Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Help! Need LEGIT Conduit Engine removal program!

  • 20-10-2012 7:07pm
    #1
    Solitaire
    Moderators, Technology & Internet Moderators Posts: 18,381 Mod ✭✭✭✭


    Yup, I'm the latest person to install something with an installer infected with the latest and sh!ttest incarnation of Conduit, and no matter what I do I can't get rid of the blasted thing - kinda scary given its keyloggers, as if the browserjacking wasn't bad enough...

    I've tried removing everything Conduit from both my PC and my prefs.js file while reinstalling a clean Firefox, to no avail. I doubt a scorched-earth Firefox reinstall will do anything better, while also giving me a major migraine. What I sure as HELL don't want to do is a complete nuke-reformat-reinstall of my whole Win7 machine :eek:

    The problem is that the only thing worse than Conduit is getting infected by ransomware or other loveliness when trying to find a current, automated Conduit Engine remover - all the sites I've seen advertising such a thing look reeeeeeaaaally suss :/ Don't suppose anyone who actually works in security/AV knows of a proper tool? Conduit seems to be invisible to mainstream antivirus (congrats on continuing to be a complete waste of space Avast ._.)


Comments

  • #2
    FSL
    Registered Users, Registered Users 2 Posts: 1,456 ✭✭✭FSL


    Have you tried something like running Kaspersky Rescue Disk 10 from a bootable USB stick.


  • #3
    JimmyCrackCorn
    Registered Users, Registered Users 2 Posts: 1,691 ✭✭✭JimmyCrackCorn


    Try this
    F-prot on Linux bootable CD

    http://stolenpackets.net/?p=43 (my neglected blog)

    Saved my bacon and friends bacon many times....

    mmmmmm bacon :D


  • #4
    Solitaire
    Moderators, Technology & Internet Moderators Posts: 18,381 Mod ✭✭✭✭Solitaire


    Bweh. Despite being a hijacker and a known vector that usually comes with armed keyloggers for some reason AV treats Conduit and similar programs as Bloatware and flat-out ignores it; apparently hijackers loaded with malware aren't their problem anymore (the only thing AV companies seem to worry about nowadays is finding new ways to slow down your PC :p). To make extra-sure of its continued existence it makes backup programs and hides them in extra folders in Program Files, not only named Conduit but with copies named as the program you downloaded that was infected in the first place :o

    In the end I just took a rusty hatchet to Registry as well, although due to the threat of killing my OS I stopped short of deleting ALL Conduit keys, I just nuked the majority. Conduit now only exists in a lobotomised state in IE; Firefox has been scourged and Conduit's backup programs were hunted down and murdered which, combined with scourging Firefox and its prefs.js and the Registry slaughter, has left it unable to redownload and reinstall itself. Only the homepage and search hijacks remain, and I never use IE for browsing anyway :p


  • #5
    ASJ112
    Site Banned Posts: 1,167 ✭✭✭ASJ112


    revo uninstaller or roguekiller would have removed it

    http://www.revouninstaller.com/revo_uninstaller_free_download.html
    http://www.geekstogo.com/forum/files/file/413-roguekiller/


Advertisement