CoolWebSearch Keeps Re-Installing

Please excuse this post; I know someone has just recently posted a very similar problem but I didn't want mine to get lost in that thread. It is very discouraging to have to put up with CoolWebSearch every time I start up or reboot my PC.

Running Win98se, have done all the scans by major software programs mentioned here: Ad-Aware, Spybot, etc. etc. They all come up clean, but only because I run X-Cleaner Malware scan on boot up and it always finds CoolWebSearch, which I have it remove. Of course I must have the variant(s) which re-install themselves as I can count on X-Cleaner finding it again when I start a new session.

CWS is of no use anymore since it is no longer being updated http://www.emotipad.com/newemoticons/Noooooooo.gif

HijackThis Log shows an entry in I.E. with the about=blank value. I was considering deleting this line but want to be sure that is the right thing.

What erks me is that I'm mainly using Firefox and when I went to go to my electric company's home page a stupid search engine showed up. Obviously the page has been hijacked and I'm sure CWS is to blame. I'm concerned because I was hoping using Firefox would prevent this from happening but it did anyway.

I know the CWS problem has been discussed many times here but felt that I needed to give my personal experience and let the group know I do update and run a variety of anti-spy, mal-ware, and trojan detector programs on a daily basis. CWS is only found by X-Cleaner on boot-up and doesn't show on the others probably because I remove it at start up time.

Going to stop X-Cleaner from scanning at start up and run another program first to see what it picks up. In the meantime, any thoughts, suggestions etc. would be most appreciated. Especially about deleting the about=blank line I found in the Hijack this log.

Have a great day & God Bless! http://www.emotipad.com/newemoticons/Swing.gif

 

Thank you for your patience. I'm trying to do 10 things at one time, as usual!

Here is the Hijack This log of this morning before removal of anything by X-Cleaner (or anything else, for that matter). It's really frustrating when I try to do everything possible to keep my PC clean and this little bugger won't go away. Kinda like one of those relatives that come to visit and stay for 10 days. Thanks in advance....

 

You must excuse me I suffer from a memory problem that really screws me up a lot. I'm really not the idiot I appear to me and it is very frustrating to me to try and follow directions properly and find that I do things backwards, etc. Please bear with me--it comes from being in an accident several years ago. Sorry I appear as a dunce.

The "RealDownload Express etc" stuff all has to do with the RealArcade and Real Music that I belong to for my gaming and music downloads. I've been having problems with both lately and have had to re-install one of them completely in order to resolve the issue.

No idea what C:\WINDOWS\SROMTSR.EXE
F1 - win.ini: load=sromtsr.exe is. On the other question of what my ISP requires I will check with them.

X-Cleaner says it's removing CoolWebSearch but does not provide further information. I tested my other software today and CWS does not show up at all even if I don't run X-Cleaner first. I'm starting to wonder if it is a bug in their program. CWShredder also comes up clean.

It's back to the drawing board so I will work on your instructions; however, I hesitate about the Real Download stuff as it seems these entries are necessary for the programs to work properly. Will check with "Real" also about this.

PC runs a lot slower then it should. I run out of RAM frequently. I might mention I am a photo, game and music buff and my PC is from 2000. Not much has been upgraded and I certainly would appreciate more RAM!

I ask for your patience as I really feel like I am running against the tide with this problem. First thing--get the latest Hijack This version (thought I had it). Will go from there.

Your help is most appreciated. Many thanks.