Jump to content



Welcome to AstaHost - Dear Guest , Please Register here to get Your own website. - Ask a Question / Express Opinion / Reply w/o Sign-Up!

Toggle shoutbox Shoutbox Open the Shoutbox in a popup

@  yordan : (21 April 2014 - 09:11 PM) Hey, Ritesh, Did You Hear Me?
@  yordan : (14 April 2014 - 05:28 PM) By The Way, This Could Be An Interesting Subject For A Topic, What About Posting This Question? Let's See If Other People Have The Same Feeling Concerning Bootlists!
@  yordan : (13 April 2014 - 09:36 AM) Boot Order : Cd, [Usb,] Hard Drive :D
@  yordan : (11 April 2014 - 07:23 PM) I Simply Let The Bios Do That
@  Ritesh : (11 April 2014 - 10:23 AM) Is It Possible To Launch Fedora Live Cd Or Installation Disk From Hard Drive On Windows Platform Using Grub Mbr File.
@  Ritesh : (11 April 2014 - 10:21 AM) No U Are Not.. Btw.. I Have Question For You.
@  yordan : (10 April 2014 - 08:02 AM) You Are Partially Right.
I Was Not.
Nevertheless, I Am Again :)
@  Ritesh : (09 April 2014 - 07:33 PM) :P
@  Ritesh : (09 April 2014 - 07:33 PM) I Think U R Not..
@  yordan : (09 April 2014 - 09:28 AM) I'm The Master Of The Shoutbox!
@  yordan : (05 April 2014 - 10:32 PM) He-He
@  Ritesh : (04 April 2014 - 06:59 PM) Ha Ha Ha ....
@  yordan : (04 April 2014 - 11:15 AM) Welcome Back, Starscream!
@  yordan : (03 April 2014 - 02:31 PM) And I Hope That He Will Come Back Soon :)
@  yordan : (01 April 2014 - 02:53 PM) Nice, Ritesh Came, I'm Not Home Alone Today.
@  Ritesh : (01 April 2014 - 08:51 AM) Oh!!! Poor Dear Yordan..
@  yordan : (31 March 2014 - 10:02 AM) I'm A Poor Lonesome Cow-Boy
@  yordan : (27 March 2014 - 02:22 PM) He Is Unpatient Due To His Patients!
@  Ritesh : (27 March 2014 - 10:46 AM) :(
@  Ritesh : (27 March 2014 - 10:46 AM) He Is Busy With His Patients.

Photo
- - - - -

Cws Also Being Used For Identity Theft Spyware isnt a good thing


1 reply to this topic

#1 sparx

sparx

    Premium Member

  • Members
  • 243 posts
  • Location:Bombay, INDIA
  • Interests:Photography, Formula 1, 80s Music, Freeware

Posted 07 August 2005 - 11:20 AM

Here's one more reason to be on the lookout that you don't get infected by CWS. At last count there were well over 50 variants loose in the wild!

Sunbelt is a software company that makes the well known anti-spyware called CounterSpy.

While investigating a new mutation of the CoolWebSearch trojan, a Sunbelt researcher was astounded to discover that it was being used for identity theft. All manner of personal information is being uploaded to a publicly-viewable web server, including eBay passwords, Paypal passwords and passwords for bank accounts worth hundreds of thousands of dollars. Anyone who knows this web server's IP address can view all of this information!

After initially rebuffing Sunbelt when they first made contact, the FBI now is said to be investigating the matter. Sunbelt also has tried contacting some of the victims of this identity theft.

CoolWebSearch is a particularly nasty browser hijacker with countless variations. They have hundreds, possibly thousands, of affiliated web sites who all feed traffic into coolwebsearch.com. Many of those affiliates use exploits for various flaws in Windows and Internet Explorer to install browser hijackers.

The motivation behind all of this, of course, is money. Coolwebsearch.com is nothing more than a collection of paid listings. If someone clicks the links on their web site, they are paid a small commission from the owner of the site being linked. In turn, CoolWebSearch pays their affiliates to drive traffic to their site.

They almost always have used unethical and possibly illegal methods to install this hijacking software.

The recommended thing to do is to scan your system using the very specialized CWShredder which removes all traces of CWS.

#2 WeaponX

WeaponX

    Way Out Of Control - You need a life :)

  • Members
  • 1,086 posts
  • Location:New York
  • myCENTs:86.41

Posted 07 August 2005 - 05:59 PM

Man, these things just keep coming :D

CoolWebSearch has many different forms. It also mutates sometimes to make it even more complicated to remove.

My suggestion is to use other anti-spyware programs along with CWShredder because it can't handle ALL those different (mutated) variants alone. I'm not 100% sure how far CWShredder went in terms of the updates (last time I checked, it was updated in May), but one other main tool to help remove the mutated CWS is to use a program called About:Buster.

The usual Ad-aware, Spybot and Microsoft AntiSpyware should be run regularly also. All those programs are free to use. Just make sure to check for updates weekly and do weekly or bi-weekly scans to be safe. Spyware, these days, are more wide spread than viruses. So get those anti-spyware programs installed and run them.

Just have something to add regarding Sunbelt's CounterSpy program. I heard that there was a previous agreement, when Microsoft bought out GIANT AntiSpyware, that Microsoft has to supply Sunbelt with their updates until around 2006. So I'm not sure if CounterSpy would be any much more effective in removing spyware as the free Microsoft AntiSpyware program. Just a note...



Reply to this topic



  


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users