New
#1
Bluekai Hijack
Anyone heard of the bluekai.com hijack? Seems like it a spyware company that tracks your browser habbits or something.
I was on Win8 x64 and restarted. After restart a browser opened and went to this url:
Admuncher blocked it. Even with Admuncher disabled, nothing loaded. And somehow this hijack/spyware/exploit is deleting a exe from a program called Realtime Cookie Cleaner. How is that even possible?
So I boot to Win 7 x64(multiboot). Same behavior. WTF? That url opens on startup. RTCC.exe gets deleted when I try to run it. (I have copies of it).
And the thing is, nothing detects this malware. Avast, Malwarebytes, Super Anti Spyware. MSE, WinPatrol, Malwarebytes Anti Rootkit, online virus scans ect.
Went to and you can "Opt Out". That didn't work.
I have googled this to death. A few fake sites that try to get you to download stuff like spyhunter ect. I have see a few that have had something similiar. Still have no solution.
So I go try my laptop since that should be clean. Nope. Same crap! I don't know how this bluekai is making my browser open on startup and deleting my cookie cleaner. They have my IP or something.
I booted to a partion that has a most clean Win7 install. Have not got it there yet. The windows firewall was on. Maybe that helped.
Oh and I restored an image of Win7 from Feb 27. Booted with the net disconnected, all good. Turn on the net and browser opens on boot. Coookie cleaner deleted. Restore image again. Boot with no net. Turn on firewall. Make 3 entries for bluekai. Do all windows updtates So far no browser on start. Cookie cleaner still gets deleted.
Any ideas?
Last edited by Brink; 23 Mar 2013 at 20:53. Reason: malicous link removed