Spy

About “Spyware:Win32/Coolwebsearch.H” infection

Malware Removal

The Spyware:Win32/Coolwebsearch.H is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Spyware:Win32/Coolwebsearch.H virus can do?

  • Sample contains Overlay data
  • Unconventionial language used in binary resources: Russian
  • Authenticode signature is invalid

How to determine Spyware:Win32/Coolwebsearch.H?



File Info:

name: AAEF86A0D93A1E970158.mlw
path: /opt/CAPEv2/storage/binaries/5dbdf82755e6a662334fcb8fff3732512670794c7b494881ebe9102a022c604b
crc32: 57B1FDAE
md5: aaef86a0d93a1e9701580300ded00838
sha1: 0588defad3a1c035904c66bc572195fd07ef81bf
sha256: 5dbdf82755e6a662334fcb8fff3732512670794c7b494881ebe9102a022c604b
sha512: c3cd75fb17860ca71c44d2a2024aa63058e200437f3ad4a44bf4139aa3ece728ff478bd22be67c209bce16e8ebbf6b63aa30ac134dbbd689956b511e3fa7105a
ssdeep: 1536:MSKLN5FPtkEDBSzXCANhBGzLgcACr8jNv1AvmN9qG+8fzG:MjLfFUXCInGzL7ADNv1Avmq
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T12C332A4573C5C0BAEBD750305B1A67364ABEEE3068B8144BDF4B3ADD2D72256E326207
sha3_384: 7d27754e3b449420a789898ac571bd75e82e19beaf24bd7b0af970a42a942347141f5e4ca767e9bbeae9c50b1e7bf4c7
ep_bytes: 558bec538b5d08568b750c578b7d1085
timestamp: 2005-06-10 19:23:32


Version Info:

CompanyName: 
FileDescription: ZToolbar Module
FileVersion: 1, 0, 0, 1
InternalName: ZToolbar
LegalCopyright: Copyright 2001
OriginalFilename: ZToolbar.DLL
ProductName: ZToolbar Module
ProductVersion: 1, 0, 0, 1
OLESelfRegister: 
Translation: 0x0409 0x04b0

Spyware:Win32/Coolwebsearch.H also known as:

BkavW32.Common.22A8DC4E
LionicAdware.Win32.Zbar.2!c
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.Downloader.3136
ClamAVWin.Adware.Zbar-3
FireEyeGeneric.mg.aaef86a0d93a1e97
SkyhighAdware-ZSearch.a
McAfeeAdware-ZSearch.a
Cylanceunsafe
ZillyaAdware.Zbar.Win32.3
CrowdStrikewin/grayware_confidence_90% (D)
AlibabaAdWare:Win32/Azesearch.fb9ebddc
BitDefenderThetaGen:NN.ZedlaF.36744.du9@aSdH@pik
VirITBHO.ZToolbar.A
ESET-NOD32Win32/Adware.Toolbar.Zbar
CynetMalicious (score: 100)
Kasperskynot-a-virus:AdWare.Win32.Zbar.d
BitDefenderTrojan.Downloader.3136
NANO-AntivirusRiskware.Win32.Zbar.vxhnm
AvastWin32:Adan-AV [Adw]
TencentWin32.AdWare.Zbar.Iajl
TACHYONTrojan-Downloader/W32.Agent.55000
SophosZSearch (PUA)
F-SecureAdware.ADSPY/Toolbar.Zbar.D
DrWebTrojan.DownLoader.3136
VIPRETrojan.Downloader.3136
TrendMicroADW_AZESEARCH.D
EmsisoftTrojan.Downloader.3136 (B)
Ikarusnot-a-virus:AdWare.Win32.Azesearch
GDataTrojan.Downloader.3136
JiangminAdWare.Zbar.a
WebrootAdware.Azsearch.Toolbar
VaristW32/Adware.XSUQ-3614
AviraADSPY/Toolbar.Zbar.D
Antiy-AVLGrayWare[AdWare]/Win32.Zbar
Kingsoftmalware.kb.a.998
XcitiumApplication.Win32.Adware.Toolbar.Zbar@47hl
ArcabitTrojan.Downloader.DC40
ViRobotTrojan.Win32.Downloader.55000
ZoneAlarmnot-a-virus:AdWare.Win32.Zbar.d
MicrosoftSpyware:Win32/Coolwebsearch.H
GoogleDetected
AhnLab-V3Adware/Win32.Azesearch.R58614
ALYacTrojan.Downloader.3136
MAXmalware (ai score=100)
VBA32Trojan.Win32.Peflog.39
PandaAdware/AzeSearch
TrendMicro-HouseCallADW_AZESEARCH.D
RisingTrojan.Xema.mz (CLASSIC)
YandexTrojan.GenAsa!UggXTAs/SJk
MaxSecureTrojan.Malware.1930564.susgen
FortinetW32/Zbar.D!tr
AVGWin32:Adan-AV [Adw]
DeepInstinctMALICIOUS

How to remove Spyware:Win32/Coolwebsearch.H?

Spyware:Win32/Coolwebsearch.H removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment