I done goofed. Please help?

[mrjordann]

I got a virus or a few. I tried to torrent a game, and it came with malware.

 

Chrome won't start. MS Edge won't start. Windows Defender won't start. When I try to start them, it says "This app is turned off by group policy". I used Unlocker to remove most of the things in "Program Files" folder, but I have some in AppData > Roaming. Since AppData is a hidden folder and undiscoverable, I can't select the files in unlocker. Any advice? Thanks in advance.

[Hero7750]

2 minutes ago, mrjordann said:

I got a virus or a few. I tried to torrent a game, and it came with malware.

 

Chrome won't start. MS Edge won't start. I used Unlocker to remove most of the things in "Program Files" folder, but I have some in AppData > Roaming. Since AppData is a hidden folder and undiscoverable, I can't select the files in unlocker. Any advice? Thanks in advance.

boot into safemode and run windows defender

[ARikozuM]

4 minutes ago, mrjordann said:

I got a virus or a few. I tried to torrent a game, and it came with malware.

 

Chrome won't start. MS Edge won't start. Windows Defender won't start. When I try to start them, it says "This app is turned off by group policy". I used Unlocker to remove most of the things in "Program Files" folder, but I have some in AppData > Roaming. Since AppData is a hidden folder and undiscoverable, I can't select the files in unlocker. Any advice? Thanks in advance.

Advice? Or lecture? Don't torrent, practice safe browsing.

 

Boot into Safe mode and run your anti-virus program (I recommend Kaspersky) or reinstall Windows after formatting your drive.

[Energycore]

2 minutes ago, ARikozuM said:

Advice? Or lecture? Don't torrent, practice safe browsing.

 

Boot into Safe mode and run your anti-virus program (I recommend Kaspersky) or reinstall Windows after formatting your drive.

I would say check the comments before clicking that magnet link, rather than not doing it at all

[mrjordann]

3 minutes ago, ARikozuM said:

Advice? Or lecture? Don't torrent, practice safe browsing.

 

Boot into Safe mode and run your anti-virus program (I recommend Kaspersky) or reinstall Windows after formatting your drive.

Thanks. I have stayed away from Torrenting for years, but finally downloaded the software to do so. Never again. Hehe. And yes, I have Laspersky. I regret not installing it sooner.

[ARikozuM]

2 minutes ago, mrjordann said:

Thanks. I have stayed away from Torrenting for years, but finally downloaded the software to do so. Never again. Hehe. And yes, I have Laspersky. I regret not installing it sooner.

Since you have Kaspersky, is it Total Security?

[Realist Peter Pan]

7 minutes ago, ARikozuM said:

Advice? Or lecture? Don't torrent, practice safe browsing.

or practice safe torrenting... it is possible to do this. 

[mrjordann]

2 minutes ago, ARikozuM said:

Since you have Kaspersky, is it Total Security?

I don't know. I've owned a mac all my life until I got into PC building, so I am unfamiliar with virus software. (Also never used Kaspersky). Here's what I have. https://imgur.com/a/QA8VA

[ARikozuM]

2 minutes ago, mrjordann said:

I don't know. I've owned a mac all my life until I got into PC building, so I am unfamiliar with virus software. (Also never used Kaspersky). Here's what I have. https://imgur.com/a/QA8VA

Go to their website and look up Rescue disk.

 

Or: http://support.kaspersky.com/4162?cid=KTS_16.0

 

Make an bootable USB and use it instead of safe mode.

[RMXSeven]

2 minutes ago, mrjordann said:

I don't know. I've owned a mac all my life until I got into PC building, so I am unfamiliar with virus software. (Also never used Kaspersky). Here's what I have. https://imgur.com/a/QA8VA

Hey,

 

So that's the total package. Others advice around booting into safe mode and installing/running that AV is def a good start. When a similar thing happened to me (looking for NFS support for Windows 10) I did my due diligence. Downloaded the file, scanned it using Sophos AV, uploaded it to a sandbox provider that reported that it wasn't malware, even checked out Virus Total, however, still managed to have some browser hijacking components in it
 

I ended up formatting, as even though I got everything "cleaned" I wasn't confident it was entirely cleaned. Not worth the risk IMHO.

 

Consider for next time, (and I will too lol) sandboxing apps yourself, that is, running something like virtualbox for free, with a windows OS on it, having Kaspersky installed there, then installing new risky software on it first, see if there are any issues, then install on your actual PC.

 

Good luck!

[Totally-A-Hero]

26 minutes ago, ARikozuM said:

Advice? Or lecture? Don't torrent, practice safe browsing.

 

Boot into Safe mode and run your anti-virus program (I recommend Kaspersky) or reinstall Windows after formatting your drive.

-1 on kaspersky its a virus itself. It took me song long to delete that piece of shit after i didnt renew my sub.

[ARikozuM]

2 minutes ago, Totally-A-Hero said:

-1 on kaspersky its a virus itself. It took me song long to delete that piece of shit after i didnt renew my sub.

It's on top 5 lists for a reason. Would you rather he get McAfee?

[Totally-A-Hero]

2 minutes ago, ARikozuM said:

It's on top 5 lists for a reason. Would you rather he get McAfee?

No but malwarebytes is pretty good and also cheap. Thats what i switched to and would recommend.

[ARikozuM]

2 minutes ago, Totally-A-Hero said:

No but malwarebytes is pretty good and also cheap. Thats what i switched to and would recommend.

I use it as well as a monthly approach.

[Totally-A-Hero]

17 minutes ago, ARikozuM said:

I use it as well as a monthly approach.

It seems like he already has it so

[RezidentSeagull]

Yikes. Running MalwareBytes and your choice of AV is a good start. Just my 2 cents, but I personally like using Avira Free, since A) it's free, and B) it's so far worked out for me, so yay anectdotes!

[FirstArmada]

Sophos is pre cool too, has a web GUI that can be remotely accessed 

[RMXSeven]

34 minutes ago, FirstArmada said:

Sophos is pre cool too, has a web GUI that can be remotely accessed 

I work with Sophos a lot, and am pretty happy with them. One potential issue though is if you have RAID 0, I've found their on-access scanning can be a bit temperamental, but its still good, plus free, plus cloud based management.

[mrjordann]

14 hours ago, Totally-A-Hero said:

-1 on kaspersky its a virus itself. It took me song long to delete that piece of shit after i didnt renew my sub.

It's owned by Best Buy. It's not a virus

 

Basically, some stuff is hiding in my AppData folder. Since it's a hidden folder, how do I delete them? Because I use a program called Unlocker to delete adware, but I can't get in the hidden folder.

 

Also, chrome and  MS Edge won't start. Windows Defender doesn't detect any more viruses, even though I am sure that they're there. I do have a copy of Kaspersky security, but I can't download it. Because chrome won't open.

 

What should I do? Any and all help is much appreciated. Here are the viruses that Windows Defender found and removed. https://imgur.com/a/Fs8fG

[forthe48]

If you open the start menu and start typing 'show hidden' You should see 'show hidden files and folders' pop up, which when clicked on will take you to view settings for Windows Explorer, where you can check the box for 'show hidden files & folders.'

 

You can also just manually go to C:\users\myuser\appdata\ by typing it into the address bar in explorer, or holding winkey + r and typing %appdata% and hitting enter.

 

If the viruses are running services/blocking you from manually deleting the files then you could try booting into safe mode and deleting them, or look into bootable anti-virus software.

[WkdPaul]

it's the same problem, there was no need to start a new topic, you could've bump it and add the info in the original post.

 

@forthe48 has good info on how to get into hidden folders.

 

also you should consider using malwarebytes, if you can't get online with the infected PC just download the installer from another PC and transfer it to the infected PC, the installer is a standalone so you don't need internet connection.

[LabRat]

revo uninstaller works good.......... pay attention to what you are doing.

[mrjordann]

Thanks for all the help you've given me, this is the 3rd and hopefully last post about this.

 

Basically, I got viruses from trying to torrent something. I used Kaspersky antivirus, and it removed like 20 or 30. Geez.

 

Anyway, right when I think all the viruses/malware is gone, Chrome repeatedly opens and loads hundreds of tabs. They're all the same website, "trojanhorsexxx.com". Obviously it's not a good website, so I try to force quit Chrome every time it does that.

 

It concerns me... does this mean there's still a virus left? Why is it doing this? How can I get it to stop?

 

Thanks in advance everyone, you're help is priceless!

[TheRandomness]

Run all the antiviruses, go into programs and features and uninstall anything dodgy and if nothing works, reinstall OS.

[tp95112]

Use Malywarebytes.