This is an annoyance. I've encountered issues with NOD32 flagging the hosts file as the following:
Please update your application. There is nothing malicious included in the hosts file. I have several systems, including other relatives systems, setup to download and update hosts file via Spybot Search & Destroy and the MVPS Hosts file on each schedule system restart, as well change all address', excluding the loopback address, to 0.0.0.0 to minimize the hosts file size and eliminate the cpu (100%) usage.
The main reason for setting address' within the hosts file to 0.0.0.0, and not going into explicit detail, is to minimize the file space from nearly over 5-10mb to 1mb. If thousands of address' were pointing to the loopback address of 127.0.0.1 the system will check the address on the local machine and will eventually give up, whereas 0.0.0.0 it will explicitly block the site with no checks.