Anti-Malware Archives – Gridinsoft Blog Welcome to the Gridinsoft Blog, where we share posts about security solutions to keep you, your family and business safe. Sat, 15 Jun 2024 14:53:05 +0000 en-US hourly 1 https://wordpress.org/?v=71487 200474804 PUABundler:Win32/CandyOpen (PUA OpenCandy) https://gridinsoft.com/blogs/puabundler-win32-candyopen/ https://gridinsoft.com/blogs/puabundler-win32-candyopen/#respond Sat, 15 Jun 2024 11:39:58 +0000 https://gridinsoft.com/blogs/?p=18938 PUABundler:Win32/CandyOpen (or OpenCandy) is an unwanted program that acts as a browser hijacker and can download junk apps to your system. Specifically, it points at a thing known as OpenCandy adware, which is known for its indecent behavior. Let’s break it down and see what the PUABundler/Candyopen in a real-world example. What is PUABundler:Win32/CandyOpen? As… Continue reading PUABundler:Win32/CandyOpen (PUA OpenCandy)

The post PUABundler:Win32/CandyOpen (PUA OpenCandy) appeared first on Gridinsoft Blog.

]]>
PUABundler:Win32/CandyOpen (or OpenCandy) is an unwanted program that acts as a browser hijacker and can download junk apps to your system. Specifically, it points at a thing known as OpenCandy adware, which is known for its indecent behavior. Let’s break it down and see what the PUABundler/Candyopen in a real-world example.

What is PUABundler:Win32/CandyOpen?

PUA OpenCandy Detection
PUA OpenCandy Detection

As I’ve said in the introduction, CandyOpen is a detection name for a specific program that spreads bundles with unwanted programs. It was developed back in the late 2000s as a way to monetize free applications by adding some advertised content along with the main installation. But as the overall functionality of the app allowed for more extensive and intrusive changes, foul actors began misusing it.

The way this misuse was happening made the major cybersecurity vendors consider OpenCandy a malicious program. It is capable of changing browser settings by itself, and the additional programs it usually install can inject unwanted ads into pages, modify the web browser even more, and do similar dirty things. So having one to run in your system means a browser full of ads, pop-up advertisements flooding both system and browser, and unwanted programs getting installed. Not to mention potential data stealing, that the Win32/CandyOpen is capable of – read on to see the details.

To sum up, a PUABundler:Win32/CandyOpen detection means a malware that delivers unwanted programs and is capable of messing up your system on its own. But to have a more detailed look and a better understanding of this thing, let’s analyze it by running it on a virtual machine.

CandyOpen Malware Analysis

Finding the appropriate CandyOpen sample was rather easy. To be clear, it does not behave like straightforward malware on the surface. You can find it in the list of installed apps; there is even an option to disable additional installations in the menu. But the actions it does to the system once it is launched are quite unambiguous.

PUABundler:Win32/CandyOpen list of programs
“Installer” – unremarkable naming for a remarkable unwanted program

As you allow the thing to run under admin privileges, all further actions it does are done without your confirmation. You will speechlessly spectate various shortcuts to appear on your desktop, and your browser will go mad with pop-ups and redirects. As soon as CandyOpen runs in the system, it starts with changing the browser properties, particularly the search engine and start page. Then, it requests the list of unwanted programs to install from the command server, and proceeds with the installation.

Unwanted programs CandyOpen
Unwanted apps installed by CandyOpen

Here goes the main concern: while CandyOpen usually installs junk apps that are not outright malicious, nothing stops it from installing malware. Still, the sheer volume of troubles it already brings to your system is enough to say that this should not run in your system.

List of PUA OpenCandy actions:

  • Stops Windows Update
  • Disables User Access Control (UAC)
  • Injects into other processes on your system
  • Adds a local proxy
  • Modifies boot configuration data
  • Modifies file associations
  • Track, keep records, and report an infected user’s internet browsing activity.
  • Modifies your system DNS settings
  • Change the infected user’s browser homepage and tamper with their preferences/settings.
  • Install and insert unwanted/unknown browser toolbars and browser plug-ins/extensions/add-ons.
  • Adds files that run at startup
  • Change the default search provider.
  • Display of unwanted advertisements.
  • Change the desktop background.

That is the comprehensive collection of CandyOpen actions, things done by the majority of widespread samples. The particular sample you may find can have only a part of these functions or even go beyond it. Con actors who use it for monetization can alter the CandyOpen in many ways, so it better fits their purposes.

How to remove PUABundler:Win32/CandyOpen?

Removing Win32/CandyOpen is possible manually, but I’d recommend you use anti-malware software. This will speed up the process and make it much easier for you. Also, manual removal makes it nearly impossible to find and remove unwanted or malicious programs present in the system.

GridinSoft Anti-Malware is a program that will remove CandyOpen in no sweat. It will also find and remove all the additional junk OpenCandy can bring.

GridinSoft Anti-Malware main screen

Download and install Anti-Malware by clicking the button below. After the installation, run a Full scan: this will check all the volumes present in the system, including hidden folders and system files. Scanning will take around 15 minutes.

After the scan, you will see the list of detected malicious and unwanted elements. It is possible to adjust the actions that the antimalware program does to each element: click "Advanced mode" and see the options in the drop-down menus. You can also see extended information about each detection - malware type, effects and potential source of infection.

Scan results screen

Click "Clean Now" to start the removal process. Important: removal process may take several minutes when there are a lot of detections. Do not interrupt this process, and you will get your system as clean as new.

Removal finished

The post PUABundler:Win32/CandyOpen (PUA OpenCandy) appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/puabundler-win32-candyopen/feed/ 0 18938
15 Reasons to Choose GridinSoft Anti-Malware https://gridinsoft.com/blogs/reasons-gridinsoft-anti-malware/ https://gridinsoft.com/blogs/reasons-gridinsoft-anti-malware/#respond Thu, 26 May 2022 00:40:12 +0000 https://gridinsoft.com/blogs/?p=8101 Choosing the anti-malware solution these days is a tough decision. Over a dozen vendors offer a wide range of services, additional features, and promise extremely high efficiency of their tools. However, they position their products in a pretty scattered manner – since each of their features has controversial elements. Moreover, the trend these days shows… Continue reading 15 Reasons to Choose GridinSoft Anti-Malware

The post 15 Reasons to Choose GridinSoft Anti-Malware appeared first on Gridinsoft Blog.

]]>
Choosing the anti-malware solution these days is a tough decision. Over a dozen vendors offer a wide range of services, additional features, and promise extremely high efficiency of their tools. However, they position their products in a pretty scattered manner – since each of their features has controversial elements. Moreover, the trend these days shows that people prefer to use antivirus separately from the add-on services, like VPN or parental control. They’re surely useful, but can be acquired as a separate application as well, with the same or even better functionality. High resource consumption, together with information security concerns, make the “all-in-one” programs less than desirable.

But among the simplified solutions, that offer only essential anti-malware functionality, it is also hard to make a decision. We recommend you to use GridinSoft Anti-Malware, and let me give you 15 reasons to choose it.

1. High detection rates

The most important quality of any anti-malware program is its ability to correctly detect and remove the hazards. It can have a bunch of other positives, but the main function is obliged to be as good as possible. And GridinSoft Anti-Malware shows perfect protection against a wide range of threats present in the wild. All kinds of adware, trojan viruses, malicious scripts and questionable programs – they shall not pass the security layer created by GridinSoft Anti-Malware. Such a high level of protection is available thanks to the advanced scanning system and diligent work of malware analysts, who upload the database updates as often as possible.

GridinSoft Anti-Malware effectiveness
GridinSoft Anti-Malware is able to deal with a wide variety of malware types

2. Advanced detection systems

GridinSoft Anti-Malware manages 3 different detection mechanisms – the “classic” database-backed detection, heuristic engine and neural network. The former does not need any introduction, since it is the alpha and omega of all antiviruses. But let’s have a closer look at heuristic and neural detection mechanisms.

  • Heuristic detection is the mechanism of spotting the malware by its behaviour. Most of the computer viruses act similarly, and that makes it possible for this detection system to catch them all – if it is set up properly. The heuristic engine in GridinSoft Anti-Malware is updated in real time, according to the modern malware activities and trends. In that way, the peak efficiency of the heuristic system is provided.
  • Neural network in GridinSoft Anti-Malware serves as the additional detection method. Neural network, learnt on thousands of malware samples, is able to detect viruses by their code, typical actions, file locations and other parameters that may even be unobvious to the human eye. Its detections are definitely a very effective addition to any anti-malware software, but it still needs a backup from database-backed and heuristic systems.
  • 3. High resource efficiency

    PC performance is an object of concern of the vast majority of users. Installing any software that is about to run in the background means risking to have significant decrease of the PC speed. GridinSoft developers paid additional attention to that aspect, in order to make their program as resource-efficient as possible, even having your proactive features on. You will barely feel the impact of this program running in the background – it takes almost less than 1% of CPU power and ~300 MB RAM. Compared to things like Windows Defender, which consumes 5-10% of CPU and up to 1GB RAM, it is literally nothing.

    4. Simple interface

    Have you ever struggled with a huge number of tabs in the programs? Some of the antiviruses, especially ones that have a lot of unnecessary functions, have this problem. But GridinSoft Anti-Malware is the other story – it offers a clear interface with all important functions and information available at the glance. Functions and settings are logically divided on categories, corresponding to their purpose, and the detailed info (scan logs or update changelogs) is available in just several clicks.

    Clair and simple interface of GridinSoft Anti-malware

    5. Full-time support

    Having problems on your PC? Think something is broken inside of your operating system? Struggle to make a decision in our program? Support specialists will help you to solve any case, at any moment of time. GridinSoft Anti-Malware licence features the 24/7 multilingual tech support, so you will definitely receive the proper answer. For tough cases, the manager can offer extended support – via the remote connection. Such an approach will definitely help you to solve the issue.

    6. High compatibility

    Even in 2022, people still use old operating systems for certain reasons. Some people don’t want to update because of the hardware requirements, some dislike the new appearance of the OS, and some users don’t want to lose the compatibility with the programs they use. GridinSoft Anti-Malware will perfectly fit all of these categories, offering the support for a wide range of Windows versions. It will successfully run on Windows XP, Vista, 7, 8/8.1, 10 and 11 – a timeline of more than 20 years of software development. And on any of these versions the security tool from GridinSoft will show an excellent efficiency.

    Moreover, GridinSoft Anti-Malware also works perfectly with other antimalware and antivirus software. For people who want to have several security solutions running together, it will be a perfect addition. You will never see any detection conflicts, and the modest resource consumption will not interfere with the other programs’ efficiency.

    7. Setup flexibility

    Despite the easy-to-use interface, GridinSoft Anti-Malware offers a wide range of settings that will fit different users. Scanning schedule, use of heuristic rules during scans, ability to adjust the startup settings, and manage the active modules of the proactive protection – that will be enough to personalise the experience as much as possible. GridinSoft Anti-Malware is designed with an idea to give the users the right to choose the program mode it wants.

    GridinSoft Anti-Malware Settings
    Wide variety of settings is available in GridinSoft Anti-Malware

    8. Reasonable price

    Most of the antivirus solutions contain a huge amount of functions, which are about to be paid for regardless of the fact you use them or not. When it comes to GridinSoft Anti-Malware, you pay only for the functions you will definitely use – exactly, the genuine anti-malware software features. For an annual licence, you have to pay only $40 – or less, if you will use a discount that is available multiple times a year. You will not find the same functionality & efficiency combination for this money.

    9. Nothing excessive

    In the previous paragraph, we mentioned the services and features available in GridinSoft Anti-Malware. It does not feature keychain, additional traffic controlling or VPN service. In the developers’ opinion, users can decide if they want to use one, and must not obligatory pay for them. On the other hand, you receive a full bunch of various features that are really needed for the anti-malware software – a full-featured proactive protection, quarantine, and various tools for system recovery. Isn’t that a fair swap?

    10. Constant database updates

    The efficiency of anti-malware programs is measured by their detection quality. That is, exactly, the most important part of the program – low detection capabilities make it just a useless app. But even the most advanced detection databases & mechanisms are getting outdated with time, and their detection rates fall inexorably. New malware appears each day, and to retain the effectiveness, you should update the databases as often as possible. GridinSoft Anti-Malware receives database updates each hour, so even the most fresh malware will be taken into account pretty quickly.

    GridinSoft Anti-Malware update
    Updates in GridinSoft Anti-Malware arrive almost each hour

    11. Trial and Demo mode

    Any purchase must be rated correspondingly, after weighting all pros and cons for yourself. That’s why trial mode in GridinSoft Anti-Malware makes it possible for you to test it from all aspects. 6 days of full functionality within the trial licence is enough to feel all qualities of this program, get familiar with the interface and have some real-world testing.

    But even in the situation when you did not purchase the licence, you are still able to scan your device for threats in Demo mode. It is able to detect the malware, but cannot remove it, and lacks proactive protection features. This mode provides the testing capabilities as well – but can’t show you the real potential of GridinSoft Anti-Malware.

    12. System applications repairing capabilities

    Modern malware pretty often exploits the operating system vulnerabilities in order to conduct its activities. When it is removed, the touched system elements remain damaged, and it is very important to fix them. Contrary to the third party apps, that may be changed as well, modified system elements may cause errors and even system failure. GridinSoft Anti-Malware is able to effectively find and repair the system elements that were damaged by malware, saving you from manual recovery.

    13. Browser reset functions

    Nasty malware types that show us advertisements of different forms, like adware and browser hijackers, generally act through modifying your browser settings. They invade each web browser you have on your device, to show you the ads wherever you go. Even after removing viruses from your PC, your browsers will keep the changes made by malware. GridinSoft Anti-Malware has the ability to revert these changes in all browsers in a single click – thanks to the Reset Browser Settings function. A single click – and your browser is as good as new.

    Reset Browser settings
    The functionality of browser settings recovery

    14. Multi-layer on-run protection

    On-run protection, also known as proactive protection, is a very useful feature that controls the application activity on your computer. Each launch of the application and each opened folder are monitored by the anti-malware program. GridinSoft Anti-Malware checks-up processes and directories with a three-part system – databases, heuristics and neural network. Using all three systems makes it impossible to miss the malware – it will definitely be detected and defused, even if it was not active at the moment.

    On-Run Protection GridinSoft Anti-Malware
    On-Run Protection feature controls the applications in a proactive form

    The On-Run Protection function in GridinSoft Anti-Malware can have two additional functions. Besides the basic scanning of all activities, it also can act as a network monitor, and removable devices scanner. The former will be very effective in blocking the unwanted websites, that may expose your PC to a hazard. Removable Device scanning is a function that checks all of the connected storage devices, both removable drives or USB flash drives. That will safeguard your computer from the intrusion from most of the typical malware spreading vectors.

    15. Quarantine

    Sometimes, neither the program nor the user is sure that the detected file is dangerous. To give the time gap and chance to choose, GridinSoft Anti-Malware features threat quarantine. That is, exactly, the separated area on the disk, where the blocked files are stored until the decision is made, or the 30-day term is expired. Items in Quarantine are impossible to launch and interact with the rest of the system, so even dangerous stuff does not put your system into a hazard.

    Quarantine
    Quarantine functionality in GridinSoft Anti-Malware

    Try out GridinSoft Anti-Malware

    You have seen a lot of arguments that prove the efficiency and convenience of GridinSoft Anti-Malware. This security tool has great functionality for a reasonable price. The features this program has make it really superior to its contemporaries. Having a try of this application for 6 days will surely dot all the i’s. And the support managers will be glad to answer any of the questions regarding the program functionality.

    The post 15 Reasons to Choose GridinSoft Anti-Malware appeared first on Gridinsoft Blog.

    ]]>
    https://gridinsoft.com/blogs/reasons-gridinsoft-anti-malware/feed/ 0 8101
    Antivirus scanner and anti-malware. What is the difference? https://gridinsoft.com/blogs/antivirus-antimalware-difference/ https://gridinsoft.com/blogs/antivirus-antimalware-difference/#comments Wed, 29 Dec 2021 16:43:04 +0000 https://gridinsoft.com/blogs/?p=6822 Antivirus, anti-malware software, antivirus scanner… There are so many terms, and all of them look so similar, but they’re different. It is easy to confuse the user who does not have any information about all these things. Thus, it is important to clear out these things in easy words. From a certain point of view,… Continue reading Antivirus scanner and anti-malware. What is the difference?

    The post Antivirus scanner and anti-malware. What is the difference? appeared first on Gridinsoft Blog.

    ]]>
    Antivirus, anti-malware software, antivirus scanner… There are so many terms, and all of them look so similar, but they’re different. It is easy to confuse the user who does not have any information about all these things. Thus, it is important to clear out these things in easy words.

    From a certain point of view, antivirus programs, anti-malware software, security tools, and antivirus scanners are just synonyms. Sure, they have a lot of things in common – enough to call them somewhat the same things. However, when we talk about a scientifically correct term (cybersecurity is a science!), it is important to make a distinction between these terms.

    What is an antivirus scanner?

    Let’s start with the last one. An antivirus scanner is a program capable of detecting malware on your computer during the scanning process. It may apply any known detection methods – heuristics, database-backed, or neural network. This class of programs can also offer you proactive protection features – the continuous scanning of your PC in the background.

    what is antivirus scanner

    The main disadvantage of antivirus scanners is that they cannot remove malware from your computer. They check the system and notify about the present threats. Well-done scanners can also block the dangers but not remove them. Some of the Antivirus vendors offer their products for free testing – with only antivirus scanner functionality. Such vendors are Avast, AVG, Kaspersky, and McAfee.

    Security tool

    This term is wider, and can be used as an umbrella term for any software that is able to detect malware. Nonetheless, besides the “antiviruses”, security tools also include programs that manage to close the security breaches or enhance the overall system security. Those programs may be made manually – batch scripts, for example – or produced by cybersecurity vendors, but their purpose is single and same.

    cyber security tools

    What is the difference between antivirus and anti-malware?

    Antivirus and anti-malware are probably the most similar in their functionality. Both of them can scan your system and remove the threats. Both use all possible detection methods and optionally provide proactive protection. The main difference between these two types of programs hides in the recovery abilities.

    By definition, antivirus programs are full-featured applications that are able to recover not only system files and elements, but also files of the third-party programs. Such function was needed in the times when viruses (as a class of malware) were dominating the market. The activity of this malware usually leads to massive failures in the software, both OS-related and external. That’s why antivirus should be able to fix all things.

    difference between antivirus and anti-malware explained
    Difference between antivirus and anti-malware explained

    Anti-malware software, on the other hand, is lightweight and has fewer functions. It is capable only of repairing the system files and all standard functions. Some say this term is just more modern than the “antivirus”. This version has a foundation, but the difference between antivirus and anti-malware is pretty strict. Lightweight programs are usually less expensive and consume fewer system resources during the scans or recovery operations.

    Which security tool is the best?

    That is only your choice. There is no all-purpose program that will fit anyone. Generally, I can advise you GridinSoft Anti-Malware – as a lightweight and efficient solution with a reasonable price. You can have your own opinion at this point – regarding what you need to protect with this program. And, of course, according to the thickness of your wallet.

    Anyways, the primary security tool must be present anywhere in your awareness. There is no need for complicated, all-in-one antivirus programs when you know the primary ways to protect your system. When you are not clicking the strange ads online and don’t use pirated software, you already have much fewer chances to get malware on your PC. These principles must be the same essential as “do not stick your fingers in the socket” or “wash your hands”.

    The post Antivirus scanner and anti-malware. What is the difference? appeared first on Gridinsoft Blog.

    ]]>
    https://gridinsoft.com/blogs/antivirus-antimalware-difference/feed/ 1 6822
    Get 70% off on GridinSoft Anti-Malware this Halloween https://gridinsoft.com/blogs/happy-halloween-everyone/ https://gridinsoft.com/blogs/happy-halloween-everyone/#respond Thu, 26 Oct 2017 09:32:32 +0000 https://blog.gridinsoft.com/?p=1470 Halloween is just around the corner, and we have an exclusive treat for you! Forget about the tricks and get ready for a spooktacular deal on GridinSoft Anti-Malware. Our gift to you is peace of mind, knowing that your computer is safe from malware. GridinSoft Anti-Malware is a powerful and reliable antivirus solution that provides… Continue reading Get 70% off on GridinSoft Anti-Malware this Halloween

    The post Get 70% off on GridinSoft Anti-Malware this Halloween appeared first on Gridinsoft Blog.

    ]]>
    Halloween is just around the corner, and we have an exclusive treat for you! Forget about the tricks and get ready for a spooktacular deal on GridinSoft Anti-Malware. Our gift to you is peace of mind, knowing that your computer is safe from malware.

    GridinSoft Anti-Malware is a powerful and reliable antivirus solution that provides real-time protection against all types of malware, including viruses, trojans, spyware, and adware. With its advanced technology, GridinSoft Anti-Malware can detect and remove even the most sophisticated malware, ensuring that your computer is always protected.

    Get 70% off on GridinSoft Anti-Malware this Halloween

    This Halloween, we are offering an enormous 70% discount on GridinSoft Anti-Malware. It’s the perfect time to take advantage of this deal and protect your computer from potential threats. Don’t let viruses trick you; get the ultimate protection with GridinSoft Anti-Malware.

    Our team is committed to providing the best protection for your computer. We understand that malware is constantly evolving, and we work tirelessly to ensure that our software is always up-to-date with the latest threats. With GridinSoft Anti-Malware, you can rest assured that your computer is always protected.

    So, what are you waiting for? Treat yourself this Halloween with 70% off on GridinSoft Anti-Malware. Don’t miss out on this spooktacular deal, and protect your computer from potential threats. Our gift to you is a safe and secure computing experience, so take advantage of this offer today!

    In conclusion, celebrate this Halloween with a special treat from GridinSoft Anti-Malware. Our 70% discount offer provides you with ultimate protection against all types of malware. Don’t let viruses trick you; take advantage of this deal and enjoy a safe and secure computing experience.

    The post Get 70% off on GridinSoft Anti-Malware this Halloween appeared first on Gridinsoft Blog.

    ]]>
    https://gridinsoft.com/blogs/happy-halloween-everyone/feed/ 0 1470