Attracting viris and malware infections.

  • Thread starter Thread starter Harrison
  • Start date Start date
  • Replies Replies 22
  • Views Views 619
Harrison

Harrison

Member
Joined
Dec 1, 2007
Posts
10,149
Country
UK
Region
West Sussex
I don't know how, but lately my wife keeps managing to install annoying malware on her laptop. Mainly the stupid annoying adware stuff that gets bundled with download installers.

Late week she complained a new search bar was appearing in Firefox and the homepage had changed, so I managed to uninstall that and clean it up.

Than yesterday she started complaining about adverts popping up and the start page changed again. This time she had multiple infections changing the homepage and changing it back If you altered it, and a toolbar program running called search protect, plus some others installed and listed in the control panel programs list, such as one called browser enhancements. It would have taken way too long to manually remove so I installed malwarebytes and that managed to remove them all, needing just a bit of tidying up after.

But why does she suddenly keep managing to install all this junk? Should it be illegal for these installers to bundle additional software?

One that really bugs me is Adobe Flash. The install comes bundled with a trial of McAfee, which no one wants.. But the Flash updater is random. Sometimes the update notifier will just update Flash then ask if you want notifications, but other times the update forces you to download a new installer to perform the update, where upon running the update automatically tries to install McAfee without asking you.

Most also hide a tick box right out of the way with the option to de-select the installation of extra software.

Sent from my Nexus 7 using Tapatalk 4
 
The latest one is fake 'uninstallers' when you try to uninstall these new browser hijacks they install a bunch more cr@p!
 
You need some software such as Faronics Deepfreeze. It locks down the machine, so even if she installs some malware, a simple reboot will revert the machine to how it was and you can only install software after 'un-freezing' it, so that you get to assess what's being installed before you do it for real. It can help trap some nasty surprises.
 
Easy answer is, stop going to sites that install that crap. Also actually read what comes upon screen. Most people say "what ever" and click install.
Its 100% common sense. I have my laptop for work use, its never needed reinstalling and runs perfect, why?
Simple, I dont do anything on it other than work stuff and dont browse stupid sites. Plus norton helps as its the first thing loaded after kernel.

They bundle installers to make the software free.
 
Last edited:
My kids laptop is a pain for this and I have locked it down as tight as I can. No admin rights for them, Firefox the only browser and that filled to the gunwhales with pop up blockers and script killers, multiple virus scanners run every other week and strict instructions on websites they are allowed on and this crud still gets on there.
I am genuinely considering wiping the drive and going Linux only on there, with access to their gaming on a tight locked Windows partition with no browser or way to access the internet apart from via Steam and specific gaming software with a white list based firewall. It'll be a pain for them, but it will also be an education.
That Deepfreeze looks like a good option though, I may have to look into that.
 
I had to track down a heck of a one today on one of our work computers. This thing hijacked the thumbnail CLSID entry as the startup point for the malware. It took me an hour and a half to even find how it was launching then another 45 minutes to get rid of it. It changed registry key permissions as well as permissions on cmd.exe and conhost.exe.

Still, it presented me with quite a challenge and I was quite proud of myself for getting rid of it. None of the anti-malware or AV software I threw at it found anything. We wouldn't have even known it was there had it not started eating all the CPU cycles.

Heather
 
FOL said:
Easy answer is, stop going to sites that install that crap. Also actually read what comes upon screen. Most people say "what ever" and click install.
Click to expand...
Exactly this ^^^
I deal with this far too often with our customers, and on top of that, when the AV gets in the way, they bloody disable it to install this crap. Unfortunately, being as we are only "outsourced" IT, each company/customer has their own procedures and most of them require that users have local admin rights on their computers (otherwise this would 'minimise' it somewhat).

Nearly every piece of freeware I've come across gives you the option to NOT install the malware crap, just untick the stuff, the tickboxes are there (on some you have to choose 'Custom Install' first) and some are as easy as clicking 'Decline'

On top of all this, AVG (I don't know if other anti-virus software does this), identifiy these installers as 'MalSign.OpenCandy.F' - if you block this, 9 times out of 10 the program installs without asking you to install the junk and without actually installing the junk ;) I wouldn't count on this behaviour happening 100% of the time though, as I've found the odd installer either doesn't run at all as a consequence.

Seriously though, a bit of common sense and keeping your wits about you.
We all pay attention and concentrate when we go out on the road (driving, walking, cycling) - so why do we not concentrate on what we click on when in front of our PCs ???

What's even more alarming, we use our PCs to buy things, manage our bank accounts, send personal details etc., all this can be stolen in a heartbeat just because you didn't look at what you were installing when you clicked that "Next" button !!!

r0jaws said:
multiple virus scanners run every other week
Click to expand...
Bad idea! Multiple Anti-Virus programs can get in each others way and cause compatibility and performance problems.
Choose one anti-virus program and stick with it.
However, if we're talking about scanners that don't have "On-Demand" or "Resident Scanning Engines", they will cause less issues than having multiple programs with resident scannig engines runninng all at the same time.
 
Last edited:
woodycool said:
We all pay attention and concentrate when we go out on the road (driving, walking, cycling)
Click to expand...
Wow! I need to move there. Half the drivers here are looking down at their cell phones instead of concentrating on the road. :D

Heather
 
woodycool said:
We all pay attention and concentrate when we go out on the road (driving, walking, cycling) - so why do we not concentrate on what we click on when in front of our PCs ???
Click to expand...
I dare say that part of this problem is because these machines are in some cases sold to people as if they're harmless, infallible appliances, no different to, say, a toaster or a washing machine.
 
SkydivinGirl said:
woodycool said:
We all pay attention and concentrate when we go out on the road (driving, walking, cycling)
Click to expand...
Wow! I need to move there. Half the drivers here are looking down at their cell phones instead of concentrating on the road. :D

Heather
Click to expand...
LOL :lol: not a truer word spoken.
To be honest, my statement was aimed at the responsible types, like all of us on here are - you'll find the group on maniacs who don't keep an eye out on the road and are too busy texting in any part of the world.

- - - Updated - - -

NinjaRabbit said:
woodycool said:
We all pay attention and concentrate when we go out on the road (driving, walking, cycling) - so why do we not concentrate on what we click on when in front of our PCs ???
Click to expand...
I dare say that part of this problem is because these machines are in some cases sold to people as if they're harmless, infallible appliances, no different to, say, a toaster or a washing machine.
Click to expand...
Yeah, I agree.

I know my comments above may seem a liittle harsh or 'not so user friendly' - however, I deal with customers and users who infect their PCs day in, day out .... then when I come home, my neighbours also want me to dis-infect their PCs too.
Whilst it's nice to be 'in demand', I too much of my time fixing other people's computers and never my own. I wouldn't mind but most of these people expect me to do it for free and get p****d off when I expect some sort payment for my time !!!
 
woodycool said:
Yeah, I agree.

I know my comments above may seem a liittle harsh or 'not so user friendly' - however, I deal with customers and users who infect their PCs day in, day out .... then when I come home, my neighbours also want me to dis-infect their PCs too.
Whilst it's nice to be 'in demand', I too much of my time fixing other people's computers and never my own. I wouldn't mind but most of these people expect me to do it for free and get p****d off when I expect some sort payment for my time !!!
Click to expand...
They don't seem all that harsh to me, to be honest. It's frustrating, not to mention that people wouldn't dare to ask someone to fix anything else for them for free!
 
NinjaRabbit said:
They don't seem all that harsh to me, to be honest. It's frustrating, not to mention that people wouldn't dare to ask someone to fix anything else for them for free!
Click to expand...
My mechanic would have a few choice words to say if I expected my car to be fixed for free ;)

I've never been one looking to make millions off others' mis-fortune (or shall I say, IT problems), however, just some recompense and/or recognition for my efforts sometimes.

The worst is, when I see forum posts (not on Amibay) about IT problems, I give my advice, it gets ignored, then they come back later with their tail between their legs and/or eating humble pie asking for my advice again .... the b****y cheek of it!

I'll stop rambling now.

I have to say though, back on topic, the Internet seems to be littered with more and more opportunities to get infected - hence why I think everybody should be more vigilant when online.
 
woodycool said:
you'll find the group on maniacs who don't keep an eye out on the road and are too busy texting in any part of the world.
Click to expand...
:( The search continues!

woodycool said:
then when I come home, my neighbours also want me to dis-infect their PCs too.
Click to expand...
I've pretty much stopped working on people's computers unless I'm compensated. I work on them all day and don't want to spend my time off working for free. I always adjust how much I charge based on their financial situation to help out some. The only people I really don't have a choice helping out are my immediate family. :)

woodycool said:
I have to say though, back on topic, the Internet seems to be littered with more and more opportunities to get infected - hence why I think everybody should be more vigilant when online.
Click to expand...
More often than not anymore, I tell people who know nothing about computers to get an iPad. Even though I don't use Apple products myself, the iPad is a great 'n00b' device. :D

Heather
 
SkydivinGirl said:
More often than not anymore, I tell people who know nothing about computers to get an iPad. Even though I don't use Apple products myself, the iPad is a great 'n00b' device. :D
Click to expand...
I agree, to be honest. Though, I'd say beyond a "n00b" thing, for most folks, it meets most of their requirements...

As far as folks actually requiring a "full" computer go - and, in all honesty, when you really look at it, most people really don't - I notice that Mac OS X now (where "now" is "at some point since I stopped using it myself" :lol: ) refuses to run stuff downloaded from the internet at all, unless you know where to go to change this particular setting. I do believe, in this world where so many folks are using such complex tools irresponsibly, it's a sensible default.
 
woodycool said:
.....
r0jaws said:
multiple virus scanners run every other week
Click to expand...
Bad idea! Multiple Anti-Virus programs can get in each others way and cause compatibility and performance problems.
Choose one anti-virus program and stick with it.
However, if we're talking about scanners that don't have "On-Demand" or "Resident Scanning Engines", they will cause less issues than having multiple programs with resident scannig engines runninng all at the same time.
Click to expand...

I am aware of the difficulties of running multiple scanners, however I only have one heuristic scanner running on the system. I do have copies of MalwareBytes, SpybotSD, Trend-Microsystem's Housecall online scanner and Bitdefender installed, which are on-demand scanning only. Between them, they seem to pick up most things.
My theory is that trusting only one company to pick up everything is probably not as effective as having multiple databases.
 
r0jaws said:
woodycool said:
.....
r0jaws said:
multiple virus scanners run every other week
Click to expand...
Bad idea! Multiple Anti-Virus programs can get in each others way and cause compatibility and performance problems.
Choose one anti-virus program and stick with it.
However, if we're talking about scanners that don't have "On-Demand" or "Resident Scanning Engines", they will cause less issues than having multiple programs with resident scannig engines runninng all at the same time.
Click to expand...

I am aware of the difficulties of running multiple scanners, however I only have one heuristic scanner running on the system. I do have copies of MalwareBytes, SpybotSD, Trend-Microsystem's Housecall online scanner and Bitdefender installed, which are on-demand scanning only. Between them, they seem to pick up most things.
My theory is that trusting only one company to pick up everything is probably not as effective as having multiple databases.
Click to expand...
Fair enough! Agreed that multiple AV solutions that DO NOT have resident-shield or only run when told are a good idea.
Its when you get multiple Norton, McAfee, AVG etc. all on the same machine the trouble starts.
 
You must log in or register to reply here.
Back
Top Bottom