Donate SIGN UP

Virus!

Avatar Image
Answerprancer | 23:39 Sun 09th Oct 2016 | Internet
6 Answers
Oh dear. It looks as though my main comp is infested. The culprit seems to be something called "Seviler". I updated Malwarebytes and Microsoft Security Essentials and ran full scans on both. My homepage is set to Google but despite this, every time I open Firefox (and IE) the homepage was something Russian. I ran both scans again and the same malware returned, not only this but both IE and Firefox have now become inoperable and are whited out. I've had to type all of this with one finger on my phone! Solution? "Nuke and Pave"? TIA
Gravatar

Answers

1 to 6 of 6rss feed

Best Answer

No best answer has yet been selected by Answerprancer. Once a best answer has been selected, it will be shown here.

For more on marking an answer as the "Best Answer", please visit our FAQ.
AP - first, open Malwarebytes > Settings > Detection & Protection - make sure the box "Scan for rootkits" is ticked, then rerun Malwarebytes.

That *might* grab the PUP that seviler appears to be. Worth a try...
^^^ Agreed, L-i K, but I'd recommend trying it in Safe Mode though. (Press F8 during the boot process to access Safe Mode).

There are plenty of 'helpful' web pages on the topic but every single one of them seems to be a hidden ad for SpyHunter (which would probably do the job for you but which would set you back £26). It's unusual for Malwarebytes not to be able to do the same thing as SpyHunter can.
Yes, sorry, "Safe Mode" is a good idea :-)

AP - also check your browsers for any unknown/unwanted add-ons/extensions & remove them.

Sorry, I'll leave you in Chris's capable hands, I'm shattered & headed pitward - hope you get sorted :-)
Another possibility (still using Safe Mode ideally) would be to run RKill first to terminate the dodgy processes and then (WITHOUT restarting your computer, as that would only start them up again) run full security scans with both MSE and Malwarebytes. (With the dodgy processes stopped they might then be able to detect and remove the problem):
http://www.bleepingcomputer.com/download/rkill/
Question Author
Thanks so much for the advice, I've pulled the plug on my modem for the time being, will try all you've advised. Damn ...it takes ages to type with one finger on a smartphone!
Go to 'settings' > 'Extensions' and look at the list of extensions, you should find 'seviler' is there so you can cancel it. A similar thing happened to me with a dodgy homepage I could not get rid of.

1 to 6 of 6rss feed

Do you know the answer?

Virus!

Answer Question >>