How to Remove MalSign.OpenCandy.7AF
Through using the antivirus software to scan the computer, you find that your computer is infected with a virus named MalSign.OpenCandy.7AF? You don’t know when it enters your computer? It is a big problem, because the antivirus software cannot completely eliminate it? You are not proficient in dealing with complex computer problems, so you don’t know what you can do?

Follow the Removal Steps Below to Manually Remove MalSign.OpenCandy.7AF
Step 1: End the processes related to the Trojan horse in Windows Task Manager.
Right-click the taskbar and select “Task Manager”. Click “More details” button when you see the Task Manager box. Hit “Details” tab to find out and end the processes of the Trojan.
win8-task-manager1

Step 2: Show hidden files and folders.
1. Press Windows Key and X key together to open the Quick- Access menu. After that, select Control Panel from the menu.
win8_hidden-files1
2. Click Appearance and Personalization from the Control Panel and then double click Folder Options.
3. Hit the View tab.
4. Select “Show hidden files and folders” and deselect “Hide protected operating system files (Recommended)”.  Click the OK button.
win8_hidden-files4

Step 3: Clean up the files associated with  the Trojan virus from your PC.
%User Profile%\Local Settings\Temp
%Documents and Settings%\All Users\Start Menu\Programs\[Trojan horse name]
%Documents and Settings%\All Users\Application Data\[Trojan horse name]
%Program Files%\[Trojan horse name]

Step 4: Delete the registry entries of the Trojan horse.
Press Windows + R keys together to open the run box. Type regedit into the box, and then hit OK to open Registry Editor. After that, find out and delete all the registry entries related to the Trojan horse listed below:
regedit11
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\[Trojan horse name]
HKEY_LOCAL_MACHINE\SOFTWARE\[Trojan horse name]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings “WarnOnHTTPSToHTTPRedirect” = ’0′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “xas”
HKEY_CURRENT_USER\Software\[Trojan horse name]


MalSign.OpenCandy.7AF is a highly dangerous virus process that can cause terrible virus infection on the infected machine. Cyber criminals use the backdoor process to install some key logger virus so that the they get the information easily from the browser, local disk and registry, PC users may lose the important data such as account number and password,  personal E-mail and other files. Since the security tools may not be able to remove this Trojan horse completely, we suggest that PC user should remove this threat in a manual way.