How to remove the coolpics.com hijacker

Need a geek? Geeks to Go offers free, quality tech support -- in terms anyone can understand. Volunteers are waiting to help, friendly, technology experts who have knowledge to share, and enjoy helping others. Feel free to browse the site as a guest. However, you must log in to reply to existing topics, or to start a new topic. Other benefits of joining include richer forum features, and removal of all advertising. Learn more in our Welcome Guide Infected? Malware and Spyware Cleaning Guide. What are you waiting for? Click here to join for free today!

> Geeks to Go! » Security » Malware Removal Guides and Tutorials

How to remove the coolpics.com hijacker

Options

Metallica View Member Profile	Nov 5 2006, 01:47 PM Post #1
Spyware Veteran Posts: 24,928 From: Netherlands OS: XP Pro & Vista Ultimate	1. Download this file - ComboFix.exe 2. Double click combofix.exe & follow the prompts. 3. When finished, it shall produce a log for you. Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall If you find one of these lines in the resulting log: "DisableRegistryTools"=dword:00000001 "DisableTaskMgr"=dword:00000001 under the header: [HKCU\software\microsoft\windows\currentversion\policies\system] Then download Brute Force Uninstaller to your desktop. Right click the BFU folder on your desktop, and choose Extract All Click "Next" In the box to choose where to extract the files to, Click "Browse" Click on the + sign next to "My Computer" Click on "Local Disk (C: ) or whatever your primary drive is Click "Make New Folder" Type in BFU Click "Next", and Uncheck the "Show Extracted Files" box and then click "Finish". RIGHT-CLICK HERE and choose "Save As" (in IE it's "Save Target As") in order to download Coolpics Remover. Save it in the same folder you made earlier (c:\BFU). Then, please go to Start > My Computer and navigate to the C:\BFU folder. Start the Brute Force Uninstaller by doubleclicking BFU.exe Behind the scriptline to execute field click the folder icon and select coolpics.bfu Press Execute and let it do it's job. (You ought to see a progress bar if you did this correctly.) Wait for the complete script execution box to pop up and press OK. Press exit to terminate the BFU program. Reboot your computer and check if it worked. This post has been edited by Metallica: Sep 21 2009, 10:32 PM Reason for edit: BFU downloadlink updated

admin View Member Profile	Jul 12 2007, 04:19 PM Post #2
Site Administrator Posts: 18,684 From: 127.0.0.1 OS: Windows 7 64-bit RTM	This topic has been left open to allow specific questions and comments related ONLY to this guide. It's NOT for posting HJT logs, links to your logs, or any other general malware help. Replies not following these rules will be deleted. Thanks for your cooperation.

tetonbob View Member Profile	Aug 11 2007, 10:26 AM Post #3
Malware Expert Posts: 135 OS: XP Pro, XP Home, Windows 2000	Was just doing some reading, and noticed something... Link to ComboFix 404's, it's changed a while back. Current CF links are: http://download.bleepingcomputer.com/sUBs/ComboFix.exe They are case sensitive. removed outdated link This post has been edited by tetonbob: May 18 2009, 05:54 PM

maayongadlaw View Member Profile	Sep 30 2007, 03:22 AM Post #4
New Member Posts: 1 OS: windows XP	Thanx to metallica's instruction, i was able to remove coolpics virus in my computer. it really annoys me everytime i open my yahoo messenger. By the way my friends computer is infected by a virus which is similar to coolpics. It also disables his taskmanager and pops a weird characters in his Yahoo Messenger which looks like this â€� and so on followed by freewebtown.com instead of coolpics.com. My question is can BFU removed this kind of thing on my friends computer? Can I apply metallica's instruction to remove this kind of virus. Please help us with our problem. Thanx and sorry for my english!!

RatHat View Member Profile	Sep 30 2007, 03:44 AM Post #5
GeekU Mod Posts: 7,823 From: Lake Mabprachan, Thailand OS: XP SP2 ~ Vista Ultimate	maayongadlaw, Please have your friend read this post then post a HijackThis Log in the Malware Forum. Ask him/her to title the post Coolpics Clone? and I will keep an eye out for it.

« Next Oldest · Malware Removal Guides and Tutorials · Next Newest »

1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)

0 Members:

Similar Topics

Topic Title	Replies / Views	Topic Information
Virus, Spyware and Trojan Removal How to remove the trojan Downloader.con hook.aa ? [RESOLVED]	8 / 3,142	16th July 2006 - 04:48 AM rickkay started - last by Rawe
Windows XP�, 2000, 2003, NT how to remove the spyware that panda finds?	1 / 940	22nd February 2007 - 08:17 PM whatismouse started - last by piper
Virus, Spyware and Trojan Removal How to remove the after effects of sal.xls.exe?	1 / 3,125	19th April 2007 - 03:29 AM indianpunk started - last by indianpunk
Virus, Spyware and Trojan Removal How To remove the Virus TR/Spy.35 for free	5 / 673	29th March 2009 - 12:39 AM enen07 started - last by enen07

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Time is now: 7th November 2009 - 07:08 PM

Advertisements do not imply our endorsement of that product or service. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks mentioned on this page are the property of their respective owners.