I've been hijacked!

[cmccuist]

My home computer was hijacked by the coolwebsearch.com parasite. I tried the spysweeper software, but that didn't completely remove the problem.

Now whenever I boot up the internet, my home page is about:blank.

Any suggestions on how to get rid of this spyware?

[lendaddy]

go here and learn. There are a few programs you'll need to get rid of it and even then you'll likely have to post your registry info for one of the Gurus to review. It took me all day to learn about, get a guru to help, and finally eradicate the cw virus. Here is the site.

http://forums.spywareinfo.com/index.php?

[cmccuist]

Thanks, daddy. My son likes to download music. I kept telling him it was only a matter of time before something bad was going to happen. It finally jumped up and bit me on the ass.

Pop up ads and this type of spyware are ruining the internet.

[lendaddy]

The theory is that the CW virus comes from clicking on certain Popup ads though they don't know which ones. I don't recall ever doing so, but I'm sure I've hit some by accident. I don't download music, so I wouldn't say that did it, though if you're trying to get him to stop, far be it from me to take away a tool from a parent

Good luck

[cmccuist]

I suspect you're right about the virus coming from a pop up ad, but he loads that Kazaa program on the computer and after a couple of days, it's running so slow I have to uninstall that program. When i run ad-aware, i come up with 200 or so spyware files that have to be quarantined. That can't be good.

Time to break down and get him his own machine.

[bell]

i stopped using internet explorer and switched to netscapes mozilla firefox.........all my problems went bye bye
the fact that it's a free browser just sweetened the deal.

[cmccuist]

That's me wondering how i can get this free magical browser.

Is the netscape browser immune to this type of problem?

Sounds like a good deal - fixing the parasite for free!

[widebody911]

Use WinMX instead of Kazaa for d/l-ing music - it's spyware-free!

http://www.winmx.com

[RickM]

Here's the download page: http://www.mozilla.org/products/firefox/
I happily converted as well.

I used CA's (Computer Associates) Anti Virus to rid my nieces PC of CoolCrap. She either got it from Kazza or Bearshare.

[joeclarke]

I always cure such problems using a "system restore point". XP has this slick little habit of creating restore points (or you can create your own at any point). As an example, I think one gets created everytime you install one of those "critical updates" (that we all always install - right?).

I've had the same kinda hijacking happen and all the wizards on my PC board couldn't seem to come with a solution. I killed everything I could (whatever there was) with Norton Anti-virus and Adaware and then did a restore to a "restore point".

Problems all solved.

The only downside with this little trick is that you would lose any installs or saves since the restore point - but you can back-up any necessaries prior to using "restore".

Just click on "help" and search "system restore wizard". Off you go toto...

[cmccuist]

Thanks Pelicans, looks like you guys have been down this road b4. I don't mind trending away from Bill Gate's products. Especially since all virus/adware/spyware/trojan horses/worms seem to target Windows-based programs.

[lendaddy]

FWIW, there are several variants of the CW virus. Some can be removed via AV software, most cannot and require manual removal. If your lucky, you have an early one and it can be removed by running a program called cwshredder. Just google that name, dowmload and run. The guy that made the program gave up a while back as the virus was morphing too fast for him to keep up. If the program locks up, try it in safemode. Odds are it won't solve all your problems, but hey someone has to be lucky.

[Mule]

Firefox is the *****. Next best thing to Kerry coming clean about him & the governor of New Jersey.

[Neilk]

I had to reformat someone's computer after they got infected with some variant of the CWS crap. No matter what I did, it kept popping back up.

The most important thing is to have all the Windows Updates installed, otherwise you are really at risk. Check out this article .
And never ever click on Yes or No on a pop-up window, only click on the the X in the upper right hand corner.

[azasadny]

I have had good results from using the online scanner at www.spywareguide.com

[rcecale]

Craig,

Click on this link to download CW-Shredder. A program designed to do away with CoolWebSearch from your computer.

***Note*** The download will start automatically and will ask you where you want to save the file.

Randy

[Shuie]

Whenever Im stumped about something my car is doing the PelicanParts tech forums are the first place I go to for an answer or an explanation.

If you ever get hit with a bad browser hijack that you cannot get rid of with the conventional stuff try finding a technical forum for computer stuff. There are guys and gals posting on computer forums that have all of this stuff figured out already.

I usually just search for a 'removal tool xxx' where xxx is the thing I cant seem to remove. The tech forums never fail.

Once its gone do the conventional registry and spy-bot cleanup stuff. Install Mozilla and then delete the IE icon from your desktop.

[azasadny]

Sherman,
How true!!

[Mule]

Guys, this is simple. Switch from Internet Explorer to Firefox and all this crap is just a bad memory. No more hijackings, spyware, history issues etc. GONE, DONE.

[Don 944 LA]

Quote:

Originally posted by Mule
Guys, this is simple. Switch from Internet Explorer to Firefox and all this crap is just a bad memory. No more hijackings, spyware, history issues etc. GONE, DONE.

Thats what I did... much better now

I even had the ones that would open up applications..
I hatted changeing my homepage all the time and various other things...

I also use Bullguard now...