Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

pc infected by Conduit


  • This topic is locked This topic is locked
10 replies to this topic

#1 patex80

patex80

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:italy
  • Local time:08:23 PM

Posted 14 October 2013 - 02:11 PM

hi, I apologize for my incorrect English, I'm Italian and I use a translator. about a month have the computer infected with conduit, I have done several scans with antivirus, anti-spyware and anti-malware even in safe mode, but the problem is always there.

here is the list of programs used:
Avg antivirus 2014
Spybot S & D
Malwarebyte
Combofix

please help me, I do not know what to do! among other things, some programs such as Photoshop CS6 no longer opens, gives me an error and also the browsers that use direct me always toolbar conduit. I want to make another example, I had installed in browsers of the Mozilla-Firefox's toolbar IMVU, a 3D chat, then one day opening the browser when I saw white, everything was gone, so I uninstalled and when I tried to install conduit toolbar on directing me, at that point I gave up.



BC AdBot (Login to Remove)

 


#2 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:09:23 PM

Posted 15 October 2013 - 11:09 PM

Hello! Welcome to BleepingComputer Forums! :welcome:
My name is Georgi and and I will be helping you with your computer problems.

Before we begin, please note the following:

  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.

 

 

STEP 1

 

 

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

 

 

STEP 2

 

 

Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

 

 

 

Regards,
Georgi


cXfZ4wS.png


#3 patex80

patex80
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:italy
  • Local time:08:23 PM

Posted 18 October 2013 - 03:23 PM

Hello Georgi, here is the log you asked me

 

http://wikisend.com/download/538666/FRST.txt

 

http://wikisend.com/download/585680/Addition.txt

 

http://wikisend.com/download/458728/AdwCleaner.txt



#4 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:09:23 PM

Posted 19 October 2013 - 04:10 AM

Hi,

 

 

It seem that you ran a lot of tools (like Combofix, HitmanPro). This is a dangerous practice and could render your PC unbootable when improperly or cause various problems like the ones you explained in your first post:

 

some programs such as Photoshop CS6 no longer opens, gives me an error

.

Also it seems that you ran Adwcleaner multiple times and it probably took care of Conduit because I don't see any signs of Conduit in the logs...

Anyway - let's remove the orphans and repair a few system settings

 

Download the following file =>  [attachment=142926:fixlist.txt] and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

Also please run this:

 

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 

 

Regards,

Georgi


cXfZ4wS.png


#5 patex80

patex80
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:italy
  • Local time:08:23 PM

Posted 19 October 2013 - 06:19 AM

Hello Georgi, it is true, I made a disproportionate use of programs to remove the problem, I did not know could lead to further problems!
Anyway here's the log:

 

http://wikisend.com/download/331248/Fixlog.txt

http://wikisend.com/download/143758/JRT.txt



#6 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:09:23 PM

Posted 19 October 2013 - 06:26 AM

Hi,

 

Both logs are clean.

How are things now? Do you still experience any problems with Conduit?

And what about the other applications which does give you errors on start-up? Did you try to reinstall them in order to fix the issues?

 

 

Regards,

Georgi


cXfZ4wS.png


#7 patex80

patex80
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:italy
  • Local time:08:23 PM

Posted 19 October 2013 - 12:00 PM

Hello Georgi, problems with conduit are always there. About Photoshop I had actually already tried to install it again, but now the official site of Adobe Photoshop is the new version of CC and tells me that is not compatible with my operating system, so I tried updating the Photoshop CS6 and I upgraded it but I have not seen lapels, always gives me error! Maybe I'll get some deleted files with the programs used for cleaning or is conduit that creates these errors, I do not know! My main problem is the conduit at the time! I had seen this guide to manually remove conduit and almost all the programs I tried them, but I did not find the files listed! I have not tried Total Commander anti-rootkit plugins because I do not understand how to install it, you advise me to do this guide and then groped with Total Commander or do I let go? If you say yes, can you explain me how should I install this plugin? Let me know, thank you!

 

http://forums.spybot.info/showthread.php?62832-Manual-Removal-Guide-for-Conduit-Engine



#8 patex80

patex80
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:italy
  • Local time:08:23 PM

Posted 19 October 2013 - 12:08 PM

Georgi, I forgot to tell you that he would like to do a bit of uninstalls programs used, if I uninstall them or not. In addition, since yesterday I see an update java, if I have to install it or not and updates pc I do not understand, I always ask, but you upgrade anything!



#9 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:09:23 PM

Posted 19 October 2013 - 12:10 PM

Hi,

 

Where do you have problems with Conduit? Can you give me some screenshots? As I said I can't see a single Conduit entry in the logs...

 

 

Regards,

Georgi


cXfZ4wS.png


#10 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:09:23 PM

Posted 24 October 2013 - 03:44 PM

Hi,

 

Are you still with me?

 

 

Regards,

Georgi


cXfZ4wS.png


#11 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:09:23 PM

Posted 28 October 2013 - 07:01 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

cXfZ4wS.png





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users