I've heard that there's a certain file on everybody's computer that has.. well.. I dunno, lemme try to explain.

www.google.com --- IP.ADD.RE.SS

The file makes it so when you type www.google.com into your bar, it takes you to the IP of Google. But I've heard you can edit this file, and that many hijacking spyware do. So, if you go to your Google, it will take you to some random "Buy This Spyware Protection Now!" site.

So my question is, what is this file, and where is it found?

Any help would be appreciated:D

I've heard that there's a certain file on everybody's computer that has.. well.. I dunno, lemme try to explain.

www.google.com --- IP.ADD.RE.SS

The file makes it so when you type www.google.com into your bar, it takes you to the IP of Google. But I've heard you can edit this file, and that many hijacking spyware do. So, if you go to your Google, it will take you to some random "Buy This Spyware Protection Now!" site.

So my question is, what is this file, and where is it found?

Any help would be appreciated:D

To get the IP address of a domain name, your browser sends a request to a DNS server which replies with the IP address. But before going all the way to an external domain name server, your computer looks the domain name up in its own hosts file.

The hosts file is a small text file which appears on both windows and *nix.

On windows, it is located here:

C:\WINDOWS\system*2\drivers\etc\

OR

C:\WINDOWS\

And is called hosts without an extension. Open it with a text editor and you'll probably see one line:

*27.0.0.* localhost

Each line consists of an IP address on the left and the domain name on the right to 'map' it to. The default line shown above maps *27.0.0.* (loopback) to localhost.

If there are any other lines than default, you probably have a malware infection. Your computer routes any requests for the domain name on the right to the IP address on the left, so a computer can be hijacked and all requests for a site like www.paypal.com routed instead to a fake phishing site, while the location bar still shows paypal's legitimate address.

There are other uses for the hosts file, but be suspicious if you see anything.

What if I wanted to edit it? Would this be the correct syntax?


65.256.*2.54 madeupsite.com

Or do I have to put HTTP and all that jazz?

What if I wanted to edit it? Would this be the correct syntax?


65.256.*2.54 madeupsite.com

Or do I have to put HTTP and all that jazz?

Just exactly as you wrote - no http:// prefix.

Thank you very much:D

hi i'm new to this. i wanted to ask a question about hacking into a www.web.de email account. but i cant figure out how to post my question so am just replying to your message in the hope you can help me please?
cheers,
tony

hi i'm new to this. i wanted to ask a question about hacking into a www.web.de email account. but i cant figure out how to post my question so am just replying to your message in the hope you can help me please?
cheers,
tony

You didn't say who your message was to.

If you are talking to me,

what makes you think I know or care about hacking into a web.de account?

tbib, if I knew how, I would, I truly would, but the fact is the 5-0 are gonna look for the guy who hacked it, which would be me, and would arrest me, not you. I don't feel like taking the fine and jail time for a guy I don't know.