I got a virus. Can you help?
"Rainbow" (rainbeaux)
01/24/2015 at 12:09 • Filed to:
None
|  1
|  21 |
You know those download sites that are completely legitimate, but the real download link is hidden among a bunch of bigger fake ones? I fell victim to the trap yesterday, and now I have all sorts of crap going on. There are a couple weird programs that I can't uninstall since they're always running and it won't let me delete them unless I can stop them, but they don't show up in task manager... I'm going to run Avast later today and see if it can find them and kill them for me, but for now I'm dealing with this super annoying one:
Every page I visit fills up with random hyperlinks, a video I can't close, and about half the time I even get a new tab opened up with yet another ad. It's not a Chrome extension that I can find and disable/delete, so I have no idea where to go to get rid of it. Has anyone else had this one and can you tell me what to do? Also, I assume I should avoid using Paypal until I'm sure it's all gone?
I was trying to get Windows Movie Maker, by the way. I could swear I was on the official site, so I'm not sure what happened, but that doesn't matter now.
DISCUSSION (21)
�����
> Rainbow
01/24/2015 at 12:10
| 7
|
Download and run this.
https://www.malwarebytes.org/
�����
> �����
01/24/2015 at 12:15
| 0
|
Also check this.
http://www.bleepingcomputer.com/forums/t/51004…
�����
> �����
01/24/2015 at 12:17
| 0
|
http://malwaretips.com/blogs/arcade-g…
Tipo Stradale Fever
> Rainbow
01/24/2015 at 12:17
| 0
|
http://www.bleepingcomputer.com/download/rogue…
Roguekiller is very thorough, and imo a
little
bit better than malwarebytes. For the best effect, run them both once.
Also, stop watching so much porn. Porn is bad, mmmkay :p
Doge_Supreme drives a BRZ
> Rainbow
01/24/2015 at 12:20
| 2
|
Do you have adblocker? If not get it. It helps get rid of false links so you wont make the mistake again.
Nibby
> Rainbow
01/24/2015 at 12:25
| 0
|
I think everyone else covered the malware bit, but here's what you are looking for, straight from MS.
http://www.microsoft.com/en-us/download…
scoob
> Rainbow
01/24/2015 at 12:26
| 0
|
If they ever show up in Task Manager: right click > Open File Location.
I found a ton of hidden software like that.
Stevo777
> �����
01/24/2015 at 12:26
| 1
|
Malwarebytes is an excellent tool. It's usually my go to software!
WINGZERO
> Rainbow
01/24/2015 at 12:30
| 0
|
Download Rkill and malwarebytes on a separate device if you can. Boot your computer into Safe mode, run Rkill will stop the programs from launching so you can actually scan the system and then run malwarebytes.
WINGZERO
> Rainbow
01/24/2015 at 12:33
| 0
|
If you want to be very thorough follow this reddit guide for TRON. You go into safe mode and then run the Batch file, this will do it all for you and you wont have to be running programs manually yourself.
http://www.reddit.com/r/sysadmin/com…
Rico
> Rainbow
01/24/2015 at 12:51
| 1
|
To be sure you get everything you should restart your computer and while it's starting up press F8, boot the computer in Safe Mode, then run your anti-malware and anti-virus.
DrewliusCaesar
> Rainbow
01/24/2015 at 13:11
| 0
|
I tell any one who asks: Webroot Secure Essentials. It's lightweight, runs off the cloud so you don't deal with updates and such, and has one of the highest detect rates of viruses, trojans, and malware. You have to buy it, but it's worth it and you can use one key for like 3 computers. I'll never use anything else.
McMike
> Rainbow
01/24/2015 at 13:37
| 0
|
It's probably an browser plug-in that you didn't know you downloaded.
If you don't see anything recent in add/remove programs that you don't recognize, check out the Chrome plug-ins.
JGrabowMSt
> Rainbow
01/24/2015 at 14:05
| 1
|
Just go through Add/Remove programs, remove anything dated today (or recently) that isn't something you specifically installed on purpose. For this, browser plugins will cause popups or re-directs, but rarely something embedded on every page.
Then go ahead and run Windows Defender, or just use System Restore to yesterday (or the last time you ran it), provided you run System Restore (and you really should).
I'm no fan of MalwareBytes or Avast because working in a computer shop for nearly 5 years showed me how horribly ineffective they both were. Case and point, you have a virus. Whatever software you've been using didn't do crap. In some situations, that's simply what happens, the software doesn't even have a chance to do anything, but plenty of times, it's Norton, McAfee, TrendMicro or Kaspersky. Paid versions are no more effective than free ones, so save your money.
I have seen this exact thing happen before. Especially for Windows 8, use the Microsoft Store if you need to find Microsoft/Windows software. What happened was you clicked on the first link for whatever you were searching for, and it was something like windowsmoviemaker.us, or something else that very specifically was not the original creators website (or a legit download website). It happens because anyone can pay to have their ad put on top of the Google search results, and many times if they pay once and get enough hits, the links will stay near the top, or at the top for a long time. I've seen it happen so many times it's absolutely ridiculous.
It's gone now, thanks to Malwarebytes. It's called ArcadeGiant or something and I think it affects all browsers.
NJAnon
> Rainbow
01/24/2015 at 22:49
| 0
|
"You know those download sites that are completely legitimate, but the real download link is hidden among a bunch of bigger fake ones?"
I want to point out to Rainbow that a "download site" being legit doesn't hide the download link. And what are you trying to download exactly that sent you to fake sites? :P
I mean it's legitimate in the sense that it does give you a real, clean download assuming you click on the correct link.
Rainbow
> Nibby
01/25/2015 at 10:32
| 0
|
Out of curiosity, do you know where I'm supposed to be able to find it? I ran the installer, but I can't find it anywhere. Searching for "movie maker" isn't giving any results, either.
Should be in your Start menu.
Rainbow
> Nibby
01/25/2015 at 11:26
| 0
|
It wasn't, but I found it. Damn Windows 8 and its confusing jumble of rectangles they call a start menu.
You still haven't answered our question. heh, heh