Dancing David
Penultimate Amazing
They are legion, there are multiple ways people get them, the one that is hardest to follow is when you have inadvertently downloaded some piece of software, or deliberately downloaded some piece of software that makes your machine more vulnerable. So you download something that has a 'bundled' piece of malware, you download some piece of crapware or you download some malware.
Things like 'coupon' software, 'shop to win', 'deal's and 'free movies' are good examples, not including things that are 'search bars' which are just crapware. Then inadvertently you can go to a web page which has a Flash exploit, a Java exploit or a .pdf exploit that just loads malware onto your machine.
The more obvious ones will start to mess with you right away. the less obvious one will just create a hook somewhere that is an open exploit 'door' or vulnerability, this then will be sensed by other malware that grabs on and invades. Then there are those that once on your machine that make a 'remote call' to some other site and download crap. again the sneakier ones do not want to let you know they have done so.
So other than taking Rat's advice and running a browser that blocks all scripts you are going to be vulnerable to some extent, you can avoid the more obvious things, don't just open emails that are suspicious, don't download 'free' stuff unless it is from a very reputable site, avoid bit torrents and P2P unless you are very savvy, use a real time scanner, use a firewall, run all updates as needed:
But there are still going to be times that you get some form of crap and it boogers up your machine.
