From what I recall (and it has been a bit since I saw this) CWS makers had compromised a few sites using PHP or something similar that require a Plug In in mozilla. The result was it installed itself in the OS, but was not apparent, because it could not Hijack the Browser. What did occur was all the Keystroke logging that was installed. If the user had IE installed, but unused, it was sending the information. Most likely you are okay. Even on those sites it compramised I believe the user had to do something proactive to install CWS. I think you might find information if you Google CWS or COOLWEBSEARCH and Key Logging. Also, there are specific files in your System32 Folder that you would have if you have CWS. I use IE and I have a firewall and I have not gotten this hijack program on any of my 6 machines. I did pick up a discard from a customer that bought a new machine because there old one was so slow. It had tons of stuff on it, including CWS. (NOTE: Most places that installed CWS were adult sites. If you do not go to those, you most likely will not get it. SECOND NOTE: It is easy to get to one, just by mistyping or randomly clicking links to older sites that may be gone. (I have had the older link thing happen myself.)

ratscloset
aka John