This attack now seems to be spreading in geometric progression as people are customizing the .js file to make their own cookie stealing scripts. So instead of editing 'hosts' by hand the better solution is to block the <iframe> tag.
follow the instructions given in
Use the settings given in the attached screenshot or simply add orkut.co.in and orkut.com to the white list
for chrome use 'personalized web options' extension and make sure that the standard adblock rule is checked.