Stop Windows Spying with hosts file
ฝัง
- เผยแพร่เมื่อ 15 ก.ย. 2023
- Windows 11 has a lot of telemetry and spying and connects to 3rd party data collection sites, in this video we will stop windows spying by adding a few entries to the hosts file and as a bonus get a fully blank clean browser tab! Replace iCloud/OneDrive with encrypted cloud storage with Internxt (sponsor): internxt.com/lifetime?...
Tools to stop Windows spying: • Stop Windows Spying
Windows 11 vs XP, has windows become spyware? • Has Windows become Spy...
Domains added to hosts file in this video:
127.0.0.1 localhost
::1 localhost
127.0.0.1 data.microsoft.com
127.0.0.1 msftconnecttest.com
127.0.0.1 azureedge.net
127.0.0.1 activity.windows.com
127.0.0.1 bingapis.com
127.0.0.1 msedge.net
127.0.0.1 assets.msn.com
127.0.0.1 scorecardresearch.com
127.0.0.1 edge.microsoft.com
127.0.0.1 data.msn.com
Buy the best antivirus: thepcsecuritychannel.com/best...
Join the discussion on Discord: discord.tpsc.tech/
Get your business endpoints tested by us: tpsc.tech/
Contact us for business: thepcsecuritychannel.com/contact - วิทยาศาสตร์และเทคโนโลยี
Brought back so many memories with that notepad intro. You should do a video entirely like that for April Fools, it would be quite funny.
But in 360p, 4/3 and windows xp
notepad tutorials are among the top quality content tutorials
You gotta also have Unregistered HyperCam 2
Do not forget classic Windows Movie Maker blue background with comic sans font.
How to I get rid of that damn Telemetry crap.
Just a quick reminder for anybody who notices addresses other than the default in hosts file, you might find some addresses of Adobe or some other companies, where most cracked software rely on the same way to block companies from blocking you from accessing their software.
My host file is fairly gigantic, but it's not cracked software adding to it, it's spybot search&destroy, immunizing me from a bunch of known malicious addresses.
@@OnlyKaerius That's actually a nice way to prevent some malicious addresses, but how would it prevent new or other malicious addresses that can simply change its address, got any ideas?
@@Krazy0Not really, you can't pre-emptively exclude bad sites before they exist, you'd basically have to disable the internet, or go to a whitelist-only solution, which would be very restrictive. So just complement with antivirus.
@@OnlyKaerius I remember there was a site that discloses the latest reported harmful sites, we might be able to have a simple script that scraps all the reported sites and then put it into that file, which in theory could make it work better, but I actually think having a local VPN-like program that blocks access to sites included in that list would be much better in terms of usability, I wouldn't want to have to scrap that site when I can simply have a script that prevents access to them in the first place rather than some file that I've to follow its protocol to setup the sites.
So, according to your comment, if I block a specific host for Adobe (for example), should I be able to block license verifications and use any software without paying them? That sounds too easy XD. However, in 2017 and before, we only needed to change a few characters of the trial license key in a local file to use their programs for free. So, I don't know; this looks like a big mistake from Adobe ^^'
Thank You so much for being out there and teaching
the average PC users to protect themselves!
You are amazing!!
This channel is clown world and they're giving you snake oil.
does it only apply to people who use _Edge_ as a browser? I haven't done this host.file thingy and my browsers don't annoy with with these 'notifications' or clutter
This is good but manually keeping the hosts file up to date is tricky. If you really want to block efficiently get a Raspberry Pie and install pie-hole. You can download lists of millions of domains that track or for some reason you might want to block. Out of the box, this blocked about 25% of my network traffic.
The really annoying thing for me is that if that 25% is typical then roughly 25% of the worlds cost for internet traffic is being wasted on marketing and tracking that most of us don't need or want. That's our money they're spending and there's no law to regulate it...
I hadn't looked at it that way but I couldn't agree more.
Ah yes, get th government involved. Nothing bad will happen after that!
@@RezaQin lmaooo you heard about the FCC supposedly getting involved in regulating ISPs right 😭
Sometimes I go down a doom hole about how much completely needless trash like that is contributing to global warming and the depletion of finite materials and I have to go stare at a wall for a few hours. 8|
@@RezaQin lol when I talk about law I don't mean government. In the UK at least, law is a victim of government.
Imagine one of Microsoft Employee (those who closely work with Windows) watches this video, and on next morning with a update whitelist these tracking sites (even if listed in hosts) file...
Nah, they are more likely to use this tweak and thumbs up the video. That edge tab is everyone's dream.
@@pcsecuritychannelAgree.
@@pcsecuritychannel facts
not even microsoft employees want to be spyed on...
@@pcsecuritychannel😂😂
THAT was the most amazing instruction ever. I'm telling EVERYBODY how to do that and where I learned it. Thank you a million plus one Leo.
Leo is exactly as tech knowledgeable as the "tracer T" kid.
Brilliant. I've just upgraded from Windows7 to 11 on a new laptop, using a local account. I'll add to the hosts file today. And thank you for including the text with the description!
Thank you very much for this!! I literally just finished a DNS section of a Udemy lecture that focused on the hosts file. The TH-cam algorithm blessed me with this video. Subbed, much appreciated!
Except windows can and will ignore the hosts file when MS feels like it would negatively impact """security""".......
/EDIT And just as an FYI to anyone, "cloud" and "lifetime plan" in the same offer always going to end badly...... (we seen several examples of this already, cloud isnt free and you cant cover recurring expenses with a one time purchase)
you can also block those sites in your router, too.
@@DFX2KX Only if you have something that preferably can load lists from url, besides this is just a wack-a-mole game which simply doesnt worth it. If you can just ditch windows and avoid apple at all costs (they do the same thing)....
@@DFX2KXYou're router block list would run out of entries and your router would eventually slow up your network and increase it's workload.
@@DFX2KX If blocking that list of a dozen sites was all it took to block "call home" then IT pros wouldn't have been fighting this shit for 7 years now.
@@SpaceCadet4Jesusso wrong
I highly appreciate that the list is right at the beginning of the video AND in the description, instead of scrubbing around to find such list.
That was nice, yes, but it doesn't change that this "list" is useless as tits on a nun.
I'm alright with that hosts thing, but at least you're making us aware so we're appreciative. Keep up the good uploads! :)
Cool Thanks for the addresses! You even had them in text in your description, making it easier to cut and paste!
I actually did this for ads too. So most ads just come broken when I go to the web if not I try look at the source code and find their site and add it.
They must have updated things. It no longer works.
It still works. Make sure that file isn't a txt file. If you want to go over it again here's how.
1. Save the text that is in this video's description
2. SEARCH notepad in the windows search bar so you can right-click and run as administrator.
3. Go to file, then open, then search file name "hosts" and be sure to change the file type to "all files" so you can find it.
4. Open the hosts file
5. Copy and paste the text as he does in the video
6. Open Microsoft edge to check results
If the webpage is not showing up blank, you need to go into the settings of edge by clicking the three horizontal dots in the top right. Then go to settings, privacy search and services, clear browsing data from all time ONLY IF you don't use Edge as the browser to access websites you have profiles saved in. If you do, you will be signed out of them on Edge and have to sign in again.
If you are struggling to find it because of a different layout you have applied, use this link in your URL bar. ---> edge://settings/clearBrowserData
This is very well done, especially for people who aren't terribly computer savvy. Great job, thank you for making this, it's the kind of tutorial I will be sharing a lot in the future.
Very well done for a "fix" that doesn't do jack shit.
@@macethorns1168 It doesn't work for you?
absolutely rare rewind on the advertisement. well done internxt and TPCSC
Already knew right where this file was but did not think of this. Brilliant
Powertoys has a Host file editor in it. If you want things to be blocked, make sure the switch for each line you want to be enabled is switched to on.
This is a great tip. Another great tip is Edge's most useful feature. The ability to download a different browser. 🤷♂
You can download a different browser without a browser too ;)
The timing of this is amazing, I was just playing around and looking at the host file lol
Great! Keep them coming Leo. Much appreciated.
Found your channel and really like your content. With this slight tweaks in the hosts file would this affect also the "news and interest" widget integrated in the windows taskbar?
Great addition for more privacy. I also use Spybot Anti-Beacon that has some different features.
Hey, thank you very much...
And I am going to spread this with all of my friends and PC users.
❤❤❤❤
the intro had me hyped because the notepad videos were always the best and in detail
The only point i miss on these tutorials is that the machine still using compute resources to try this requests even if its going to timeout on loopback. Its really anoying especially if you have a computer with limited resources.
Agreed
This could be better: en.wikipedia.org/wiki/Black_hole_(networking)
That unfortunately is going to happen. If it's program to upload data to third-parties, it will, unless you have the source code to remove the functionality.
Maybe use something like Windows 10 LTSC 2019 on a computer with "limited resources".
It's fascinating to me that you know words like 'timeout" and "loopback" and believe that it's possible to work around M$ calling home with a dozen hosts file entries.
I recently stumbled upon the Windows "news feed" when I accidentally hit Win + W. The amount and type of preloaded content in there is horrendous! But this trick took care of that too. No more BS content that I didn't ask for. Thanks!
Nicely done! Thanks. I also use Pi Hole to block a huge number of add sites for my entire house (running on Raspberry Pi).
FINALLY!! Something on YT worth watching!
Follow up. I just tried this and Notepad (as admin) will not save this file as a 'file', it will only save it as a .txt
after saving with the .txt go to rename and just remove .txt. will give warning but click ok
Great! Thanks.
single handily one of the best video you probably ever posted on this channel, hopefully microsoft wont hide that folder or block access to it in a future update
They haven't the last 25 years. If they might bypass hosts of their choice in future, they will completely give up trust of their Enterprise customers.
Single handedly one of the most useless and worthless videos on TH-cam you mean.
Dude hell yes I’ve been watching weird network activity from these domains and then I see this video. Thanks a lot !
This is great. Many thanks for this !
Thank you! This is a great hack to get rid of much of the garbage and tracking that have gotten me to mostly replace Windows with Linux for good after being the Kernel Dev lead on Windows 95 and leading other work at Microsoft so many years ago. I still have a couple Windows machines running, and this has worked great! Liked AND subscribed.
You can use /etc/hosts for much the same purpose.
@@lindenreaper8683 That might be better ... I remembered that /etc/hosts can't take wildcards.
@@lindenreaper8683 I bailed from Windows for personal use after Win95, although I have a virtual machine for the tiny bit of software that I couldn't get Linux to run.
I call BS.
@@atlantic_love What is "BS"?
Using the hosts file?
Switching to Linux?
This can be taken to the next level by checking your "netstat" in CMD and blocking all those pesky outgoing connections you don't recognize and don't want.
And at that point you will find out just how fucking useless this videos recommendations were.
An oldie but a goodie.
Can be used to block ads an much more.
Thanks for reviving this old true and tested method.
daamn. this showed up on homepage and started playing, i saw the notepad intro and got in for nostalgia, stayed for information
Best part is that if your hosts file gets too good then windows defender thinks it's a virus and then you need to add exception. Also don't remember to make a backup because it has happened to me that windows update thought it knew better than me what should be in hosts file.
well, I just tried and it doesn't work with Edge, even after clearing the cache 😣
Very well done, thank you. You now have another subscriber.
Thank you! I anticipated this video! I actually also use the hosts file to block ads!
Unless you use other ad blockers, this is highly ineffective.
I used this tactic to keep my children away from certain sites back in the day. It can work really well.
Meanwhile I used proxy sites to bypass this tactic when I was a child. It works really well.
As a child I never had access to computers, didn't go very well.
Really? Do browsers even use the host file?
@@rct999 Yes, they do. I use it on a daily basis for testing client websites at my work. Everything on your entire system that connects to the internet will use the settings you have configured in your hosts file.
@@rct999 yes? a lot of viruses use host file to block some websites
Great video. Do you have any advice on removing Cortana and disabling the creepy Viva Insights emails?
Thank you for this one! much appreciated
Thank you, very useful. Please keep making such helpful videos,
Yeah, looks pretty good. Although a little bit of adblocking and tracker stopping is of course to do in every browser. And installing Pi Hole, but that's a different story.
The host file is a legacy feature of TCP IP that was used to translate host name to IP address before the existence of DNS.
I use the loop back address in a host file as an add blocker.
Thank you for your research. I am now incorporating this into a standard business Win image to deploy.
Thanks! I put these entries on my Mac too since I use Edge for MacOS once in a while.
I really likes Edge (as web browser), but i really hates all this telemetry from Microsoft. So... Im glad u sharing all this. Thanks!
Yeah bunch of bullsh ads
Why you like that shit?
I'd be keen to see something similar for a Google Chrome browser on Windows...what can be 'blocked' without impacting functionality too much etc.
Super, super advices. Thank you x1000 times!
Done it on Windows 10 and it works... Thanks for the info👍
i think they know about this. I did it and for about 10 seconds it worked, then the background image loaded, then one by one the settings menu on the top right populated, then the stories and advertisements filled in. It was kind of cool to watch.
This is just bandaid advice. Yes it covers top level stuff like your browser, which is a good thing. Claiming it stops windows telemetry is overstating its use. You can block the IPs at the router level, just blocking the domain resolution on the computer is not enough. Also since windows 10, Defender has some addresses that it will block being saved into the hosts file, and some Defender updates that will just revert the file.
this is very true but sometimes there are whole blocks of ip's that those names resolve to so i guess this is better than nothing.
There exists no way to stop Windows telemetry unless you have W10 Enterprise, and even that's doubtful.
Well thats just incorrect. Most of it can be stopped within windows itself. Then with a combination of internal and external firewalls all the rest can be taken care of as well. @@macethorns1168
This info is gold. Thanks for share 🤜🤛
Thats a very interesting sponsor. I rarely see a non subscription service for cloud services nowadays.
If it wasn't for Windows being the best os for gaming, I would switch to Linux in a heartbeat.
I wouldn't
I'm dual booting windows rn, with mac tho...
Same here
It remains the best because certain companies are just plain lazy or specifically unsupportive of Linux.
I’ve made the jump back when there wasn’t even BattleEye support for Linux and everything on my steam library was playable and at same or better performance than Windows.
The only game not being able to run on it is currently Valorant because of its kernel level anti-cheat. But otherwise, almost all high-fidelity games are able to be played right and at even a better performance than on Windows due to less bloat on the CPU during gaming.
@@shroomer3867 Linux is better performance wise, but not when it comes to gaming.
I've been using a custom hosts file since I first learned of it, way back in like 1997. I found quite a few custom hosts files that people compiled to block porn, spam, tracking, etc, then customized those for my own purposes. Very handy information to have.
This was the way to go before AdBlock and browser's integrated blockers...
The issue is that they change their IP addresses on a regular basis, and you have new companies adding to the list all the time!
I also have a 20 years old hosts file, I keep adding lines from time to time (even have google there, but it's almost impossible to block them, that way, too many variable IPs !)
Really, do you know where I could find the host file made for anti-tracking
Idiocy. These entries aren't going to block Windows from calling home.
@@DR_1_1 but won't blocking the known numbers mitigate some of the traffic? And why hasn't automated a program that will look at current Google IPs and auto add them to fire wall block list
same. Since late 90s also.
You can probably make a script to run a hash of the hosts file upon reboot to alert you the moment it's been modified by some Windows update.
I wish I could sync my pihole adblocker list to this host file. It would relieve some of the burden of the tiny pihole.
I could then toggle domains on and off for troubleshooting and testing.
Waste of time. The host file hasn't changed since Windows 95, decades ago.
Thank for the information and bring old memories.
Great video as always
Added these to my Pi-hole thanks!
It's a good idea but it won't block everything. The security hole(s) are in the network stack portion of the Kernel. Microsoft provides certain state actors access via private encryption keys. They've already admitted to such things back in the Windows 7 days. There's no way to have a completely private Windows operating system.
They did not admit to anything like that and it's hogwash.
ok bro, enjoy. :)@@ripleyhrgiger4669
@@ripleyhrgiger4669 So, when 3-letter agencies came to Microsoft, they were told to pound sand, right? I also have a very nice bridge to sell you.
This chucklehead's windows box is going to be owned less than 5 minutes after reaching the network!@@user-sw8vb2qo8y
@@user-sw8vb2qo8y I sincerely doubt the alphabets ever had to ask anyone at MS for that access - it's native. Their OS is called Windows for multiple reasons ;)
10/10 Tutorial. Thank you for this!
Thanks for this info! I found a thousand or so dead DNS entries put in my hosts file by a freeware spy blocking program too. I hope this won't impact the performance of my local web server running on port 80!
Does it still allow my system to show me the current weather in the task bar, and to automatically adjust the time?
Edit: No, this fix also disables your weather information. If you want that feature to stay enabled, remove the "assets msn" line.
You can turn off new tab 'content' in Edge settings. It's under settings 'Start, home, and new tabs' and 'New tab page' then customize your new tab page layout and content. Content > off.
That doesn't prevent M$ from sending your data to third parties.
@@jairo8746but is there really a browser that does not do that these days? Many chromium browsers send data to third parties and advertisers
Thank you, just worked :) [Even though I never use the Edge Browser, I wanted to put this little patch onto my computer]
I sometimes use edge in windows 10 "Sandbox". After changing file as suggested, I found it stills works after creating a sandbox and using edge. Thank You...
I wpuld suggest to use a firewall solution or give pihole/adguard home a try. Windows bypasses this and modifies the host back
Didn't work.
Pasted addresses into hosts file, cleared browsing data and it still loaded a bunch of crap in a new tab for edge (not that I use edge).
Wow this is dope! Will this create an issue if I need to get windows updates for security patches?
Thanks, this encouraged me to use linux even more
Are there some other urls which we can add to stop google or any other telemetry??
Nice Video!!
So this method works for every browser, right? (Crome/FF/etc)
Or just for Microsoft EDGE ?
somehow it put a lump in my throat to see you record this on what looks like your actual work/home machine 😨 granted you are only editing the hosts file for this video, it feels strange to see a personal environment used for demonstration purposes. loving your video content and excited for both more of them and the malx project!
What we all want to know is, WHAT system files are calling out to these sites? Blocking stuff with hosts file is just preventing a problem that already exists...
I want to know what executables are making these calls. What dll files?
THIS. Is a good question. the next would be to patch those.
@@Sypaka Precisely. It's likely to be some of the insane number of started services. The amount of services they've added since Windows 7 is just bonkers. Most of them no-body uses or will ever use. Just blatant spyware and data harvesting.
That won't do any good, those system DLLs provide many other functions and there exists no way to stop them from spying while continuing to do their other jobs.
@@macethorns1168 That's complete and utter nonsense. I patch stuff all the time to remove functionality that's not needed. That would be the same argument as patching a game protection and it not being playable afterwards.
I've been coding a LONG time and if I knew what dlls to patch, I'd just debug and patch them. It's not even a big thing to do. It would have ZERO affect on their functionality unless their functionally was ONLY to do data harvesting and in that case, I'd patch the service that was using the dll to not use it at all.
Patching a http/https call is no different than if you just blocked it with an entry in the hosts file.
@@thewelder3538 yup that's reverse engineering at its best.
For Zone Alarm users: the hosts file is locked by the Firewall. Navigate to the Firewall's advance settings and uncheck a lock checkbox. After saving the hosts file check the lock back
lol zone alarm, haven't heard of that software for about 20 years!
I was wondering why I couldn't get it to save. Thanks for the post!
It's a virus itself. Everything is under the zone alarm network. Secure browser, can't delete that. Everything is managed by itself forcefully...
Tried uninstalling it but not able to delete everything.
@@barryallen1100 The hosts file is protected by OS. A Browser cannot access it (and a computer's file system in this respect) by definition. But if a hacker can get administrative/elevated privileges on a machine than he can modify the hosts file. That is why Zone Alarm (the best Firewall and Antivirus on the market) locks it.
Thanks. I knew MS does that but don't know the details, so thanks 😊
Thanks Sir ..your videos are definitely one of the best !!just a question I would really longed dying to know..can I backup my mobile data to this internxt backup stuff ?as my mobile data is full on Android and keep asking me to buy data...😢 hope to hear from u soon😊
Better than blocking using firewall rules... keeps unnecessary traffic off the network
Very helpful, quick and easy pro-tip for blocking some MS data scrapping network bandwidth.
Lovely presentation, too bro
Not just MS.
You misspelled unhelpful.
No I did not, because I didn't use said word. Clearly.@@macethorns1168
This is gold!
Why did I not think of that?
That worked perfectly. Thank you.
Is this the same on Windows 10 as well?
In Edge's new tab page, you can also switch the start page settings "Content" to "Content Off" and achieve most of this as well.
The notepad tutorial part was really funny but honestly, with nostalgia of notepad tutorials and my most favourite cybersecurity channel, I won't complain if you shift to making notepad tutorials.
Great video! Thank you!
It should be mandatory for all OS and softtware to keep an updated list of ALL the servers they connect to, with a destcription of which exact data is collected and transfered, its exact use and the people who have access to it.
This the same way we are forced to present an ID to have a personal data/internet connection, to give an email address and even name, telephone number for many registrations online!
And also options to disable the transfer of data when not necessary!
*All that in a user friendly option menu, not like these cookies popup windows that block the access to most websites today* !!!
For sure it's all covered somewhere in hundreds of pages of Terms of Service which nobody reads and just hits "accept".
Compiling a mass of data like you suggest would cost some bucks - and you can be sure that the money-grubbers won't pay it. Do you want to pay to use the Internets (more than you do already)? Because that's what would happen - and once you subscribe...you're tracked! Lololol! Pay to have your personal info used, what a brilliant plan 😞
That would work in the days when there was competition. Price fixing is rampant, and big software companies are destroying all of the small software companies, so they can gain a monopoly.
Thank you
Thank you, very helpful.
Good stuff! This worked!
The hosts file should also be added to the exceptions in Windows Defender, otherwise it could happen that Windows Defender resets the file after the next scan.
I myself use Pi-Hole for my local network to filter domains.
If I add these URL's to the filter in my router, presumably that would accomplish the same thing. I'm able to set the filter to cover just a single machine, many machines, or the entire network. But, I'm always afraid that I will break something especially when it looks like filtering some of these URL's might be overly broad.
I wouldn't use a router, it can massively slow down your internet speed because it constantly has to check the filter whenever you visit a website and some routers are very slow at this. Just use the hosts file, it's simple, it works, and people have been doing this for decades.
@@NoClipMode Good tip. Thank you.
@@NoClipModeWow. Are routers still that inefficient?!?
The router will work as long as you don't run over a VPN
@@johnsmith1953x My exact thoughts, it's just a short lowercase string comparison. I'm sure such list needs to be very long to have any measurable slowdowns.
Super useful, thanks!
We need more vids like this please!
Can you give us a list for other browsers too?
Hosts file works across all of Windows browsers
Muito bom, obrigado por compartilhar.
Great info. thanks. I never use edge is this browser specific?
Dang, simple yet effective. Thx.
Ineffective. The IP addresses for advertisement and for Microsoft telemetry changes way too much for a simple host file block. This video assumes all IP communication obeys or even uses that old host file which hasn't changed since Windows 95. That used to be the case eons ago.
What always bugged me about some notepad tutorials is when it was a dude who had a mic and you can hear him typing xD like bro you are making this so much harder on yourself xD
Probably bad pronunciation
@@janbielecki9245 yeah thats my best guess.