Shot at 2008-01-10
This is a pic of my host file at work, as you can see the packets of msn, tomshardware, are showing except those packets don't even reach my computer isp. Sure I'd admit that browsing is not flashy with logo's and such but in one way I say hell with that crap. those intellitex are such a pain in the butt its not funny, but with a good built host file you will annihilate that crap from ever reaching your isp. You know that intellitex was created by tracking cookies and after the data was analyzed advertisers discovered how people moved their through web page. Now when you move your mouse your surely going to move your mouse carefully to avoid the intellitex. Its this kind of advertising that is being forced upon us and its ourr sharing of information that will put an end to this once and for all.
So users get rid of all the software for spyware and start using a host file I will gaurintee that you will never use anything other.

Thanks to MVP, and Tweakxp for sharing this information I remember long time ago using host files in dos and its been a few months using a host now. With wireshark/namp/host file the difference between tcp connects is absolutely increadable compared to 6 months ago. Basically, I personally discovered most of these INTERNET spy ware/mel/viruses are spread through packets, we can capture these packet and verify the packets to be among the safe list, this way we have the information needed to redirect the ones to a reporting service for investigation, more importantly you also have information about that user and lastly you have the information in the packet to quickly find the file the packet information is being called on by that tcp. A WIN SITUATION
My intention bring this information upfront with users is that there is an alternative to just using a application like Norton,or whatever to protect their systems.
If your really concerned with protection, The professionals way is the only way wireshark/nmap/hostfile try this test on your own.
get wire shark run scan, look for TCP request, if there are any TCP request that cannot be explained you absolutely know somethings up. Now is the time to prepare your system, clean up your cache,precache,temps, use MVP host or get hostman and update the host by choosing an option (choose the options to overwrite host).
Reboot now try wireshark, if that TCP is still there I'd be surprised, that TCP you could not explain Nmap will explain the source and destination, then destination to source once they are done contact your ISP with your info fax the connection and you have just annihilated a computer, you know what ip address to block in your hostfile (begone)