Registry - ZoneMap\Domains

  • Thread starter The Cleaning Wonder Boy
  • Start date
T

The Cleaning Wonder Boy

Can someone explain to me the entries in this registry key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
Settings\ZoneMap\Domains

Seems there are quite a bit of advertising, spam-related, and porn
domains listed there. WHY and WHAT are these for?
 
C

Chuck

Can someone explain to me the entries in this registry key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
Settings\ZoneMap\Domains

Seems there are quite a bit of advertising, spam-related, and porn
domains listed there. WHY and WHAT are these for?
Click to expand...

Look in Internet Properties - Security. You have 4 Zones, with varying degree
of trust to each one:
Restricted (totally untrusted)
Internet (slightly trusted)
Trusted sites (somewhat trusted)
Local intranet (totally trusted)

Some information:
http://support.microsoft.com/?id=182569

Depending upon what zone a domain is in, Internet Explorer will use a varying
amount of scripting, and other code, from the web pages provided by that domain.

Products like IE-SpyAd
<https://netfiles.uiuc.edu/ehowes/www/resource.htm#IESPYAD> can populate the
Restricted zone for you, so when you (inadvertently) surf to one of those
domains (ahem), the potentially hostile code provided by the crackers and
spyware writers will be ignored. Of course, you do not get the rich multimedia
content provided by the advertisers and porn pushers, but you can't have
everything.

Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
 
T

The Cleaning Wonder Boy

Look in Internet Properties - Security. You have 4 Zones, with varying degree
of trust to each one:
Restricted (totally untrusted)
Internet (slightly trusted)
Trusted sites (somewhat trusted)
Local intranet (totally trusted)

Some information:
http://support.microsoft.com/?id=182569

Depending upon what zone a domain is in, Internet Explorer will use a varying
amount of scripting, and other code, from the web pages provided by that domain.
Click to expand...
<SNIP>

But HOW did the URLs get in there? Did MS provide them with XP install?
 
C

Chuck

<SNIP>

But HOW did the URLs get in there? Did MS provide them with XP install?
Click to expand...

Good question. Probably not M$. What security programs do you run? I use
IE-SpyAd (among others), which populates MY Restricted Zone. AntiVirus? PopUp
Blocker?

Any security program MIGHT slip those in there, as it's good security to block
all that crap. You'd hope that they would tell you though.

Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Domains in the Registry 2
139mm.com 3
False positive? searchsquire in Zonemap\domains key * 4 3
Suspicious Registry Entries 7
Internet Domains 1
removal of @surf.mar@ 5
domain folder in hkey_current_user 1
false positives 1

Top