malbky

New Member
Joined
Jun 23, 2011
Messages
985
#21
Most installers come bundled with open candy which shows adds which is a kind of spyware/adware. To skip it look for installer without open candy the site usually provides this or use the /nocandy switch.
 

jamescv7

Level 61
Verified
Joined
Mar 15, 2011
Messages
12,637
Operating System
Windows 10
Antivirus
Windows Defender
#22
MRF71: keygens especially called Password Generators were hold as .exe type of file so generally it can cause serious risk and came from warez sites.
 
Joined
Nov 9, 2012
Messages
359
Operating System
Windows 10
Antivirus
Kaspersky
#24
One more important tip I would suggest is to always have a look at ur start-up programs before shutting down the PC or restarting as there are other family members too who install some programs from unknown source and then I always have to deal with finding the right one and keeping an eye on the start-up programs everyday. Best tool for this is CCleaner which now also comes with the Scheduled Tasks option in Tool > Startup. So always do check that also mate. Cheers for CCleaner ! :)
 
Joined
Dec 27, 2012
Messages
584
#25
big reason why I love disposable email addresses and malwaretips giveaways :p

Disabling ActiveX/Scripting/Java/iframes etc etc. is useful

some malware that has been prevalent since mid 2000's
is malware enbedded in .jpg, .doc extensions (.jpg embedded with executable)
click on a picture without scanning first and wallah.
Facebook had one recently thought to be the file icon but alas was NOT, I think Germany? but
could be wrong as I do not do facebook..
 
Joined
Jan 17, 2013
Messages
28
#26
Opensource softwares like Process Hacker 2, VLC media player does not specify publisher name but they can be trusted.

So be sure to make differences between legitimate and malicious softwares and learn about opensource and other softwares and their UAC notifications.
 

Littlebits

Retired Staff
Joined
May 3, 2011
Messages
3,868
#27
If you follow these basic rules, all you will need is a good AV, secure browser and Windows Firewall. Most infection occur because users ignore Windows File Checker and UAC warnings, if the file is not digitally signed by a trusted vendor then don't run it unless you have got it from a trusted source like vendor's official website, Softpedia, MajorGeeks, FileHippo, etc.

You can use your host file to block OpenCandy and other online installers that use third-party adware or use a portable version instead.

HostsMan with MVPS Host block list will block OpenCandy and most of the other online installer adware.

Thanks.:D
 
I

illumination

Guest
#28
Keeping the PC/programs up to date and not running unknown programs will pretty much cover most users. The majority of infected systems i have seen have been caused by these issues.
 
Likes: Svoll

Ramblin

New Member
Joined
May 14, 2011
Messages
940
#30
Three tips that work for me, I believe in them and no one has mentioned.

One, just like Java can be a problem, plugins and extensions also can be. If we don't use a plugin, we should get rid of it. Four years ago when I started learning how to be safe, I had 13 plugins in my PC. The funny thing is that I did not know what they were, how they got in or if they came with Firefox. I thought they all came with Firefox. Wrong. None came with Firefox is what I learned. Anyway, little by little I stated learning about what they were and how I got them. When I finished with them, only one remained. That was Flash. I kept Flash because I use Flash. All the others plugins that I had, I had no use for any of them.

If it sounds familiar, you should take a look at your plugins or Active X and get rid of them if you don't use them.

Two, I normally stay around the same sites all the time. I visit all kind of sites but I have never gotten anything that looks or acts like malware from sites that I have bookmarked. What I am trying to say is, get to know the sites that you visit and bookmark and visit sites that you know that you never had any kind of problem when you have visited them in the past. Stay around the sites that you bookmark. I feel that the less that I go away from my bookmarks, the safer that I am. Thats my experience.

Three, searches. Be extremely careful when doing searches. The last few times that I got infected or was close to getting infected was doing searches and I am not talking about searching for the "good stuff", I mean searching for things like Dr Webb or Emsisoft. Sounds unbelievable but is true. Well, now that I know a little how the bad guys work, those close encounters with malware while searching for security products don't seem rare anymore.

Bo
 

MidniteQue

New Member
Joined
Feb 4, 2013
Messages
38
#31
Just thought as a recent convert who just a month or so ago was completely ignorant of the dangers on the web. Some bad stuff in my new computer woke me up. Now I soak up protection info. Sadly my friends don't hear me when I try to warn them.
 
Joined
Feb 4, 2013
Messages
38
#32
malbky said:
Most installers come bundled with open candy which shows adds which is a kind of spyware/adware. To skip it look for installer without open candy the site usually provides this or use the /nocandy switch.
I have OpenCandy on my computer. Don't know how it got there. Mostly I didn't read the checked boxes when I downloaded a program. Cannot get it off computer. I read that it is a nasty program. Wild Tangent is another. It came pre-installed by HP with computer. Hate it when programs refuse to uninstall and don't supply an uninstaller.
 

McLovin

Level 72
AV-Tester
Verified
Joined
Apr 17, 2011
Messages
8,784
Operating System
Windows 10
Antivirus
Trend Micro
#33
MidniteQue said:
I have OpenCandy on my computer. Don't know how it got there. Mostly I didn't read the checked boxes when I downloaded a program. Cannot get it off computer. I read that it is a nasty program. Wild Tangent is another. It came pre-installed by HP with computer. Hate it when programs refuse to uninstall and don't supply an uninstaller.
If you need help removing it, you can always post in the Malware Removal Forum. :)
 

Ramblin

New Member
Joined
May 14, 2011
Messages
940
#34
MidniteQue said:
Wild Tangent is another. It came pre-installed by HP with computer. Hate it when programs refuse to uninstall and don't supply an uninstaller.
You do have an uninstaller,is not listed as Wild Tangents. Look for something like HP games or something like that. I have two HP computers and I uninstalled WT on both computers.

Bo
 

Oxygen

Level 42
Verified
Joined
Feb 23, 2014
Messages
3,132
Operating System
Windows 10
Antivirus
Emsisoft
#35
Great guide.... but you should ad "Unchecky" - it unchecks toolbars bundled in installers.... really great program.
 

Aeonwolf

New Member
Joined
Mar 9, 2014
Messages
8
#36
Edited it a bit.

2. No keygen = No infections
Edit: KeyGens are not a viruses! They are detected simply because you get the activation code for a products for free, so stop saying you'll get a virus to running a KeyGen.

Note: If you are a e-pirate & security freak like me, you would not just search for a KeyGen on Google.
There are many trusted crack/KeyGen providers


3. Download files only from trusted sources.
A file might not be trusted simply because the vendors are either now so popular or know.
Do some research on files you download

4. Use common sense while online
This does not need much explanation.
Don't be a retard while browsing the internet! It's a dangerous place.
 
Joined
Dec 16, 2013
Messages
399
#38
I disagree, keygens can contain Trojans, and are a risk.
I agree with your point. Keygen sometimes have inside hide trojan or backdoors. If You (not specifically you ;)) really want a keygen you should go to the developer site and download it directly from their website and not from file-host sites (4shard etc..). Always upload the file to VirusTotal And check ESET-NOD32 Detection name. If the detection name is: Risktool/game Hack/Hack engine Than the file is (Most of the chance) clear from real malware
 

orlygul

New Member
Joined
Jan 13, 2016
Messages
2
#39
I'v installed anti virus, ad block and who knows what else to my grandfathers computer and he still managed to get Malware to his pc... Thanks for the tips, especially with the java. Sadly, it can be hard to explain all those other points.. even though they seem to be obvious to anyone else.
 

Spawn

Administrator
MalwareTips Team
Verified
Joined
Jan 8, 2011
Messages
17,570
Operating System
Windows 10
Antivirus
Windows Defender
#40
I'v installed anti virus, ad block and who knows what else to my grandfathers computer and he still managed to get Malware to his pc... Thanks for the tips, especially with the java. Sadly, it can be hard to explain all those other points.. even though they seem to be obvious to anyone else.
By default, Windows allows users to run with Administrative privileges (ie. Admin Account).

For less experience users, creating a Standard (Limited) user account will drastically reduce the risk to infection. You still need a good Antivirus and modern Browser with Ad-Blocking extension to protect the user from daily threats, but without the risk of malware compromising the system.

Once your PC is clean from malware (Malware Removal Assistance):
- Clean the Admin User Account - Remove all unwanted / old software.
- Important: Add Password Protection to the Admin User Account
- Check that UAC (User Access Control) is enabled, default is good.
- Install your security software; real-time Antivirus or Internet Security, on-demand Scanner (ie. Malwarebytes Anti-Malware Free)
- Check for any Windows Updates and install any Important / Security patches. (It is safe to Ignore the Recommended or Optional updates).
Now for your Grandfather:
- Create a new Standard User Account.
- Install Firefox, Chrome, Opera or your preferred choice - these will be installed locally to their profile, no Admin/UAC required.
- Install Adblocking extension or software
- Install any other software - these may need Admin privileges, so enter the Admin Password in the UAC prompt.
** Do not share the Admin password - This is for yourself to use, when performing any maintenance to the PC **

You can share your details here:
Security Configuration Wizard