Could explain me how is it possible for a person to get infected by malware in 2016?
How normies are doing it?
Lets assume there is a file.exe, the somebody is running malware.pdf.exe and accept UAC
?
They don't run adblock and click on shady ads
Malware starts to download automatically to your computer.
>>55198391
flash exploits most likely
or just bundleware which wont be detected as viruses by some programs
>>55198448
On shady ads you have to download file and install it or am I wrong?
>>55198391
>mfw i just removed adware and trojans from my 2 week old pc.
idk how, but i felt stupid
>>55198391
torrenting
>>55198636
shady ads either have drive-by-download flash exploits embedded in them or on their site.
>>55198391
>using same windows for 3 years now
>never had a malware
>never had to reinstall
Am I a wizard yet?
they still use browser extensions
A guy I know got viruses recently from downloading a fake torrent for an anime game
I actually had a few viruses that I probably accidentally installed with some software from sourceforge or whatever. Even though you give those installers admin, the viruses actually plant themselves in %appdata% which is per user and requires no elevation
they just do shit like hijack your browser homepage and other such annoyances
>>55198391
>go to movie streaming website
>YOU HAVE >9000 VIRUSES ON YOUR COMPUTER
>click here to remove them all
>download, install, done
Everytime I go to my in laws they ask me to check their computer because some shitty site said their computer had viruses and they ran the " recommended utility".
All because $10/month for a fucking netflix still isn't cheap enough for them.
>>55198391
some popular sites had some ads that were injecting malware.
>>55198391
Easy. They go to the store and buy a computer that already has malware in it, such as Microsoft Windows.
>>55201648
Yepp, Forbes and Yahoo to just name two. Plenty more though.
Literally these days viruses are from flash or javascript exploits which require no user input. Granted there is still the idiots that download sketchy tv or movies that are in a .zip or .rar file.
>>55201669
>this person uses a mobile OS developed by an advertising company
>>55201695
This is why adblockers are more effective than antivirus. Don't like me blocking ads? Don't serve malware.
You can get infected by normal PDFs...
>>55201731
Only happens when you open the attachment. Assume all attachments are malicious unless you specifically solicit one.
>>55201731
>>55201746
What course of action should you take if you were a retard and opened it anyway?
>>55198391
>doing engineering phd
>group has 3 phd students including me
>get new lab computer
>one of the phd students uses it to look for movie streams
>computer gets so much malware that you can't go on a website and click anywhere without two new windows popping up
>one day, about two weeks after we got the computer, adviser comes in and says he needs to use the computer
>every time he clicks somewhere more windows pop up
>one of those free cruise windows shows up
>professor is a jew and starts reading what it says
>have to walk out of the lab because can't contain laughter
not as related but here's a story about the second phd student
>uses another desktop
>never closes tabs in browser
>doesn't clear history
>the browser usually has 50+ tabs open
>he uses the computer for pretty much everything
>one day professor is in the lab but facing the computer with his back
>the phd student in question takes the computer out of sleep
>backpage ad for an escort shows up with the professor about two feet away
>if you try typing in any link it starts bringing up backpage escort ads from the history
Normies know nothing about basic security. Getting malware is only incomprehensible to us because we use Common Sense CurrentYear.
>>55199120
>>55201695
That's why I installed adblock on my father's computer on day one. My mother is thankfully not bad with computers since she used them since coming to the states 26 years ago. My father on the other hand, can't even install simple updates w/o screwing something up.
>>55198686
You are an idiot don't worry
Fat middle-aged women in payroll and HR will open anything emailed to them, even if any sane person would think its suspicious. Resume.exe? Sure. Invoice.vbs? Alrighty.
>>55198391
I looked at the programs installed on my Windows 10 computer, and the only questionable thing was a candy crush saga application. Is checking for malware on your computer that simple?
How do you check?
>>55201934
>windows 10
the entire OS is malware
>>55201934
What the fuck are you doing on a technology board? Lurk more.
>>55198636
Browsers are bloated and insecure
The only difference between a browser and flash is the browser normally has FOSS "auditing", or at least someone more competent than fucking adobe working on it
>>55201943
Should I take it back to Windows 7?
>>55201951
That's why I'm here. I want to learn. This is literally my second day. I haven't been lurking for 24 hours, actually.
>>55201934
>Windows 10
Yep, you have malware
>>55198734
do you have hids/nids/siem in place to tell you if you're actually hacked or do you just assume that you've never been rooted?
>>55201966
Now i'm going to spoon feed you for this because it is actually a pretty common question and being a dick to people over it isn't going to help anyone.
When it comes to keeping your computer safe there is a question you have to ask yourself:
>Do I have sensitive data on this machine that could be be very harmful if someone were to get it (nudes, work documents, state secrets, etc).
We'll start with you answering no to that because saying yes is where things get involved.
If you wan't to keep your machine safe for normal use:
Get an ad block for those ad based bugs. This is one of the most common routes of attack nowadays since even well known and reputable sites don't control the ads that get automatically put up by ad sense and google ads.
Don't open links and attachments in emails that you weren't expecting to receive. If for example linkdin is sending you emails to "log in to your account through the link provided" but you don't remember making an account with them, don't click the link.
Don't put random CD's and flash drives you found on the street on your main computer. You wouldn't eat a sandwich you found on the road.
As for anti virus. Look up free anti virus software (don't download it w/o looking it up further to make sure it's not a scam first ofc). Avast and Malwarebytes have virus scanning in their free versions. For the fire wall, Windows defender is good enough for your computer. You can download it for free from Microsoft's website if you have a registered copy of windows. Don't pay for anti virus unless you answered yes to the question from earlier.
And if you are manually looking through your computer looking for malware, basic rule is if you don't recognize it, look it up and if it looks shady, uninstall it. Especially if you bought your PC pre-built.
>>55202352
Thank you very much.
I was concerned I about Windows 10 as I had to sign into my microsoft account, but could still do it while the laptop is offline -- AKA my password for my microsoft account exists on the computer somewhere.
I have nothing to hide, and have nothing to worry about which is why I kind of brushed off initial concern about Windows 10, but I want to get more into this stuff as stupid as it sounds, so I'll go for it.
I already rolled my computer back to Windows 7! I'm such a poseur. :(
Thank you again.
>>55202454
Eh I still use 7 and don't intend to upgrade unless I absolutely have to. Problem is that date is coming up fast since software developers are already announcing stuff that they are only keeping Win 10 in mind.
Win 10 is fine if all you do with your computer is play vidya and watch chinese cartoons (Windows doesn't give a fuck about you jacking off to cartoons).
If you really don't want to go into Win 10 because you are paranoid/really want to buy into the freedom lifestyle, there is the wonderful world of Linux.
>>55198391
Normies see 4kb bigboobs.exe and get infected.
>>55202547
I mostly just read 4chan, wikipedia, and need to upload music I make to the internet once in a while.
Yeah, Linux is mentioned so much here I'll have to look into that next.
Older normies don't know how to google.
They think you have to put ".com" at the end of everything and it takes them to shady phishing/malware sites.
>logintofacebook.com
I myself got malware from pirating music software the other day, it's still probably embedded in my Win10 installation. Luckily this is only a trial version. I'll reinstall something else.
Malware doesn't infect people.
>>55202614
If you get into Linux or have any more questions, we have a Stupid Questions Thread /sqt/. You won't get memed on for asking anything there (mostly).
>>55198391
>Upgraded to Windows 10
>Install and update Avast
>USB security always on
>Firewall always on
>Use blocklist for torrent
>Use uBlock Origin
>Avoid shitty websites
>Always use https
>Still get infected by malware
What the flying fuck? I thought Windows 10 had the best security?
>>55201934
The easiest "manual" way for me is to:
>check startup
>check scheduled tasks
>check processes and services
>check network logs
>remove/disable everything you dont want/need
Interestingly enough, I mostly have to do this for Microshit programs rather than actual malware. Recently installed VS2015, and by default it was starting up two or three separate processes that kept calling to their servers somewhere in the US. Not only that, two processes were continuously using like 120,000 K memory.
>>55202705
Thank you very much! So gracious! You are truly my hero today
>>55202454
>I have nothing to hide, and have nothing to worry about
I'd love to see your face when someone installed a keylogger on your system, is reading your mails, has access to your bank account and so on.
And even if you "don't open supicous mails", stuff like cross site scripting, software exploits and everything is still a thing.
It all depends on how "intersting" you are as a target. For example Singapore decided to complete shut down Internet connection for gouvernment workers because they got so much attacks they just can't expect to deal with all of them. Humans are creative and if somebody desperately wants access, he will get it sooner or later.
>http://edition.cnn.com/2016/06/08/tech/singapore-internet-access/
>>55202750
I went back to Windows 7. I'm looking at the task manager, and I appear to be using 50% of my computers power with 4 tabs open in chrome, using an iPhone ad hoc for internet.
The processes and services seem to have a ton of random shit but are probably for the most part legitimate.
Is that what you're talking about?
>>55202776
All you would find is that I'm into designer fashion and use tumblr. I don't view pornography at all.
Of course I don't want someone to fuck with my bank account, but even in my main e-mail there isn't anything going on
>>55202744
why did you think installing a keylogger & botnet on your machine was secure?
>>55202813
Most people don't realize if you upgrade from 7 to 10, you are asking for an ass fucking.
Use the media creation tool to download ISO and do a clean install using your Windows 7 license key which will activate instantly. Then you have a clean slate with proper drivers and registry entries. Upgrade is a massive fuckup, not sure why M$ decided to make bad first impression.
>>55202836
If there was a keylogger, Avast would have picked it up, it has been a helpful tool for years, even recently when I got infected, it isolated the malware and cleaned my system. Didn't need to reformat.
My infection came from a flash .swf which I am not sure where I got from because that shit is so outdated.
I run windows and I run pirated shit by UAC with abandon.
I haven't had any malware with has caused noticeable damage in about 15 years. Rarely I will download a game which has a trojan attached and I just replace the exe file and everything runs fine.
>>55202813
Pretty much, but I would advise to use Process Explorer over task manager.
>>55202846
Are you saying, I should go back to Windows 10, use the media creation tool to download an disc image file for windows 7, and then install that to go back one more time?
I use the top, free anti virus software from av-comparisons. Currently using Bitdefender free because it has minimal impact on performance, yet equal level of detection rate compared to the best anti virus software. I used Viper for several years before that.
I also use the latest ad block software. Right now it's Ublock Origin.
Using AV software and ad block software on my pc, along with every pc at where I work, has resulted in 0 viruses in the last 6 or 7 years.
>>55201943
>>55201951
>>55201973
kill yourselves you fucking retards
that is the most obvious bait i've seen in my life and you took it
freetards once again showing that they have no social skills
>>55202832
Good for you!
All I'm trying to say is that this you souldn't underestimate security issues.
>>55202896
Download Windows 10 media creation tool. Choose the option to create ISO file and save it your desktop. Then use 7zip to extract the ISO onto a NTFS formatted USB drive. Restart the PC and boot from USB, it will trigger Windows 10 setup and you delete all your previous partitions and start fresh. When it asks for CD-Key, use your Windows 7 CD-key, it will work and activate.
Till July 29, you can use your Windows 7 and 8 cd keys to activate Windows 10 provided they are genuine.
So, is Microsoft Security Essentials not recommended on /g/ anymore? It's been awhile.
>>55202889
What is a reliable place to download this from? I'm sure a pleb but I'm already staring at it on cnet with a bunch of awkward advertisements and clickbait.
I was self-aware to this in the past, and can identify what I need to click to actually download it, but is this the best route to go?
>>55202925
/g/ recommend that shit? It has always been garbage.
>>55202925
It is almost placebo at this point. Even M$ does not recommend relying on it completely. I always ran Avast alongside Windows defender in 7 and 8. However, it disables defender in Windows 10 now, not sure why.
>>55202935
https://technet.microsoft.com/en-us/sysinternals/processexplorer.aspx
Literally first result senpai
>>55202913
Thank you! I definitely will not
>>55202938
>>55202939
Noted, will install Avast tomorrow.
>>55202966
If you can afford a paid option, you can try others like Kaspersky, and premium version of Avast.
I am poor so I use the free version because only Avast has active protection which scans files as they are written to or accessed from the HDD. I used Malwarebytes earlier but you had to manually scan every few days.
>>55202920
I am definitely looking into this. Thank you.
>>55202938
It was a decent, lightweight option at one point. Then MS got threatened with anti-monopoly legislation, so they just kinda stopped putting effort into it.
>>55201878
>50tabs open
My stepmom is doing the same
Whenever she finds something interesting she keeps the tab to "read it later"
>me needing to look something up
>close about 20tabs, still more
>she complains
>tell her to use bookmarks
>she gets angry
The easiest way is to leave your computer unattended with a login session still active and unlocked.
A faggot can, for example, simply sit down and install malware onto your machine to watch you masturbate.
>>55203000
I think just the free version should suffice. I read that uninstalling MSE will re-enable Microsoft Defender, does Defender play nicely with Avast or should I uninstall it too?
I also have Malwarebytes installed but I only use it every once in awhile to do a scan.
>>55198391
who is this cream devil
>>55201763
reinstall from disk
>>55201966
Atiendeme muchacho
>start menu
>settings
>update and security
>windows defender
>open windows defender
Do a full scan
You can also backup/copy your personal files to an hdd and boot to factory settings to keep your pc running smooth.
>>55198391
A common one now is javascript. I know some customers that have been getting phishing emails that have a zip attachment that say various things like "Here's the invoice you requested."
Inside the zip file is an obfuscated javascript file that by default Windows will execute with the script host. To solve that I just switched default program to open .js files to Notepad.
Isn't Mawarebytes Antimalware scan every week sending weird file to virustotal and using ublock with filters and noscript enough?
>>55201956
Are you sure, modern chrome is really secure browser, each tab per process + sandbox, right now it require 0day to get to user from clean browser.
>>55198391
They think they're updating flash to watch that pirated stream of whatever movie.
>>55202096
Not the one you referring to, but please someone explain this further.
>>55202703
>aids
>>55198972
>A guy I know
Come on its you
>got viruses recently from downloading a fake torrent for an anime game
Hentai tentacle rape game
>>55203069
>Getting bullied by her husband's son
Top kek.
I got infected the other day by that shitty fake Daz Loader that's currently the #1 hit on Google search results
t. idiot
>>55201878
>reading pop up
fucking normies
>>55202454
>>55202547
I'm still using windows 7 and I if I ever want to upgrade my PC I only will change parts of my PC (don't know how it's called in eng)
When you want to save $89.99 and pirate a PC game or software and have to use the provided patcher.
Not setting up a VM to do that shit m8.
>>55202912
Your refusing to believe something that has been well documented has nothing to do with our social skills.
>>55198391
They have file extensions turned off in folder options in windows yet they are 'savvy' enough to download files and drivers yet download scripts and .exe's etc.
Running windows natively on the machine and not running windows virtually in linux while trusting some antivirus software to 'keep them safe'. Not using linux for browsing and downloading files and managing folders.
OP post more of that chick
They just google "%program% download for free without viruses" and OF COURSE it gets them to some shady warez sites.
>>55198391
i'd infect her firmware with my hpv.exe and hsv.bat
>>55198391
>>55198391
Most recent I got was a click hijacker that I got somewhere. I believe from one of the popup ads that happened.
It happens rarely, so I'm not too bothered by it.
>>55198391
It usually goes like this in my experience.
>Normie want to watch a movie or TV show
>Not on Netflix or Hulu
>They have no clue how to torrent
>Google free movie streaming and click random sites
>"You must install moviewatchersupreme plug in to watch this!"
>They click okay thinking a movie is coming
>They now have malware
>>55199120
Don't marry kikes.
>>55198391
>somebody is running malware.pdf.exe
.pdf itself can contain malware, no need for the .exe part
you can now see how "easy" it is to get infected
>>55199120
I get that "ad" 9/10 times from news websites. Even with adblock..
>>55198391
No, there are all kinds of exploits.
Pen tester here, you can open a tons of document-type files and get infected.
There are also people who allow ***JAVA*** to run on their system.
Or, send them to a .hta file.
Idiots.
How are they able to keep their fake domains or servers for c&c safe/secure?
>>55204334
>right now it require 0day to get to user from clean browser.
...dude
0day means a bug in current versions of a software that isn't known yet(known for 0 days)
any decent software vendor will patch bugs as soon as they are made public, but 0days aren't public by definition. So your whole sentence makes no sense
>>55206375
use ublock rather than abp, slap on some additional filter lists and keep them updated(ublock can autoupdate, not sure if it's the default though)
Bump.
>>55203069
stop fucking other people's shit up
she wants the fucking tabs, stop closing them
>>55202939
Windows Defender doesn't conflict with Avast when you're using them both at the same time?
I read that Defender turns itself off when it detects you using another anti-virus software.
Search for, say, Google Chrome on Google.
Click the first result. You know, the one barely tinted yellow and "ad" written in barely legible light grey.
Get sent to some site like "downloadcenter.com" or "thebreastfreeapps.tk" or whatever.
See a seemingly legitimate installer for Google Chrome. Download. Run. Tada! Malware!
Yes, this does happen. Almost caught somebody doing it to their own computer.
Mbam + Mbam anti ransom ware, router adblock. I should be fine
>>55202614
are you the dude who made a thread on /mu/ a month or so ago? where you asked about where to upload your songs and in the end you made a soundcloud and put some weird ambient shit on it or sth
>>55198391
A)
They need something, they google it and click the first link. Half the time that link isn't the official website of the software and the installer bundles bullshit with it. Some times they didn't know the software they needed and just searched something like "dvd burning software" and clicked the first link and downloaded some shady, half-broken, poorly translated shit bundled with malware, maybe they even paid $15 for it if they are extra stupid. Maybe on top of that what they downloaded wasn't what they wanted because they mistook a flashing "DOWNLOAD" ad as the real button.
B)
They use p2p but don't understand how to tell if something is legit or worse they don't understand that mp3's shouldn't end in exe
C)
They aren't smart enough to find a couple legit porn sites and stick to them, and instead just click from add to add and get hit with flash exploits
>>55204245
Thank you. I am doing this now.
>>55211791
No, that wasn't me. I've never used /mu/
>>55204379
Essentially that anon was saying "are you for damn sure by having these tools?"
Because most people think of malware with obnoxious visuals and slowing your system, but the dangerous ones hide, watching you fap to chinese cartoons, or store information on your computer.
I cleaned a friends computer where a rootkit made 2 hidden partitions, and replaced the bootloader.
The bootloader would inject the payload on the first hidden partition that would check to see if the hidden service excutable was still on the windows partition and reinstall it if it was removed and also install a driver. It would the chain boot windows. Windows would start the service in the background that would open a port via upnp that would listen for remote requests. It would then either send data from the second hidden partition or receive data which it would then use the driver that was installed to save the data to the hidden partition. The second hidden partition had long lists of credit card information in just plain text of all things lol.
Thing that was scary about it was I only discovered it because windows update was failing to install updates at boot because it wasn't booting from the windows boot manager, and loaded a linux live disk to see what was going on to discover an unusual amount of partitions on his hard drive.
>>55204245
I ran Windows Defender, and after an hour it finished.
All I see is an option to check for updates, and not necessarily any type of notification something bad is on my computer.
Do I check for updates?
>>55203069
I always build up a ridiculous number of tabs that I never use, then clear house after a few months.
I'm on 35 at the moment, but to be fair most of those are prospective headsets since mine crapped out.
>>55199120
>go to movie streaming website
>All because $10/month for a fucking netflix still isn't cheap enough for them.
>netflix for movies
Maybe because they don't want to re-watch Pulp Fiction, again?
>>55198391
1. Install Microsoft Windows.
2. connect to internet.
Simple.
social games or facebook games
+
"earn free credits" offer providers like offertoro or peanutlabs
=
"download this game for _____ credits!"
=
malware
normies do this shit all the time
>>55198391
Windows is malware and spyware by definition. So you should avoid using it.
>>55202096
Stuff like Prelude SIEM and Threat Stack, right?
