First Virus!

[Mysterious-G]

That's what you get for looking for porn on google. xD

[Powder Keg]

I'd definitely recommend turning on system restore to at least one restore point a week. Most things you're able to fix on your own without too much trouble, but it doesn't hurt to be safe.

[VioletSkye]

Hit F8 just as windows first starts to load. That will take you to a menu where you can choose which startup method you want. You'll want to shut off your system restore points while you're removing the virus, even if you can't use em. Turn them back on after you've verified that your system is clean.

Your HOSTS file should be in C:\Windows\System32\etc

Close it's in
C:\WINDOWS\system32\drivers\etc

You will need to go into Folder Options and make sure you have Show Hidden Files and Folders checked first though (or you could just copy and paste the path into any Windows address bar lol.) MalwareBytes should correct any browser-jacking but I still recommend cleaning out the hosts file anyway.

[Indica]

That kind of virus you dont need a program to fix it. All you need to do is modify your lmhost file.

[Dangerous55]

That's what you get for looking for porn on google. xD

No no, wasn't that. I appreciate the help dudes and ladies. I managed to eradicate it with Malwarebytes.

[VioletSkye]

That kind of virus you dont need a program to fix it. All you need to do is modify your lmhost file.

Actually, it depends on the infection (btw most browser-jacking infections aren't really virus related.) Modifying the lmhost file won't do anything to remove the actual dll's and exe/s that will still be infecting your system which is why something like malwarebytes is needed. Also lmhost applies to net-bios name resolution only and not dns name resolution. Net-bios allows applications on a LAN to communicate, it has nothing to do with site redirection and in fact is NEVER used by Windows anyway unless the .sam extention is removed (otherwise it is ignored) and unless the user specifically removed the extension (which is doubtful unless you're a network Admin or something and have a reason to do so) there is little chance of that.

[Indica]

It's been a while but had a similar problem about 5 years ago. Symantec and Ad-Aware didnt detect any problems but any time I went to Google, it redirected me to some SPAM site.

I deleted lmhost or some file, rebooted PC and problem went away.

[VioletSkye]

It's been a while but had a similar problem about 5 years ago. Symantec and Ad-Aware didnt detect any problems but any time I went to Google, it redirected me to some SPAM site.

I deleted lmhost or some file, rebooted PC and problem went away.

It would have been the HOSTS file that the instructions would have had you remove. Although, complete removal isn't really needed if you just clear out all of the entries except for local host, but either way will work

[NPCMook]

I wouldn't recommend Hijackthis! unless you REALLY know what you are doing in your computer