(John for some reason I'm unable to receive your posts, I emailed you off-list about this. I found this post of yours in the archives). Interesting you mention a Wiki URL, here's where it talks about malware modifying the hosts file: http://wiki.lunarsoft.net/wiki/Blocking_Malware_and_Advertisements_Safely So it is indeed "possible", but I don't see the point of it because why would malware want to PREVENT you from getting online? Unless it's just "annoying" malware, because if you can't get online to websites, then the malware can't exploit the PC. It's just not "lucrative" for malware to have that kind of agenda, but that of course doesn't mean it doesn't exist, it just doesn't make sense.....but then again a lot of malware doesn't make sense. It's just another form of cyber-terrorism by true definition when malware simply starts erasing your HD for example, the creator of the malware gains nothing from that but the joy of terrorizing the victim. But at any rate, it's not a waste of time because of course not every kind will do this, only rare forms of malware will, so if it's read-only it's still going to be MUCH safer. It's logical to leave it read-only so it will be a safe as possible. -Clint God Bless Clint Hamilton, Owner http://www.OrpheusComputing.com http://www.ComputersCustomBuilt.com ----- Original Message ----- From: "John O'Flynn" Some people are finding HostsMan useful. http://www.abelhadigital.com/ I haven't had time to check it out, but as I understand it, it alows you to combine hosts lists from various sources (eg MVPS) and takes care of duplicates. There is some good info and a list of custom hosts files here: http://en.wikipedia.org/wiki/Hosts_file I read somewhere but can't remember where, that setting the hosts file to read only is a waste of time because some of the newer malware can simply undo this setting and tamper with it. John ========================= The list's FAQ's can be seen by sending an email to PCWorks-request@xxxxxxxxxxxxx with FAQ in the subject line. To unsubscribe, subscribe, set Digest or Vacation to on or off, go to //www.freelists.org/list/pcworks . You can also send an email to PCWorks-request@xxxxxxxxxxxxx with Unsubscribe in the subject line. Your member list settings can be found at //www.freelists.org/cgi-bin/lsg2.cgi/l=pcworks . Once logged in, you have access to numerous other email options. The list archives are located at //www.freelists.org/archives/pcworks/ . All email posted to the list will be placed there in the event anyone needs to look for previous posts. -zxdjhu-