fufuchao 0 Posted September 22 Share Posted September 22 Please forgive me for using translation software. Whenever I modify the hosts file using any software, including Notepad, it will be isolated. The hosts file is very important to me. log: 2021/9/21 22:21:14; Real-time file system protection; File; C:\windows\system32\drivers\etc\hosts; Win32/Qhost Trojan; Cleared by deletion; PC\pc; An event occurred on a file modified by the application: C:\Windows\System32\notepad.exe Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 3,836 Posted September 22 Administrators Share Posted September 22 Please provide logs collected with ESET Log Collector so that I can check your exclusions. Quote Link to comment Share on other sites More sharing options...
itman 1,065 Posted September 22 Share Posted September 22 (edited) I just manually added two entries to my Win 10 hosts file using notepad. See below screen shot. I received no alerts from Eset real-time protection. So something else is going on in regards to your EIS installation. Edited September 22 by itman Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 3,836 Posted September 22 Administrators Share Posted September 22 What records are you trying to add to the hosts file? Quote Link to comment Share on other sites More sharing options...
itman 1,065 Posted September 22 Share Posted September 22 2 minutes ago, Marcos said: What records are you trying to add to the hosts file? Interesting. Does Eset check IP address/domain name added for malicious status? Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 3,836 Posted September 22 Administrators Share Posted September 22 33 minutes ago, itman said: Interesting. Does Eset check IP address/domain name added for malicious status? Not necessarily malicious but yes, the IP addresses/domains are checked. Quote Link to comment Share on other sites More sharing options...
Most Valued Members peteyt 216 Posted September 22 Most Valued Members Share Posted September 22 3 hours ago, itman said: Interesting. Does Eset check IP address/domain name added for malicious status? I do know a lot of cracks for programs will change host files, to try and block specific things from connecting, probably to prevent the program realising it is cracked or something similar. Not claiming that the OP is using cracked software. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.