Thanks, Peacekeeper. I will try that. I have Windows Vista. The directions said I need to delete that file and download the HOSTS file that corresponds with my Windows and save it to the C:\Windows\Systems32\Drivers\etc folder. I hope I get this right.
Update: Tried it. Won't let me save the file, says "You don't have permission to save in this location. Contact the administrator to obtain permission." Its my computer, therefore, it makes me the Admin. This is stopping me from finishing. Please help. I very much appreciate all the help.
Just open the file in notepad and edit it to remove what is not in the 1 you are supposed to save. Usually it has no addresses other than 127.0.0.1 the # lines are not read by windows
# Copyright (c) 1993-1999 Microsoft Corp.
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
# For example:
# 188.8.131.52 rhino.acme.com # source server
# 184.108.40.206 x.acme.com # x client host
You have to turn off access protection first in SecurityCenter.
Double-click the taskbar icon to open SecurityCenter
Click Navigation (top right)
Click General Settings and Alerts
Click Access Protection
Uncheck it and click Apply.
You should have access now and don't forget to re-enable it.
Ok, I tried what both of you said to do. I deleted the file like I was supposed to but I still cannot save the new file in the folder like I was told to. It asks me if I would like to save in the Tina (my name) instead? Please help. This is 1 of the last remaining steps I need to do from removing and fixing my laptop like BleepingComputer says in their instructions. Stupid antivirus action malware!
Thanks again in advance for any help.
Second post here http://www.bleepingcomputer.com/forums/topic354181.html says do not do any banking on this PC. There is a set of removal instructions. Not common here as you only post here re this beastie.
If you suspect you're infected and have trouble finding what is causing the infection, I'd suggest giving this handy tool a try.
"McAfee GetSusp is intended for users who suspect undetected malware on their system. By using a combination of clever heuristics and querying McAfee's online database of known clean files to gather suspicious files, GetSusp eliminates the user's need for deep technical knowledge of computer systems to isolate undetected malware. McAfee GetSusp is recommended as a tool of first choice when analyzing a suspect machine."
Get it from here:
Once GetSusp identifies and collects the suspect files, post the logs here and we community members can help isolate the malware on your machine.