> It's a simple method to bypass malicious host file modification. Probably
> in response to malware like MyDoom, which specifically altered the hosts
> file to keep clients from accessing AV sites ( go.microsoft.com was also
> specifically included...
> It's a simple method to bypass malicious host file modification. Probably
> in response to malware like MyDoom, which specifically altered the hosts
> file to keep clients from accessing AV sites ( go.microsoft.com was also
> specifically included...
[ more ]