• Threat Level: Medium
  • Description: CoolWebSearch.PnP: a search hijacker that hides inside a specially named folder usually used for storing device driver information. Its hijacker file oemsyspnp.inf is run on each startup, using a slightly different install command each time. This command cycles through install sections 'RunOnce', 'AudioPnP', 'VideoPnp', 'IdePnP' and 'SysPnP', though quite why is unknown as it does the same thing regardless of which section is used, namely hijacking home page and search settings to point at and
  • Type: TT_Adware
  • Threat Analysis: Search ThreatExpert to view reports
  • Removal: This infection can be removed using Spyware Doctor.

More Information:

With new threats to your PC emerging every day, it's essential to maintain up-to-date antivirus software in order to fend off the latest viruses, worms, and Trojans. But before implementing the proper defense, it's necessary to identify the malware that's capable of infecting your PC. And that's where the PC Tools Malware Research Center comes in. The highly specialized MRC team is dedicated to researching the most recent threats and updating its database of known infections accordingly. That way, PC Tools can constantly update its award-winning antivirus and antispyware software, making it practically impenetrable. Whether it's a Trojan, worm, virus, or spyware—if it's found within MRC's Infection Database, PC Tools' Spyware Doctor can remove it. PC Tools goes beyond malware protection; it also highly values educating PC users about the threats they continuously face. Each piece of malware included herein contains useful information such as a description of the infection and how dangerous it is. After all, being well informed is another vital step to staying safe.