I'm visiting my dad and he wanted to try some photo editing software for Windows. After installing (GIMP, XNview, Fotor, PhotoFiltre 7, Paint.net), the stupid bytefence/chromium malware popped up. I figure I clicked too quickly through the installer and installed it. I was able to clean the machine, but I'd like to know which one of these programs bundled stupid malware with their installer. Of course, it's possible it's none of them--I also visited
https://pixlr.com/editor/, which has a suspicious flash page.
Anyway. I'm curious if there is anyway to check the installer files (or if anyone is familiar with that pixlr site). I don't have any way to run a virtual machine right now. Scans don't seem to pick anything up.