Windows 10: Protecting yourself from In-Browser Miners

Discus and support Protecting yourself from In-Browser Miners in AntiVirus, Firewalls and System Security to solve the problem; I was also under the impression that 0.0.0.0 works in Windows 10 but I'm not expert on this. If I ping a blocked domain using a 127.0.0.1 hosts file I... Discussion in 'AntiVirus, Firewalls and System Security' started by Cliff S, Feb 17, 2018.

Page 2 of 5
  1. CALLENDER
    Callender Win User

    Protecting yourself from In-Browser Miners


    I was also under the impression that 0.0.0.0 works in Windows 10 but I'm not expert on this. If I ping a blocked domain using a 127.0.0.1 hosts file I still get a connection but if using 0.0.0.0 here's what I see:


    Protecting yourself from In-Browser Miners [​IMG]

    Would suggest pinging a blocked domain or running tracert command just to be sure.
     
    Callender, Feb 19, 2018
    #16
  2. WILEY COYOTE
    Wiley Coyote Win User

    Appreciate y'all trying to help keep the rest of us protected. Thanks.

    Question: Is there any reason I can't (or shouldn't) combine the two files from Cliff S AND f4tomcat?
     
    Wiley Coyote, Feb 19, 2018
    #17
  3. CALLENDER
    Callender Win User
    If you combine them you will need to remove duplicate entries. There are duplicates - I checked.

    You need to add the www entry along with the domain like this to block say facebook

    127.0.0.1 facebook.com
    127.0.0.1 www.facebook.com

    That's not classed as a duplicate entry.
     
    Callender, Feb 19, 2018
    #18
  4. F14TOMCAT
    f14tomcat Win User

    Protecting yourself from In-Browser Miners

    You can combine all that you want to. There may be duplicates, but harmless....just redundant. If you add mine, I would suggest you use the app I posted. It will keep it current. Keep in mind that any alterations to the hosts file will not take affect until the browser is restarted.
     
    f14tomcat, Feb 19, 2018
    #19
  5. WORD MAN
    Word Man Win User
    Thanks to both you, Ed, and to Cliff S! Good article, Ed. I got a little tickle of motion sickness there in the second half, however.... *Sick Is there a formatting tweak needed?
     
    Word Man, Feb 19, 2018
    #20
  6. WILEY COYOTE
    Wiley Coyote Win User
    I'd noticed the duplicates but didn't know if they mattered.

    On the GitHub app, is there anything I need to know? Self-installs? Self-maintains? Runs with StartUp?

    Remember, I know just enough to be really dangerous.
     
    Wiley Coyote, Feb 19, 2018
    #21
  7. BARMAN58
    Barman58 Win User
    I had a contract a few years ago for access control in an medical establishment, and the owner wished to control staff usage of the internet link in the Night time (and other times, but the night is always the time that things got put off whilst the staff surfed).

    I set up a remote proxy and added all the required URLs and IPs and everything worked - Trying to access a blacklisted site or basic domain was redirected and replaced with an appropriate message screen.

    Facebook would however not be stopped I kept on adding the IPs and URLs that were used to circumvent the block, until I had almost a hundred addresses - At this point I gave up and left it alone, all the redirects, did delay the page access so the users soon gave up. and I grew a healthy disdain for Facebook, although I was impressed by whoever did their setup *Wink
     
    Barman58, Feb 19, 2018
    #22
  8. F14TOMCAT
    f14tomcat Win User

    Protecting yourself from In-Browser Miners

    Manual. Just fire it up, and click check for updates.


    Protecting yourself from In-Browser Miners [​IMG]
     
    f14tomcat, Feb 19, 2018
    #23
  9. ANDRETEN
    AndreTen Win User
    Interesting reading about finding Cryptohijacking sites:

    badpackets.net | how-to-find-cryptojacking-malware

     
    AndreTen, Feb 19, 2018
    #24
  10. CLIFF S
    Cliff S New Member
    No problem Ed*Thumbs

    You're welcome Kenn*Smile

    @Barman58, You hate FB too?
    So do I:

    # Facebook
    0.0.0.0 0-act.channel.facebook.com
    0.0.0.0 0-edge-chat.facebook.com
    0.0.0.0 1-act.channel.facebook.com
    0.0.0.0 1-edge-chat.facebook.com
    0.0.0.0 2-act.channel.facebook.com
    0.0.0.0 2-edge-chat.facebook.com
    0.0.0.0 3-act.channel.facebook.com
    0.0.0.0 3-edge-chat.facebook.com
    0.0.0.0 4-act.channel.facebook.com
    0.0.0.0 4-edge-chat.facebook.com
    0.0.0.0 5-act.channel.facebook.com
    0.0.0.0 5-edge-chat.facebook.com
    0.0.0.0 6-act.channel.facebook.com
    0.0.0.0 6-edge-chat.facebook.com
    0.0.0.0 act.channel.facebook.com
    0.0.0.0 api-read.facebook.com
    0.0.0.0 api.ak.facebook.com
    0.0.0.0 api.connect.facebook.com
    0.0.0.0 api.facebook.com
    0.0.0.0 app.facebook.com
    0.0.0.0 apps.facebook.com
    0.0.0.0 ar-ar.facebook.com
    0.0.0.0 attachment.fbsbx.com
    0.0.0.0 attachments.facebook.com
    0.0.0.0 b-api.facebook.com
    0.0.0.0 b-graph.facebook.com
    0.0.0.0 b.static.ak.facebook.com
    0.0.0.0 b.static.ak.fbcdn.net
    0.0.0.0 badge.facebook.com
    0.0.0.0 beta-chat-01-05-ash3.facebook.com
    0.0.0.0 bigzipfiles.facebook.com
    0.0.0.0 blog.facebook.com
    0.0.0.0 channel-ecmp-05-ash3.facebook.com
    0.0.0.0 channel-staging-ecmp-05-ash3.facebook.com
    0.0.0.0 channel-testing-ecmp-05-ash3.facebook.com
    0.0.0.0 check4.facebook.com
    0.0.0.0 check6.facebook.com
    0.0.0.0 code.facebook.com
    0.0.0.0 connect.facebook.com
    0.0.0.0 connect.facebook.net
    0.0.0.0 d.facebook.com
    0.0.0.0 de-de.facebook.com
    0.0.0.0 developers.facebook.com
    0.0.0.0 edge-chat.facebook.com
    0.0.0.0 ent-a.xx.fbcdn.net
    0.0.0.0 ent-b.xx.fbcdn.net
    0.0.0.0 ent-c.xx.fbcdn.net
    0.0.0.0 ent-d.xx.fbcdn.net
    0.0.0.0 ent-e.xx.fbcdn.net
    0.0.0.0 es-la.facebook.com
    0.0.0.0 external.ak.fbcdn.net
    0.0.0.0 facebook.com
    0.0.0.0 facebook.de
    0.0.0.0 facebook.fr
    0.0.0.0 fb.me
    0.0.0.0 fbcdn-photos-a.akamaihd.net
    0.0.0.0 fbcdn-photos-e-a.akamaihd.net
    0.0.0.0 fbcdn-profile-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-a-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-b-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-c-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-d-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-e-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-f-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-g-a.akamaihd.net
    0.0.0.0 fbcdn-sphotos-h-a.akamaihd.net
    0.0.0.0 fbcdn-video-a-a.akamaihd.net
    0.0.0.0 fbcdn-video-b-a.akamaihd.net
    0.0.0.0 fbcdn-video-c-a.akamaihd.net
    0.0.0.0 fbcdn-video-d-a.akamaihd.net
    0.0.0.0 fbcdn-video-e-a.akamaihd.net
    0.0.0.0 fbcdn-video-f-a.akamaihd.net
    0.0.0.0 fbcdn-video-g-a.akamaihd.net
    0.0.0.0 fbcdn-video-h-a.akamaihd.net
    0.0.0.0 fbcdn-video-i-a.akamaihd.net
    0.0.0.0 fbcdn-video-j-a.akamaihd.net
    0.0.0.0 fbcdn-video-k-a.akamaihd.net
    0.0.0.0 fbcdn-video-l-a.akamaihd.net
    0.0.0.0 fbcdn-video-m-a.akamaihd.net
    0.0.0.0 fbcdn-video-n-a.akamaihd.net
    0.0.0.0 fbcdn-video-o-a.akamaihd.net
    0.0.0.0 fbcdn-video-p-a.akamaihd.net
    0.0.0.0 fbcdn-vthumb-a.akamaihd.net
    0.0.0.0 fbcdn.com
    0.0.0.0 fbcdn.net
    0.0.0.0 fbexternal-a.akamaihd.net
    0.0.0.0 fbstatic-a.akamaihd.net
    0.0.0.0 fr-fr.facebook.com
    0.0.0.0 graph.facebook.com
    0.0.0.0 hi-in.facebook.com
    0.0.0.0 inyour-slb-01-05-ash3.facebook.com
    0.0.0.0 it-it.facebook.com
    0.0.0.0 ja-jp.facebook.com
    0.0.0.0 login.facebook.com
    0.0.0.0 m.facebook.com
    0.0.0.0 messages-facebook.com
    0.0.0.0 mqtt.facebook.com
    0.0.0.0 newsroom.fb.com
    0.0.0.0 orcart.facebook.com
    0.0.0.0 origincache-ai-01-05-ash3.fbcdn.net
    0.0.0.0 origincache-starfacebook-ai-01-05-ash3.facebook.com
    0.0.0.0 photos-a.ak.fbcdn.net
    0.0.0.0 photos-b.ak.fbcdn.net
    0.0.0.0 photos-c.ak.fbcdn.net
    0.0.0.0 photos-d.ak.fbcdn.net
    0.0.0.0 photos-e.ak.fbcdn.net
    0.0.0.0 photos-f.ak.fbcdn.net
    0.0.0.0 photos-g.ak.fbcdn.net
    0.0.0.0 photos-h.ak.fbcdn.net
    0.0.0.0 profile.ak.facebook.com
    0.0.0.0 profile.ak.fbcdn.net
    0.0.0.0 pt-br.facebook.com
    0.0.0.0 s-external.ak.fbcdn.net
    0.0.0.0 s-static.ak.facebook.com
    0.0.0.0 s-static.ak.fbcdn.net
    0.0.0.0 s-static.facebook.com
    0.0.0.0 scontent-a-lax.xx.fbcdn.net
    0.0.0.0 scontent-a-sin.xx.fbcdn.net
    0.0.0.0 scontent-a.xx.fbcdn.net
    0.0.0.0 scontent-b-lax.xx.fbcdn.net
    0.0.0.0 scontent-b-sin.xx.fbcdn.net
    0.0.0.0 scontent-b.xx.fbcdn.net
    0.0.0.0 scontent-c.xx.fbcdn.net
    0.0.0.0 scontent-d.xx.fbcdn.net
    0.0.0.0 scontent-e.xx.fbcdn.net
    0.0.0.0 scontent-mxp.xx.fbcdn.net
    0.0.0.0 scontent.xx.fbcdn.net
    0.0.0.0 secure-profile.facebook.com
    0.0.0.0 secure.facebook.com
    0.0.0.0 sphotos-a.xx.fbcdn.net
    0.0.0.0 ssl.connect.facebook.com
    0.0.0.0 ssl.facebook.com
    0.0.0.0 star.c10r.facebook.com
    0.0.0.0 star.facebook.com
    0.0.0.0 static.ak.connect.facebook.com
    0.0.0.0 static.ak.facebook.com
    0.0.0.0 static.ak.fbcdn.net
    0.0.0.0 static.thefacebook.com
    0.0.0.0 staticxx.facebook.com
    0.0.0.0 touch.facebook.com
    0.0.0.0 upload.facebook.com
    0.0.0.0 video.xx.fbcdn.net
    0.0.0.0 vpn.tfbnw.net
    0.0.0.0 vthumb.ak.fbcdn.net
    0.0.0.0 vupload.facebook.com
    0.0.0.0 vupload2.vvv.facebook.com
    0.0.0.0 Web Server's Default Page
    0.0.0.0 Facebook – Anmelden oder Registrieren
    0.0.0.0 Facebook – Anmelden oder Registrieren
    0.0.0.0 Facebook – Anmelden oder Registrieren
    0.0.0.0 http://www.fbcdn.com
    0.0.0.0 Facebook – Anmelden oder Registrieren
    0.0.0.0 Web Server's Default Page
    0.0.0.0 zh-cn.facebook.com
    0.0.0.0 zh-tw.facebook.com
    # Facebook end
     
    Cliff S, Feb 20, 2018
    #25
  11. WILEY COYOTE
    Wiley Coyote Win User
    Hey @Cliff S, I modified the Properties for your Edit hosts file to use Notepad++ instead. Hope you don't mind. If it's a problem, I'll put it back.
     
    Wiley Coyote, Feb 20, 2018
    #26
  12. CLIFF S
    Cliff S New Member
    It's just a shortcut I created using New in the right click menu, you can do as you wish, I didn't use any coding magic: C:\Windows\System32\notepad.exe c:\windows\system32\drivers\etc\hosts

    I actually only uploaded the shortcut because, many people over see the step to open Notepad as an admin, and then search for hosts, they almost always go to hosts through File Explorer, and then are doomed to fail.(to save the changes)
     
    Cliff S, Feb 20, 2018
    #27
  13. WILEY COYOTE
    Wiley Coyote Win User

    Protecting yourself from In-Browser Miners

    Growing up I heard this more than once from Daddy: "Even a blind hog finds an acorn now and then". *Thumbs Anyway, thanks for the thread and your efforts.
     
    Wiley Coyote, Feb 20, 2018
    #28
  14. CLIFF S
    Cliff S New Member
    Cliff S, Mar 8, 2018
    #29
  15. WILEY COYOTE
    Wiley Coyote Win User
    As always, Thanks Cliff. I need all the help I can get, and it's appreciated.
     
    Wiley Coyote, Mar 8, 2018
    #30
Page 2 of 5
Thema:

Protecting yourself from In-Browser Miners

Loading...

  1. Protecting yourself from In-Browser Miners - Similar Threads - Protecting yourself Browser

  2. Go **** yourself Microsoft!

    in Windows 10 Software and Apps
    Go **** yourself Microsoft!: Go **** yourself Microsoft! https://answers.microsoft.com/en-us/windows/forum/all/go-yourself-microsoft/b7b90804-8716-496b-a1f2-462b46d5586a

  3. Miner virus

    in AntiVirus, Firewalls and System Security
    Miner virus: Hi, i have Miner virus that uses 100% cpu and when i open task manager it drops to 0% and how i know its at 100%, i use WIN+G and see that i have 100% on the Performance tab.I have tried some virus scanners/protection but none of them seemed to work.Are there anyone that know...

  4. Crypto Miners

    in Windows 10 Drivers and Hardware
    Crypto Miners: So, I have really wanted Discord Nitro for a while now, and I saw that a crypto miner has partnered with discord and has been sponsored by many large creators, I live in my parents house so electricity isn't a problem, but is it worth it? Like I have a 1660s and an i7 and I...

  5. Miner fikes

    in AntiVirus, Firewalls and System Security
    Miner fikes: I'm trying to install phoenix miner and it keeps getting instantly deleted and says failed to download and error downloading I know its malware because it's a mining software but I'm just trying to mine ETH. can someone plz help me I have been working on this for days now...

  6. "system" miner???

    in Windows 10 BSOD Crashes and Debugging
    "system" miner???: For the past few days I've been noticing a sudden jump in my task manager. If I happen to leave my PC for around 5 minutes, the process "System" starts to overtake my disk usage, sometimes bringing it from 5% to 99%.After I move my mouse it instantly goes back to 1%-5% Anyone...

  7. Protect yourself from Ransomware

    in Windows 10 Ask Insider
    Protect yourself from Ransomware: https://www.windowscentral.com/how-enable-controlled-folder-access-windows-10-fall-creators-update submitted by /u/wclinch [link] [comments] https://www.reddit.com/r/Windows10/comments/fc4dp3/protect_yourself_from_ransomware/

  8. Protect yourself online with these useful tips and PureVPN

    in Windows 10 News
    Protect yourself online with these useful tips and PureVPN: With Black Friday on the horizon, it won’t be too long before shoppers and bargain hunters rush to grab the best deals and discounts on their favorite items. However, while it’s a great day to slash out your money on appliances, gadgets, Christmas gifts, etc. there are also...

  9. How does a browser injected coin miner work?

    in Browsers and Email
    How does a browser injected coin miner work?: I seem to have fell prey to a website that had either intentionally or unintentionally been injected with a coin miner. I first noticed high CPU temps and thought my CPU cooler had failed. Then I found Chrome's high CPU utilization in Task Manager and then the culprit website...

  10. Create a single file to protect yourself from the latest ransomware

    in Windows 10 News
    Create a single file to protect yourself from the latest ransomware: There's no cure for the latest ransomware attack, but a researcher has discovered a way to prevent infection through the creation of a single Windows file. As reported by Bleeping Computer, there is a way to prevent infection -- not cure, but protect from -- which takes...