Is there a good way to keep spyware from ballooning the size of my log files? We are a k12 school so we log everything. Normally this is fine, but if we get a few machines with something like statblaster on them, our logs get to be enormous. I still need to log everything, so changing those settings isn't a solution.

The logs show a 403 forbidden, so they aren't getting to the site.

I thought that I remembered a trick to enter these domains in the sys:etc\hosts file and point them to the loopback address. Can that be done?

Would setting up DNS to not forward these domains help? I basically want the problem to stop functioning without hitting the proxy.

Any suggestions are welcome.