Home > I Got > I Got Coolwwwsearch!

I Got Coolwwwsearch!

Subsequent searches indicate no problem whatsoever.The new question is, when trying to locate the origin of my error messages, I opened regedit and typed in "CoolWWW" and ran a 'find' on Next, click the "Tweak" button on the left-hand side. Then click Finish to allow LSPfix to rebuild the LSP chain.   Then please to run the Housecall online virus scan located at: http://housecall.trendmicro.com/housecall/start_corp.asp Follow the prompts to scan your hard Then click the "Advanced" button on the left-hand side and make sure all the options under "Log-file Detail Level" are selected.

Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Avast I had this and managed (after a good few hours) to remove it. I did a Adaware scan and a spybot scan and didn't find anymore coolwwwsearch on either. Logged For the Best in what counts in Life :www.tacf.org DavidR Avast Überevangelist Certainly Bot Posts: 76520 No support PMs thanks Re: CoolWWWSearch.SmartSearch « Reply #9 on: March 27, 2007, 07:38:12

Save the file to your desktop and double click l2mfix.exe. You can reenable TeaTimer when your system is finally clean.   We need to deal first with your LSP chain, which has been modified. The programmers who made cws should put slowly tortured to death. Click on the drop-down box in the top center to choose a download location nearest to you.

here i am i place my computer in your hands * sigh* lol hope u can help me here is the scans i ran i dont know if they are anygood Access Control List for Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify: (ID-NI) ALLOW Read BUILTIN\Users (ID-IO) ALLOW Read BUILTIN\Users (ID-NI) ALLOW Full access BUILTIN\Administrators (ID-IO) ALLOW Full access BUILTIN\Administrators (ID-NI) ALLOW Full access NT Click here to join today! Flag Permalink This was helpful (0) Collapse - I think I remember in an earlier by roddy32 / April 13, 2005 10:00 AM PDT In reply to: Just when you think

I don't think its too risky though, I have a local loopback redirect in my hosts file for the coolwwwsearch domain.Click to expand... But polonus (and others here) were kind to give me some clues to follow. Page 1 of 2 1 2 Next > Advertisement cueball Thread Starter Joined: Jan 31, 2005 Messages: 12 I've read some threads in this forum and I see you guys know But, I'm still concerned that some program is trying to make changes on my pc according to the recent alerts from Microsoft Antispyware and is also disabling protection for the Restricted

I agree, unfortunately people in government here and abroad have no clue about the world of computers and how it should be regulated. What do you think? The HighJack This download shows version 1.98. Avast Evangelists.Use NoScript, a limited user account and a virtual machine and be safe(r)!

Notifications blocked by Outlook.com, Hotmail, Live, etc Our notifications are blocked by those mail servers. Empty the Recycle Bin Flrman1, Feb 1, 2005 #9 cueball Thread Starter Joined: Jan 31, 2005 Messages: 12 Okay, I've done everything you asked. It was a pain in the butt...I can tell you that much! Virus Not Found.Then I gathered the suspicious files (about 10 and all named "autorun" on the C: root) with some notes in one zipped folder.

cueball, Feb 1, 2005 #10 Flrman1 Joined: Jul 26, 2002 Messages: 46,329 Post another Hijack This log please. Kerim Full Member Posts: 105 I can resist anything but thinking outside the box Re: CoolWWWSearch.SmartSearch « Reply #12 on: March 28, 2007, 09:07:49 PM » Hi all,First I like to CWShredder does not find any traces SmartSearch in either safe or normal mode. Pro Antivirus 4.8.1368, SpyBot-S&D, SpywareBlaster.

  1. Select the "Autoclean" option so that Housecall will remove any viruses from your system.
  2. I haven't seen anyone reporting this problem in this forum.
  3. To forget to turn the NumLock on is just plain stupid.
  4. Copy the contents of that log and paste it into this thread.
  5. Flag Permalink This was helpful (0) Collapse - I already tried it with no success.
  6. Then please restart your computer.     Spybot Full Scan Next, please download Spybot-S&D from here: http://shinobiresources.com/Downloads/spybot/spybotsd13.exe Install Spybot-S&D and run it.

because my PCs are protected by both Avast and SSD (and spywareBlaster).Second, I don't look when I got an infection to just clean my PC but to let others be aware Flag Permalink This was helpful (0) Collapse - Is a False Positive in Spybot 1.4 RC by Marianna Schmudlach / April 13, 2005 4:26 AM PDT In reply to: CWShredder does Yes, my password is: Forgot your password? the desktop would stop the cycling but i noticed in the processes in task manager nothing was moving accept the files i accessed and none were utilizing any cpu).anyways this is

Flag Permalink This was helpful (0) Collapse - SSD 1.4RC does not detect CoolWWWSearch.SmartSearch or by Harv / April 13, 2005 2:05 PM PDT In reply to: If the detection of I ran Adaware SE Pro and Spybot and they cannot delete coolwwwsearch. Learn More.

The first link is from Net-Integration which is Spybot's forum and explains how Spybot protects.http://forums.net-integration.net/index.php?showtopic=23797These other links are for current discussions going on about these "127.0.0.1 localhost" detections that Spybot is

I could not find InetCtls.Inet.1, InetCtls.Inet or {48E59293-9880-11CF-9754-00AA00C00908} in HKEY_LOCAL_MACHINE or in HKEY_CLASSES_ROOT. And tried to email it to my clean PC for a deeper study. I assume you are going to ask me for the Hijaak This log, so I'll post it here.   Logfile of HijackThis v1.98.2 Scan saved at 11:32:34 PM, on 12/7/2004 Platform: As Spybot already detected it and Kerim had you checked his post you would have see he has already visited the Spybot forum http://forums.spybot.info/showthread.php?t=12433.Why not devote your time to helping people

On the General tab under "Temporary Internet Files" Click "Delete Files". Please refer to our CNET Forums policies for details. The Temp folder will open. The time now is 04:53 AM.

Kerim Full Member Posts: 105 I can resist anything but thinking outside the box Re: CoolWWWSearch.SmartSearch « Reply #4 on: March 27, 2007, 10:37:43 AM » Hi Tech.I will follow your Click the Install button to extract the files and follow the prompts, then open the newly added l2mfix folder on your desktop. That was the point I was making earlier.There was another point being made that was not addressed to you at all. They were kind, as it is the case here, to offer their support to go with me step by step to clear up the problem (perhaps it is a false positive).

polonus Avast Überevangelist Maybe Bot Posts: 28552 malware fighter Re: CoolWWWSearch.SmartSearch « Reply #3 on: March 26, 2007, 09:20:36 PM » Hi Kerim,Here are the uninstall instructions for the removal of by Harv / April 12, 2005 1:41 PM PDT In reply to: And Another From Symantec It also involves HKEY_LOCAL_MACHINE, which is not the case for my problem. F 4 E Guru Norton Fighter25 Reg: 23-May-2009 Posts: 8,403 Solutions: 287 Kudos: 1,716 Kudos0 Re: N360-2013: doesn't detect/fix coolWWWsearch. in either normal or safe modes.

Flag Permalink This was helpful (0) Collapse - Just ran an SSD scan in NORMAL mode by Harv / April 12, 2005 1:07 PM PDT In reply to: CWShredder does not malware wont allow u to access windows task manager either. ( had to log in as administrator in windows safe mode to run spybot) . CoolWWWSearch is a sneaky type of browser hijacker, and tends to be a result of a drive by attack. by roddy32 / April 13, 2005 4:08 AM PDT In reply to: CoolWWWSearch.SmartSearch IF you are, This Spybot forum link will explain that the SpywareStormer is a false positive from the