Should one consider things like Conduit, OpenCandy, SearchProtect, Sidekick, Crossrider, Spigot, etc malware or PUPs.
A PUP refers to adware or other types of software that really don’t do anything but slow down your system and bombard
you with advertisements. However that is not what these malicious programs do. Conduit was installed on my machine as
part of a CD burner install. Apparently I should have clicked on the advanced configuration. If I had I would have
found an opt-out choice. However, I had installed this tool in the past and was happy with the default configuration,
so I went with the recommended standard install. The standard install now includes Conduit.
So, after finishing the burner install I found that all of the software listed above plus a collection of annoyance
applications had been installed. So what did these applications do that I consider malicious.
* Inserted various startups for applications that told me my computer was infected, please enter my Visa number to
purchase their removal application.
* Removed the search bar and the address bar from all of my browsers (Firefox, IE, Chrome), and from the View pull
down menu. As I result I could not navigate to any site that might have a removal tool.
* Changed the home page to a fake virus scanner page.
* Opened numerous ports, and started sending data non-stop
* Prevented browser settings from being reset to previous values
* Reinstalled the software listed above on reboot, after it was removed
Recovering my computer took all day, and would have been impossible if I had not had a second computer to download
removal tools to. Even in safe mode I could not download any removal tools to the infected machine.
Conduit should not get the star of approval, just because their executives tell the world that their software is not
malware. These PUPs have gotten out of control, and someone over there at Norton needs to wake up. This is a real
problem, and even you might not look at the advanced settings for a trusted piece of software you are downloading
from the company’s site.
The trouble with on "demand software" is the garbage is already installed on your computer leaving you with all the fun of getting rid of it. I'm beginning to believe this stuff is causing users more problems than actual "viruses." I'm sorry, but that line that a software product can't block everything 100% of the time is gettng very old! Norton doesn't block any of it. I'd say if it blocked this stuff fifty percent of the time we'd be way ahead. Yes, I've been on this bandwagon before.
Should one consider things like Conduit, OpenCandy, SearchProtect, Sidekick, Crossrider, Spigot, etc malware or PUPs.
A PUP refers to adware or other types of software that really don’t do anything but slow down your system and bombard
you with advertisements. However that is not what these malicious programs do. Conduit was installed on my machine as
part of a CD burner install. Apparently I should have clicked on the advanced configuration. If I had I would have
found an opt-out choice. However, I had installed this tool in the past and was happy with the default configuration,
so I went with the recommended standard install. The standard install now includes Conduit.
So, after finishing the burner install I found that all of the software listed above plus a collection of annoyance
applications had been installed. So what did these applications do that I consider malicious.
* Inserted various startups for applications that told me my computer was infected, please enter my Visa number to
purchase their removal application.
* Removed the search bar and the address bar from all of my browsers (Firefox, IE, Chrome), and from the View pull
down menu. As I result I could not navigate to any site that might have a removal tool.
* Changed the home page to a fake virus scanner page.
* Opened numerous ports, and started sending data non-stop
* Prevented browser settings from being reset to previous values
* Reinstalled the software listed above on reboot, after it was removed
Recovering my computer took all day, and would have been impossible if I had not had a second computer to download
removal tools to. Even in safe mode I could not download any removal tools to the infected machine.
Conduit should not get the star of approval, just because their executives tell the world that their software is not
malware. These PUPs have gotten out of control, and someone over there at Norton needs to wake up. This is a real
problem, and even you might not look at the advanced settings for a trusted piece of software you are downloading
from the company’s site.
The safest way to download software is usually from the vendors site. If it's red flagged by Norton or Wot, don't go there !
Having said that, it's essential to ensure that you're not allowing unwanted bundled software to be included with the original program.
Caveat emptor.
Many of the folks that regularly post to this forum are very computer literate. I guess they expect everyone to be as clever as they are. However, that just isn't so. My eighty-two year old neighbor was looking for peanut butter cookie recipes. I get a call that something is very wrong with her computer. I go over and it is loaded with sweetpacks, conduit and one or two other things. It took me two hours to remove all that garbage. As far as the red flag thing goes, it would be nice if Norton DID put up a RED flag when it encounters these things. That's the beauty of this malicious software, you don't know you've had it until it's too late.
My neighbor has NIS installed. (guess who's idea that was) If there had been a Malicious warning she would never have proceeded. She's a wonderful person and enjoys her computer, but she struggles with cut & paste. :-) I believe Norton is probably the best antivirus software you can buy, but I'm hoping they'll add an anti malware component like Malwarebytes or Hitman Pro that will work in conjunction with their antivirus products.
Another story : Yesterday a girl-friend of mine downloaded a free version of Nero from the NERO-site (really, i checked it out!) and at install time was left with the same : OpenCandy, Conduit, SearchProtect and so on. She is very reluctant to install this kind of software, but never got the chance to block it during install.
This is the way Nero obviously earns it's money for the free version, Which then even cannot burn a CD. You have to pay another € 4,99 to get that function. If even reputable firms are going this way, where will it be going to!
Last week i had a computer of another friend here, which was also infected this way. It took me 2 hours to clean it!
Conduit c.s. definitely are becoming malware! The interference with normal operation is becoming too big.
I think that a very basic function in Norton can do the trick...
Regards, Hugo
EssaTD2 wrote:The trouble with on "demand software" is the garbage is already installed on your computer leaving you with all the fun of getting rid of it. I'm beginning to believe this stuff is causing users more problems than actual "viruses." I'm sorry, but that line that a software product can't block everything 100% of the time is gettng very old! Norton doesn't block any of it. I'd say if it blocked this stuff fifty percent of the time we'd be way ahead. Yes, I've been on this bandwagon before.
Hi,
Can't argue the point. The Norton focus is viruses, or viruii, and not many of the other infections that are a PITA but do not destroy software. I have not tried to run two active scanners on my system based on the reports of more serious problems from the conflict than the cleanup of what was able to get through.
If you do find a security program that will keep you 100% safe 100% of the time I do hope that you will post a link here. Til then
Stay well and surf safe
Many people have said on these forums, that Norton should be adding pup and pua detections.
Can't say I disagree......
Moreover it's a question of definition. Norton also scans on Malware.
So when is a PUP or PUA becoming malware and should be scanned. Maybe the PUP definition for a program, once established, never changes again and is misused for misbehaving purposes. Does anyone know who defines what's Malware or PUP?
And again, i would like to get a warning if a PUP is installed.
No hvgsel, I think you mean we want to get a warning a PUP wants to install. :-))
The earlier responses did not seem to understand the point of my post, or what a PUP is. However, the last few posts were on point. The problem cannot be avoided by going to the trusted vendor's site. The problem is that PUPs are not considered malware, even though they frequently turn out to contain malware. In many cases you have no option to opt-out of the added software, in other cases the option is hidden in advanced settings.
Advertising companies convince vendors that their software poses no threat and vendors looking for $$ allow the adware to be bundled in. The problem comes when the advertising companies do not evaluate the Ads and Adware that they accept. All that is needed is a warning from Norton, letting the user know that a PUP has been bundled with the software.
Saying buyers beware is just a cop out, and I would expect better of anyone. We should do the best we can to protect users, and letting PUPs install without any type of warning is not the best Norton can do.