Advice from Middle Aged Female Tech

Hollyecho Montgomery - 812-779-6088

Women's Computer Consulting

https://hollyecho.com

I have been in the industry with my own company since 1994. The entire time I have worked in this field there have been very few times any two techs ever agree completely. The advice I give here is based on my experiences, testing, and what I know works.

Today’s Subject: Conduit Infections

Customers that are being devastated by Conduit. Once installed, the average user has a very hard time removing it. In addition, it’s difficult to remove the infections caused by the Conduit redirects to dangerous places.

Let me be clear. Conduit is not a virus. It is installed by the user, usually inadvertently, while installing other software. Its most prevalent form is as a toolbar and search provider residing in your browser and programs list. It goes by more than one name and can come in many forms.

The average user infected by Conduit, is also infected with real viruses, Win32 for instance. SweetPacks and Conduit are often found on the same system. This could be due as much to user inattentiveness as to a liaison of 2 nasties. Very seldom do I find a computer with Conduit being the only unwanted program or PUP. That’s not what they are about.

Conduit is a huge company and is based out of Israel. They are 1.4 billion dollars strong, give or take a few million. I find it interesting and get that Deja Vu thing going on because now, after infecting 100s of thousands of computers, Conduit has decided to get away from the “Toolbars” and Search products, clean up their image, so to speak. Now where have I heard this before……

All 400 Conduit employees doing the Harlem Shake I’m convinced my first mental picture may have been correct. I could be wrong but I’m thinking this is not one of the tools I want in my shed. Obviously 260 thousand publishers were thinking only with their wallets and 260+ million unsuspecting installers were fooled into ruining they computers.

I guess if you are a 1.4 billion dollar company raking money off of millions of unsuspecting infectees you’ve got something to dance about.

CONDUIT REMOVAL

1.Close all programs, applications, and browsers.

2.The first thing to do is download the free version of REVO UNINSTALLER and uninstall any and all Browser Toolbars. Conduit uses many different names so there is no single name to look for. When it comes to protecting my banking information, nothing is worth the risk. I never install a toolbar or a new search engine other than Bing or Google and even then I don’t use their toolbar or search bar.

3.If you are using Chrome, FireFox, or any browser, other than Internet Explorer, go to your Add/Remove Programs section in the Windows Control Panel and Uninstall them. Do not save anything. Do not save: Favorites, Settings, or Files.

4.Next Open Internet Explorer, click on Tools or the Tools Cog, Internet Options, Advanced, Reset IE Settings To Default. Be sure that you put a check mark in the box for Delete Personal Settings while you are there. This will remove any previous tool bar settings or add-ons. You must now reboot your computer

5.Boot into Safe-mode With Networking. Run Malwarebytes with the Full Malware Scan.

Be aware that Conduit is not a trojan or a virus. It is only a means to redirect you to sites you don’t want to visit and that can infect you. “”There is no single program that catches all viruses, all the time.””

Viruses change minute by minute. Before a virus can be removed from your system, it must be found, identified, and added to each virus definitions list. Only then can your antivirus detect infections while scanning. Increase your odds by scanning with multiple programs.

The HiJackers, Trojans, and infections you find will be varied and not necessarily identified as Conduit. Remove them.

5.You can now reboot and re-install your browsers. (chrome/Firefox)

**If you’re using Chrome, check to see how many tabs are opening when you open Chrome. If there is an extra tab opening with the search symbol, remove it by clicking the Chrome Control Button on the top right corner of the opening window, click Settings, and under On StartUp , Open a Specific Page or Pages, you can remove the exta tab.

Again, if you have ANY questions, don’t hesitate to email me! I answer all questions to the best of my ability. I am always about saving money and not spending it on things you don't need to.

Remember ANY questions, Email me at: Montgomery@Hollyecho.com.