Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Help in removing searchnet.blinkxcore.com
#1
I have been receiving this message from Malwarebytes that this is being blocked. Considering it is a outgoing I would like to remove the source. Please help

Actual message is

"Protection, Malicious Website Protection, IP, 66.45.56.109, searchnet.blinkxcore.com, 58135, Outbound, C:\Program Files (x86)\Internet Explorer\iexplore.exe,"

Can you forward to Brian and suggest a video as there seems to be quite a need by Googling the problem.

#2
I will do a video when I get a sample, if you need help continue on.

Please complete all steps listed here and Make sure you PASTE all logs.



Important: please create a restore point before we begin 


Step  1



§  Please download RogueKiller.exe and save to the desktop.

§  Close all windows and browsers

§  Right-click the program and select 'Run as Administrator'

§  Press the scan button.

§  A report opens on the desktop named - RKreport.txt

§  Please copy and past the results in your next reply.

 

Step 2



[Image: antirootkit.png] Malwarebytes Anti-Rootkit (MBAR)




  • Please download Malwarebytes Anti-Rootkit and save the file to your desktop.

  • Double-click MBAR.exe to run the installer.

  • Select a convenient location to extract the contents and click OK.Navigate to the location you selected.

  • Double-click MBAR.exe to run the programme.

  • Follow the prompts to update the programme and scan your computer.

  • Upon completion, click Cleanup*and reboot your computer.

  • After the reboot, rerun the programme to verify no threats remain. If threats are still detected, click the Cleanup button once more.

  • Upon completion, two logs (mbar-log.txt and system-log.txt) will be created.*Copy the contents of both logs and paste in your next reply.

  • Note: Both logs can be found in the MBAR folder.



Step 3




Please download [Image: adwcleane.png] [b]AdwCleaner (by Xplode) and save it to your Desktop

  • Right-click on AdwCleaner.exe and Run as administrator
  • Click Scan. (AdwCleaner will now scan for Adware.)

  • Once scan finishes, click Clean, now follow the on screen prompts.

  • Your computer should now reboot.

  • A log file will automatically open. Please Copy and Paste when you replay in your next post.


Note: The log can also be found in here: C:\AdwCleaner\
<left><form action="https://www.paypal.com/cgi-bin/webscr" method="post">If you are satisfied with my help, consider a donation. Thank you so much for your continued support! 
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="Y4ZDLXGFS4F8Q">
<input type="image" src="https://www.paypalobjects.com/en_US/GB/i/btn/btn_donateCC_LG.gif" border="0" name="submit" alt="PayPal — The safer, easier way to pay online.">
<img alt="" border="0" src="https://www.paypalobjects.com/en_GB/i/scr/pixel.gif" width="0" height="0">
</form>

   </div></left> 

#3

.txt   mbar-log-2014-09-29 (22-26-07).txt (Size: 1.99 KB / Downloads: 4)

Thank You for your response.  Attached please find copies of my logs that you requested. .  Also before I received your response I open up Facebook and seen your post to use Viper malware remover.  I did run that prior to receiving your response and tried to include that log but it was too large to send.  I am not sure if any of them fixed the problem yet as it is late here in the states (Midnight) and I will double check to see if I still have issues in the AM..  

I have been a follower for many years and date back to your old website and your "Portable XP on a Flash Drive videos, and continue to enjoy all you do for the PC community 

Oz


Attached Files
.txt   AdwCleaner[R0].txt (Size: 9.5 KB / Downloads: 6)
.txt   AdwCleaner[S0].txt (Size: 9.75 KB / Downloads: 2)
.txt   system-log.txt (Size: 10.47 KB / Downloads: 2)
.txt   RKreport_SCN_09292014_222122.txt (Size: 3.02 KB / Downloads: 4)

#4
Step 1

[Image: malwarebytes-icon.png] Scan with Malwarebytes Anti-Malware
 
 Please download
Malwarebytes Anti-Malware and save it to your desktop.


·         Please Install the Malwarebytes and select update.

·         Next, click the Settings, on the the left panel choose Detections & protection and Tick Scan for Rootkits.

·         Then Click the Scan tab, on bottom right click Main Menu then choose Threat Scan make sure radio button is selected on Threat and click Scan Now.

·         Click the Apply Actions button to remove threats if any. You will now be prompted to reboot. Click Yes.

·         After the reboot, click the History tab.

·         Click Application Logs and double-click the Scan Log.

·         At the bottom click Export and choose Text file.

Save the file to your desktop and post log file contents in your next reply.


Step 2


[Image: hitmanpro.png]HitmanPro


  • Please download HitmanPro.
  • Launch the program by double clicking on the icon. (Windows Vista/7 users right click on the HitmanPro icon and select run as administrator).
  • Click on the next button. You must agree with the terms of EULA.
  • Check the box beside "No, I only want to perform a one-time scan to check this computer".
  • Click on the next button.
  • The program will start to scan the computer. The scan will typically take no more than 2-3 minutes.
  • When the scan is done click on drop-down menu of the found entries (if any) and choose - Apply to all => Ignore <= IMPORTANT!!!
  • Click on the next button.
  • Click on the "Export scan results to XML file".
  • Save that file to your desktop and post in your next reply.

Step 3


Please download [Image: Farbar_Recovery_Scan_Tool.png]Farbar Recovery Scan Tool from Here and save it to your desktop.

Please Note: You need to run the right version 32bit or 64bit. please choose right version to download...not sure which version? download both of them and run them. Only the right version will run on your computer system. 

 
·         Right click and run as administrator. When the tool opens click Yes to disclaimer.

·         Press Scan button.

·         A log file will be created, called (FRST.txt) it will be where the tool was run from.

·         Please copy and paste log in this post.

·         It also makes also another log on the first time is run called (Addition.txt). Please paste that into your next reply.
<left><form action="https://www.paypal.com/cgi-bin/webscr" method="post">If you are satisfied with my help, consider a donation. Thank you so much for your continued support! 
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="Y4ZDLXGFS4F8Q">
<input type="image" src="https://www.paypalobjects.com/en_US/GB/i/btn/btn_donateCC_LG.gif" border="0" name="submit" alt="PayPal — The safer, easier way to pay online.">
<img alt="" border="0" src="https://www.paypalobjects.com/en_GB/i/scr/pixel.gif" width="0" height="0">
</form>

   </div></left> 

#5
Thank You and Thank You again. I an not quite which scan did it but You got rid of that persistent searchnet.blinkxcore.com. I don't know what us junior members would do without you.

Oz

#6
So system is clean and running fine? If so I will call it solved and close post.
<left><form action="https://www.paypal.com/cgi-bin/webscr" method="post">If you are satisfied with my help, consider a donation. Thank you so much for your continued support! 
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="Y4ZDLXGFS4F8Q">
<input type="image" src="https://www.paypalobjects.com/en_US/GB/i/btn/btn_donateCC_LG.gif" border="0" name="submit" alt="PayPal — The safer, easier way to pay online.">
<img alt="" border="0" src="https://www.paypalobjects.com/en_GB/i/scr/pixel.gif" width="0" height="0">
</form>

   </div></left> 

#7
Yes seems to be working fine now. Thanks again

#8
Solved - Post Closed
<left><form action="https://www.paypal.com/cgi-bin/webscr" method="post">If you are satisfied with my help, consider a donation. Thank you so much for your continued support! 
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="Y4ZDLXGFS4F8Q">
<input type="image" src="https://www.paypalobjects.com/en_US/GB/i/btn/btn_donateCC_LG.gif" border="0" name="submit" alt="PayPal — The safer, easier way to pay online.">
<img alt="" border="0" src="https://www.paypalobjects.com/en_GB/i/scr/pixel.gif" width="0" height="0">
</form>

   </div></left> 



Forum Jump:


Users browsing this thread:
1 Guest(s)

Powered By MyBB, © 2002-2024 Melroy van den Berg.