New Colwebsearch variant. VERY BAD NEWS.

  • Thread starter Thread starter Frank Wallace
  • Start date Start date
F

Frank Wallace

Apparently there is a new Coolwebsearch variant which none of the top
Spyware Remover progs, including CSShredder, can remove. Does anybody know
how I can DELIBERATELY infect one of my spare machines with this latest
nasty so I can have a go at getting rid of it. Some people may think me
insane but sometimes I enjoy a challenge like this. I will post my results
if I am successful.
If not, I will format my spare machine.

Thanks,

Frank.
 
Frank said:
Apparently there is a new Coolwebsearch variant which none of the top
Spyware Remover progs, including CSShredder, can remove. Does anybody know
how I can DELIBERATELY infect one of my spare machines with this latest
nasty so I can have a go at getting rid of it. Some people may think me
insane but sometimes I enjoy a challenge like this. I will post my results
if I am successful.
If not, I will format my spare machine.

Thanks,

Frank.
Click to expand...

You can try the usual suspects, and see if you get hit. Porn sites and
p2p file sharing. Or, do a google on it. Maybe some post in a security
forum will help you find your way.
 
Apparently there is a new Coolwebsearch variant which none of the top
Spyware Remover progs, including CSShredder, can remove.
Click to expand...

Cite your source of "apparently" ... it would be useful
 
I wish I could cite an 'official' source of "apparently".

This is the story. I got an e-mail from a mate of mine asking me how to get
rid of Coolwebsearch manually because he has tried everything else that he
knows. I have asked him to send me a Hijack-This Log but he has not sent it
yet. However these are the progs which could NOT remove it. They all are
completely updated by the way. Pest Patrol, Ad-Aware SE, Spy Sweeper 3.2,
Spybot S&D, Giant Spyware Remover, CWS miniremoval & CWShredder.

I will keep looking for the new variant and post my results.

Frank.
 
MINOR UPDATE.

I have semi-sorted my mate out by getting him to install the Firefox browser
and use that instead of IE. But he seems to be incapable of downloading
hijack-this and sending me a log file. I will have to drive over there and
do if for him-sigh!!

Frank.
 
I think that was the one my kids got two weeks ago.

AdAware 6.181 told me that the IE6 homepage had been hijacked.
It was able to reset it, but restarting IE6 caused the about:blank page to
be shown as the homepage.

Spybot S&D did not help, but removed some other problems.

An installation of Spy Sweeper 3.0.0 (Build 129) Using Spyware Definitions
365 solved the problem.
 
Frank Wallace said:
Apparently there is a new Coolwebsearch variant which none of the top
Spyware Remover progs, including CSShredder, can remove. Does anybody know
how I can DELIBERATELY infect one of my spare machines with this latest
nasty so I can have a go at getting rid of it. Some people may think me
insane but sometimes I enjoy a challenge like this. I will post my results
if I am successful.
If not, I will format my spare machine.

Thanks,

Frank.
Click to expand...

It was a success! Did a switch to Linux and the problem was gone for ever!
 
Frank Wallace said:
Apparently there is a new Coolwebsearch variant which none of the top
Spyware Remover progs, including CSShredder, can remove.
Click to expand...

And unfortunately, the creator of CWS Shredder (Merijn) has gone back to
school and will not be updating this very valuable program. But I believe
he still works on HiJack This.

Heather
 
Back
Top