute without video, even 20 seconds with script
Refund.. 😂 u clown 🤡
MS just sent the first employee to post negative comments
🤣🤣🤣😂😂😂😂🤣🤣🤣
Of course it took 9 minutes to explain. Takes less tan a minute to do. But then there are many viewers here at same intellectual level as .....
Great stuff mate - I learned something new. Thank you 👍👍👍👍👍
Glad to hear it!
This video should've been marked as "Outdated" because such workaround no longer works.
Does this make a PC run faster or slower or no difference?
that's certainly a good way that works, but this and even more can be done with a help of a good firewall having a filter. Just put a check box and a community-driven list will be auto updated
Firewall is another way to add extra privacy
Thanks for this, recently i have started adding domain names to the web filter in my router so the effect is global across my network.
That will work
Look britech in any other PC tech involving youtuber, I respect what you try to do and this includes Chris Titus Tech also, but in the end there's no way you can stop Microsoft from disrespecting your Fourth Amendment rights including privacy if you boot any computer into windows and it is connected online the internet for any reasonable amount of time even if it's one day a year let alone every day
You can do all the registry edits you want you can throw all the third-party software tools you want at it but in the end and inevitable Windows update will undo any good you do at some point in time be it next week or next month or even later that year. Why? That is simple. It is because no one but Microsoft operating system software development employees has access to editing the windows core AKA kernel in which where the Windows update and Telemetry engines live
There's only one guaranteed way that I can think of offhand to stop Microsoft from spying on you and that involves a two-part deal. One don't use any of their software. Two switch to Linux. Facts don't care about anyone's feelings on this
I think it's legacy and causes more issues than actually fix. I added rules as firewall and few months later i couldn't connect to download updated Software files using batch scripts from MDL.
What i will suggest is to make use of next dns which updates its filters and block telemetry from Apple, Samsung, Android phone vendors, Microsoft etc
Don’t need to drag the host file to desktop, just open notepad as admin and you can edit host file in its current directory
But sometimes those domains will simply bypass the host file. It is better to block this via 3rd party Firewall or on a hardware level(rutar, or your own DNS).
You can also use firewall. Not 100% as I said.
I dont think messing with DNS will help either. I tried Pihole on my LG tv for example and it did not block youtube ads.
@@agukonrad thats because youtube uses the same servers to put its ads on....use ghostery to block them
@@cplcabs Or Adguard
If you listen closely Brian sounds almost like a younger version of the Oscar winning actor Michael Caine. If you don't know who he is check out the movie "Secondhand Lions".
If you paste the whole file that contains to IP list you can document what revision the list used was. Header section is commented out so not a problem to hosts
@Britec is this extra step still necessary to prevent Microsoft from collecting your data even if you did not check those check box when initially setting up Windows?
how do you solve windows defender/ anti virus flagging the host file changes as a malware attack host?
Add an exclusion to Windows Security
@@Britec09 Cheers for feedback but i read somewhere allowing this exclusion may open systems to attacks
Great Video, :), after I updated the host list, the security program popped up and said the host file was Hijacked, HAHAAAAa.
So went into the security program and told it that it was safe to use, just allow the host file. HEHEHE
So yas might want to mention that in the next updated video on the subject..
Thanks Again for all the good content..
have you checked to see if the larger host file slows down browsing?
Hi Brian, I use Portmaster with IP Filter . Your thoughts?
I'm done with MS once Windows 10, no longer gets security updates
Install Windows 10 LTSC Iot and get updates until 2032.
Portmaster is OK mate, uses firewall settings to block Microsoft. Try not to worry to much about it all.
Portmaster is wonderful but requires a lot of adjustments to allowed connections and some to the global settings
Prodigy, what do you mean by "a lot"? comparing to what?
my opinion Safing PM doesn't take a lot of your attention. Easy configuration, on-demand response, convenient silent mode, pretty lightweight, has a lot of additional utilities.
I use it both on my Windows and Linux platforms, both work great
@@ТоварищКамрадовСоциалистКоммун Totally agree, just set it to my needs and do a backup of my configuration if ever I need to reinstall OS
Sir, FYI, thank you for this info video. I modified the hosts file on a windows 10 pc using your instructions, after a reboot I find that Bitdefender Internet security has "cleaned"the hosts file.
This problem did not happend on a windows 11 pc. A setting in bitdefender solved this issue.
You can use peerblock with Microsoft ips lista to block it.
Used to do this to prevent Adobe apps from phoning home before they went to the subscription model.
Been using this for a while, may have to update the list though. Would be nice if their was a bullet roof way to stop it entirely.
Use batch file to update, quicker
add these domain names to the firewall blacklist of your gateway router and protect your entire local area network.
I never liked the idea of using a quad zero address to 'blackhole route' a packet as a quad zero address (0.0.0.0) is the gateway of last resort in the networking world... typing route print in windows will give you the idea.. am old and stubborn in my habits, even though 0.0.0.0 is also used as a meta address like a wildcard such as an invalid target, blackhole routing this way makes it easy for them to change something in the future to push all those addresses out through your default gateway.
Microsoft would be better if Bill Gates was in charge again. It was never perfect, but Microsoft has gotten so much worse since Bill Gates has no longer been the CEO, whatever you think of him
Don't agree with the description used here 'blocked'. hosts files just take precedence over a dns lookup - not the same as ''blocking' - but a sort of similar end result - just a minor point for accuracy.
correct, they "block" sites by just redirecting them to another IP (usually localhost/127.0.0.1), almost acting as a local DNS server.
Have you ever evaluate WPD.exe for blocking Microsoft spying, Regards
I remember having this idea as well but windows kept reverting my host file to the default configuration, so I just assumed they did that on purpose to prevent people from blocking their telemetry.
I'll try again but I really wonder if that's an effective solution.
Thank you for your willingness to provide a compilation of information and how to use, as walking, we are a step forward, hard work, thank you! Thanks be to God! ( DeepL translation )
謝謝您願意提供彙整資訊及使用方法,如同走路,我們又向前進一步,辛苦了,感恩!感謝上帝!( DeepL翻譯 )
Glad I could help
cant be arsed to keep trying to dodge ms spyware it will be a never ending circle,Update it will all be back again .So i went for the 10 minute solution and installed Linux
Why doesn't someone make an executable that automatically updates the host file on a regular basis, rather than needing to manually update the file? Seems simple enough and a trivial programming exercise.
Great.. ❤
You're welcome
Yes but is there a way to stop telemetry processes that hog resources?
Not really worried if they collect my pitiful data. What can they do with it anyway?
Make the most profit possible with it.
You can't avoid it really, someone will get your data
I think it's good if they spy a little so they know if a third party is interfering with their networks/systems
"what can the do with it anyway"
indeed what could go wrong?
you never know. May be you learn it one day
muhaha
Can I do this for WIN10?
Must be Brit time 😊
This method to stop micros spying is useless. Especially if it's the only thing you do.
Moreover, microsoft address and domains are constantly changing.
No perfect like I said, its for people who want to try and block access
@@Britec09 If they want to just' try and block access' this way, it means that they dont have an good understanding of the nature of the issue and what an effective solution looks like.
ok, let us see your perfect solution then.
@@cplcabs It's not _my_ perfect solution. It's solutions that others have already established and described in detail. Nothign new. You just didnt look properly.
@@Corteum I don't think you understand what this video is about. It is not suggesting this is the be all and end all solution, it is one of many solutions out there. If you wish to make videos about how to do such things, then you are more than free to do so.
I don't really need to look properly as I already know how to do such things. I just don't go around and critisize other people whilst offering no alternative solution such as you have done.
Wouldn't this affect the Microsoft Rewards program?
Having something like pihole or adguard home would do better.
Any difference between the UK & US host lists
Thanks Again!
Thank you too!
I thought for sure this was going to be a Linux installation.
Will this affect gaming on xbox live??
Can’t these be blocked at the firewall. Is it not possible just to block everything unless it is approved by default? . The default position seems to be its leaky unless you block it and you can’t keep updating based on someone’s best guess on what’s on a list.
Click the Start menu, click the power icon, and then select Shut down.
"Stop Microsoft Windows Spying in 1 Minute" Video 8 minute XD
hey um whats the Github link you've used
Hey Britec09, any solution on CrowdStrike? This is why I don't upgrade to Windows 11.
Isn't it just and copy your entire list from github directly into the hosts folder at once without copying the hosts folder as you showed
After implementing it, I noticed a few MS app icons/ tiles are not showing up in Windows app store's installed app list. Please check at your end and confirm.
Could I add these domains and IPS to Pi hole?
Brian, if it only takes a minute, why is your video almost 9 mins. 😉😜
😂 I can do it instant with powershell script
@@Britec09 can you share the powershell script?
it is amazing how many dense people there are in the word and that you are one of them
my w10 did not like this. win defender blocked my network connection until I quarantined or cleaned two items in the area we modified, so i got cold feet and undid the entire operation
Thx man!
The title says bock in one minute, but the video takes 9 minutes to watch. So you should say block inn 10 minutes.
Doesn't microsoft skip the hosts file?
I tested host files with cmd and said General Failure. Packet 4, Receive 0, Lost 4. Using VPN. Am I safe?
Thank You
What chew guys today. Huh. What does that mean?
I had to disable Webroot service because it was using the host file. Then I could edit the host file and then turn on webroot service (WRSVC) again.
When Webroot starts up it take a long time (about 8 Minutes) to start. Computer is slow booting up because of webroot loading.
After that computer runs fine. Annoying.
Any thoughts.
thx Britec
Couldn't a firewall block all telemetry??
Can't you just use pi hole instead
Many ways to do things
I did this a few days ago, windows defender nuked it either today or yesterday. :( But I still have O&O Shut Up 10++ so I guess I'm still fine.
Seriously... a picture of Bill Gates?
Use own dns it is better. E. G combine pihole and bind 9.
bummer, i only found 1 linux comment to troll 🤣
They still have one foot in windows
this one I like.... added the list to my DNS block list.... just in case....
You can just install an AI locally and use it to monitor the Microsoft telemetry, and block it. Much the way an anti virus program works. Your local AI should easily be able to keep your system clean, and you have regained control of your computer.
There are plenty of videos describing the process of getting an AI up and running locally, and it will be your AI, not Microsoft´s AI
I do have a 100% guarantee method that will stop telemetry on ANY WINDOWS/APPLE system.
UNPLUG THE INTERNET.
Has this been checked? nothing to keep MS from hardcoding ip4/ip6 addresses as fallbacks and even to ignore host file entries that reference their special domains. It's fairly obvious on both fronts IMHO. So and external, non ms, monitoring of outgoing traffic is needed to verify those special domains are not being accessed. Using windows own tools to check is just begging to be fooled. Using ping within the command prompt is likely a waste of time.
my custom iso doesn't have any telemetry 😂 tried all the domain names and it doesn't find any hosts
can you do a bit on new malwayebtes has vpn and and brower gard and the rest
how to do this for updates
Little Snitch for Windows........still unfortunately not yet.
Wouldn't it be better to block these at your router? Microsoft won't be able to work around that. You also need to block any numeric IPs.
but this solution expires in 7 days . that means it only works for one week
Use script to update, takes less than a minute
@@Britec09 but you have to keep track of it an remember it I'm not taking about the steps here. but other than this inconvenience its a good method
Just don't have anything to do with Microsoft - Apple is Unix at heart, or just install Linux. Mint is a great place to start.
doesnt work w me, all mircosoft come as before
Hosts file has readonly attribute, you didn't tell people to turn that off and back on after editing it.
why not follow the instructions in the video rather than try to edit the file in its location?
@@cplcabs You still have to set it to read only after editing it.
I've had windows just ignore the host file. It's true it was a few years back.
I talked to Bill Gates to rewrite the host file with default values on every reboot of Windows
Thanks
How to block all truckers and data harvesters ? SIMPLE : Use other operation sistems : Linux , Ubuntu , etc and web browsers like Brave and Tor , add blockers , and dont allow updates just do it manual from safe official sources .
Kamala had the questions ahead of time. You can bet on that.