What are you using for Conduit?

[JDuncan]

Hey there Guys. I had a copy of MRI FACE using Panda Command Line scanner, which is AMAZING for getting rid of Conduit, but i want to get away from using MRI software as its not legal at all (they left the disc in my computer, its now expired).

I Downloaded the Panda Command Line scanner from panda, and it wont scan :/ Im curious if anyone had any other software that worked the same way, OR if someone could help me get the scanner working off the Panda Site.

http://www.pandasecurity.com/mediacenter/products/panda-antivirus-command-line-scanner-9-5-1-2/

I have been using the scanner in XP SP3 mode, as admin, Commandline:

Pavcl c:\windows -auto -aex

It scans the boot sectors then ends.

C:\Users\<BLANKED OUT>\Desktop\pavcl>Pavcl -auto -aex
                 Panda CommandLineSecure 9.05.01 (c) Panda 2008
Number of detectable viruses and mutations .: 1856122
Last revision of the virus file ............: 10/02/2011

Scanning Boot ...........:  C:\        :OK
Scanning Boot ...........:  D:\        :OK
Scanning Boot ...........:  E:\        :
   Error scanning boot sectorERROR

Scanning Memory ...........: OK


                 Panda CommandLineSecure 9.05.01 (c) Panda 2008
Time employed for scan .............: 00:00:00
Number of boot sectors scanned .....: 2
Number of boot's viruses found  ....: 0
Number of scan incidents ...........: 1


There have been events during the scan. You should check the report for more details
                          Copyright Panda Security 2008

 

[Kitten Kong]

ADW cleaner, rougue killer, mbam, hmp.. take your pic

 

[SpaceSquad]

ADW cleaner, rougue killer, mbam, hmp.. take your pic

Yup...

Easiest thing to clean up.

 

[frederick]

Don't forget JRT

 

[cypress]

I been seeing these on every repair coming in. I use MBAM, Adwcleaner, JRT, RogueKiller and if absolutely needed Combofix although I really don't use it that much.

 

[ohio_grad_06]

Yep routine here is this.

-roguekiller
-tdsskiller
-jrt
-adwcleaner
-bootable av scan to follow up
-install free av if they don't have av

if I need to I might run hitman or combofix, but mostly the above does the majority of the cleaning these days I find.

 

[joydivision]

Yep routine here is this.

-roguekiller
-tdsskiller
-jrt
-adwcleaner
-bootable av scan to follow up
-install free av if they don't have av

if I need to I might run hitman or combofix, but mostly the above does the majority of the cleaning these days I find.

You should always try and install a paid one, you make profit that way

 

[CLC]

You should always try and install a paid one, you make profit that way

^
This

 

[ohio_grad_06]

I see your point. However, right now this is a side job for me, I'm a network admin/helpdesk at my 9-5, so the repairs are extra $$. Could install paid, but don't feel like dealing with people whining about if they get reinfected and saying "didn't you sell me protection?" This way I can just tell them no antivirus catches everything, do the cleanup again and send them on their way without having to track down invoices etc. If I were doing this full time, then it would definitely be worth looking at. Besides, I'm making $135 each cleanup, that's not bad money either.

 

[HFultzjr]

Everything mentioned above should do the trick.
Each one will catch what the other ones miss.

 

[frase]

I see your point. However, right now this is a side job for me, I'm a network admin/helpdesk at my 9-5, so the repairs are extra $$. Could install paid, but don't feel like dealing with people whining about if they get reinfected and saying "didn't you sell me protection?" This way I can just tell them no antivirus catches everything, do the cleanup again and send them on their way without having to track down invoices etc. If I were doing this full time, then it would definitely be worth looking at. Besides, I'm making $135 each cleanup, that's not bad money either.

Your charging that much and dont know how to get rid of a browser plugin, and you say your a network admin? MEEP! MEEP ..meep..

temporary image hosting

 

[ohio_grad_06]

No...I don't include sausage and pepperoni with cleanups lol. What I should have said was I do the fix, install free antivirus for them.

What I meant by my statement, sometimes I get clients like 6 months or more out who have reinfected their system, and say "well I thought you installed protection on this computer"(antivirus), which I tell them no antivirus program catches everything(face it, how many people do you see buy paid AV software and think they are protected and come in with their system hosed?) As far as doing cleanups, I feel I'm quite good at that. Not the best, but 99% of the time I don't have to do a reinstall.

I just don't want to have to deal with selling someone an antivirus product, then if they infect themselves in 6 months or a year, have them complain that I sold them an antivirus product that didn't work and then have them wanting money back or something. However, most folks I do cleanups for, I don't see again for a while, and I get a lot of referrals from people who say my friend xyz said call you. I do have some however who just come back every year or so for an annual checkup/cleaup. I'm also blessed because I a lot of people know me from where I worked prior to doing this, so lot of people still remember me from there also.

As far as removing browser plugins, that's easy. I've even got some clients who used to go to a lower priced tech in my area, but reported to me they were still having the same issues they took the system in for, bring it to me and I fix it, now they bring the system to me first.

As far as being a network admin, I've been doing that for about 4 years in December, not to mention other tech jobs I had before, used to have apple certs a few years back even. Been playing around with PC's since I was 17(I'm 33 now, do the math lol). My first computer was a commodor 64 when I was 5, so been playing with tech for a while. Sure I don't know everything, but I know enough, always learning however.

I did however have a client who got conduit one time, I told her I could remove it, I've done dozens, I guess her mom was from out of state and was talking to a tech she used for her business, and the guy told them to get conduit off you had to reformat. Not quite.

But like I said, I just don't want to deal with people giving me the line of "didn't you sell me protection" when they reinfect their system later. Now if I weren't doing my 9-5, sure I could get into managed AV and all, but right now I'm happy.

Cool graphic btw.

 

[purdybread]

Your charging that much and dont know how to get rid of a browser plugin, and you say your a network admin? MEEP! MEEP ..meep..

temporary image hosting

At what point did he say he couldn't remove a browser plugin??

 

[ccritchie]

While it's fairly easy to remove Conduit, I would prefer (and my customers would likely prefer) that it never gets onto the computer in the first place. For my business, this is a perfect opportunity to upsell Managed Antivirus (we use GFI) to my client. When someone asks me about what antivirus product I recommend, my spiel generally goes something like this:

"I have 3 or four that I like or recommend [side note: Bitdefender, ESET, Kaspersky, for example], but the best that I can offer you is our Managed Antivirus service. The difference between those other products is that, while they are pretty good, once they are installed, you hope that they run correctly and do what they are supposed to do to protect your system. We have no way of knowing whether or not they are updating properly, running correctly or stopping anything from attempting to infect your system. However, with our Managed Antivirus service, we can work proactively to ensure that your computer's security software is up to date and is running correctly. Furthermore, we will be notified immediately when a malicious program attempts to infect your computer, and we can deal with it remotely without ever bothering you. We are so confident in our ability to protect your system that we offer a 'No Virus Guarantee'. If something gets by our defenses, we will clean up your system at no charge."

We then offer them our $11.99 per month service. Once it's installed, we also lock down the system (managed updates, OpenDNS, cryptoprevent, etc.) so that it's next to impossible for the customer to get something onto the system.

While I know that Vipre (GFI's antivirus offering) doesn't rate as high as the others in the AV comparatives tests, I have found that it does stop all of the nasties that attempt to get on my customers' systems. (conduit, in particular, pretty commonly shows up in the quarantine.) In my opinion and experience, in combination with the other layers of protection, this is a way to offer customers peace of mind regarding computer security AND make a profit at the same time.

 

[Xander]

... who have reinfected their system, and say "well I thought you installed protection on this computer"(antivirus)...

I had a customer several years ago whose system was infected with the Love Letter virus -- 13,777 copies of it in her Kazaa folder.

When I pointed out that she wasn't running an antivirus, she said she didn't need it. "How's that?" I asked. She picked her motherboard box off the shelf and it said "Virus resistant". {face-palm} Even after explaining that meant that the motherboard had some means of protecting just itself and that protection did not apply to anything else on her system, she still seemed reluctant to believe me.

 

[NYJimbo]

She picked her motherboard box off the shelf and it said "Virus resistant". {face-palm} Even after explaining that meant that the motherboard had some means of protecting just itself and that protection did not apply to anything else on her system, she still seemed reluctant to believe me.

Yeah, I remember seeing that for some BIOS protection. Once the customer sees something and its in their head, its impossible for some to change their minds.

 

[frase]

No...I don't include sausage and pepperoni with cleanups lol. What I should have said was I do the fix, install free antivirus for them.

What I meant by my statement, sometimes I get clients like 6 months or more out who have reinfected their system, and say "well I thought you installed protection on this computer"(antivirus), which I tell them no antivirus program catches everything(face it, how many people do you see buy paid AV software and think they are protected and come in with their system hosed?) As far as doing cleanups, I feel I'm quite good at that. Not the best, but 99% of the time I don't have to do a reinstall.

I just don't want to have to deal with selling someone an antivirus product, then if they infect themselves in 6 months or a year, have them complain that I sold them an antivirus product that didn't work and then have them wanting money back or something. However, most folks I do cleanups for, I don't see again for a while, and I get a lot of referrals from people who say my friend xyz said call you. I do have some however who just come back every year or so for an annual checkup/cleaup. I'm also blessed because I a lot of people know me from where I worked prior to doing this, so lot of people still remember me from there also.

As far as removing browser plugins, that's easy. I've even got some clients who used to go to a lower priced tech in my area, but reported to me they were still having the same issues they took the system in for, bring it to me and I fix it, now they bring the system to me first.

As far as being a network admin, I've been doing that for about 4 years in December, not to mention other tech jobs I had before, used to have apple certs a few years back even. Been playing around with PC's since I was 17(I'm 33 now, do the math lol). My first computer was a commodor 64 when I was 5, so been playing with tech for a while. Sure I don't know everything, but I know enough, always learning however.

I did however have a client who got conduit one time, I told her I could remove it, I've done dozens, I guess her mom was from out of state and was talking to a tech she used for her business, and the guy told them to get conduit off you had to reformat. Not quite.

But like I said, I just don't want to deal with people giving me the line of "didn't you sell me protection" when they reinfect their system later. Now if I weren't doing my 9-5, sure I could get into managed AV and all, but right now I'm happy.

Cool graphic btw.

hehe all good just being annoying

 

[AlexCa]

First thing i do before running any tools is simply to uninstall.

Yes, nowadays doesn't seem to matter what AV one uses. Those "grayware" applications that come bundled with freeware or through ads are a real plague.


And honestly that's all fine by me:

Users will get the software they don't want to pay for (in my experience, most users will only pay for software if: there's no pirated version, there's no free alternative).

Developers can earn money from their work through those advertising networks (instead of seeing their work pirated and win nothing, or seeing people preferring the "free" alternatives -that use bundled software to earn money- )

Computer techs have work to do by cleaning the mess

And that's how it rolls...

 

[frase]

Generally I -

Remove system restore points
use Revo Uninstaller - uninstall crap
Check startups in msconfig
Check Reg
Run Adwcleaner
Run JKCleaner
Run Spybot via portable & Mbytes
Run TDDS Killer
Scannow /sfc
CHKDISK ? /f
Check C:\ProgramData directory
Check Browsers to make sure and host file.
Reset
Enable system restore and create new restore point.